$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba11a472-2617-4072-8858-a08b9e357193.roa File: ba11a472-2617-4072-8858-a08b9e357193.roa (raw, json) Hash identifier: YFNq/yZ48kL7+dXXv9piUbor81ChZWyA8U1UGksnZz4= Subject key identifier: F4:74:16:DE:25:4A:3F:60:5C:EF:78:3D:6B:E2:91:E2:13:6A:AE:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D985AC0E74B76CC5718D079EA25D1D22E360C6B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba11a472-2617-4072-8858-a08b9e357193.roa Signing time: Sat 21 Feb 2026 00:20:56 +0000 ROA not before: Sat 21 Feb 2026 00:20:56 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fec:2c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:98:5a:c0:e7:4b:76:cc:57:18:d0:79:ea:25:d1:d2:2e:36:0c:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 00:20:56 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=0d9ac81a6b68a5a52d1233d11e3bdbd75764bed8f1a716733710aecea3800a5e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fe:a5:aa:71:f2:eb:7f:60:49:4e:71:b1:de: d1:b7:93:78:ed:73:8a:7f:eb:c8:f4:26:d8:f0:e3: a3:87:a5:e6:f5:b3:93:55:53:49:85:25:86:96:99: 69:57:89:bb:c2:fb:8e:cb:1f:f1:44:b1:5e:0f:1b: ba:58:f6:89:03:f7:7b:f2:d9:12:82:24:99:0a:26: bf:bc:8e:b1:d3:4c:2e:c9:25:f6:2e:8d:d2:63:b9: b8:59:05:65:fc:fc:ad:12:19:f6:d5:1a:e9:0d:ab: e4:7e:a4:17:e7:95:f9:07:55:4a:d5:02:ed:43:a9: e6:d4:e5:7e:64:32:cf:82:79:48:af:2e:35:ec:1c: 34:47:a9:36:67:4b:ba:a0:39:e8:7a:24:9c:75:73: 9d:16:71:09:a4:f5:7b:81:e3:5b:e1:0a:46:24:aa: 83:e9:23:96:c8:0e:fd:e5:a2:ea:ef:ca:cc:06:f9: 6f:54:d3:db:e8:6f:59:33:03:60:6d:bc:c9:f0:ed: f4:55:61:26:9a:43:35:96:90:08:ad:53:2b:89:39: 77:7b:8d:81:b1:b6:98:a3:91:33:c5:d3:08:d0:31: a9:b7:5d:32:b3:7c:e7:23:d5:e2:64:b4:00:2d:2a: 61:b1:0e:10:70:4a:52:54:5e:3e:78:2b:f6:33:1e: 1e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:74:16:DE:25:4A:3F:60:5C:EF:78:3D:6B:E2:91:E2:13:6A:AE:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba11a472-2617-4072-8858-a08b9e357193.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fec:2c00::/48 Signature Algorithm: sha256WithRSAEncryption 89:d4:46:67:30:51:79:1f:8a:f4:0f:a5:7a:27:e1:4e:23:3f: c4:05:e8:ed:e5:d4:44:59:53:80:45:dd:22:37:31:00:30:28: 86:9c:b7:8a:28:38:ab:3e:bd:68:69:4f:7f:41:00:e1:de:3f: 47:31:8b:34:2d:15:e0:c4:7b:89:17:fe:ea:a8:bd:d5:7d:23: b1:7c:7b:50:f9:c4:91:55:da:96:ed:50:a1:75:f8:48:bc:95: a3:33:33:58:80:ea:20:71:99:bf:6a:25:bf:b9:cb:a2:21:d3: e3:65:73:57:e4:20:9c:4d:12:8b:c6:58:04:0a:4d:5d:52:33: f3:05:60:00:82:b9:fe:09:68:6e:e9:cf:73:e5:3d:32:d1:14: af:c7:29:c5:ab:ba:c0:7c:0f:e6:4d:8a:a7:8b:b5:a8:29:a8: 18:92:ac:11:c3:8f:39:ec:db:2a:41:30:b5:ac:01:93:19:81: 9d:a1:1f:7b:fb:20:af:8c:f3:1a:60:92:ae:57:f3:27:82:cb: f5:a8:9e:e0:47:ac:b2:d1:6d:5b:08:cd:75:90:d3:7d:90:b5: e6:0b:2e:ba:3d:43:f5:58:62:55:b6:0c:bc:4a:8c:f1:f8:79: 77:67:8d:06:21:aa:c9:a8:e9:49:1f:67:21:d6:84:d7:0f:97: 1e:3d:90:a1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDZhawOdLdsxXGNB56iXR0i42DGswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDAyMDU2WhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDlhYzgxYTZiNjhhNWE1MmQxMjMzZDExZTNiZGJkNzU3 NjRiZWQ4ZjFhNzE2NzMzNzEwYWVjZWEzODAwYTVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf/qWqcfLrf2BJTnGx3tG3k3jtc4p/68j0Jtjw46OHpeb1 s5NVU0mFJYaWmWlXibvC+47LH/FEsV4PG7pY9okD93vy2RKCJJkKJr+8jrHTTC7J JfYujdJjubhZBWX8/K0SGfbVGukNq+R+pBfnlfkHVUrVAu1DqebU5X5kMs+CeUiv LjXsHDRHqTZnS7qgOeh6JJx1c50WcQmk9XuB41vhCkYkqoPpI5bIDv3lourvyswG +W9U09vob1kzA2BtvMnw7fRVYSaaQzWWkAitUyuJOXd7jYGxtpijkTPF0wjQMam3 XTKzfOcj1eJktAAtKmGxDhBwSlJUXj54K/YzHh63AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9HQW3iVKP2Bc73g9a+KR4hNqrtwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhMTFhNDcyLTI2MTctNDA3Mi04ODU4LWEwOGI5ZTM1NzE5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/sLAAwDQYJKoZIhvcNAQELBQADggEBAInURmcwUXkfivQPpXon4U4j P8QF6O3l1ERZU4BF3SI3MQAwKIact4ooOKs+vWhpT39BAOHeP0cxizQtFeDEe4kX /uqovdV9I7F8e1D5xJFV2pbtUKF1+Ei8laMzM1iA6iBxmb9qJb+5y6Ih0+Nlc1fk IJxNEovGWAQKTV1SM/MFYACCuf4JaG7pz3PlPTLRFK/HKcWrusB8D+ZNiqeLtagp qBiSrBHDjzns2ypBMLWsAZMZgZ2hH3v7IK+M8xpgkq5X8yeCy/WonuBHrLLRbVsI zXWQ032QteYLLro9Q/VYYlW2DLxKjPH4eXdnjQYhqsmo6UkfZyHWhNcPlx49kKE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:35:25 2026 by rpki-client