$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd2952bd-ccae-41d1-a73e-254ac17830cd.roa File: bd2952bd-ccae-41d1-a73e-254ac17830cd.roa (raw, json) Hash identifier: L0jipQhWWzme24LR/uydn0wYgoXOlzC1L0OXCvTR0mg= Subject key identifier: 5F:B9:C7:42:E3:6C:82:3B:F4:23:23:CC:39:AD:38:FB:76:FF:85:83 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 521A1955F6605D333681BB8838433A722F2B52E8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd2952bd-ccae-41d1-a73e-254ac17830cd.roa Signing time: Wed 25 Feb 2026 00:20:09 +0000 ROA not before: Wed 25 Feb 2026 00:20:09 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f1f:4000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:1a:19:55:f6:60:5d:33:36:81:bb:88:38:43:3a:72:2f:2b:52:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:20:09 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=ebd2f7b332a2c92ff5ca53b1e958b0670142106dbfed82bf256c0ea5938388c2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7d:7a:0e:6f:ae:2b:c1:83:21:91:6c:7b:77: e8:f8:4c:f4:8d:51:ba:95:72:56:55:4d:21:22:ec: 7d:97:dd:ac:66:5b:72:5f:73:03:e0:7b:45:9e:a0: f6:9d:dc:20:1d:22:5d:01:c8:dc:47:b1:30:52:10: 3b:68:93:9a:07:fe:84:23:09:24:c4:f1:0b:3c:ab: 69:a1:40:fd:58:27:80:36:63:3d:ae:59:3d:1d:19: 5d:f4:0f:bc:de:cb:e5:4e:10:e5:70:66:86:39:58: 6b:5a:e8:c4:13:4c:47:64:07:72:88:88:4d:4f:fa: f9:3a:80:f8:fe:d4:00:5e:b7:96:b7:63:b6:8e:14: 93:68:c3:48:d6:88:d4:ce:69:fa:4b:4d:b9:bc:a3: dc:67:2c:1d:8e:bd:8e:70:0c:3c:5b:c1:52:a4:ab: ae:8b:71:0c:86:05:fd:f9:01:7c:e9:6b:a1:c1:cf: 6a:a9:c0:3d:7f:1e:39:ce:b6:91:24:10:d7:30:df: 39:12:3f:ed:3b:46:d9:00:0f:43:e3:1a:87:b1:33: 20:0a:31:a6:d5:fc:6c:33:79:e5:20:c8:31:70:cf: 1d:b3:af:c8:a6:20:51:ca:eb:13:50:58:21:5b:85: e1:c2:10:d2:9f:5a:db:24:38:b1:dc:5c:d0:12:5a: 87:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:B9:C7:42:E3:6C:82:3B:F4:23:23:CC:39:AD:38:FB:76:FF:85:83 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd2952bd-ccae-41d1-a73e-254ac17830cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1f:4000::/37 Signature Algorithm: sha256WithRSAEncryption 0f:55:85:a5:8a:06:53:56:01:fe:38:16:13:95:fb:69:69:d8: e8:57:1b:74:47:88:e9:03:80:73:e7:ae:e6:28:aa:5a:01:1e: d5:9d:7d:fc:1b:f8:36:e7:0a:1a:a3:b4:b3:2c:54:e2:9c:fa: 21:1e:36:d2:56:ed:68:bc:fa:89:24:78:6e:cd:78:a9:20:a9: 55:a7:c1:68:01:1c:1c:83:a5:d8:da:5f:d3:0b:6e:9a:79:05: 2e:91:5b:38:5a:22:f6:57:0e:ee:8e:5b:04:12:17:a1:f0:3c: c9:0e:96:4e:cb:c0:f6:ea:71:a3:f8:3f:bb:a4:1d:db:79:60: ac:3d:25:fc:8b:3e:02:b5:e8:10:94:4c:7d:93:08:6b:5c:4f: d8:53:d4:7d:ac:ac:08:03:b4:9c:23:44:1d:5e:0d:b9:50:ec: 67:8f:81:53:8f:75:f0:9f:b7:3d:d9:3d:cb:0a:25:19:ae:ea: c9:48:3b:e8:6c:92:7c:fd:47:4f:0d:da:7d:04:6c:28:db:b4: d5:50:dd:db:7d:a3:6a:cb:99:59:25:c6:d1:4e:f4:a1:fd:9c: 3c:60:d7:04:d4:10:95:87:76:57:b8:b7:39:36:e2:1e:2c:c4: 10:05:51:57:2a:08:40:21:8e:ee:ee:d6:da:3d:b7:64:69:7d: e2:e9:c5:9a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUhoZVfZgXTM2gbuIOEM6ci8rUugwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAyMDA5WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmQyZjdiMzMyYTJjOTJmZjVjYTUzYjFlOTU4YjA2NzAx NDIxMDZkYmZlZDgyYmYyNTZjMGVhNTkzODM4OGMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDafXoOb64rwYMhkWx7d+j4TPSNUbqVclZVTSEi7H2X3axm W3JfcwPge0WeoPad3CAdIl0ByNxHsTBSEDtok5oH/oQjCSTE8Qs8q2mhQP1YJ4A2 Yz2uWT0dGV30D7zey+VOEOVwZoY5WGta6MQTTEdkB3KIiE1P+vk6gPj+1ABet5a3 Y7aOFJNow0jWiNTOafpLTbm8o9xnLB2OvY5wDDxbwVKkq66LcQyGBf35AXzpa6HB z2qpwD1/HjnOtpEkENcw3zkSP+07RtkAD0PjGoexMyAKMabV/GwzeeUgyDFwzx2z r8imIFHK6xNQWCFbheHCENKfWtskOLHcXNASWodHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUX7nHQuNsgjv0IyPMOa04+3b/hYMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JkMjk1MmJkLWNjYWUtNDFkMS1hNzNlLTI1NGFjMTc4MzBjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8fQDANBgkqhkiG9w0BAQsFAAOCAQEAD1WFpYoGU1YB/jgWE5X7aWnY 6FcbdEeI6QOAc+eu5iiqWgEe1Z19/Bv4NucKGqO0syxU4pz6IR420lbtaLz6iSR4 bs14qSCpVafBaAEcHIOl2Npf0wtumnkFLpFbOFoi9lcO7o5bBBIXofA8yQ6WTsvA 9upxo/g/u6Qd23lgrD0l/Is+ArXoEJRMfZMIa1xP2FPUfaysCAO0nCNEHV4NuVDs Z4+BU4918J+3Pdk9ywolGa7qyUg76GySfP1HTw3afQRsKNu01VDd232jasuZWSXG 0U70of2cPGDXBNQQlYd2V7i3OTbiHizEEAVRVyoIQCGO7u7W2j23ZGl94unFmg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:50 2026 by rpki-client