$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d94a7aa-9505-4db3-925e-cf3f285b296b.roa File: 9d94a7aa-9505-4db3-925e-cf3f285b296b.roa (raw, json) Hash identifier: UY70U5fJ0u0zNozty586+i9aaJImkYeAgIPClWcbZ1M= Subject key identifier: B3:52:45:0E:93:C5:EB:EE:0A:4D:16:96:F1:B9:FC:A5:AF:9C:ED:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42844698CB91545CE4744265BA606D6FDB345720 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d94a7aa-9505-4db3-925e-cf3f285b296b.roa Signing time: Wed 25 Feb 2026 01:40:35 +0000 ROA not before: Wed 25 Feb 2026 01:40:35 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f10:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:84:46:98:cb:91:54:5c:e4:74:42:65:ba:60:6d:6f:db:34:57:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:40:35 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=ec636abea10403799400b05f51e5fd37eb50ca4d99e6e7524fbfc14ea93dbc19, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7c:11:72:54:22:4d:96:1e:a0:a6:47:08:7a: 9d:70:44:81:74:52:2d:52:34:0b:75:0f:bf:f7:11: c4:3e:37:41:41:35:26:0c:3f:a7:91:c7:58:e0:b5: 95:12:35:38:16:41:2c:38:e0:bd:a4:5e:84:fe:77: ef:45:13:d8:70:0d:de:27:22:97:19:f8:50:dc:dc: fe:24:0a:39:ce:fb:ab:0e:43:73:6e:9d:4f:78:69: 59:b9:51:78:75:b3:40:79:fc:02:8b:91:db:1b:61: 45:0b:6e:af:dd:25:fb:d8:32:c0:2b:00:21:9a:ee: 03:47:38:6f:19:09:1b:8c:11:fe:13:7b:bc:aa:95: 40:61:70:b1:0f:bf:95:2c:1c:9c:91:1f:73:5f:78: f0:ca:65:08:42:1b:f7:f0:04:10:d9:c6:ae:e4:27: ac:7e:d7:27:94:b5:96:ef:47:dd:d9:c0:8f:63:b7: 01:d0:fa:85:2f:f5:f4:09:e1:c0:65:17:22:3c:df: 6a:67:be:6d:e5:ba:0f:ac:5a:df:e5:13:65:4f:5d: 60:db:64:73:05:3b:a4:47:8a:21:3a:9a:5e:37:8e: 0c:68:03:84:36:50:60:04:3d:a3:02:7e:f6:47:41: 0e:f5:9a:6f:52:d7:5a:3c:73:3d:4d:db:ef:a3:93: ab:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:52:45:0E:93:C5:EB:EE:0A:4D:16:96:F1:B9:FC:A5:AF:9C:ED:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d94a7aa-9505-4db3-925e-cf3f285b296b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f10:8000::/36 Signature Algorithm: sha256WithRSAEncryption 0a:4f:5b:46:9a:02:04:de:45:53:2e:e2:cb:ea:e1:78:31:65: 12:50:1b:a5:f7:c7:d5:ba:f6:23:38:66:ea:1a:ca:9f:85:84: 7d:6c:3a:27:ed:1e:f2:db:f8:d9:89:0d:82:5c:06:b3:d1:36: 2c:52:90:64:1d:d1:83:b1:69:e9:36:b1:50:f3:dd:34:ac:53: ab:4f:b6:17:2a:8a:97:c7:f7:39:36:7d:e6:50:45:23:e6:02: b9:f0:2d:53:b6:19:51:34:bc:ab:74:12:77:cb:41:97:1c:2d: 5b:2a:17:cf:b9:73:db:58:5c:fe:03:d4:8e:34:be:d0:8e:d8: f0:51:43:da:0a:ce:59:58:c8:b0:1a:11:65:a1:89:2a:0a:9c: 08:89:5d:1e:63:d6:04:e1:8a:fc:cc:12:0f:0c:04:10:af:7e: a1:e9:1f:0b:41:1d:4e:d5:a0:00:26:1b:b3:f0:46:54:26:ba: a3:c3:39:4a:21:df:db:be:89:04:f2:40:b9:3f:ff:69:a4:a7: 6a:24:7e:11:15:9f:9f:23:e5:ac:72:6f:c5:91:01:0a:d1:97: 0c:7f:26:33:d5:84:27:a7:ab:b8:ec:8a:37:da:5c:f7:ef:1a: 6d:17:e9:b2:8d:76:d1:24:f5:59:3e:51:65:b0:39:54:eb:84: ed:4d:68:aa -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQoRGmMuRVFzkdEJlumBtb9s0VyAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDE0MDM1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzYzNmFiZWExMDQwMzc5OTQwMGIwNWY1MWU1ZmQzN2Vi NTBjYTRkOTllNmU3NTI0ZmJmYzE0ZWE5M2RiYzE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVfBFyVCJNlh6gpkcIep1wRIF0Ui1SNAt1D7/3EcQ+N0FB NSYMP6eRx1jgtZUSNTgWQSw44L2kXoT+d+9FE9hwDd4nIpcZ+FDc3P4kCjnO+6sO Q3NunU94aVm5UXh1s0B5/AKLkdsbYUULbq/dJfvYMsArACGa7gNHOG8ZCRuMEf4T e7yqlUBhcLEPv5UsHJyRH3NfePDKZQhCG/fwBBDZxq7kJ6x+1yeUtZbvR93ZwI9j twHQ+oUv9fQJ4cBlFyI832pnvm3lug+sWt/lE2VPXWDbZHMFO6RHiiE6ml43jgxo A4Q2UGAEPaMCfvZHQQ71mm9S11o8cz1N2++jk6v1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUs1JFDpPF6+4KTRaW8bn8pa+c7RAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkOTRhN2FhLTk1MDUtNGRiMy05MjVlLWNmM2YyODViMjk2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8QgDANBgkqhkiG9w0BAQsFAAOCAQEACk9bRpoCBN5FUy7iy+rheDFl ElAbpffH1br2Izhm6hrKn4WEfWw6J+0e8tv42YkNglwGs9E2LFKQZB3Rg7Fp6Tax UPPdNKxTq0+2FyqKl8f3OTZ95lBFI+YCufAtU7YZUTS8q3QSd8tBlxwtWyoXz7lz 21hc/gPUjjS+0I7Y8FFD2grOWVjIsBoRZaGJKgqcCIldHmPWBOGK/MwSDwwEEK9+ oekfC0EdTtWgACYbs/BGVCa6o8M5SiHf276JBPJAuT//aaSnaiR+ERWfnyPlrHJv xZEBCtGXDH8mM9WEJ6eruOyKN9pc9+8abRfpso120ST1WT5RZbA5VOuE7U1oqg== -----END CERTIFICATE-----Generated at Mon Mar 2 03:06:56 2026 by rpki-client