$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bbd890ef-396c-4f8d-b314-7ad6f3f182e5.roa File: bbd890ef-396c-4f8d-b314-7ad6f3f182e5.roa (raw, json) Hash identifier: aTqgymrnR8t5c2BZrP/8VkDTJ+kgqRwP6LFr8N8srLE= Subject key identifier: C5:99:2D:D0:42:EB:AB:65:20:C8:B0:CF:D2:2D:CB:66:EE:CD:56:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BEC68F2B339555F7F54789FD2A5CBD1343B0DB9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bbd890ef-396c-4f8d-b314-7ad6f3f182e5.roa Signing time: Sun 01 Mar 2026 00:01:15 +0000 ROA not before: Sun 01 Mar 2026 00:01:15 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f68:4020::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ec:68:f2:b3:39:55:5f:7f:54:78:9f:d2:a5:cb:d1:34:3b:0d:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:01:15 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=1a2f3f51e41f0482e693dec1b4c7b67cff87b64925ee819144e016bf8f67ae69, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:4b:a3:7e:23:b8:8c:e1:9d:af:fe:00:75:a5: a5:1c:ea:46:5e:3b:ee:52:af:c8:fa:bc:e7:60:e0: 78:bd:e0:ae:5b:ef:93:5a:35:0a:c5:5b:24:cd:ed: 27:ae:08:ab:41:a5:ce:c8:55:cc:89:1a:fd:2c:64: f2:f2:a4:f4:a4:92:d6:de:44:08:9d:4d:71:18:f3: 6e:95:76:58:f0:7d:9b:6d:da:94:79:39:4a:4c:61: e3:f7:ff:cd:c6:57:06:c8:01:e2:82:cf:e3:ab:73: aa:1b:1a:06:4d:0a:f8:05:3b:57:55:30:bb:b8:c6: b8:d2:dc:a2:02:74:1e:b4:80:dd:0f:cb:1b:c2:72: f6:17:85:73:25:88:55:16:36:9b:1d:0e:80:76:d4: 42:88:6f:74:fa:d1:ec:f7:66:a2:b3:b8:64:e1:4a: c5:73:28:6f:ec:cc:cc:83:be:47:97:16:f0:77:ce: b9:e5:f6:40:2a:6a:b9:c4:78:19:45:ed:3e:62:63: 2a:29:af:78:37:4f:a9:b1:b3:b9:91:6a:c6:81:65: f6:8d:d6:88:36:8f:5f:9e:b9:25:45:0c:58:60:b1: 2d:7d:48:be:ca:f4:0b:6b:3c:b6:a1:c7:f8:07:93: 5a:94:9e:7e:dc:46:83:e2:e2:d3:fc:e7:8c:1f:d2: 93:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:99:2D:D0:42:EB:AB:65:20:C8:B0:CF:D2:2D:CB:66:EE:CD:56:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bbd890ef-396c-4f8d-b314-7ad6f3f182e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f68:4020::/46 Signature Algorithm: sha256WithRSAEncryption 22:76:de:37:db:26:5c:e9:bb:37:f2:15:63:46:b7:65:b5:b2: 48:f8:91:be:d1:48:1f:99:2c:36:15:03:8e:f7:ff:a3:49:3a: 6a:ec:07:02:20:0e:68:7f:57:d0:51:c8:f8:cf:a0:73:c8:7a: 41:36:d6:11:28:13:8f:38:6f:f7:37:67:a8:3b:d1:0a:5b:39: 99:34:a8:84:19:6c:63:d0:02:14:c9:6a:a8:0e:ee:cd:d3:ec: 21:e2:cf:50:e1:51:e1:4e:8c:b7:93:76:ad:55:55:d2:1d:66: 3f:17:3d:50:77:d0:d7:6b:f8:a0:eb:32:96:c2:b5:8a:26:4a: 8a:96:84:86:0b:2b:ec:12:cb:36:6c:00:ec:b1:dc:a1:62:e5: 05:c1:a6:a0:98:b0:99:c1:a1:ad:f3:ec:c6:77:63:e3:f6:0d: d9:cd:8e:bb:f6:9e:48:29:a7:5d:05:62:72:43:dc:19:80:9c: ac:40:6f:78:cc:71:93:d7:65:db:72:f2:9e:d2:4a:79:4e:ed: a4:25:ac:94:86:37:34:39:6b:65:83:de:3a:be:7c:5c:0d:3d: 8f:63:1c:90:e4:18:68:56:62:c9:b0:f6:23:a6:cd:26:0f:20: 6a:59:85:95:44:b0:0d:1d:45:d1:87:44:c8:79:36:85:ab:28: 00:b8:8b:5b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUe+xo8rM5VV9/VHif0qXL0TQ7DbkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAwMTE1WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTJmM2Y1MWU0MWYwNDgyZTY5M2RlYzFiNGM3YjY3Y2Zm ODdiNjQ5MjVlZTgxOTE0NGUwMTZiZjhmNjdhZTY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeS6N+I7iM4Z2v/gB1paUc6kZeO+5Sr8j6vOdg4Hi94K5b 75NaNQrFWyTN7SeuCKtBpc7IVcyJGv0sZPLypPSkktbeRAidTXEY826VdljwfZtt 2pR5OUpMYeP3/83GVwbIAeKCz+Orc6obGgZNCvgFO1dVMLu4xrjS3KICdB60gN0P yxvCcvYXhXMliFUWNpsdDoB21EKIb3T60ez3ZqKzuGThSsVzKG/szMyDvkeXFvB3 zrnl9kAqarnEeBlF7T5iYyopr3g3T6mxs7mRasaBZfaN1og2j1+euSVFDFhgsS19 SL7K9AtrPLahx/gHk1qUnn7cRoPi4tP854wf0pNxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxZkt0ELrq2UgyLDP0i3LZu7NVjowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JiZDg5MGVmLTM5NmMtNGY4ZC1iMzE0LTdhZDZmM2YxODJlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9oQCAwDQYJKoZIhvcNAQELBQADggEBACJ23jfbJlzpuzfyFWNGt2W1 skj4kb7RSB+ZLDYVA473/6NJOmrsBwIgDmh/V9BRyPjPoHPIekE21hEoE484b/c3 Z6g70QpbOZk0qIQZbGPQAhTJaqgO7s3T7CHiz1DhUeFOjLeTdq1VVdIdZj8XPVB3 0Ndr+KDrMpbCtYomSoqWhIYLK+wSyzZsAOyx3KFi5QXBpqCYsJnBoa3z7MZ3Y+P2 DdnNjrv2nkgpp10FYnJD3BmAnKxAb3jMcZPXZdty8p7SSnlO7aQlrJSGNzQ5a2WD 3jq+fFwNPY9jHJDkGGhWYsmw9iOmzSYPIGpZhZVEsA0dRdGHRMh5NoWrKAC4i1s= -----END CERTIFICATE-----Generated at Sun Mar 1 22:11:27 2026 by rpki-client