$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9966156b-f417-4a6b-bee2-368635ac93a8.roa File: 9966156b-f417-4a6b-bee2-368635ac93a8.roa (raw, json) Hash identifier: 8W76mcU/Djh9CPHp4FTTVG73E7nWSM6VIGXvPjgMkm4= Subject key identifier: E5:55:27:1D:33:20:32:45:73:8E:E9:E2:B0:A6:CD:05:44:84:2C:A4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C204D8EC482CADBE318BFB3829CD9BC3C0BBD0C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9966156b-f417-4a6b-bee2-368635ac93a8.roa Signing time: Wed 25 Feb 2026 01:31:16 +0000 ROA not before: Wed 25 Feb 2026 01:31:16 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f2f:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:20:4d:8e:c4:82:ca:db:e3:18:bf:b3:82:9c:d9:bc:3c:0b:bd:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:31:16 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=5b51c46fb2a866258374504df9f426db785857b46a25112df42ebef4c7c817a4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:df:68:50:fe:d5:db:35:57:3f:5b:80:7b:29: 05:37:21:14:26:71:4b:98:54:cd:b3:38:c5:44:75: 2a:d1:67:0a:75:f2:70:43:a0:69:b7:ab:98:3a:f1: b1:a4:35:46:66:4e:5f:98:bc:84:fc:82:42:f1:41: 34:11:45:51:38:89:fa:9f:64:6d:3f:7f:8a:e3:e9: 0e:30:32:a2:0e:20:01:61:3d:d6:d6:16:cb:ea:6f: 54:16:08:38:25:02:9f:ed:58:f2:90:06:59:c1:93: af:51:c2:ad:8d:8f:54:81:e1:4a:dd:31:63:87:50: 0b:8c:03:75:02:43:f7:c1:66:7e:79:f0:1b:59:f6: d5:9a:23:4d:5d:0e:4a:65:1b:49:a6:30:6e:a6:c4: 3f:ca:57:a5:c2:0d:2f:70:f5:53:3b:50:36:57:5a: 55:37:3b:f5:a9:e6:d2:29:08:9a:13:fe:fe:a3:21: d8:62:77:12:ac:20:7d:78:29:04:ea:32:a9:e7:bb: a1:fa:4a:c2:f0:d4:00:54:df:fe:70:2c:21:13:e8: 69:e2:55:ed:4b:7b:2c:22:b8:e8:f0:8c:d3:52:99: a3:8d:97:be:9a:64:da:e7:22:d7:cd:d6:6a:1b:fe: 7d:8f:b3:d5:12:81:f4:e9:f5:d7:20:a2:e6:1e:c7: 63:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:55:27:1D:33:20:32:45:73:8E:E9:E2:B0:A6:CD:05:44:84:2C:A4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9966156b-f417-4a6b-bee2-368635ac93a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2f:8000::/36 Signature Algorithm: sha256WithRSAEncryption 78:11:7d:55:1b:f0:2c:bf:37:8b:a4:d3:75:ba:7f:96:66:03: bb:b0:06:de:56:99:e6:91:7e:0c:f3:71:f4:ac:fc:f2:fd:02: 74:2b:f5:42:72:d7:b4:a7:eb:df:4f:02:1d:d9:a7:19:28:db: dd:26:44:48:09:fa:5b:2e:cb:a1:aa:5b:e2:1d:6e:b1:0d:75: f1:9c:e0:95:a5:a7:59:c2:b2:df:a4:1c:8d:ab:b8:61:b0:e0: 09:90:f9:10:60:9c:df:1a:b5:67:0d:6e:db:9f:93:93:5b:a5: e1:61:6a:2e:9f:98:55:b6:79:06:f2:b0:d4:dc:8c:e5:7d:89: c6:cc:ca:ca:02:b7:02:a2:92:c3:8e:83:b2:96:2f:80:89:e6: 9b:8c:de:dd:c3:12:2d:ff:64:1a:89:40:ee:7c:cf:94:77:59: 94:7f:f9:ce:1b:85:1c:36:50:3d:80:bd:ec:80:11:5d:25:47: be:b5:5d:37:f9:8f:77:23:a4:e1:c9:09:02:01:ec:04:ba:3d: a1:7e:e4:09:2e:ad:22:b2:f2:9d:15:8b:eb:08:7a:82:76:c6: aa:89:96:fd:b9:ed:42:12:16:7c:9d:84:30:cd:fb:a0:6c:26: 07:7a:f3:de:12:02:35:e7:6c:32:22:49:93:21:4c:3f:45:b9: ed:89:45:64 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULCBNjsSCytvjGL+zgpzZvDwLvQwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEzMTE2WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YjUxYzQ2ZmIyYTg2NjI1ODM3NDUwNGRmOWY0MjZkYjc4 NTg1N2I0NmEyNTExMmRmNDJlYmVmNGM3YzgxN2E0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC932hQ/tXbNVc/W4B7KQU3IRQmcUuYVM2zOMVEdSrRZwp1 8nBDoGm3q5g68bGkNUZmTl+YvIT8gkLxQTQRRVE4ifqfZG0/f4rj6Q4wMqIOIAFh PdbWFsvqb1QWCDglAp/tWPKQBlnBk69Rwq2Nj1SB4UrdMWOHUAuMA3UCQ/fBZn55 8BtZ9tWaI01dDkplG0mmMG6mxD/KV6XCDS9w9VM7UDZXWlU3O/Wp5tIpCJoT/v6j IdhidxKsIH14KQTqMqnnu6H6SsLw1ABU3/5wLCET6GniVe1LeywiuOjwjNNSmaON l76aZNrnItfN1mob/n2Ps9USgfTp9dcgouYex2O1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5VUnHTMgMkVzjunisKbNBUSELKQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5NjYxNTZiLWY0MTctNGE2Yi1iZWUyLTM2ODYzNWFjOTNhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8vgDANBgkqhkiG9w0BAQsFAAOCAQEAeBF9VRvwLL83i6TTdbp/lmYD u7AG3laZ5pF+DPNx9Kz88v0CdCv1QnLXtKfr308CHdmnGSjb3SZESAn6Wy7Loapb 4h1usQ118ZzglaWnWcKy36Qcjau4YbDgCZD5EGCc3xq1Zw1u25+Tk1ul4WFqLp+Y VbZ5BvKw1NyM5X2JxszKygK3AqKSw46DspYvgInmm4ze3cMSLf9kGolA7nzPlHdZ lH/5zhuFHDZQPYC97IARXSVHvrVdN/mPdyOk4ckJAgHsBLo9oX7kCS6tIrLynRWL 6wh6gnbGqomW/bntQhIWfJ2EMM37oGwmB3rz3hICNedsMiJJkyFMP0W57YlFZA== -----END CERTIFICATE-----Generated at Mon Mar 2 02:13:53 2026 by rpki-client