$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94209e4d-7b05-4729-b164-804591eea8be.roa File: 94209e4d-7b05-4729-b164-804591eea8be.roa (raw, json) Hash identifier: PGhCaNe66frvNbDuQVRjhN6UAIVNEmLLz2RxLs74+5k= Subject key identifier: 44:9A:CE:51:14:F9:32:51:E2:D8:25:6A:23:7C:F1:48:FB:75:88:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C23B51052B38E18E66D79356E48FAC590082EE5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94209e4d-7b05-4729-b164-804591eea8be.roa Signing time: Wed 25 Feb 2026 00:30:15 +0000 ROA not before: Wed 25 Feb 2026 00:30:15 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb8:3400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:23:b5:10:52:b3:8e:18:e6:6d:79:35:6e:48:fa:c5:90:08:2e:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:30:15 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=4bae30c0d197e869c38e0611801e9afe25dd8de9ba0467c7910fa6e489e56ce6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e3:74:74:18:19:81:8c:b0:87:70:6c:af:7b: 7b:58:6c:22:3a:8c:c4:eb:55:c8:38:6b:ba:3d:89: 09:a4:77:32:47:f7:9c:81:11:1e:29:d2:b7:82:97: ef:b7:81:a9:7d:cd:ac:5d:6f:a3:79:c1:84:74:27: 4b:9f:69:c4:0d:14:cf:0c:7f:f8:71:95:33:ef:e1: 77:0f:10:3f:d8:1a:6e:5c:17:96:90:b6:b2:f1:bd: 11:d1:ab:d1:51:b1:59:1c:a8:33:a6:e2:f7:18:f9: 26:fb:7b:28:03:2a:d3:5c:91:8e:73:7f:73:ab:ad: 52:5c:71:ec:96:ee:71:e9:41:62:92:11:41:c1:e3: c4:d3:62:c1:b4:44:29:5a:98:94:68:e4:5f:66:b7: b2:d7:da:da:7c:a0:b5:73:47:dd:78:00:8f:23:62: c2:f5:41:ec:6d:76:79:9e:40:c5:8c:fe:a6:58:39: d1:e2:2b:d0:d2:4d:98:37:25:cd:3b:28:8c:93:bb: 25:c4:48:73:73:f0:9e:5a:6c:91:56:d6:e0:8e:fa: 29:96:be:3d:3e:1f:c9:62:f2:b7:8e:2b:bc:6d:d5: 84:08:89:ae:0b:37:21:60:0e:c9:2f:42:3b:b8:4f: b8:38:60:01:06:58:7d:45:35:b7:49:b7:9a:a8:64: 2d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:9A:CE:51:14:F9:32:51:E2:D8:25:6A:23:7C:F1:48:FB:75:88:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94209e4d-7b05-4729-b164-804591eea8be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:3400::/40 Signature Algorithm: sha256WithRSAEncryption 45:5c:6b:30:de:86:5d:06:d2:82:02:90:4d:65:46:8d:af:c7: 01:6f:6d:73:b8:a6:21:a3:45:16:5a:d4:0f:35:47:98:3f:6e: cd:dc:48:6a:8b:0d:aa:ec:85:ab:57:e1:21:4f:f8:da:9b:dc: 31:59:94:46:0b:1c:f8:49:dd:2c:67:15:86:9a:89:be:2c:ff: 4e:ec:1a:1d:75:58:71:ce:60:ec:60:a7:30:80:cf:33:27:4e: 92:da:ec:dc:ad:25:80:5c:36:39:a5:0d:f1:3d:af:a9:15:03: c0:95:d5:80:3d:be:80:e5:01:b1:89:de:bb:c9:0d:b6:0d:05: 9a:49:1f:7c:ee:84:91:2e:75:87:a8:60:9a:fe:1c:4a:3d:9d: 71:06:ce:cb:c5:fd:71:fb:e6:4c:b0:3e:eb:3c:1b:a0:fd:1c: 2b:af:4b:cb:01:fe:f0:12:02:6d:71:0d:de:53:fd:f3:8e:d4: 9b:3c:c2:c3:42:91:d8:34:72:0f:37:b2:98:00:31:41:64:31: 1d:bc:79:81:36:55:47:54:44:63:7d:b5:cd:ca:ae:50:4c:b0: da:a8:5a:ed:60:a8:f8:c6:87:4b:8b:63:c1:d9:a1:18:16:d4: c5:8d:87:81:7b:f0:ba:68:3f:bd:77:19:0a:47:83:c0:f3:60: 5e:16:88:e9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPCO1EFKzjhjmbXk1bkj6xZAILuUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAzMDE1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YmFlMzBjMGQxOTdlODY5YzM4ZTA2MTE4MDFlOWFmZTI1 ZGQ4ZGU5YmEwNDY3Yzc5MTBmYTZlNDg5ZTU2Y2U2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDW43R0GBmBjLCHcGyve3tYbCI6jMTrVcg4a7o9iQmkdzJH 95yBER4p0reCl++3gal9zaxdb6N5wYR0J0ufacQNFM8Mf/hxlTPv4XcPED/YGm5c F5aQtrLxvRHRq9FRsVkcqDOm4vcY+Sb7eygDKtNckY5zf3OrrVJcceyW7nHpQWKS EUHB48TTYsG0RClamJRo5F9mt7LX2tp8oLVzR914AI8jYsL1QextdnmeQMWM/qZY OdHiK9DSTZg3Jc07KIyTuyXESHNz8J5abJFW1uCO+imWvj0+H8li8reOK7xt1YQI ia4LNyFgDskvQju4T7g4YAEGWH1FNbdJt5qoZC0FAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURJrOURT5MlHi2CVqI3zxSPt1iDIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0MjA5ZTRkLTdiMDUtNDcyOS1iMTY0LTgwNDU5MWVlYThiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+4NDANBgkqhkiG9w0BAQsFAAOCAQEARVxrMN6GXQbSggKQTWVGja/H AW9tc7imIaNFFlrUDzVHmD9uzdxIaosNquyFq1fhIU/42pvcMVmURgsc+EndLGcV hpqJviz/TuwaHXVYcc5g7GCnMIDPMydOktrs3K0lgFw2OaUN8T2vqRUDwJXVgD2+ gOUBsYneu8kNtg0FmkkffO6EkS51h6hgmv4cSj2dcQbOy8X9cfvmTLA+6zwboP0c K69LywH+8BICbXEN3lP9847UmzzCw0KR2DRyDzeymAAxQWQxHbx5gTZVR1REY321 zcquUEyw2qha7WCo+MaHS4tjwdmhGBbUxY2HgXvwumg/vXcZCkeDwPNgXhaI6Q== -----END CERTIFICATE-----Generated at Mon Mar 2 03:07:39 2026 by rpki-client