$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf8d77dc-48f9-49c2-ac2d-febcf8af2bd6.roa File: bf8d77dc-48f9-49c2-ac2d-febcf8af2bd6.roa (raw, json) Hash identifier: dw4QUxM1M6CsdLn5jN2CU/rOIf+LCeCmNY1W3+gZXxg= Subject key identifier: A9:71:D8:EE:B6:68:AA:76:9F:FB:E1:C5:67:20:49:34:69:03:8C:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D0C05E10D9A74E15DC5922B5ACDBE25FD6455A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf8d77dc-48f9-49c2-ac2d-febcf8af2bd6.roa Signing time: Tue 24 Feb 2026 02:10:50 +0000 ROA not before: Tue 24 Feb 2026 02:10:50 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:8050::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:0c:05:e1:0d:9a:74:e1:5d:c5:92:2b:5a:cd:be:25:fd:64:55:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:10:50 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=7916d74d52cb5b5c64f312ac37aa3f86126a0910768cd40240934cf871f6f827, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:01:c4:55:87:ec:b6:f4:4c:d6:86:a8:fc:d9: 83:35:8f:e2:c2:d3:67:87:a6:64:4d:68:27:69:1f: b9:34:d5:50:92:5d:cc:91:11:b6:27:ec:58:04:32: 15:db:7a:d2:1d:a8:7f:f2:64:97:22:94:6f:76:d5: cf:c2:99:07:30:50:24:69:ca:7a:2b:14:0e:6e:32: c1:c8:cc:70:79:11:1d:d2:41:e5:3e:ff:33:c9:93: 4c:45:5b:3e:b5:91:65:f0:ac:4f:46:1a:55:18:67: 49:4f:e1:be:2e:b2:ed:ec:ce:cb:1c:6f:94:a5:cf: 21:7e:96:b8:c7:a7:16:07:b1:f5:42:cd:0f:2c:7d: b1:8a:4f:6e:44:f5:d1:0b:2e:7f:05:8d:93:4e:85: 27:7c:20:95:8f:e8:92:66:8c:48:da:ef:c9:24:b9: 49:93:a1:91:5d:86:0d:8f:82:b8:f1:79:92:f3:b9: 9b:0e:20:7c:00:e3:88:e3:f1:d2:3f:39:d1:4b:e8: f7:c3:95:ce:5c:f9:63:09:fc:b7:ab:e3:98:86:14: a4:36:c7:08:45:b9:46:e0:5e:cc:4e:39:0b:d5:0f: f6:7d:61:da:4d:dd:79:d6:fc:d4:24:a4:82:55:b2: ee:82:a2:90:29:96:61:80:9a:32:34:e6:c4:14:eb: a3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:71:D8:EE:B6:68:AA:76:9F:FB:E1:C5:67:20:49:34:69:03:8C:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf8d77dc-48f9-49c2-ac2d-febcf8af2bd6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8050::/48 Signature Algorithm: sha256WithRSAEncryption 0b:17:2a:55:6b:86:d3:41:43:c1:d0:92:c4:03:58:1d:85:78: 6c:05:52:49:5e:dd:dc:13:22:64:78:67:a4:d8:af:90:d5:23: 98:0f:84:5e:7f:cf:95:de:50:94:1f:ad:5b:d6:ce:f2:7e:0f: 16:5a:07:db:17:6f:9d:b5:cb:47:ae:69:6d:16:b9:6b:6b:fb: 86:b0:28:75:54:36:fd:13:77:39:16:34:58:e5:59:69:95:13: f8:4a:df:9e:3f:fa:a3:56:87:11:37:79:4f:c9:87:a7:11:2d: eb:cc:23:cf:7b:a7:eb:62:e9:51:44:4a:5e:1b:95:fa:29:3f: 0c:6f:44:1e:20:76:f1:b5:03:3e:12:b5:4f:00:a9:4f:ea:b7: 7d:1e:e5:f4:47:fb:83:1d:ef:a9:6a:a8:58:dc:c0:c3:6d:32: 3b:0c:07:2f:29:b3:b1:09:62:97:44:01:61:e4:91:8a:f6:af: a0:3e:31:8f:39:17:a6:a3:10:71:70:d4:1a:ea:3b:4b:36:de: c7:f4:c6:27:de:3e:9d:21:41:1e:e0:d6:b8:83:54:e1:ff:91: 35:59:c9:89:6b:5f:b9:15:5f:76:94:9a:ea:80:1c:64:04:71: 48:a9:37:d0:2e:55:00:de:92:af:82:d6:63:3b:36:34:b3:9e: fe:0f:3b:af -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHQwF4Q2adOFdxZIrWs2+Jf1kVaEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIxMDUwWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTE2ZDc0ZDUyY2I1YjVjNjRmMzEyYWMzN2FhM2Y4NjEy NmEwOTEwNzY4Y2Q0MDI0MDkzNGNmODcxZjZmODI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKAcRVh+y29EzWhqj82YM1j+LC02eHpmRNaCdpH7k01VCS XcyREbYn7FgEMhXbetIdqH/yZJcilG921c/CmQcwUCRpynorFA5uMsHIzHB5ER3S QeU+/zPJk0xFWz61kWXwrE9GGlUYZ0lP4b4usu3szsscb5SlzyF+lrjHpxYHsfVC zQ8sfbGKT25E9dELLn8FjZNOhSd8IJWP6JJmjEja78kkuUmToZFdhg2PgrjxeZLz uZsOIHwA44jj8dI/OdFL6PfDlc5c+WMJ/Ler45iGFKQ2xwhFuUbgXsxOOQvVD/Z9 YdpN3XnW/NQkpIJVsu6CopAplmGAmjI05sQU66P5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqXHY7rZoqnaf++HFZyBJNGkDjOgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmOGQ3N2RjLTQ4ZjktNDljMi1hYzJkLWZlYmNmOGFmMmJkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgFAwDQYJKoZIhvcNAQELBQADggEBAAsXKlVrhtNBQ8HQksQDWB2F eGwFUkle3dwTImR4Z6TYr5DVI5gPhF5/z5XeUJQfrVvWzvJ+DxZaB9sXb521y0eu aW0WuWtr+4awKHVUNv0TdzkWNFjlWWmVE/hK354/+qNWhxE3eU/Jh6cRLevMI897 p+ti6VFESl4blfopPwxvRB4gdvG1Az4StU8AqU/qt30e5fRH+4Md76lqqFjcwMNt MjsMBy8ps7EJYpdEAWHkkYr2r6A+MY85F6ajEHFw1BrqO0s23sf0xifePp0hQR7g 1riDVOH/kTVZyYlrX7kVX3aUmuqAHGQEcUipN9AuVQDekq+C1mM7NjSznv4PO68= -----END CERTIFICATE-----Generated at Mon Mar 2 03:07:41 2026 by rpki-client