$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adaa4791-2396-4651-8851-2a7cbc3cb36f.roa File: adaa4791-2396-4651-8851-2a7cbc3cb36f.roa (raw, json) Hash identifier: mCP/fIOfMjpAf6W7HxT8EX/iMhAYJixbZYzpO9iGfTE= Subject key identifier: 9C:59:98:01:74:4D:90:5F:7F:0C:48:79:CE:3A:31:0A:70:D2:CE:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B004FD2FB6DAAC439E8E921D2042235B700716D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adaa4791-2396-4651-8851-2a7cbc3cb36f.roa Signing time: Tue 24 Feb 2026 00:41:04 +0000 ROA not before: Tue 24 Feb 2026 00:41:04 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:40d0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:00:4f:d2:fb:6d:aa:c4:39:e8:e9:21:d2:04:22:35:b7:00:71:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:41:04 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=10ffaccc424ac814f1acc20b76356b3e0ee124cbde6cc86843928e976b010836, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e0:21:4d:e3:13:95:29:56:37:25:9f:09:7e: 26:fb:fa:9b:58:5c:61:1f:e7:90:3c:9b:14:a3:a2: 97:22:25:11:7e:16:c8:bc:3f:ae:55:ab:af:97:3c: 50:59:4e:7c:8a:65:84:20:ab:4d:68:34:e4:61:19: 18:25:d2:f7:95:68:5f:5e:44:9b:70:99:c9:7b:e0: 27:aa:44:19:83:55:84:59:c5:bc:3c:23:c9:4a:c1: fe:8b:72:b8:4e:6c:f1:79:70:5d:73:90:ff:46:b9: 14:09:90:93:e3:c3:f5:f8:8c:f7:a1:de:34:d1:35: 71:26:58:1c:e5:e0:2b:82:d4:bf:91:ac:e7:b7:b9: 94:e4:c6:85:11:77:2a:f7:1b:67:80:10:ea:94:33: fe:39:8c:a4:c8:26:b0:7d:21:b2:c6:c8:fb:d6:00: 40:b3:52:52:1a:f7:13:13:8d:1d:20:94:82:40:81: b7:7c:37:38:82:b2:98:0f:ae:80:91:f7:34:a9:57: d6:6a:49:0a:96:29:ac:37:22:a1:6d:e5:d4:ae:63: fc:a6:96:42:33:cf:93:43:0b:57:0d:2c:ed:89:4f: a5:e0:66:39:6f:bf:ee:e2:5f:50:4e:b1:7d:e0:46: 29:0b:7b:30:c2:49:84:a8:bc:96:ae:de:c9:3f:4e: be:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:59:98:01:74:4D:90:5F:7F:0C:48:79:CE:3A:31:0A:70:D2:CE:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adaa4791-2396-4651-8851-2a7cbc3cb36f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:40d0::/48 Signature Algorithm: sha256WithRSAEncryption ca:6d:63:cb:8b:bc:dd:c8:c5:ba:17:1a:32:38:21:6a:18:f8: 42:0a:ff:99:cd:05:10:af:7f:47:c8:e9:ec:7c:02:80:4e:af: bf:3c:56:ec:75:d4:48:3d:64:b5:16:3b:a4:76:28:09:f9:2e: a2:b7:15:6b:9d:4e:b0:46:1d:50:5d:f5:9e:e1:67:ac:94:dc: 11:1d:3a:81:aa:62:3d:87:22:a4:30:04:bd:7f:cc:ac:3f:03: e8:45:d7:da:3b:6d:c2:eb:6f:75:ff:b0:41:e1:56:60:5c:3e: d3:b7:26:b8:77:77:3b:2b:66:e1:1e:de:75:02:60:2e:38:4e: 34:d3:ce:c9:a2:b6:8c:dc:74:d3:51:cb:21:88:e3:a0:f5:70: aa:ed:7d:fe:13:11:b6:71:ac:80:79:a2:01:ce:a2:24:2f:97: e2:5b:31:68:62:88:5e:38:52:4c:1e:d7:da:ce:d0:d3:93:bd: 57:eb:1b:5c:d0:45:01:c5:a9:c0:4f:18:4a:9b:6d:3a:bf:89: 49:9f:48:cf:3d:21:4e:c1:0b:80:6d:12:2d:35:17:f2:1c:a7: bf:8e:e7:81:18:67:bc:db:ad:20:30:5f:29:ec:ed:d3:49:2d: ed:19:25:3e:56:9a:94:0d:f8:75:d2:f2:1e:0c:40:97:2c:b0: 27:3d:d6:74 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCwBP0vttqsQ56Okh0gQiNbcAcW0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDA0MTA0WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMGZmYWNjYzQyNGFjODE0ZjFhY2MyMGI3NjM1NmIzZTBl ZTEyNGNiZGU2Y2M4Njg0MzkyOGU5NzZiMDEwODM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk4CFN4xOVKVY3JZ8Jfib7+ptYXGEf55A8mxSjopciJRF+ Fsi8P65Vq6+XPFBZTnyKZYQgq01oNORhGRgl0veVaF9eRJtwmcl74CeqRBmDVYRZ xbw8I8lKwf6LcrhObPF5cF1zkP9GuRQJkJPjw/X4jPeh3jTRNXEmWBzl4CuC1L+R rOe3uZTkxoURdyr3G2eAEOqUM/45jKTIJrB9IbLGyPvWAECzUlIa9xMTjR0glIJA gbd8NziCspgProCR9zSpV9ZqSQqWKaw3IqFt5dSuY/ymlkIzz5NDC1cNLO2JT6Xg Zjlvv+7iX1BOsX3gRikLezDCSYSovJau3sk/Tr7ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnFmYAXRNkF9/DEh5zjoxCnDSzpgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkYWE0NzkxLTIzOTYtNDY1MS04ODUxLTJhN2NiYzNjYjM2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQNAwDQYJKoZIhvcNAQELBQADggEBAMptY8uLvN3IxboXGjI4IWoY +EIK/5nNBRCvf0fI6ex8AoBOr788Vux11Eg9ZLUWO6R2KAn5LqK3FWudTrBGHVBd 9Z7hZ6yU3BEdOoGqYj2HIqQwBL1/zKw/A+hF19o7bcLrb3X/sEHhVmBcPtO3Jrh3 dzsrZuEe3nUCYC44TjTTzsmitozcdNNRyyGI46D1cKrtff4TEbZxrIB5ogHOoiQv l+JbMWhiiF44Ukwe19rO0NOTvVfrG1zQRQHFqcBPGEqbbTq/iUmfSM89IU7BC4Bt Ei01F/Icp7+O54EYZ7zbrSAwXyns7dNJLe0ZJT5WmpQN+HXS8h4MQJcssCc91nQ= -----END CERTIFICATE-----Generated at Mon Mar 2 00:16:55 2026 by rpki-client