$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/887f4922-2c97-4526-af9a-b67399553315.roa File: 887f4922-2c97-4526-af9a-b67399553315.roa (raw, json) Hash identifier: 1e7vKsqqHer0Uld/tmWor3SupBSnw4OB8pEly22Ul80= Subject key identifier: F4:EA:1E:EC:D0:38:C4:E8:63:52:F8:1D:B1:71:76:7A:7A:3E:47:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A24D08C97D0428333698E46F87A70D292D14083 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/887f4922-2c97-4526-af9a-b67399553315.roa Signing time: Tue 10 Feb 2026 00:20:10 +0000 ROA not before: Tue 10 Feb 2026 00:20:10 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffa:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:24:d0:8c:97:d0:42:83:33:69:8e:46:f8:7a:70:d2:92:d1:40:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:20:10 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=e4e35212fcfd73ddcc39992ee0f5bbbc28e1ef13ae2447ee80c460de06aa67d8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:30:c6:8f:ba:e9:6d:45:1e:5e:a5:2f:81:ac: e1:1a:a0:4e:81:4c:cf:1c:6e:29:35:3a:cf:53:36: 3d:6a:eb:82:62:81:6d:d6:35:89:2b:41:8f:09:37: 42:01:d5:94:36:e1:b1:ec:97:4e:3c:ac:cc:10:32: aa:76:5a:8f:23:c2:78:26:24:d4:f4:a5:a6:5f:b5: 47:87:1a:bb:78:42:45:42:49:fe:62:f3:52:71:9c: a8:98:4b:41:bb:da:4f:df:87:db:9d:90:c4:e1:d3: 19:0b:a8:1d:e2:55:f2:04:84:ca:ea:46:d7:82:ce: 72:3d:ca:5e:14:a1:ef:bc:42:82:33:73:26:72:8d: 20:23:5a:1a:75:45:32:d6:67:da:31:05:90:f4:28: c3:04:0f:a1:9e:af:ce:c7:88:c9:b5:12:da:43:9e: ad:78:2f:0d:5e:1a:7c:2a:aa:4d:da:0b:49:ba:77: bf:80:66:e2:ff:49:d5:47:cf:6d:b8:b8:bd:bd:4b: 70:04:7d:4e:22:be:72:2a:a4:14:43:e5:62:6c:10: 7e:78:34:7a:f6:8b:f0:73:d4:95:b9:a5:17:bf:cc: bd:bc:7c:3f:40:81:8a:d5:13:75:44:34:51:bd:08: 09:bc:71:80:0d:13:dc:f5:c0:dc:47:31:b3:3e:1b: 9e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:EA:1E:EC:D0:38:C4:E8:63:52:F8:1D:B1:71:76:7A:7A:3E:47:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/887f4922-2c97-4526-af9a-b67399553315.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffa:8000::/40 Signature Algorithm: sha256WithRSAEncryption 21:7c:43:79:40:2d:1f:2b:9a:07:64:bd:d3:37:03:2c:e2:4b: ea:58:ad:04:09:44:e4:37:d5:18:31:4e:53:c5:59:09:b7:39: d0:82:a7:7a:ca:70:1a:5f:e5:36:24:d6:8f:0e:9b:75:56:f5: 2d:aa:f3:4c:5f:c2:5a:a3:dd:ab:f0:44:1f:0d:91:e5:ad:d3: 7b:b7:6d:89:5e:97:7a:2f:9a:f3:e1:91:78:b5:95:37:5b:2e: e5:10:06:a1:3e:76:d7:54:23:12:3c:1a:48:20:52:4b:90:bc: 6f:ea:51:ed:77:b6:38:7b:a5:29:eb:0b:f5:a2:aa:a3:1a:1a: 64:cb:75:a1:96:46:ce:aa:3c:85:fb:07:81:99:f1:e7:49:94: 65:f4:14:b5:ef:7b:76:d7:01:2d:bf:95:93:9f:68:9f:3c:ad: ad:02:fb:c9:29:a7:0b:ac:f7:d7:fb:85:29:05:6d:1f:22:86: 05:cf:0e:ed:29:1f:b1:1a:18:9a:84:47:16:cb:47:51:9c:fb: e3:85:23:8f:55:3c:ad:2a:ba:e4:fc:c6:58:e5:33:49:79:d8: 1d:84:b4:d6:33:52:95:99:0b:a4:fa:71:96:15:6b:df:46:5a: ec:88:a9:dd:b8:5b:e7:1e:d9:b8:ef:f4:a4:0f:67:ad:25:71: c1:56:c2:61 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGiTQjJfQQoMzaY5G+Hpw0pLRQIMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDAyMDEwWhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNGUzNTIxMmZjZmQ3M2RkY2MzOTk5MmVlMGY1YmJiYzI4 ZTFlZjEzYWUyNDQ3ZWU4MGM0NjBkZTA2YWE2N2Q4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPMMaPuultRR5epS+BrOEaoE6BTM8cbik1Os9TNj1q64Ji gW3WNYkrQY8JN0IB1ZQ24bHsl048rMwQMqp2Wo8jwngmJNT0paZftUeHGrt4QkVC Sf5i81JxnKiYS0G72k/fh9udkMTh0xkLqB3iVfIEhMrqRteCznI9yl4Uoe+8QoIz cyZyjSAjWhp1RTLWZ9oxBZD0KMMED6Ger87HiMm1EtpDnq14Lw1eGnwqqk3aC0m6 d7+AZuL/SdVHz224uL29S3AEfU4ivnIqpBRD5WJsEH54NHr2i/Bz1JW5pRe/zL28 fD9AgYrVE3VENFG9CAm8cYANE9z1wNxHMbM+G54TAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU9Ooe7NA4xOhjUvgdsXF2eno+R3cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg4N2Y0OTIyLTJjOTctNDUyNi1hZjlhLWI2NzM5OTU1MzMxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/6gDANBgkqhkiG9w0BAQsFAAOCAQEAIXxDeUAtHyuaB2S90zcDLOJL 6litBAlE5DfVGDFOU8VZCbc50IKnespwGl/lNiTWjw6bdVb1LarzTF/CWqPdq/BE Hw2R5a3Te7dtiV6Xei+a8+GReLWVN1su5RAGoT5211QjEjwaSCBSS5C8b+pR7Xe2 OHulKesL9aKqoxoaZMt1oZZGzqo8hfsHgZnx50mUZfQUte97dtcBLb+Vk59onzyt rQL7ySmnC6z31/uFKQVtHyKGBc8O7SkfsRoYmoRHFstHUZz744Ujj1U8rSq65PzG WOUzSXnYHYS01jNSlZkLpPpxlhVr30Za7Iip3bhb5x7ZuO/0pA9nrSVxwVbCYQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:23:08 2026 by rpki-client