$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/895c8025-23be-48f6-aa0d-8f761b1c5bb1.roa File: 895c8025-23be-48f6-aa0d-8f761b1c5bb1.roa (raw, json) Hash identifier: M5aF3B1gWsMudCgrPIz2wWA2o6sK+8MrBjP4NYwolhA= Subject key identifier: FA:E7:4A:FD:73:51:DA:0A:D9:B3:B1:35:94:39:F3:4D:5C:69:DD:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 162859E44CB50435CE598713CF1EDDFE71B74799 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/895c8025-23be-48f6-aa0d-8f761b1c5bb1.roa Signing time: Tue 10 Feb 2026 00:31:38 +0000 ROA not before: Tue 10 Feb 2026 00:31:38 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8508::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:28:59:e4:4c:b5:04:35:ce:59:87:13:cf:1e:dd:fe:71:b7:47:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:31:38 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=71d56a36f91441dfe2f26605de689df8a7f588a9046da06053741fcf41fa1999, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a7:6f:f1:bb:36:3f:b2:c3:a1:c9:fc:cc:69: 50:ab:37:58:fb:25:6e:0d:0a:94:01:00:ee:d8:9d: a0:9c:5c:06:44:6c:8f:65:3f:97:c3:e9:09:c1:c1: f4:35:c4:c2:0e:e0:e0:d5:5f:4a:0d:49:8f:33:78: 1e:e7:0d:88:56:1a:25:f5:b2:34:ec:bb:d3:d0:b5: 68:01:37:a8:6d:85:6d:a5:ac:8c:a0:64:f3:42:9b: 22:83:b2:1c:98:d3:fb:62:b9:96:d9:68:b0:a0:99: 44:1b:fe:3d:26:7a:e7:4f:20:aa:a3:4f:6d:af:9b: 9d:7c:79:c8:5b:5e:a4:83:e8:6e:07:0a:8b:87:d1: a7:79:24:b5:8e:84:d0:11:fc:35:43:b2:e6:63:38: ec:e1:7e:74:f0:4f:99:17:de:66:d5:97:89:a8:9f: 9f:d0:0b:83:73:bf:08:18:09:91:0d:59:84:62:dd: 02:c4:0c:24:6b:7d:58:04:8f:0d:69:ea:1c:03:60: ff:c5:ab:4d:09:8c:45:8c:a4:d7:dd:19:f6:93:58: 4a:12:ae:7c:74:3c:6e:93:6c:c0:bc:a0:01:a6:ec: 0e:c6:36:4b:29:9f:30:cb:01:a2:1a:82:78:f6:ad: 38:6d:e3:b3:6c:fa:53:78:b4:4e:67:2c:f5:a4:a8: 9b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:E7:4A:FD:73:51:DA:0A:D9:B3:B1:35:94:39:F3:4D:5C:69:DD:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/895c8025-23be-48f6-aa0d-8f761b1c5bb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8508::/48 Signature Algorithm: sha256WithRSAEncryption 0e:69:9f:31:54:df:fa:bd:08:eb:e4:e5:1f:34:e0:b1:1a:35: aa:40:da:61:c5:7d:4f:d3:bc:c1:69:be:ac:87:8f:90:d7:f2: 21:5c:dc:ca:62:97:2b:68:83:b6:d9:0a:a9:13:b2:dc:f6:08: 58:43:ae:0a:fd:68:7c:ac:c8:3f:f7:65:15:7b:75:97:9d:8c: 31:8e:e1:e0:f4:81:c2:5c:8e:53:71:3e:2a:2f:17:62:bd:f4: 5b:8e:1c:77:d9:0d:a1:d7:1f:ea:04:23:18:3f:8c:74:0b:8a: 28:fa:ef:ef:f1:d4:b5:4a:5c:c2:e1:64:93:70:1e:df:08:e5: 73:9e:d7:bf:7a:59:22:22:16:bf:d1:b7:0d:33:72:74:56:0b: b2:5e:17:f9:77:b2:23:80:ee:0f:5b:f6:52:c7:89:6d:f2:3b: 6b:92:f5:03:f1:db:ae:e5:16:d4:47:e4:8c:38:21:27:e0:d3: ee:92:ab:3a:c7:d8:9d:61:ba:51:4f:19:08:b7:c8:a7:f9:3c: 55:85:f2:9e:88:93:40:2e:18:67:1c:23:a5:0f:af:aa:ad:74: 1f:6f:a2:90:f4:ba:af:c5:de:75:49:d9:df:c7:ff:f8:88:6b: 75:b5:c2:0e:73:a6:29:13:bc:b1:d1:1c:17:b9:62:26:6c:48: 9a:a6:43:58 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFihZ5Ey1BDXOWYcTzx7d/nG3R5kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDAzMTM4WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWQ1NmEzNmY5MTQ0MWRmZTJmMjY2MDVkZTY4OWRmOGE3 ZjU4OGE5MDQ2ZGEwNjA1Mzc0MWZjZjQxZmExOTk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCup2/xuzY/ssOhyfzMaVCrN1j7JW4NCpQBAO7YnaCcXAZE bI9lP5fD6QnBwfQ1xMIO4ODVX0oNSY8zeB7nDYhWGiX1sjTsu9PQtWgBN6hthW2l rIygZPNCmyKDshyY0/tiuZbZaLCgmUQb/j0meudPIKqjT22vm518echbXqSD6G4H CouH0ad5JLWOhNAR/DVDsuZjOOzhfnTwT5kX3mbVl4mon5/QC4NzvwgYCZENWYRi 3QLEDCRrfVgEjw1p6hwDYP/Fq00JjEWMpNfdGfaTWEoSrnx0PG6TbMC8oAGm7A7G NkspnzDLAaIagnj2rTht47Ns+lN4tE5nLPWkqJsdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+udK/XNR2grZs7E1lDnzTVxp3RgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg5NWM4MDI1LTIzYmUtNDhmNi1hYTBkLThmNzYxYjFjNWJiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9hQgwDQYJKoZIhvcNAQELBQADggEBAA5pnzFU3/q9COvk5R804LEa NapA2mHFfU/TvMFpvqyHj5DX8iFc3Mpilytog7bZCqkTstz2CFhDrgr9aHysyD/3 ZRV7dZedjDGO4eD0gcJcjlNxPiovF2K99FuOHHfZDaHXH+oEIxg/jHQLiij67+/x 1LVKXMLhZJNwHt8I5XOe1796WSIiFr/Rtw0zcnRWC7JeF/l3siOA7g9b9lLHiW3y O2uS9QPx267lFtRH5Iw4ISfg0+6SqzrH2J1hulFPGQi3yKf5PFWF8p6Ik0AuGGcc I6UPr6qtdB9vopD0uq/F3nVJ2d/H//iIa3W1wg5zpikTvLHRHBe5YiZsSJqmQ1g= -----END CERTIFICATE-----Generated at Mon Mar 2 03:51:41 2026 by rpki-client