$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b395dc86-1b36-4467-9052-5f1e6560d976.roa File: b395dc86-1b36-4467-9052-5f1e6560d976.roa (raw, json) Hash identifier: 69jgpv2lN7UxdyTsjxVE5GpaFma3QiYyrIwp3jFjjtg= Subject key identifier: E8:DF:EF:D9:B1:93:05:A3:61:95:6F:7F:BD:C0:0B:6B:89:47:37:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 354177F3474D6A1D4D51553370800F9C9AE03918 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b395dc86-1b36-4467-9052-5f1e6560d976.roa Signing time: Wed 25 Feb 2026 00:30:41 +0000 ROA not before: Wed 25 Feb 2026 00:30:41 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f18:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:41:77:f3:47:4d:6a:1d:4d:51:55:33:70:80:0f:9c:9a:e0:39:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:30:41 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=0b5d4dc99caec8ceeb9b6e29d5f6da62042a9f4d460acbf09de007d1b7002872, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:36:d6:7c:2e:dc:cb:ce:71:cf:09:bf:f9:65: e6:f3:28:55:b4:ab:d7:43:5a:d3:4f:2d:98:d0:61: e7:dd:72:46:7c:b0:68:75:da:04:64:1c:3e:c4:00: be:b2:e4:cc:bd:b5:c3:9e:78:4a:80:bc:d2:84:f5: 22:19:4a:e2:3a:5e:1f:65:b6:33:ac:ab:1b:aa:ec: d5:fe:1d:73:aa:23:e4:07:a2:98:b9:c4:23:63:25: 8c:cb:43:e3:6f:c3:e8:21:34:d5:9f:d7:2d:d1:9d: db:b5:c2:33:2b:55:72:70:86:49:aa:2b:de:99:dd: 90:db:08:ca:0b:de:58:d0:b2:80:df:6c:cb:16:01: 26:b3:90:43:b0:19:41:6e:a9:9f:91:ad:22:09:97: 0b:79:de:4c:e0:2d:a7:d1:b3:20:70:c8:fe:12:7e: f0:be:53:0b:a3:56:0c:37:8c:bb:01:98:75:86:6f: b4:a1:c8:55:e7:47:5c:7f:a1:2a:20:3d:55:57:59: 8f:04:d9:4e:81:ce:40:56:08:4a:32:50:5f:7c:74: b7:61:9a:f5:b7:cc:fd:15:c0:56:cd:36:97:a6:24: 36:59:a8:36:4e:a7:dd:2c:82:3b:91:6f:c9:a3:9b: 00:fc:43:da:ce:55:bf:a2:7b:f5:a4:76:65:f8:5f: 2d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:DF:EF:D9:B1:93:05:A3:61:95:6F:7F:BD:C0:0B:6B:89:47:37:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b395dc86-1b36-4467-9052-5f1e6560d976.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f18:8000::/36 Signature Algorithm: sha256WithRSAEncryption 46:4a:92:76:eb:92:b0:c9:3b:f9:d5:8a:16:91:d5:44:3b:3e: b7:86:18:86:36:47:6e:26:08:62:0e:a5:2f:a1:5d:1f:97:bc: 28:0e:1b:53:da:a9:78:9d:fc:aa:fa:82:73:b0:f5:34:77:c1: eb:43:fe:b4:17:9d:b9:f0:88:1a:fb:f8:ec:76:5e:4f:e6:32: 9c:0f:96:66:f8:21:f6:85:c6:23:10:ed:96:8e:ad:e4:4e:c1: 94:91:36:bf:0a:fe:bf:7c:3d:2d:cd:84:0b:24:01:ff:cf:9b: 78:8a:5e:94:84:b9:7f:e8:60:d7:f2:fe:8a:b3:1c:28:9a:f9: 99:51:29:a3:f0:eb:b1:86:ca:ca:1e:5c:79:51:b5:2e:69:0e: 8c:42:4c:68:f6:83:97:84:ac:e7:3a:76:52:86:24:49:8f:d1: 17:8b:8f:aa:95:b2:61:88:c8:5a:f3:06:f9:4d:3e:72:db:e3: a0:79:db:e8:42:69:bf:2d:84:81:d8:1f:27:fd:d5:b1:76:0a: 7d:0e:5b:47:87:ec:69:8d:19:ec:7d:e4:13:80:8f:d7:a8:1d: 9c:5a:eb:19:75:e3:9a:93:b5:a6:7f:ad:4a:8d:4e:73:b9:4a: 85:20:d9:88:98:3e:f9:56:c9:d6:e2:e2:89:6f:71:f8:30:03: 4c:45:e9:f0 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNUF380dNah1NUVUzcIAPnJrgORgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAzMDQxWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjVkNGRjOTljYWVjOGNlZWI5YjZlMjlkNWY2ZGE2MjA0 MmE5ZjRkNDYwYWNiZjA5ZGUwMDdkMWI3MDAyODcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsNtZ8LtzLznHPCb/5ZebzKFW0q9dDWtNPLZjQYefdckZ8 sGh12gRkHD7EAL6y5My9tcOeeEqAvNKE9SIZSuI6Xh9ltjOsqxuq7NX+HXOqI+QH opi5xCNjJYzLQ+Nvw+ghNNWf1y3Rndu1wjMrVXJwhkmqK96Z3ZDbCMoL3ljQsoDf bMsWASazkEOwGUFuqZ+RrSIJlwt53kzgLafRsyBwyP4SfvC+UwujVgw3jLsBmHWG b7ShyFXnR1x/oSogPVVXWY8E2U6BzkBWCEoyUF98dLdhmvW3zP0VwFbNNpemJDZZ qDZOp90sgjuRb8mjmwD8Q9rOVb+ie/WkdmX4Xy37AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU6N/v2bGTBaNhlW9/vcALa4lHN9kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzOTVkYzg2LTFiMzYtNDQ2Ny05MDUyLTVmMWU2NTYwZDk3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8YgDANBgkqhkiG9w0BAQsFAAOCAQEARkqSduuSsMk7+dWKFpHVRDs+ t4YYhjZHbiYIYg6lL6FdH5e8KA4bU9qpeJ38qvqCc7D1NHfB60P+tBedufCIGvv4 7HZeT+YynA+WZvgh9oXGIxDtlo6t5E7BlJE2vwr+v3w9Lc2ECyQB/8+beIpelIS5 f+hg1/L+irMcKJr5mVEpo/DrsYbKyh5ceVG1LmkOjEJMaPaDl4Ss5zp2UoYkSY/R F4uPqpWyYYjIWvMG+U0+ctvjoHnb6EJpvy2EgdgfJ/3VsXYKfQ5bR4fsaY0Z7H3k E4CP16gdnFrrGXXjmpO1pn+tSo1Oc7lKhSDZiJg++VbJ1uLiiW9x+DADTEXp8A== -----END CERTIFICATE-----Generated at Mon Mar 2 00:16:46 2026 by rpki-client