$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a58feff9-88a6-4564-8529-2be1d91940ab.roa File: a58feff9-88a6-4564-8529-2be1d91940ab.roa (raw, json) Hash identifier: J17NgKRk15PiIo/Upd97enbVWT+gBItuCrDKm40qzww= Subject key identifier: EC:D4:A9:4C:6D:4F:CD:38:56:AE:38:25:D8:67:36:A9:10:81:A4:72 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 448C2831517D42C3B032504617A62087EF018907 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a58feff9-88a6-4564-8529-2be1d91940ab.roa Signing time: Wed 11 Feb 2026 00:30:17 +0000 ROA not before: Wed 11 Feb 2026 00:30:17 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff3:c080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:8c:28:31:51:7d:42:c3:b0:32:50:46:17:a6:20:87:ef:01:89:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 11 00:30:17 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=7078b4d7f410160e5fd3c327ee17ff19af4d6f6cc60099af0301514c4a8d53ea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f1:dd:86:cc:5d:cd:98:9c:61:96:e0:bd:fd: 29:d4:36:c6:d9:d8:73:e8:75:05:64:43:ea:1f:6f: 92:cb:44:1f:74:db:f4:d6:44:fc:af:69:c1:a3:ca: 65:4a:f7:ad:0d:e8:6a:88:63:fb:d8:92:12:65:20: eb:fa:4f:71:29:89:46:f6:47:68:70:5f:7d:20:ba: f5:b4:72:66:e7:8a:32:21:50:6f:5c:f1:fc:94:a2: 02:07:fb:c4:2e:68:e3:9a:80:9c:c3:54:1e:7e:c3: b9:de:b5:b5:8d:7a:1d:0c:b1:97:2d:a7:39:4a:f3: 70:68:05:79:7d:31:00:9b:57:34:f0:05:5f:79:0b: 6d:4f:c3:51:14:8d:e5:4c:0b:66:6e:70:19:34:5c: 51:b6:ce:9e:da:a7:77:0c:f2:42:a1:bd:1f:f5:fa: f1:fa:12:96:2b:a9:24:a0:0e:6d:e1:b8:d6:2b:66: 7f:e3:05:37:42:04:eb:e1:f4:eb:3e:b5:65:ef:cc: c3:17:4e:41:2e:e9:a7:d4:b2:41:7d:bb:fb:77:15: ea:45:1f:a8:a6:5e:42:f1:e0:89:be:18:73:56:18: 29:11:29:ea:01:15:48:26:ff:34:52:90:4f:0f:05: 4c:67:85:eb:26:2d:74:fc:99:a0:f2:d6:e5:b0:df: 74:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D4:A9:4C:6D:4F:CD:38:56:AE:38:25:D8:67:36:A9:10:81:A4:72 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a58feff9-88a6-4564-8529-2be1d91940ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff3:c080::/46 Signature Algorithm: sha256WithRSAEncryption 1e:7c:62:46:df:8a:f6:e1:ec:3c:e5:82:8a:d8:9c:d4:f2:36: 5b:2f:dc:37:73:48:1b:2c:b6:2a:cc:65:12:de:76:61:f2:23: 45:74:ee:81:d2:02:b4:95:67:80:18:a9:17:85:10:59:2b:ab: d0:ee:28:27:85:86:2f:36:1e:e4:3e:68:7d:42:14:72:c9:f2: 8a:2b:3b:cd:f8:78:cb:82:19:9d:30:4b:32:63:a0:1d:bb:29: 6e:0a:36:34:59:45:2c:00:7e:dc:8b:88:82:e0:a9:20:37:7a: 78:c6:5c:58:96:0a:6e:b9:ae:cc:75:c3:2a:fc:3a:ce:b0:19: 86:52:47:87:6a:4b:4b:36:07:93:b0:ca:7b:50:01:e8:a7:a1: 75:1f:30:32:71:68:f8:fa:b0:e6:7f:0e:6f:ab:1f:85:06:e7: fd:08:8a:0f:ae:7e:d8:e2:f0:84:19:28:b5:81:e2:04:86:f2: 8b:31:d4:c5:71:26:ea:32:99:da:34:6d:81:b6:0d:03:5e:fe: 3f:5f:5d:5c:07:8d:da:f5:11:3c:ed:f2:68:0b:4e:34:39:3e: 96:a8:1b:d3:07:cd:a2:77:7f:de:9f:1c:d2:31:c9:c3:26:44: 6e:ed:9e:4f:6a:e1:64:10:52:5f:0c:e2:7a:33:90:7f:03:83: b6:d1:0c:fc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURIwoMVF9QsOwMlBGF6Ygh+8BiQcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjExMDAzMDE3WhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDc4YjRkN2Y0MTAxNjBlNWZkM2MzMjdlZTE3ZmYxOWFm NGQ2ZjZjYzYwMDk5YWYwMzAxNTE0YzRhOGQ1M2VhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt8d2GzF3NmJxhluC9/SnUNsbZ2HPodQVkQ+ofb5LLRB90 2/TWRPyvacGjymVK960N6GqIY/vYkhJlIOv6T3EpiUb2R2hwX30guvW0cmbnijIh UG9c8fyUogIH+8QuaOOagJzDVB5+w7netbWNeh0MsZctpzlK83BoBXl9MQCbVzTw BV95C21Pw1EUjeVMC2ZucBk0XFG2zp7ap3cM8kKhvR/1+vH6EpYrqSSgDm3huNYr Zn/jBTdCBOvh9Os+tWXvzMMXTkEu6afUskF9u/t3FepFH6imXkLx4Im+GHNWGCkR KeoBFUgm/zRSkE8PBUxnhesmLXT8maDy1uWw33R5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7NSpTG1PzThWrjgl2Gc2qRCBpHIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1OGZlZmY5LTg4YTYtNDU2NC04NTI5LTJiZTFkOTE5NDBhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/zwIAwDQYJKoZIhvcNAQELBQADggEBAB58Ykbfivbh7DzlgorYnNTy Nlsv3DdzSBsstirMZRLedmHyI0V07oHSArSVZ4AYqReFEFkrq9DuKCeFhi82HuQ+ aH1CFHLJ8oorO834eMuCGZ0wSzJjoB27KW4KNjRZRSwAftyLiILgqSA3enjGXFiW Cm65rsx1wyr8Os6wGYZSR4dqS0s2B5OwyntQAeinoXUfMDJxaPj6sOZ/Dm+rH4UG 5/0Iig+uftji8IQZKLWB4gSG8osx1MVxJuoymdo0bYG2DQNe/j9fXVwHjdr1ETzt 8mgLTjQ5PpaoG9MHzaJ3f96fHNIxycMmRG7tnk9q4WQQUl8M4nozkH8Dg7bRDPw= -----END CERTIFICATE-----Generated at Mon Mar 2 10:52:47 2026 by rpki-client