$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba0ecf03-8344-40b3-b6e9-02cbee7fa1f5.roa File: ba0ecf03-8344-40b3-b6e9-02cbee7fa1f5.roa (raw, json) Hash identifier: Z/JmgJ+FwMidTBVk0A0No4H8j+XTOYzTY+I/PyB59ks= Subject key identifier: 3F:5E:2E:3D:DB:49:7B:42:08:61:22:7A:58:2E:29:97:28:DF:AD:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3477FC76255BD42064DDEDAC05F214BA978ED0B7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba0ecf03-8344-40b3-b6e9-02cbee7fa1f5.roa Signing time: Wed 25 Feb 2026 02:00:48 +0000 ROA not before: Wed 25 Feb 2026 02:00:48 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff6:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:77:fc:76:25:5b:d4:20:64:dd:ed:ac:05:f2:14:ba:97:8e:d0:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:00:48 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=bdb81af21c6859e4739a3b4cdf77baea3a854ea982ef09d7b925ae7ae85ff97f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:28:47:ab:26:98:a3:9f:13:0e:36:90:38:b9: 00:0f:19:05:5b:41:8a:9c:41:73:46:77:e7:ac:0a: ca:37:b8:1b:a7:f5:ac:5d:67:7b:3b:4d:62:fc:0c: 84:fc:80:76:18:6f:c2:6a:81:a2:bf:b2:35:11:33: 5d:6d:c0:47:3f:68:9b:e2:cd:f1:b5:37:19:77:7b: d0:0c:b6:cf:bb:92:08:69:1c:b8:3a:c6:c2:e6:bc: 26:b8:b1:0d:43:8f:80:9c:15:ff:63:8a:ce:34:12: 4a:36:27:b8:85:a4:2b:99:08:02:f4:ce:ec:c5:f7: 9e:d4:b6:fb:40:5e:c9:55:b9:ef:9a:4a:6b:a5:02: fe:ea:ba:81:1b:de:24:7b:9d:3d:de:fe:8e:e6:e4: c0:ea:be:bd:02:d9:e3:2f:ac:08:ae:51:e0:63:83: e0:84:d8:78:f5:0b:46:28:39:75:d1:40:f1:c1:7d: 94:2d:e5:75:bd:bd:d9:84:ea:a6:de:cb:7d:2b:e6: 06:52:9c:a6:16:0e:43:d4:72:f6:ba:7e:e4:f9:9f: c3:f2:43:68:39:a1:69:7a:25:77:3f:24:57:34:e0: a2:da:7a:2a:9f:d3:2b:19:1a:d6:64:7a:5b:de:4f: 8a:d9:bc:30:48:fa:3b:4f:40:37:ca:5a:bf:b5:f1: b8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:5E:2E:3D:DB:49:7B:42:08:61:22:7A:58:2E:29:97:28:DF:AD:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba0ecf03-8344-40b3-b6e9-02cbee7fa1f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:2000::/48 Signature Algorithm: sha256WithRSAEncryption a4:3a:9f:a5:a1:6e:54:74:a9:9b:bf:9b:45:54:0b:1b:94:65: 37:b2:97:1a:fe:4a:c9:e1:13:71:61:03:32:44:f0:8c:bb:28: 31:76:08:a3:79:fe:7f:d0:7c:2c:6d:16:42:1a:fb:23:ef:49: 7b:b0:79:db:cf:88:99:a5:40:57:bd:49:7d:9f:67:b1:ee:38: f6:52:09:58:72:72:4c:ac:07:e0:0b:71:02:6c:26:89:df:48: b2:26:90:58:1b:1e:6c:85:5b:c5:df:36:d7:50:24:b9:04:52: 90:72:bf:32:3b:cd:46:85:37:73:81:80:06:6a:a2:2f:8c:18: 7a:95:87:28:5b:cc:ef:fa:47:cf:3a:51:25:05:b2:80:2f:2a: 2b:5d:cb:38:f9:96:dd:85:a7:79:5f:f0:e5:a6:1d:52:f5:e8: 7a:35:b9:48:a9:13:22:3f:23:5f:b7:8b:b6:02:b9:e7:fd:4e: 09:d5:00:7d:df:78:45:40:a9:e7:dc:72:de:a5:19:72:30:85: 67:c7:04:1e:39:ed:57:c4:04:94:be:9a:84:69:21:c3:f7:60: 53:9b:3b:6b:80:30:16:e4:8e:e0:6b:e9:92:9b:73:f5:a2:8a: bf:de:8b:16:49:2d:17:32:ac:bd:3e:52:7e:03:ba:58:90:cf: 88:c5:4e:bf -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNHf8diVb1CBk3e2sBfIUupeO0LcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDIwMDQ4WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZGI4MWFmMjFjNjg1OWU0NzM5YTNiNGNkZjc3YmFlYTNh ODU0ZWE5ODJlZjA5ZDdiOTI1YWU3YWU4NWZmOTdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAKEerJpijnxMONpA4uQAPGQVbQYqcQXNGd+esCso3uBun 9axdZ3s7TWL8DIT8gHYYb8JqgaK/sjURM11twEc/aJvizfG1Nxl3e9AMts+7kghp HLg6xsLmvCa4sQ1Dj4CcFf9jis40Eko2J7iFpCuZCAL0zuzF957UtvtAXslVue+a SmulAv7quoEb3iR7nT3e/o7m5MDqvr0C2eMvrAiuUeBjg+CE2Hj1C0YoOXXRQPHB fZQt5XW9vdmE6qbey30r5gZSnKYWDkPUcva6fuT5n8PyQ2g5oWl6JXc/JFc04KLa eiqf0ysZGtZkelveT4rZvDBI+jtPQDfKWr+18bhlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUP14uPdtJe0IIYSJ6WC4plyjfrfAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhMGVjZjAzLTgzNDQtNDBiMy1iNmU5LTAyY2JlZTdmYTFmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/2IAAwDQYJKoZIhvcNAQELBQADggEBAKQ6n6WhblR0qZu/m0VUCxuU ZTeylxr+SsnhE3FhAzJE8Iy7KDF2CKN5/n/QfCxtFkIa+yPvSXuwedvPiJmlQFe9 SX2fZ7HuOPZSCVhyckysB+ALcQJsJonfSLImkFgbHmyFW8XfNtdQJLkEUpByvzI7 zUaFN3OBgAZqoi+MGHqVhyhbzO/6R886USUFsoAvKitdyzj5lt2Fp3lf8OWmHVL1 6Ho1uUipEyI/I1+3i7YCuef9TgnVAH3feEVAqefcct6lGXIwhWfHBB457VfEBJS+ moRpIcP3YFObO2uAMBbkjuBr6ZKbc/Wiir/eixZJLRcyrL0+Un4DuliQz4jFTr8= -----END CERTIFICATE-----Generated at Mon Mar 2 02:00:19 2026 by rpki-client