$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8998c883-9e67-4bcf-a61e-660dce0482d2.roa File: 8998c883-9e67-4bcf-a61e-660dce0482d2.roa (raw, json) Hash identifier: sMdsYQlckGzk/fB2ax5j98xI051HQLIFW1XM7MVrlQU= Subject key identifier: BC:EC:12:1A:83:07:7C:E3:3C:3D:98:AF:8E:D9:89:ED:19:8A:C5:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BB03CEE9BEF549E9347298C2EE6220661FA2B59 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8998c883-9e67-4bcf-a61e-660dce0482d2.roa Signing time: Wed 25 Feb 2026 02:10:07 +0000 ROA not before: Wed 25 Feb 2026 02:10:07 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:b0:3c:ee:9b:ef:54:9e:93:47:29:8c:2e:e6:22:06:61:fa:2b:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:10:07 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=c928e6c73a4b7fd24d15de2e0978094acf842cad76c9980648f167aa13b1f262, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fe:cd:4a:3a:0d:95:ec:2e:90:e0:ae:50:81: eb:0b:da:80:e4:5f:69:37:94:ab:ca:43:d7:60:ad: c2:b2:55:a1:02:1f:f1:a1:d2:e6:e9:93:b5:12:cd: b5:3c:86:eb:5a:7f:11:1b:93:a5:ad:d7:06:c8:28: 8d:85:30:38:fd:10:b8:b9:7f:d3:94:00:58:14:c5: 05:71:a5:8e:c8:5e:18:49:77:2f:93:0b:3f:95:66: 32:af:82:28:73:a1:ce:9b:d1:c8:92:6a:5e:6c:40: 36:ee:b8:b7:16:bf:76:bf:94:c9:00:89:ed:9e:d0: 12:19:2d:ce:52:ed:a6:c8:b1:33:87:53:4e:47:de: 7e:34:11:27:d3:a9:78:28:4a:dd:46:5d:a7:a9:fc: 5d:39:0d:4f:7a:5a:14:71:61:95:9f:67:d6:00:5b: 7c:cb:5b:3d:86:9a:20:32:e0:70:5e:ec:59:9c:ba: 7f:d3:6a:32:62:e6:95:07:5f:23:ef:0d:1a:63:d9: 71:3f:75:fd:55:8b:fd:0d:55:5f:83:4e:1e:35:fa: 55:d7:4c:84:06:e9:0a:ad:1e:b2:f3:8a:2f:2e:d9: d5:42:19:57:86:3e:12:5e:56:61:4d:84:93:00:e0: ff:b3:2f:67:51:6b:c5:c9:d0:e7:aa:11:3c:7d:51: ed:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:EC:12:1A:83:07:7C:E3:3C:3D:98:AF:8E:D9:89:ED:19:8A:C5:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8998c883-9e67-4bcf-a61e-660dce0482d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:e040::/48 Signature Algorithm: sha256WithRSAEncryption 80:2a:e2:e7:7d:8d:ed:80:84:45:0d:f8:a9:f6:44:38:33:a9: 79:a7:99:a1:78:43:76:d5:02:4f:5e:45:53:48:8c:41:4d:f1: 11:6c:27:4f:2e:65:4d:7a:f0:5a:a8:ba:bf:30:c5:a3:53:29: 06:03:6b:62:bd:fc:f0:fa:fd:86:b6:60:01:8e:86:a6:b8:75: 2c:aa:03:f7:b9:6c:ac:2b:9e:76:33:95:64:c4:56:ca:8b:28: d2:38:a9:2c:df:46:d5:52:bf:dd:c1:86:e6:fb:97:5b:b0:5b: 2a:81:c0:ef:e6:6b:54:d9:ff:7d:12:fc:ed:ee:33:c6:42:81: 26:b2:4e:2d:b7:ec:f5:79:46:3c:df:71:40:3d:68:53:5d:96: ff:1e:a5:59:ba:c4:dd:b9:ec:d4:1f:e4:81:6f:15:85:8d:d8: 39:17:0d:35:fb:21:57:56:0c:9d:50:e7:9d:67:30:d8:b9:8e: 0e:05:4a:19:8d:d4:72:41:73:3d:63:e3:cd:50:5d:b8:33:53: 10:54:2f:64:15:38:95:74:08:80:e2:c4:01:ac:1c:6a:6a:c4: fa:3c:83:a7:b1:37:39:8f:35:bd:38:e5:99:14:b8:14:a1:be: f4:3f:ab:fc:c2:91:d6:41:71:15:31:25:c6:63:ae:30:26:ca: bc:31:3e:2d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUa7A87pvvVJ6TRymMLuYiBmH6K1kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDIxMDA3WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTI4ZTZjNzNhNGI3ZmQyNGQxNWRlMmUwOTc4MDk0YWNm ODQyY2FkNzZjOTk4MDY0OGYxNjdhYTEzYjFmMjYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw/s1KOg2V7C6Q4K5QgesL2oDkX2k3lKvKQ9dgrcKyVaEC H/Gh0ubpk7USzbU8hutafxEbk6Wt1wbIKI2FMDj9ELi5f9OUAFgUxQVxpY7IXhhJ dy+TCz+VZjKvgihzoc6b0ciSal5sQDbuuLcWv3a/lMkAie2e0BIZLc5S7abIsTOH U05H3n40ESfTqXgoSt1GXaep/F05DU96WhRxYZWfZ9YAW3zLWz2GmiAy4HBe7Fmc un/TajJi5pUHXyPvDRpj2XE/df1Vi/0NVV+DTh41+lXXTIQG6QqtHrLzii8u2dVC GVeGPhJeVmFNhJMA4P+zL2dRa8XJ0OeqETx9Ue1RAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvOwSGoMHfOM8PZivjtmJ7RmKxWswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg5OThjODgzLTllNjctNGJjZi1hNjFlLTY2MGRjZTA0ODJkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9h4EAwDQYJKoZIhvcNAQELBQADggEBAIAq4ud9je2AhEUN+Kn2RDgz qXmnmaF4Q3bVAk9eRVNIjEFN8RFsJ08uZU168Fqour8wxaNTKQYDa2K9/PD6/Ya2 YAGOhqa4dSyqA/e5bKwrnnYzlWTEVsqLKNI4qSzfRtVSv93Bhub7l1uwWyqBwO/m a1TZ/30S/O3uM8ZCgSayTi237PV5RjzfcUA9aFNdlv8epVm6xN257NQf5IFvFYWN 2DkXDTX7IVdWDJ1Q551nMNi5jg4FShmN1HJBcz1j481QXbgzUxBUL2QVOJV0CIDi xAGsHGpqxPo8g6exNzmPNb045ZkUuBShvvQ/q/zCkdZBcRUxJcZjrjAmyrwxPi0= -----END CERTIFICATE-----Generated at Mon Mar 2 01:57:07 2026 by rpki-client