$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a97fd684-0832-49ce-ad32-e5222a2a4cc7.roa File: a97fd684-0832-49ce-ad32-e5222a2a4cc7.roa (raw, json) Hash identifier: 3R+PMNEbyECAGsFijriua5kADkqw1vI23q5TBrdF2Bc= Subject key identifier: 41:5E:6C:8D:8A:52:22:36:9D:FF:3D:C1:27:E8:54:41:0E:1D:C3:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F4299EB8D1DC4EB9E620C971A4E1D6D6101E2FE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a97fd684-0832-49ce-ad32-e5222a2a4cc7.roa Signing time: Tue 24 Feb 2026 00:40:11 +0000 ROA not before: Tue 24 Feb 2026 00:40:11 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:50c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:42:99:eb:8d:1d:c4:eb:9e:62:0c:97:1a:4e:1d:6d:61:01:e2:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:40:11 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=2cf4b5c22aaf9506995727621d523b02ef1b61e3054fd963be879d7434320f7d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8a:d8:c7:f8:74:9a:e8:35:75:59:e1:50:e4: 26:19:18:7a:52:b1:0d:24:33:5a:b0:dd:d7:8f:38: b3:38:88:bd:0e:12:3b:d6:86:6c:51:4d:e3:51:c8: 07:ac:c3:80:4a:53:0a:9f:d9:3b:d4:48:4a:67:42: 41:ab:28:a1:63:a7:cf:5b:6b:65:f7:56:0f:30:80: f1:80:c4:24:09:32:25:ea:b0:69:13:78:89:58:ee: 42:6c:a5:18:15:7b:0c:c8:a6:17:f2:9b:e8:c9:7e: 9f:e2:c9:ef:3e:53:33:61:3a:af:b2:d6:fa:ea:a1: c1:83:88:64:07:6b:47:38:b4:d5:ab:b7:ce:18:2e: ca:25:d0:f0:a2:70:3a:23:00:3f:bb:c4:57:a5:bf: fe:58:9a:9e:30:18:3c:b0:e5:9b:3c:5e:22:65:44: 03:a1:e6:9a:f7:ba:ed:d2:2a:8b:f3:68:4f:a9:16: 93:58:15:dd:e8:e0:0e:3e:cd:ad:52:97:f3:a8:75: 31:8a:21:d7:ee:c2:bc:1a:29:b5:c0:ac:3c:1b:89: 88:fb:a6:18:0f:e0:a2:65:0f:2a:77:5d:7b:bd:ae: 11:c7:a8:13:bf:f3:b9:64:d5:12:27:6f:48:f0:df: f9:6f:2f:01:53:ae:b7:f0:99:5b:95:b0:3e:d5:1e: de:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:5E:6C:8D:8A:52:22:36:9D:FF:3D:C1:27:E8:54:41:0E:1D:C3:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a97fd684-0832-49ce-ad32-e5222a2a4cc7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:50c0::/48 Signature Algorithm: sha256WithRSAEncryption af:ae:7f:cb:d6:86:7c:68:d6:87:d5:dc:34:18:8d:24:2a:74: 5b:20:62:b7:eb:9e:a6:80:5f:fe:ac:6d:df:7a:b3:64:d7:08: e2:eb:38:8a:4e:c8:f5:43:78:5c:ca:55:4a:e7:e3:7a:f6:64: d3:85:f8:87:85:43:14:88:d2:1a:95:44:d3:d6:b6:1a:cd:ab: a2:d8:9f:51:a0:84:b9:8c:54:b8:f0:02:42:41:cb:72:0d:ef: 29:38:37:93:f9:00:73:a3:5c:df:d4:ee:93:c5:6c:eb:77:fe: a7:9a:f9:6b:9b:fd:ac:5b:77:32:14:cf:b8:ad:e6:6d:79:53: ca:41:03:26:5d:4d:dc:9d:a9:de:84:90:b2:e1:fa:e7:a9:bc: 83:5c:3f:0c:a3:84:82:39:39:c2:a9:fa:52:af:cd:53:e3:3b: e5:4f:e9:a6:e6:f3:49:74:1c:29:63:61:dd:39:54:a2:01:d8: 03:de:db:62:55:52:8c:d7:08:1b:35:b0:dd:43:eb:73:96:e2: 64:96:d6:46:b8:3f:db:2c:0e:d7:55:78:5e:40:d7:78:ce:be: 2e:b2:3a:85:32:e5:de:50:87:c8:e7:b3:8f:8b:6f:3a:a1:29: be:b4:77:88:21:1e:dc:80:c9:49:84:0f:c4:b1:90:37:1e:a9: 82:2c:6e:4a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUP0KZ640dxOueYgyXGk4dbWEB4v4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDA0MDExWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2Y0YjVjMjJhYWY5NTA2OTk1NzI3NjIxZDUyM2IwMmVm MWI2MWUzMDU0ZmQ5NjNiZTg3OWQ3NDM0MzIwZjdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6itjH+HSa6DV1WeFQ5CYZGHpSsQ0kM1qw3dePOLM4iL0O EjvWhmxRTeNRyAesw4BKUwqf2TvUSEpnQkGrKKFjp89ba2X3Vg8wgPGAxCQJMiXq sGkTeIlY7kJspRgVewzIphfym+jJfp/iye8+UzNhOq+y1vrqocGDiGQHa0c4tNWr t84YLsol0PCicDojAD+7xFelv/5Ymp4wGDyw5Zs8XiJlRAOh5pr3uu3SKovzaE+p FpNYFd3o4A4+za1Sl/OodTGKIdfuwrwaKbXArDwbiYj7phgP4KJlDyp3XXu9rhHH qBO/87lk1RInb0jw3/lvLwFTrrfwmVuVsD7VHt6HAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQV5sjYpSIjad/z3BJ+hUQQ4dwwMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5N2ZkNjg0LTA4MzItNDljZS1hZDMyLWU1MjIyYTJhNGNjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84UMAwDQYJKoZIhvcNAQELBQADggEBAK+uf8vWhnxo1ofV3DQYjSQq dFsgYrfrnqaAX/6sbd96s2TXCOLrOIpOyPVDeFzKVUrn43r2ZNOF+IeFQxSI0hqV RNPWthrNq6LYn1GghLmMVLjwAkJBy3IN7yk4N5P5AHOjXN/U7pPFbOt3/qea+Wub /axbdzIUz7it5m15U8pBAyZdTdydqd6EkLLh+uepvINcPwyjhII5OcKp+lKvzVPj O+VP6abm80l0HCljYd05VKIB2APe22JVUozXCBs1sN1D63OW4mSW1ka4P9ssDtdV eF5A13jOvi6yOoUy5d5Qh8jns4+LbzqhKb60d4ghHtyAyUmED8SxkDceqYIsbko= -----END CERTIFICATE-----Generated at Sun Mar 1 22:14:08 2026 by rpki-client