$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab683a78-14b6-4a64-b744-55c9b85a9b70.roa File: ab683a78-14b6-4a64-b744-55c9b85a9b70.roa (raw, json) Hash identifier: VMCZMJOwJLEzT71mNaCH3944s+0Ev3i4sEgPyPZzisQ= Subject key identifier: 1D:14:E3:A9:5D:7D:66:B8:21:03:0A:2D:35:8A:B4:57:14:AF:64:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 28813B57913BA49319B4D81C051C4DF1A196BBF3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab683a78-14b6-4a64-b744-55c9b85a9b70.roa Signing time: Tue 24 Feb 2026 01:02:01 +0000 ROA not before: Tue 24 Feb 2026 01:02:01 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff2:8020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:81:3b:57:91:3b:a4:93:19:b4:d8:1c:05:1c:4d:f1:a1:96:bb:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:02:01 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=484069deb1cb9dbdb8c2d9f3cab0104331b3a76c618f9825a02f22a82a91f058, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:13:2d:50:a1:c8:f9:f5:b2:ce:1f:05:a5:65: 06:4f:49:d2:5b:9b:77:26:81:b6:c6:e1:f5:7d:36: a8:f5:db:1b:d7:38:ee:93:35:79:10:ec:87:53:e3: 59:40:22:c3:a8:cf:37:99:51:cb:f7:00:b4:5d:89: df:8d:f6:a9:7c:f6:a9:e4:af:98:23:f3:1d:cc:35: 15:17:10:2b:cc:2e:17:87:03:de:14:b1:f4:b7:6c: 39:03:a5:67:dc:31:ff:77:49:d6:e6:35:14:d1:0d: e6:c7:49:ca:5e:9b:2c:1b:6b:1b:61:4c:95:f6:44: f2:7a:56:e6:0f:5d:cd:95:2e:11:9b:42:89:47:11: ba:4f:c4:47:3f:5a:7e:99:25:49:a1:b2:34:7e:4f: f4:a6:ae:51:be:77:69:b5:5f:2d:74:b5:15:3a:2a: bf:df:d1:f5:fd:e7:d0:94:c5:27:03:0a:44:70:bf: 99:10:cd:5f:bf:22:4c:64:34:12:86:25:3f:e6:c2: 59:08:32:ec:fd:e8:86:b5:f2:d1:a2:d2:54:70:b4: e0:da:ee:8f:48:f5:1f:c7:cc:b6:db:22:a6:87:cb: 8c:96:ef:72:0e:96:e6:68:b1:c4:62:e6:2b:4a:c9: 22:7d:4a:e4:2a:12:60:30:86:2c:da:6c:25:ba:8a: 9a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:14:E3:A9:5D:7D:66:B8:21:03:0A:2D:35:8A:B4:57:14:AF:64:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab683a78-14b6-4a64-b744-55c9b85a9b70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:8020::/48 Signature Algorithm: sha256WithRSAEncryption c9:f5:d7:ae:58:4d:a5:3e:99:1b:4e:72:0c:e1:e5:4d:fd:47: 16:08:73:ea:d8:8e:f6:2f:27:c2:3a:13:b3:38:82:e3:ad:34: 8f:be:a7:0f:80:d0:77:7a:80:3a:4d:43:1a:53:44:88:ed:71: 13:b6:26:1a:fb:b6:0a:ed:89:dc:ca:fe:3d:24:68:e1:f9:f7: 0e:3c:27:ae:f2:44:2d:a4:50:bd:7b:4f:5b:d9:7b:12:d3:13: 17:15:0f:4a:52:b9:37:86:81:73:dd:b1:43:55:61:2b:f4:90: 8d:8e:00:c9:b3:2f:a5:12:d7:ee:3c:29:e3:23:da:7a:4a:c2: 34:7d:55:55:b3:25:2d:71:9e:ad:c8:15:70:64:ce:96:f1:1f: 4a:80:4e:d3:d0:2b:6c:ca:57:51:8f:85:79:3c:d6:cb:37:37: 7b:c7:da:8f:24:20:5a:66:d8:2c:f9:0f:90:29:55:a6:09:43: dc:a2:16:74:c6:08:63:f1:43:68:20:7a:31:2f:dd:5f:71:7a: c2:8d:09:d9:07:11:da:1c:c3:2c:49:11:68:a4:b6:67:86:8a: ff:2b:43:5c:25:bd:d6:72:5f:1f:b1:ce:2c:e8:55:22:65:1a: 14:a0:9f:f6:2b:79:df:9a:d7:6c:8e:7f:6a:8f:ac:85:58:a2: 90:2f:0e:06 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKIE7V5E7pJMZtNgcBRxN8aGWu/MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEwMjAxWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODQwNjlkZWIxY2I5ZGJkYjhjMmQ5ZjNjYWIwMTA0MzMx YjNhNzZjNjE4Zjk4MjVhMDJmMjJhODJhOTFmMDU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmEy1Qocj59bLOHwWlZQZPSdJbm3cmgbbG4fV9Nqj12xvX OO6TNXkQ7IdT41lAIsOozzeZUcv3ALRdid+N9ql89qnkr5gj8x3MNRUXECvMLheH A94UsfS3bDkDpWfcMf93SdbmNRTRDebHScpemywbaxthTJX2RPJ6VuYPXc2VLhGb QolHEbpPxEc/Wn6ZJUmhsjR+T/SmrlG+d2m1Xy10tRU6Kr/f0fX959CUxScDCkRw v5kQzV+/IkxkNBKGJT/mwlkIMuz96Ia18tGi0lRwtODa7o9I9R/HzLbbIqaHy4yW 73IOluZoscRi5itKySJ9SuQqEmAwhizabCW6ipqLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHRTjqV19ZrghAwotNYq0VxSvZAYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiNjgzYTc4LTE0YjYtNGE2NC1iNzQ0LTU1YzliODVhOWI3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ygCAwDQYJKoZIhvcNAQELBQADggEBAMn1165YTaU+mRtOcgzh5U39 RxYIc+rYjvYvJ8I6E7M4guOtNI++pw+A0Hd6gDpNQxpTRIjtcRO2Jhr7tgrtidzK /j0kaOH59w48J67yRC2kUL17T1vZexLTExcVD0pSuTeGgXPdsUNVYSv0kI2OAMmz L6US1+48KeMj2npKwjR9VVWzJS1xnq3IFXBkzpbxH0qATtPQK2zKV1GPhXk81ss3 N3vH2o8kIFpm2Cz5D5ApVaYJQ9yiFnTGCGPxQ2ggejEv3V9xesKNCdkHEdocwyxJ EWiktmeGiv8rQ1wlvdZyXx+xzizoVSJlGhSgn/Yred+a12yOf2qPrIVYopAvDgY= -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:55 2026 by rpki-client