$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b48c916-3858-4b00-8e15-9c902a1cc973.roa File: 9b48c916-3858-4b00-8e15-9c902a1cc973.roa (raw, json) Hash identifier: cMtPdfQ2cvMlD3o1REHKWv5OdTGcD4aYhLKGrr84goc= Subject key identifier: BC:70:C8:C0:78:4A:D3:38:EC:32:82:8B:38:DE:A1:0B:59:E3:41:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38846DD5DE2A036B63A5CA5D169A1A85E5E17063 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b48c916-3858-4b00-8e15-9c902a1cc973.roa Signing time: Tue 24 Feb 2026 02:01:23 +0000 ROA not before: Tue 24 Feb 2026 02:01:23 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:6080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:84:6d:d5:de:2a:03:6b:63:a5:ca:5d:16:9a:1a:85:e5:e1:70:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:01:23 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=abeb48d5dab73acb4e899c9531f21e8a36a5b90956384ec7e14db3d6b2333de2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:94:14:aa:21:73:1c:e1:eb:4e:a3:1e:79:15: 39:dd:4c:eb:b0:7e:e8:0c:1e:fa:f5:62:af:da:66: ab:0a:b3:25:ee:f3:35:1e:57:84:e8:2d:ff:d2:b4: bb:80:c0:d0:a3:39:e4:f3:a7:63:26:1f:73:27:0b: 87:8f:02:4a:52:56:e2:fe:35:48:c5:5f:ed:e8:51: 05:1e:4a:8e:f0:e5:bb:ae:ca:ec:94:ba:6d:f4:33: 56:44:60:a5:e5:15:47:52:10:67:44:ed:30:31:4d: 72:f2:be:42:be:95:9e:88:8d:c0:61:1b:09:cc:ca: bb:bd:e6:69:7d:b3:87:a6:c8:92:4c:44:4e:7c:fb: 5f:ef:62:37:54:cf:d7:a8:43:7f:15:23:31:15:15: c1:dd:86:e9:b6:73:f0:f2:f9:3e:28:89:73:53:94: af:93:cd:2a:85:2f:45:10:79:a9:30:ed:16:e0:40: 1d:45:8c:30:a4:de:c2:e6:f8:10:4d:a5:d5:af:75: 5a:5a:ed:99:92:22:73:2f:47:14:dc:34:76:58:b1: 2f:c5:b3:11:59:8f:1d:e1:0f:15:5f:a5:b2:cb:8b: a8:4b:83:e0:e1:47:51:21:cc:76:0a:60:46:88:0b: 7f:98:38:8f:2f:ab:22:f8:a9:83:d9:3c:4a:8c:e1: 01:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:70:C8:C0:78:4A:D3:38:EC:32:82:8B:38:DE:A1:0B:59:E3:41:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b48c916-3858-4b00-8e15-9c902a1cc973.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:6080::/48 Signature Algorithm: sha256WithRSAEncryption 32:23:94:ea:58:49:16:a6:a6:c8:22:ca:75:6d:12:91:59:91: e4:03:0d:33:d2:78:82:83:89:4f:40:3c:90:4c:65:0b:3f:f2: ce:d7:46:25:31:a5:e3:77:f1:87:49:bf:a2:1d:b4:c8:95:fe: dd:ba:9a:11:ef:4b:a4:cf:a4:ff:45:b9:13:e3:e0:2b:19:1f: 08:17:81:07:04:eb:58:4d:4f:92:21:83:14:c8:dd:58:df:53: d2:a9:6e:73:a0:90:62:0a:9c:f7:12:9d:82:cc:34:e0:6f:80: 9f:b0:de:88:79:de:90:76:b2:b6:b6:ba:fb:6e:4a:9a:cf:de: 30:e1:24:e5:dc:ba:7e:3e:a3:13:2d:2d:04:05:e6:ed:88:6b: 68:c1:7a:ba:11:8c:db:5c:fb:2e:fb:91:b1:39:4f:e5:21:33: ad:db:99:8d:b7:00:fc:47:3a:95:39:e8:e4:d0:43:7a:a1:69: 0e:aa:5f:89:c5:7b:af:33:11:04:fb:58:ef:58:3a:97:3c:fe: b3:86:68:77:6a:fc:51:c6:3f:47:e3:71:9a:f2:07:ab:de:01: f5:d9:4a:ba:fc:a5:d9:e8:08:ee:41:bd:a8:4e:6f:3b:a9:5f: 48:22:f6:85:dd:5f:2b:74:30:09:e1:dd:05:02:7a:a3:e9:62: 2a:c3:00:54 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOIRt1d4qA2tjpcpdFpoaheXhcGMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIwMTIzWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYmViNDhkNWRhYjczYWNiNGU4OTljOTUzMWYyMWU4YTM2 YTViOTA5NTYzODRlYzdlMTRkYjNkNmIyMzMzZGUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDglBSqIXMc4etOox55FTndTOuwfugMHvr1Yq/aZqsKsyXu 8zUeV4ToLf/StLuAwNCjOeTzp2MmH3MnC4ePAkpSVuL+NUjFX+3oUQUeSo7w5buu yuyUum30M1ZEYKXlFUdSEGdE7TAxTXLyvkK+lZ6IjcBhGwnMyru95ml9s4emyJJM RE58+1/vYjdUz9eoQ38VIzEVFcHdhum2c/Dy+T4oiXNTlK+TzSqFL0UQeakw7Rbg QB1FjDCk3sLm+BBNpdWvdVpa7ZmSInMvRxTcNHZYsS/FsxFZjx3hDxVfpbLLi6hL g+DhR1EhzHYKYEaIC3+YOI8vqyL4qYPZPEqM4QFFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvHDIwHhK0zjsMoKLON6hC1njQcAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzliNDhjOTE2LTM4NTgtNGIwMC04ZTE1LTljOTAyYTFjYzk3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hYIAwDQYJKoZIhvcNAQELBQADggEBADIjlOpYSRampsgiynVtEpFZ keQDDTPSeIKDiU9APJBMZQs/8s7XRiUxpeN38YdJv6IdtMiV/t26mhHvS6TPpP9F uRPj4CsZHwgXgQcE61hNT5IhgxTI3VjfU9KpbnOgkGIKnPcSnYLMNOBvgJ+w3oh5 3pB2sra2uvtuSprP3jDhJOXcun4+oxMtLQQF5u2Ia2jBeroRjNtc+y77kbE5T+Uh M63bmY23APxHOpU56OTQQ3qhaQ6qX4nFe68zEQT7WO9YOpc8/rOGaHdq/FHGP0fj cZryB6veAfXZSrr8pdnoCO5BvahObzupX0gi9oXdXyt0MAnh3QUCeqPpYirDAFQ= -----END CERTIFICATE-----Generated at Sun Mar 1 22:31:33 2026 by rpki-client