$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ab2a0a7-60f3-4a9f-9098-2b33486a7a43.roa File: 7ab2a0a7-60f3-4a9f-9098-2b33486a7a43.roa (raw, json) Hash identifier: 35QDHawcLL1MzdhmyAbgY5U+Hg2UPenAUilSj8TbPDY= Subject key identifier: BF:15:3A:21:09:33:9A:30:22:7E:79:8B:7E:B5:C4:89:9C:4F:35:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56AC7A99B1DF1775D71294C31B873BBB1D21E60F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ab2a0a7-60f3-4a9f-9098-2b33486a7a43.roa Signing time: Tue 24 Feb 2026 01:20:05 +0000 ROA not before: Tue 24 Feb 2026 01:20:05 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:ac:7a:99:b1:df:17:75:d7:12:94:c3:1b:87:3b:bb:1d:21:e6:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:20:05 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=0b8324bd6bfd44223f870dde5eecc6cfb36e6ab0a81a00cc01e6586322bf6ceb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b6:8f:19:cb:c5:63:f5:80:83:78:2c:df:5a: de:5a:6a:c7:7d:f6:59:99:38:3a:25:55:7c:ac:6d: 73:f4:3a:f0:b4:6f:08:dc:ec:42:8c:7b:f3:cb:f2: f7:c5:3f:f8:f7:4e:e6:c8:32:af:9e:e2:49:9f:92: ce:5c:9a:28:29:a2:9e:cb:17:d7:7b:c1:c0:9f:b5: 3a:8d:83:3f:9b:0e:3a:5d:75:f9:cf:2a:83:5a:7f: a0:04:34:f4:65:65:78:a6:12:63:c0:91:3c:2b:62: f1:c1:40:ce:eb:e1:eb:9e:0e:36:34:86:99:27:8f: e0:9b:13:f7:db:2c:53:b9:f3:e6:b1:3d:48:f0:38: 40:fb:fa:24:91:66:7d:f1:1f:4e:f0:8e:f5:af:50: b7:80:43:c2:67:43:26:fa:b7:8c:3f:95:51:69:13: ec:d7:f2:63:93:d8:3a:f0:d1:86:73:57:7a:13:fb: ff:5f:b3:8e:17:35:92:85:61:03:79:ce:55:5e:10: f5:ee:bc:ab:1d:b2:b1:47:c1:bc:55:ac:50:6d:b5: 67:80:3e:2f:f4:59:35:0b:93:99:61:32:5d:88:53: 3b:98:ee:4c:bc:46:84:78:a9:1f:a3:2c:64:73:63: d3:5c:20:82:2c:b4:83:f1:e8:47:2a:a1:f7:c9:e8: c2:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:15:3A:21:09:33:9A:30:22:7E:79:8B:7E:B5:C4:89:9C:4F:35:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ab2a0a7-60f3-4a9f-9098-2b33486a7a43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8020::/48 Signature Algorithm: sha256WithRSAEncryption 09:cc:27:3f:d5:06:c0:2f:03:c3:cc:05:14:82:46:44:73:01: 3c:18:48:e9:52:36:66:65:7d:05:57:42:14:11:5b:fc:10:5e: 8e:55:7c:0b:5a:62:bc:ac:8d:34:3f:13:14:06:cd:07:e3:d8: 5c:5a:7c:b7:64:40:35:ed:49:b4:53:67:3b:c5:0c:26:17:6a: 4e:50:5f:96:61:1c:7c:f9:90:e4:57:d5:52:9d:7b:cd:99:0e: 2d:30:8e:bc:6f:06:eb:4f:3b:62:1b:77:87:0b:77:b3:95:f8: ff:5d:41:14:17:4c:ca:15:42:97:bc:48:03:73:d3:d4:b8:d5: 92:ac:4b:44:a9:45:1c:bc:2f:25:24:0c:21:60:6d:ef:bd:13: 2d:57:43:55:bb:d3:59:55:07:59:a2:bb:25:fc:e3:05:0a:66: 6c:93:44:ea:50:97:3d:bc:17:68:b4:24:dd:f7:39:11:89:ef: e2:2a:68:63:8d:8d:3d:03:1f:8b:40:5c:65:e5:44:70:8c:ae: ce:f3:87:2a:1e:f8:e1:0f:c5:30:c1:a8:ca:85:f9:53:70:3b: d1:a8:1c:53:35:a4:d6:37:25:6a:ee:78:71:28:23:84:f5:f4: ad:59:03:ba:da:e5:61:e9:d5:14:89:cc:1e:59:3f:2a:c7:7f: cb:24:43:48 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVqx6mbHfF3XXEpTDG4c7ux0h5g8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEyMDA1WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjgzMjRiZDZiZmQ0NDIyM2Y4NzBkZGU1ZWVjYzZjZmIz NmU2YWIwYTgxYTAwY2MwMWU2NTg2MzIyYmY2Y2ViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeto8Zy8Vj9YCDeCzfWt5aasd99lmZODolVXysbXP0OvC0 bwjc7EKMe/PL8vfFP/j3TubIMq+e4kmfks5cmigpop7LF9d7wcCftTqNgz+bDjpd dfnPKoNaf6AENPRlZXimEmPAkTwrYvHBQM7r4eueDjY0hpknj+CbE/fbLFO58+ax PUjwOED7+iSRZn3xH07wjvWvULeAQ8JnQyb6t4w/lVFpE+zX8mOT2Drw0YZzV3oT +/9fs44XNZKFYQN5zlVeEPXuvKsdsrFHwbxVrFBttWeAPi/0WTULk5lhMl2IUzuY 7ky8RoR4qR+jLGRzY9NcIIIstIPx6EcqoffJ6MJvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvxU6IQkzmjAifnmLfrXEiZxPNXwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhYjJhMGE3LTYwZjMtNGE5Zi05MDk4LTJiMzM0ODZhN2E0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gCAwDQYJKoZIhvcNAQELBQADggEBAAnMJz/VBsAvA8PMBRSCRkRz ATwYSOlSNmZlfQVXQhQRW/wQXo5VfAtaYrysjTQ/ExQGzQfj2FxafLdkQDXtSbRT ZzvFDCYXak5QX5ZhHHz5kORX1VKde82ZDi0wjrxvButPO2Ibd4cLd7OV+P9dQRQX TMoVQpe8SANz09S41ZKsS0SpRRy8LyUkDCFgbe+9Ey1XQ1W701lVB1miuyX84wUK ZmyTROpQlz28F2i0JN33ORGJ7+IqaGONjT0DH4tAXGXlRHCMrs7zhyoe+OEPxTDB qMqF+VNwO9GoHFM1pNY3JWrueHEoI4T19K1ZA7ra5WHp1RSJzB5ZPyrHf8skQ0g= -----END CERTIFICATE-----Generated at Sun Mar 1 22:26:53 2026 by rpki-client