$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba0d353d-c483-4a75-8b4d-9310ac524acd.roa File: ba0d353d-c483-4a75-8b4d-9310ac524acd.roa (raw, json) Hash identifier: 3h3Ok7RnUerQ6ZzYqX8nD0uotONtZTlhZaf3jSUaV+U= Subject key identifier: 3B:31:1D:07:23:9E:50:86:12:5D:FC:D3:B0:8A:76:31:E4:F9:18:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BF7ACADF5CA71B82CD0B9CEA3EDC0696F26F5E4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba0d353d-c483-4a75-8b4d-9310ac524acd.roa Signing time: Tue 24 Feb 2026 00:50:09 +0000 ROA not before: Tue 24 Feb 2026 00:50:09 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:f7:ac:ad:f5:ca:71:b8:2c:d0:b9:ce:a3:ed:c0:69:6f:26:f5:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:50:09 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=37f657a3b370adf175f5a100b2f566731eec6fa96296b4223856601595a950e3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:87:b6:a9:d2:38:16:46:88:ae:b4:1a:82:b2: ac:9e:bf:14:8a:19:30:8c:fa:29:2e:38:12:7c:2c: 5f:48:8d:a0:80:7b:78:b6:a9:7d:13:89:97:da:b8: 34:22:e6:6d:ba:76:e9:58:2a:56:ac:d9:70:bf:cf: 74:dc:eb:ce:82:03:d7:16:0c:c1:86:3f:0f:17:23: 64:2c:08:38:a3:21:29:2d:d5:cb:96:49:47:34:55: a5:39:6f:37:a9:9f:26:8b:5e:05:34:6c:06:54:ca: 53:f3:8e:a1:d6:85:be:0a:57:b4:c3:4d:b1:d8:e8: af:9a:59:f3:07:c0:01:a9:46:c4:42:e0:44:57:65: 22:75:6a:04:c8:d4:93:e3:6e:16:11:52:f6:0b:f4: 6e:f6:0d:b3:cf:73:8a:81:c9:b5:71:b2:2e:c3:a6: 1e:1b:cd:74:0c:f1:ab:09:89:e0:7a:04:8f:4d:74: 61:43:51:f1:d7:d9:a9:50:89:9a:08:6b:4e:88:10: 13:66:fb:43:4e:c9:3b:2b:5c:dd:24:1a:d9:96:aa: 5a:43:71:18:3f:94:f4:1d:f3:b0:12:5a:b2:51:47: 24:d1:30:f5:05:33:0a:2c:42:2a:71:68:f7:3e:35: fe:b7:04:d5:e8:49:23:da:96:29:0f:f8:e3:ae:b5: 03:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:31:1D:07:23:9E:50:86:12:5D:FC:D3:B0:8A:76:31:E4:F9:18:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba0d353d-c483-4a75-8b4d-9310ac524acd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:2040::/48 Signature Algorithm: sha256WithRSAEncryption 40:50:a6:db:2d:6f:14:e9:a6:bf:01:e9:38:1e:5a:14:12:92: 1b:b6:4b:e7:ef:12:00:bf:48:39:e9:02:31:fb:88:ac:e7:5d: 34:1d:33:d8:5b:11:41:c3:67:52:e9:0f:2c:d9:96:1e:7d:f2: 7c:3b:b9:fe:ab:0d:bb:6b:60:db:d6:d0:07:e7:ba:1d:19:d4: 03:91:99:ba:a1:19:26:2b:3b:f0:c8:2f:af:71:60:e1:19:2e: aa:5c:39:25:9f:c9:10:bd:b5:a3:2f:a8:0d:71:a7:12:35:b6: 25:8c:8b:55:92:c6:0b:4f:04:7d:c6:8f:eb:2c:09:c6:2a:b3: c5:64:2a:82:45:ea:8b:14:05:06:92:55:34:fc:6b:cc:06:9c: 0e:4b:dd:c0:d5:69:07:62:00:b0:4b:49:ae:1f:f4:57:e7:8c: 5c:01:4a:63:45:0a:63:eb:8e:ec:c1:26:8f:51:e5:e6:97:d5: 69:45:9c:20:8d:0d:d6:42:c0:30:04:30:51:98:1f:da:fe:8f: 9a:89:ca:ab:ad:0e:e2:43:aa:ce:ca:f1:6c:e2:b4:48:af:b6: cf:aa:00:bf:a1:b8:a2:aa:a7:08:85:f3:c1:76:1a:27:fb:f2: bb:cb:2b:41:0d:4e:b9:19:dd:f7:d6:36:b8:5b:86:75:63:e0: 8f:db:43:f4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUe/esrfXKcbgs0LnOo+3AaW8m9eQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDA1MDA5WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzN2Y2NTdhM2IzNzBhZGYxNzVmNWExMDBiMmY1NjY3MzFl ZWM2ZmE5NjI5NmI0MjIzODU2NjAxNTk1YTk1MGUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIh7ap0jgWRoiutBqCsqyevxSKGTCM+ikuOBJ8LF9IjaCA e3i2qX0TiZfauDQi5m26dulYKlas2XC/z3Tc686CA9cWDMGGPw8XI2QsCDijISkt 1cuWSUc0VaU5bzepnyaLXgU0bAZUylPzjqHWhb4KV7TDTbHY6K+aWfMHwAGpRsRC 4ERXZSJ1agTI1JPjbhYRUvYL9G72DbPPc4qBybVxsi7Dph4bzXQM8asJieB6BI9N dGFDUfHX2alQiZoIa06IEBNm+0NOyTsrXN0kGtmWqlpDcRg/lPQd87ASWrJRRyTR MPUFMwosQipxaPc+Nf63BNXoSSPalikP+OOutQPNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOzEdByOeUIYSXfzTsIp2MeT5GDYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhMGQzNTNkLWM0ODMtNGE3NS04YjRkLTkzMTBhYzUyNGFjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hIEAwDQYJKoZIhvcNAQELBQADggEBAEBQptstbxTppr8B6TgeWhQS khu2S+fvEgC/SDnpAjH7iKznXTQdM9hbEUHDZ1LpDyzZlh598nw7uf6rDbtrYNvW 0Afnuh0Z1AORmbqhGSYrO/DIL69xYOEZLqpcOSWfyRC9taMvqA1xpxI1tiWMi1WS xgtPBH3Gj+ssCcYqs8VkKoJF6osUBQaSVTT8a8wGnA5L3cDVaQdiALBLSa4f9Ffn jFwBSmNFCmPrjuzBJo9R5eaX1WlFnCCNDdZCwDAEMFGYH9r+j5qJyqutDuJDqs7K 8WzitEivts+qAL+huKKqpwiF88F2Gif78rvLK0ENTrkZ3ffWNrhbhnVj4I/bQ/Q= -----END CERTIFICATE-----Generated at Mon Mar 2 04:55:12 2026 by rpki-client