$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8deca516-c67b-4523-82b9-8879e3207343.roa File: 8deca516-c67b-4523-82b9-8879e3207343.roa (raw, json) Hash identifier: wFw0Oksa+7sKTaHLtc2M+pdJtG3y25FH+jm7dosZIdc= Subject key identifier: 5D:04:3F:9D:98:FC:1F:B5:67:A8:1C:94:E3:59:1D:E8:71:F4:E5:8B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0217D671E7B67097384F7920E982C120CAC457E5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8deca516-c67b-4523-82b9-8879e3207343.roa Signing time: Wed 11 Feb 2026 00:50:43 +0000 ROA not before: Wed 11 Feb 2026 00:50:43 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fea:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:17:d6:71:e7:b6:70:97:38:4f:79:20:e9:82:c1:20:ca:c4:57:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 11 00:50:43 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=188dbd7e6c678d45dba99c48399d07d7c23b65184197a5adffb12b596914b2fe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:90:78:87:89:58:92:a0:a7:db:15:90:86:7b: 04:7f:36:b3:46:ff:08:c1:27:8d:d9:e5:77:96:71: cb:7a:c9:da:c2:ce:49:39:36:46:8c:26:30:1d:5c: 81:32:d4:d5:0f:d5:1e:ba:c0:a5:2e:f0:a5:95:e0: 73:73:ff:dd:8a:89:42:64:82:c9:c6:e8:f7:e6:dd: 6b:5b:29:36:8a:f5:2d:a1:af:a7:19:a0:8d:6a:2c: cc:58:f3:0a:02:d5:0d:78:90:05:11:4a:e1:47:1c: 35:b5:1f:20:6e:c8:75:64:40:ab:05:75:24:ee:be: ce:ac:04:e0:7e:c7:43:2e:8f:4d:1a:7e:91:f1:db: b4:47:0e:c6:54:19:09:26:a1:e8:56:f3:86:4c:12: e0:72:d0:ef:2d:9c:22:18:e8:c1:8b:1c:1a:01:ff: 73:bd:ee:f5:26:e7:92:9b:13:a8:44:4d:43:47:ab: 96:d1:d8:58:0c:79:dc:46:38:e7:74:21:77:4c:55: 8b:e8:0d:dd:13:b9:69:aa:a3:06:b0:e9:3f:3c:b1: 5a:72:d6:81:24:6a:f2:43:90:0c:35:68:98:c3:34: 63:c6:80:65:65:f7:66:0f:9a:72:01:73:af:0f:8f: df:cc:95:20:b5:02:c0:29:af:44:18:ff:9c:45:53: a2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:04:3F:9D:98:FC:1F:B5:67:A8:1C:94:E3:59:1D:E8:71:F4:E5:8B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8deca516-c67b-4523-82b9-8879e3207343.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fea:2040::/48 Signature Algorithm: sha256WithRSAEncryption 83:30:fb:af:33:5b:00:67:14:a4:b0:a7:b9:b1:a6:52:da:89: fd:40:1d:bd:89:24:6c:7e:5b:c1:3a:8d:58:90:5d:ba:f9:75: 5a:73:d3:66:62:8d:65:58:50:6b:30:19:57:ec:cc:41:c3:c4: d7:af:e8:13:6e:2b:06:e9:f2:9c:b8:4a:e2:8a:cb:9c:f8:03: 50:50:ec:c4:cc:f4:7e:26:29:fd:6f:b0:df:3f:19:a4:cc:98: 26:40:a5:0c:f7:45:4b:ad:78:5b:e9:76:01:4c:67:c6:48:21: 11:d0:0c:28:93:26:4c:c0:fa:0d:f0:2a:90:e6:c9:24:d5:2f: 77:9f:5e:e3:3b:08:3a:3c:82:72:d3:6f:eb:97:ac:a0:4c:21: c3:75:f3:f8:b4:e4:86:b6:a9:a6:aa:55:4d:42:f3:35:f9:60: f0:48:1d:7c:1f:e7:13:0b:20:2f:59:c8:fb:7d:2d:fc:43:60: fc:a4:15:c3:cc:a0:ac:25:b8:11:7f:df:b7:6b:58:05:2b:1d: af:f5:13:48:8a:49:12:34:22:80:03:5a:e0:0e:9b:b0:69:20: fd:7e:e7:25:ca:b4:34:0e:27:dc:76:ae:ae:4a:ff:f5:23:13: 2a:8b:f1:69:d0:2e:93:27:e7:f0:1e:46:63:57:2f:34:e6:17: 73:85:06:93 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAhfWcee2cJc4T3kg6YLBIMrEV+UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjExMDA1MDQzWhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxODhkYmQ3ZTZjNjc4ZDQ1ZGJhOTljNDgzOTlkMDdkN2My M2I2NTE4NDE5N2E1YWRmZmIxMmI1OTY5MTRiMmZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0kHiHiViSoKfbFZCGewR/NrNG/wjBJ43Z5XeWcct6ydrC zkk5NkaMJjAdXIEy1NUP1R66wKUu8KWV4HNz/92KiUJkgsnG6Pfm3WtbKTaK9S2h r6cZoI1qLMxY8woC1Q14kAURSuFHHDW1HyBuyHVkQKsFdSTuvs6sBOB+x0Muj00a fpHx27RHDsZUGQkmoehW84ZMEuBy0O8tnCIY6MGLHBoB/3O97vUm55KbE6hETUNH q5bR2FgMedxGOOd0IXdMVYvoDd0TuWmqowaw6T88sVpy1oEkavJDkAw1aJjDNGPG gGVl92YPmnIBc68Pj9/MlSC1AsApr0QY/5xFU6KLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXQQ/nZj8H7VnqByU41kd6HH05YswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkZWNhNTE2LWM2N2ItNDUyMy04MmI5LTg4NzllMzIwNzM0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/qIEAwDQYJKoZIhvcNAQELBQADggEBAIMw+68zWwBnFKSwp7mxplLa if1AHb2JJGx+W8E6jViQXbr5dVpz02ZijWVYUGswGVfszEHDxNev6BNuKwbp8py4 SuKKy5z4A1BQ7MTM9H4mKf1vsN8/GaTMmCZApQz3RUuteFvpdgFMZ8ZIIRHQDCiT JkzA+g3wKpDmySTVL3efXuM7CDo8gnLTb+uXrKBMIcN18/i05Ia2qaaqVU1C8zX5 YPBIHXwf5xMLIC9ZyPt9LfxDYPykFcPMoKwluBF/37drWAUrHa/1E0iKSRI0IoAD WuAOm7BpIP1+5yXKtDQOJ9x2rq5K//UjEyqL8WnQLpMn5/AeRmNXLzTmF3OFBpM= -----END CERTIFICATE-----Generated at Mon Mar 2 00:14:53 2026 by rpki-client