$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abba2545-31ab-4828-b5fd-dd228d23ed7a.roa File: abba2545-31ab-4828-b5fd-dd228d23ed7a.roa (raw, json) Hash identifier: UOvtUWmmipHTzfWVqiypQCndNXmDInsiJME9bXAZnAM= Subject key identifier: 6B:C9:8F:9D:3A:B0:76:0F:43:9B:0A:48:AE:58:91:B3:AD:55:12:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34A0C6C7AF6673D0EDF7EA11F67AB8FF485ACDE4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abba2545-31ab-4828-b5fd-dd228d23ed7a.roa Signing time: Tue 24 Feb 2026 01:31:06 +0000 ROA not before: Tue 24 Feb 2026 01:31:06 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:a0:c6:c7:af:66:73:d0:ed:f7:ea:11:f6:7a:b8:ff:48:5a:cd:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:31:06 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=08bb85a19e4307b81718f42554400a7212d280f48b96d263b1dea8949b83d293, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:00:4a:3f:52:2a:8c:e7:81:ca:81:6a:b9:06: 78:fa:6b:cd:a2:52:69:6c:23:86:9e:67:21:39:86: 8f:8d:78:7a:69:a1:7e:8d:d5:d7:05:93:10:c0:ad: f0:fe:c6:66:61:4e:12:0a:77:ba:17:4c:5e:62:18: 14:b2:34:ef:58:a9:bc:d3:43:c6:40:bc:53:04:be: a7:c6:d0:38:81:8a:43:dd:f4:a3:83:dc:ff:4b:57: 2e:31:3f:e1:31:c1:01:aa:48:1c:fd:af:83:92:ec: 36:33:82:70:a2:19:07:9c:06:f4:71:1f:3f:48:af: d3:0e:d3:75:2a:9f:b6:55:5e:c7:50:89:02:63:b2: ce:a5:93:ec:3b:b8:27:99:66:6d:95:1c:74:f0:4c: d9:2d:90:eb:e9:a4:ec:6e:84:4b:71:e7:1b:04:e5: c3:c7:1d:ae:cc:b3:5f:4b:40:b1:dd:93:96:d5:9a: 1c:44:ad:fa:17:53:9f:d8:89:d4:ca:cb:68:8e:d5: a1:9b:8e:9e:9e:33:6b:d2:37:e9:3b:af:77:bd:99: 46:ad:a7:26:1c:c9:93:38:88:63:ff:9a:15:91:25: 43:73:46:ad:ab:fd:43:1f:15:5f:2e:ee:5d:4b:19: e2:d2:95:c4:16:2b:55:96:53:cc:8c:65:20:d7:21: 21:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C9:8F:9D:3A:B0:76:0F:43:9B:0A:48:AE:58:91:B3:AD:55:12:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abba2545-31ab-4828-b5fd-dd228d23ed7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8140::/48 Signature Algorithm: sha256WithRSAEncryption 78:f6:39:0f:fb:38:3f:34:4f:46:c8:99:0c:07:52:29:2b:6f: fe:09:45:b7:f6:c4:82:e2:a2:a6:24:d2:91:95:ed:23:ba:98: 03:6f:ce:dd:16:83:ff:0e:a0:2f:a3:e7:6c:2a:53:40:34:0a: 10:05:96:7e:bc:57:03:9d:8e:8f:c0:a6:da:49:ab:b4:ba:b5: 5f:7d:42:ec:8d:44:0a:d1:89:b4:9c:a4:52:7b:83:2b:92:6c: 3f:94:0d:0c:bf:2b:d1:75:59:c9:3f:02:e9:aa:0a:b7:c3:72: b1:13:6b:6a:77:6d:07:e5:07:d8:92:33:f4:26:ff:7f:af:49: 51:20:c7:1c:ff:58:69:2e:9c:9a:83:87:14:c9:d1:3b:cb:10: 62:79:51:bd:7e:19:02:f9:7a:91:7f:4f:ce:95:69:5e:36:79: e4:a0:15:80:24:10:be:29:7e:6d:10:63:51:be:1c:a4:f4:c3: a0:05:b4:10:7a:1a:af:cc:49:95:36:ec:2a:88:30:7c:29:77: 63:41:44:52:8f:f4:5e:2c:50:0d:04:3f:ff:97:3a:71:d3:8e: 6b:d9:24:6d:ce:c5:2d:1c:db:36:b9:2e:03:c6:88:aa:61:e0: 08:10:d3:58:c2:1d:9f:f4:92:47:00:18:8c:7d:17:1b:91:99: 92:63:94:e6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNKDGx69mc9Dt9+oR9nq4/0hazeQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEzMTA2WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGJiODVhMTllNDMwN2I4MTcxOGY0MjU1NDQwMGE3MjEy ZDI4MGY0OGI5NmQyNjNiMWRlYTg5NDliODNkMjkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+AEo/UiqM54HKgWq5Bnj6a82iUmlsI4aeZyE5ho+NeHpp oX6N1dcFkxDArfD+xmZhThIKd7oXTF5iGBSyNO9YqbzTQ8ZAvFMEvqfG0DiBikPd 9KOD3P9LVy4xP+ExwQGqSBz9r4OS7DYzgnCiGQecBvRxHz9Ir9MO03Uqn7ZVXsdQ iQJjss6lk+w7uCeZZm2VHHTwTNktkOvppOxuhEtx5xsE5cPHHa7Ms19LQLHdk5bV mhxErfoXU5/YidTKy2iO1aGbjp6eM2vSN+k7r3e9mUatpyYcyZM4iGP/mhWRJUNz Rq2r/UMfFV8u7l1LGeLSlcQWK1WWU8yMZSDXISFXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUa8mPnTqwdg9DmwpIrliRs61VElswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiYmEyNTQ1LTMxYWItNDgyOC1iNWZkLWRkMjI4ZDIzZWQ3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gUAwDQYJKoZIhvcNAQELBQADggEBAHj2OQ/7OD80T0bImQwHUikr b/4JRbf2xILioqYk0pGV7SO6mANvzt0Wg/8OoC+j52wqU0A0ChAFln68VwOdjo/A ptpJq7S6tV99QuyNRArRibScpFJ7gyuSbD+UDQy/K9F1Wck/AumqCrfDcrETa2p3 bQflB9iSM/Qm/3+vSVEgxxz/WGkunJqDhxTJ0TvLEGJ5Ub1+GQL5epF/T86VaV42 eeSgFYAkEL4pfm0QY1G+HKT0w6AFtBB6Gq/MSZU27CqIMHwpd2NBRFKP9F4sUA0E P/+XOnHTjmvZJG3OxS0c2za5LgPGiKph4AgQ01jCHZ/0kkcAGIx9FxuRmZJjlOY= -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:20 2026 by rpki-client