$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0ba95f7-f662-491c-8d5f-68532e494cdd.roa File: c0ba95f7-f662-491c-8d5f-68532e494cdd.roa (raw, json) Hash identifier: G3HksH7vjuEh5jaN/FsvaQrhHwt2b5xY8CyMC4HpEb4= Subject key identifier: BE:C2:3B:B0:F2:D9:77:91:9F:2E:17:E4:08:32:15:75:15:33:98:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CC467108F1E513CFD00A1F427B3F74EA01BA57A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0ba95f7-f662-491c-8d5f-68532e494cdd.roa Signing time: Wed 25 Feb 2026 01:20:06 +0000 ROA not before: Wed 25 Feb 2026 01:20:06 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f17:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:c4:67:10:8f:1e:51:3c:fd:00:a1:f4:27:b3:f7:4e:a0:1b:a5:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:20:06 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=3899477b85b4440f1a169437e96a36f01ac65da73c1a266ac409d5e469d26e6a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e8:a4:9f:c7:f7:18:0f:a8:65:99:43:35:4c: 2a:f0:ce:76:cc:16:33:4c:60:4a:42:88:8c:dd:ae: 0e:48:e1:8b:39:d4:ba:1e:0a:e7:af:ba:53:1d:24: 42:26:ee:e1:e8:5d:49:38:09:da:6e:a8:31:39:47: 10:bf:f1:f5:2b:f9:2b:ed:5f:10:63:30:6b:69:4f: 29:49:e8:ee:25:91:86:03:f1:ba:a7:8c:e4:17:29: ba:29:de:5c:86:13:2d:b3:84:e9:8f:da:6e:5e:2c: c8:07:ef:75:72:fb:a8:f9:80:b2:42:ac:8c:9d:41: 52:58:31:17:2c:77:e1:df:0b:64:79:fe:90:c0:9c: 2b:74:7a:6c:45:c1:84:62:99:43:4d:6d:81:a7:d3: 5f:0e:51:5f:a3:2c:f8:45:78:fb:19:d7:00:68:ae: b4:77:23:10:5d:ce:71:d3:13:e4:e8:6e:e9:0b:9a: 1a:79:9d:14:50:b0:0e:58:a7:79:29:a1:9b:50:fd: 01:29:c1:87:99:2e:2f:b2:02:d7:59:e1:d5:05:5c: be:d1:3c:23:5e:a7:ac:13:5c:e7:99:42:3c:1c:dc: 4b:4f:58:32:4f:31:7a:4d:42:6a:c2:e2:a7:03:49: b5:37:7e:a9:93:10:a0:aa:a2:48:61:41:95:15:dc: e3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C2:3B:B0:F2:D9:77:91:9F:2E:17:E4:08:32:15:75:15:33:98:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0ba95f7-f662-491c-8d5f-68532e494cdd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f17:4000::/36 Signature Algorithm: sha256WithRSAEncryption 19:40:30:67:94:6e:c8:36:94:57:a8:3f:ef:70:e5:40:12:19: 19:34:d1:45:b3:81:77:f4:bf:3c:af:c8:ea:2c:cb:90:14:14: 4a:6c:12:ba:c5:c6:74:3c:c3:23:97:64:b1:79:a6:d3:4e:65: 21:c3:fa:94:40:f8:43:3b:4e:97:b7:ef:33:ba:1d:35:b9:a1: 46:15:66:f6:8c:f7:bc:c7:3f:9f:8c:8b:dc:91:12:88:a0:dc: 8d:8e:0f:e5:56:bf:17:f3:10:6b:fb:e4:f1:82:81:89:72:d9: bf:2b:0b:3a:94:a8:eb:e7:19:95:34:0c:d7:ec:1c:58:6b:e4: fd:86:22:98:28:c0:95:6b:d5:ae:56:97:99:34:69:07:04:a3: da:38:3b:e1:d8:e3:4e:38:e5:13:82:74:49:be:43:dd:a9:33: 4c:42:0f:69:33:44:5e:66:60:09:25:8c:43:9c:0c:71:12:02: e2:e8:cf:79:a5:e4:94:76:17:f6:f7:0d:ca:6c:9e:a8:e4:7e: 2e:be:d2:2c:65:72:37:a5:dc:ee:a6:d3:96:b0:66:16:90:10: 41:7f:65:a0:ac:87:c2:e8:28:e9:5a:8d:26:44:ff:ee:b6:c4: c8:b5:4d:e7:b6:d1:57:42:6a:96:62:f3:88:7a:f5:42:1c:14: 99:15:8b:4e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPMRnEI8eUTz9AKH0J7P3TqAbpXowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEyMDA2WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODk5NDc3Yjg1YjQ0NDBmMWExNjk0MzdlOTZhMzZmMDFh YzY1ZGE3M2MxYTI2NmFjNDA5ZDVlNDY5ZDI2ZTZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC46KSfx/cYD6hlmUM1TCrwznbMFjNMYEpCiIzdrg5I4Ys5 1LoeCuevulMdJEIm7uHoXUk4CdpuqDE5RxC/8fUr+SvtXxBjMGtpTylJ6O4lkYYD 8bqnjOQXKbop3lyGEy2zhOmP2m5eLMgH73Vy+6j5gLJCrIydQVJYMRcsd+HfC2R5 /pDAnCt0emxFwYRimUNNbYGn018OUV+jLPhFePsZ1wBorrR3IxBdznHTE+TobukL mhp5nRRQsA5Yp3kpoZtQ/QEpwYeZLi+yAtdZ4dUFXL7RPCNep6wTXOeZQjwc3EtP WDJPMXpNQmrC4qcDSbU3fqmTEKCqokhhQZUV3OOvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvsI7sPLZd5GfLhfkCDIVdRUzmJMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwYmE5NWY3LWY2NjItNDkxYy04ZDVmLTY4NTMyZTQ5NGNkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8XQDANBgkqhkiG9w0BAQsFAAOCAQEAGUAwZ5RuyDaUV6g/73DlQBIZ GTTRRbOBd/S/PK/I6izLkBQUSmwSusXGdDzDI5dksXmm005lIcP6lED4QztOl7fv M7odNbmhRhVm9oz3vMc/n4yL3JESiKDcjY4P5Va/F/MQa/vk8YKBiXLZvysLOpSo 6+cZlTQM1+wcWGvk/YYimCjAlWvVrlaXmTRpBwSj2jg74djjTjjlE4J0Sb5D3akz TEIPaTNEXmZgCSWMQ5wMcRIC4ujPeaXklHYX9vcNymyeqOR+Lr7SLGVyN6Xc7qbT lrBmFpAQQX9loKyHwugo6VqNJkT/7rbEyLVN57bRV0JqlmLziHr1QhwUmRWLTg== -----END CERTIFICATE-----Generated at Mon Mar 2 06:49:02 2026 by rpki-client