$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd7b206c-0527-49d0-914a-fe7ee32411b1.roa File: bd7b206c-0527-49d0-914a-fe7ee32411b1.roa (raw, json) Hash identifier: H6/gfhd6lPNYYrZwzxd5SSbX4sVKoxh7h/Wc2oqR/bg= Subject key identifier: 76:60:30:80:50:0D:CA:BF:9F:86:A6:6B:7F:39:8C:38:CE:35:47:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 171B291257CDA32D9F4523C742425DD6B6164A1F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd7b206c-0527-49d0-914a-fe7ee32411b1.roa Signing time: Tue 24 Feb 2026 00:51:12 +0000 ROA not before: Tue 24 Feb 2026 00:51:12 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffd:8066::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:1b:29:12:57:cd:a3:2d:9f:45:23:c7:42:42:5d:d6:b6:16:4a:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:51:12 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=27f929c6b883c8b5b7234250eb7d8d50c2b4cf2843c1b4023d0d2cc08897ecdf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:cf:cc:57:9d:64:c8:ab:6a:cf:04:8c:4a:54: 94:a7:f9:f3:13:dd:a5:18:51:f8:ed:74:99:a3:42: 25:63:c9:5e:41:16:92:02:5b:5b:1e:c3:1f:1f:3a: 38:8c:8c:35:14:b2:d2:fa:8a:2c:4a:0c:e1:2a:19: fd:00:c9:2f:bb:63:1e:bb:d1:ee:5f:1e:74:6e:71: a1:eb:0e:50:c6:12:b8:fc:3d:07:12:7e:b5:15:a2: 8d:39:a4:cc:4a:5f:5a:09:fb:10:57:1b:bb:5b:0d: bc:ba:a6:a2:6d:55:86:70:aa:c2:32:34:0d:61:e5: ac:f5:77:e1:44:a9:e0:17:43:08:f2:49:b3:29:42: f9:e3:13:81:9c:83:7e:75:05:6d:12:00:c8:f6:8a: f7:7d:9c:24:56:02:97:c4:51:9d:5a:6e:5b:16:dc: 15:6a:0f:d4:ba:d6:61:9c:8d:af:b2:24:5d:27:e7: 5e:38:bf:80:88:5d:c3:fc:f8:7a:b2:fa:a2:70:f5: bd:b4:75:62:fb:1d:63:0e:90:6c:18:89:be:70:8e: 1f:93:30:d7:f0:f0:9d:5a:5d:b7:a3:32:ed:e0:b1: dc:2c:9b:83:7d:06:6b:72:bd:ed:95:da:a3:fe:ff: dd:bf:8d:f0:df:c2:04:85:d9:34:86:77:3e:30:21: 5b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:60:30:80:50:0D:CA:BF:9F:86:A6:6B:7F:39:8C:38:CE:35:47:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd7b206c-0527-49d0-914a-fe7ee32411b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8066::/48 Signature Algorithm: sha256WithRSAEncryption 74:63:4e:bc:bb:a6:a0:5c:22:be:43:2e:f4:20:b8:f9:5c:68: 7a:e1:3e:48:df:ff:af:0e:e7:29:51:ac:0a:5d:eb:bd:61:0b: 77:0a:9a:39:75:86:a3:25:c4:ae:bf:9e:3f:62:ac:7a:7a:78: 8d:ea:92:5a:b1:04:20:82:e3:25:c7:37:fa:47:5f:ee:4d:8b: 49:ad:62:b6:d7:6d:39:32:49:a1:51:eb:46:58:f6:90:97:01: 27:b9:15:b5:84:c3:5d:87:86:fa:8f:b5:0d:eb:c9:eb:ac:ad: 5f:24:42:9a:4e:97:29:89:e3:93:4b:81:8c:97:27:57:af:ef: c5:07:8b:2e:e8:5b:b3:13:19:05:2a:6a:79:a4:1f:45:ad:11: f1:ae:1b:7b:6e:40:d8:e7:f1:e5:10:f3:1e:41:3e:a5:5b:ed: ac:57:ac:f9:a4:ae:34:17:5b:b0:4e:cd:54:4c:81:68:94:88: 58:a9:66:c6:50:80:8a:de:c1:ab:63:82:9d:1e:98:f6:8a:62: d4:d3:75:80:f5:68:dd:a4:63:4d:cd:88:3c:84:d0:80:2a:69: 6d:8e:47:ff:49:8c:6d:e0:d6:e6:d1:0d:be:c8:d1:cf:d2:16: ec:e1:10:a2:92:39:1b:dd:67:c6:f1:f7:a2:b4:2c:7d:43:da: 8f:45:f7:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFxspElfNoy2fRSPHQkJd1rYWSh8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDA1MTEyWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyN2Y5MjljNmI4ODNjOGI1YjcyMzQyNTBlYjdkOGQ1MGMy YjRjZjI4NDNjMWI0MDIzZDBkMmNjMDg4OTdlY2RmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWz8xXnWTIq2rPBIxKVJSn+fMT3aUYUfjtdJmjQiVjyV5B FpICW1sewx8fOjiMjDUUstL6iixKDOEqGf0AyS+7Yx670e5fHnRucaHrDlDGErj8 PQcSfrUVoo05pMxKX1oJ+xBXG7tbDby6pqJtVYZwqsIyNA1h5az1d+FEqeAXQwjy SbMpQvnjE4Gcg351BW0SAMj2ivd9nCRWApfEUZ1ablsW3BVqD9S61mGcja+yJF0n 5144v4CIXcP8+Hqy+qJw9b20dWL7HWMOkGwYib5wjh+TMNfw8J1aXbejMu3gsdws m4N9Bmtyve2V2qP+/92/jfDfwgSF2TSGdz4wIVvrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdmAwgFANyr+fhqZrfzmMOM41R4AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JkN2IyMDZjLTA1MjctNDlkMC05MTRhLWZlN2VlMzI0MTFiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gGYwDQYJKoZIhvcNAQELBQADggEBAHRjTry7pqBcIr5DLvQguPlc aHrhPkjf/68O5ylRrApd671hC3cKmjl1hqMlxK6/nj9irHp6eI3qklqxBCCC4yXH N/pHX+5Ni0mtYrbXbTkySaFR60ZY9pCXASe5FbWEw12HhvqPtQ3ryeusrV8kQppO lymJ45NLgYyXJ1ev78UHiy7oW7MTGQUqanmkH0WtEfGuG3tuQNjn8eUQ8x5BPqVb 7axXrPmkrjQXW7BOzVRMgWiUiFipZsZQgIrewatjgp0emPaKYtTTdYD1aN2kY03N iDyE0IAqaW2OR/9JjG3g1ubRDb7I0c/SFuzhEKKSORvdZ8bx96K0LH1D2o9F96s= -----END CERTIFICATE-----Generated at Mon Mar 2 00:10:31 2026 by rpki-client