$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5dc397e-51ae-4560-83fe-dc18c680d062.roa File: a5dc397e-51ae-4560-83fe-dc18c680d062.roa (raw, json) Hash identifier: 64/R+E47Z2gUEOefDNnFWUcieCnNH/56ogq2gyKw0zM= Subject key identifier: 49:EF:EF:5E:70:E7:65:9B:12:CC:29:DA:39:A1:98:70:CB:71:F2:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B889EE53962ACD72F7562FA4BD1761FC6D941FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5dc397e-51ae-4560-83fe-dc18c680d062.roa Signing time: Tue 24 Feb 2026 01:01:26 +0000 ROA not before: Tue 24 Feb 2026 01:01:26 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:81c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:88:9e:e5:39:62:ac:d7:2f:75:62:fa:4b:d1:76:1f:c6:d9:41:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:01:26 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=b3c7031d6e33b795be6a719d82fd77f103cf2f7429ad31057434bfe195290210, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:cc:2e:f1:08:7d:ee:5c:9f:4a:3a:09:0d:c4: b0:e4:0e:da:51:59:16:97:02:2b:71:17:95:8d:44: cd:7d:6f:58:93:68:3f:ef:1a:b5:b2:3f:d3:7b:c2: 15:90:f7:71:4d:5e:af:dc:25:0a:28:0d:87:64:15: 9a:02:3c:30:aa:ef:61:61:a0:16:83:b1:2a:5e:a2: 5d:03:56:5d:90:ee:eb:33:ff:38:ba:06:42:67:8d: 03:4c:b8:8c:e4:02:93:ed:00:13:c2:5b:64:68:d8: 70:ab:94:c8:ac:9c:56:62:e6:5a:46:d1:79:ec:67: 3f:de:b1:60:e9:4c:8d:23:c1:6c:db:6f:e5:b0:0b: cb:48:30:fa:c4:10:0f:90:07:ed:5e:da:98:22:b3: db:59:ef:e4:a7:21:31:08:c1:fe:9a:77:04:e7:f7: fd:e9:a4:8e:ef:39:de:2d:e3:0b:54:3b:da:34:31: 5f:46:8b:03:49:7b:05:06:94:f0:2f:79:f6:75:98: 83:80:65:1c:ee:85:8b:25:3d:5b:fa:df:ae:8a:9c: 1d:e6:20:99:f5:93:6b:2a:1d:66:22:f4:36:d5:ae: a2:d1:65:31:4a:3e:db:59:3f:37:a1:73:71:f0:2e: 77:8d:6a:13:31:40:68:e8:31:8c:e3:ca:40:3c:1b: e8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:EF:EF:5E:70:E7:65:9B:12:CC:29:DA:39:A1:98:70:CB:71:F2:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5dc397e-51ae-4560-83fe-dc18c680d062.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:81c0::/48 Signature Algorithm: sha256WithRSAEncryption 02:c4:5d:45:42:e1:e2:90:55:ee:48:bd:8d:03:65:0d:f0:42: ed:d0:93:b1:06:34:6e:dc:f2:d4:56:02:b3:d6:88:8d:8d:f5: a8:b9:58:65:ea:48:87:67:db:24:c2:e8:d1:4e:59:49:0e:36: 44:2c:01:5d:00:d7:84:ec:b8:55:44:84:1a:81:43:6b:0c:2d: 09:a3:36:78:ec:16:12:e6:45:3b:84:af:1e:cc:df:d1:22:f3: d7:c7:c8:51:8c:f8:3b:5e:69:bb:90:1a:53:7d:44:54:7c:93: ac:63:a4:ff:6d:21:b0:27:65:d0:31:91:ae:7a:bc:6d:6f:b3: e0:05:51:d4:25:d7:cf:ff:ab:91:41:10:a0:39:30:40:95:c5: b7:2b:16:bd:7e:3d:58:0f:6e:28:94:9f:fc:d4:70:19:42:ee: ec:d7:11:55:bd:a1:65:f5:db:98:59:28:a4:c2:54:3e:1e:41: de:43:5f:f2:93:32:c1:03:39:2b:76:dd:0c:90:2b:45:39:6c: f3:6c:b1:f4:a0:c4:61:61:4b:68:af:02:7f:8f:6b:f7:67:a6: 2f:fa:e4:fb:ae:bc:fd:27:1f:9f:2a:53:15:0c:7e:3b:05:0a: a8:ab:ee:86:f8:fa:52:99:67:17:e5:d7:7f:c6:83:4a:b4:1f: 60:59:af:90 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO4ie5TlirNcvdWL6S9F2H8bZQf8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEwMTI2WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2M3MDMxZDZlMzNiNzk1YmU2YTcxOWQ4MmZkNzdmMTAz Y2YyZjc0MjlhZDMxMDU3NDM0YmZlMTk1MjkwMjEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkzC7xCH3uXJ9KOgkNxLDkDtpRWRaXAitxF5WNRM19b1iT aD/vGrWyP9N7whWQ93FNXq/cJQooDYdkFZoCPDCq72FhoBaDsSpeol0DVl2Q7usz /zi6BkJnjQNMuIzkApPtABPCW2Ro2HCrlMisnFZi5lpG0XnsZz/esWDpTI0jwWzb b+WwC8tIMPrEEA+QB+1e2pgis9tZ7+SnITEIwf6adwTn9/3ppI7vOd4t4wtUO9o0 MV9GiwNJewUGlPAvefZ1mIOAZRzuhYslPVv6366KnB3mIJn1k2sqHWYi9DbVrqLR ZTFKPttZPzehc3HwLneNahMxQGjoMYzjykA8G+ixAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSe/vXnDnZZsSzCnaOaGYcMtx8iwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1ZGMzOTdlLTUxYWUtNDU2MC04M2ZlLWRjMThjNjgwZDA2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gcAwDQYJKoZIhvcNAQELBQADggEBAALEXUVC4eKQVe5IvY0DZQ3w Qu3Qk7EGNG7c8tRWArPWiI2N9ai5WGXqSIdn2yTC6NFOWUkONkQsAV0A14TsuFVE hBqBQ2sMLQmjNnjsFhLmRTuErx7M39Ei89fHyFGM+DteabuQGlN9RFR8k6xjpP9t IbAnZdAxka56vG1vs+AFUdQl18//q5FBEKA5MECVxbcrFr1+PVgPbiiUn/zUcBlC 7uzXEVW9oWX125hZKKTCVD4eQd5DX/KTMsEDOSt23QyQK0U5bPNssfSgxGFhS2iv An+Pa/dnpi/65PuuvP0nH58qUxUMfjsFCqir7ob4+lKZZxfl13/Gg0q0H2BZr5A= -----END CERTIFICATE-----Generated at Mon Mar 2 07:23:25 2026 by rpki-client