$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1babd71-0375-46e5-9fa3-1e46d231571f.roa File: c1babd71-0375-46e5-9fa3-1e46d231571f.roa (raw, json) Hash identifier: 0h7j04hyhBvpE9B3rsC0rgjsaiz5QpfnhdSURfGcsII= Subject key identifier: 6C:F3:9E:10:CD:B2:55:03:7D:BB:98:9C:27:D3:9C:87:B0:20:71:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E09CDDDEE566D78700072CA015775B274D4FBB2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1babd71-0375-46e5-9fa3-1e46d231571f.roa Signing time: Tue 24 Feb 2026 00:30:36 +0000 ROA not before: Tue 24 Feb 2026 00:30:36 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:2080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:09:cd:dd:ee:56:6d:78:70:00:72:ca:01:57:75:b2:74:d4:fb:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:30:36 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=94d41097e161d4d13c477f451861cfe34bf6a3cf560c8e95f08cdb6e96f3d1c4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7c:6d:50:ce:fb:cd:8c:77:bd:ab:28:0d:1a: be:94:57:fa:18:70:d6:39:9e:13:53:7b:4c:7a:85: 31:46:48:40:01:0c:49:d5:97:26:00:c1:36:d3:f5: b7:72:3b:86:f6:9e:ca:2d:05:f5:30:32:e8:18:3f: 89:cf:ee:f4:7d:69:0d:0c:04:05:da:16:86:6d:d2: e5:c0:dc:9d:68:ee:02:47:14:03:ae:7f:fd:f7:de: 69:68:59:a2:b4:0b:69:26:b7:41:39:c8:dd:3c:05: 33:7a:12:aa:8f:44:a9:d3:4a:a5:4d:17:66:22:76: 03:8c:62:86:9a:27:51:dd:ba:49:eb:3b:ca:56:e2: fe:2c:1a:37:c7:15:bf:fb:aa:68:d5:a1:04:3a:f8: c4:7c:17:37:59:5f:8a:e6:33:7c:28:d6:41:cc:7c: be:34:00:64:e9:a7:0a:b9:9a:37:46:46:0c:e3:23: 95:d2:09:93:df:7a:86:43:92:3c:2f:a7:a1:cf:cb: 4d:cb:a5:2a:b9:5c:77:01:7c:55:1e:98:49:75:91: 02:68:a9:a4:9e:63:51:d9:c9:3b:3f:01:1b:c9:87: c2:fd:0c:6d:6a:70:31:c7:cf:06:74:86:33:a9:dc: f4:4c:69:cd:4e:ab:1f:1f:0b:df:08:e8:16:60:3a: 04:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F3:9E:10:CD:B2:55:03:7D:BB:98:9C:27:D3:9C:87:B0:20:71:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1babd71-0375-46e5-9fa3-1e46d231571f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:2080::/48 Signature Algorithm: sha256WithRSAEncryption b6:05:94:2b:04:00:14:4f:ee:e2:e6:ec:ff:ab:b8:bd:e5:f7: 24:17:d1:4d:12:5a:09:51:0a:6a:44:44:34:e8:24:44:76:7c: 6e:b7:42:01:26:69:e5:b8:a3:eb:5b:63:9e:14:1b:19:2d:08: 40:f1:70:0a:72:23:1c:8f:bd:e1:4f:19:92:17:70:7f:3f:4a: d3:73:4c:20:6c:1f:42:72:96:79:b5:65:1a:89:45:6c:08:55: b6:e7:a5:73:da:f9:25:92:97:fb:ba:cd:bc:71:3c:dd:2f:10: e8:bf:80:3a:7a:2d:9a:e6:d6:45:3e:11:bd:d1:1b:e6:3b:22: fb:78:f8:d7:05:01:d9:8a:e8:c7:b2:23:8f:bd:a5:b4:94:06: b2:85:2a:ee:fd:77:8d:74:7c:43:12:11:69:d0:76:88:9e:22: 2e:8e:a4:64:77:8d:cd:13:71:ea:91:ad:a1:07:1c:0a:cd:a9: fb:8a:6b:81:62:2f:27:c9:82:e6:34:2b:4e:71:b0:b1:d7:a7: 2e:68:4d:24:81:59:b1:60:48:ab:4c:73:c9:e1:99:54:a5:41: 0b:62:ac:11:ba:73:37:67:ba:fc:d8:0e:59:cb:be:78:6c:36: 86:90:8d:10:a8:f6:be:5a:70:3b:d2:06:73:b3:1e:3f:8a:41: 6e:9e:75:4f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXgnN3e5WbXhwAHLKAVd1snTU+7IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDAzMDM2WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NGQ0MTA5N2UxNjFkNGQxM2M0NzdmNDUxODYxY2ZlMzRi ZjZhM2NmNTYwYzhlOTVmMDhjZGI2ZTk2ZjNkMWM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCafG1QzvvNjHe9qygNGr6UV/oYcNY5nhNTe0x6hTFGSEAB DEnVlyYAwTbT9bdyO4b2nsotBfUwMugYP4nP7vR9aQ0MBAXaFoZt0uXA3J1o7gJH FAOuf/333mloWaK0C2kmt0E5yN08BTN6EqqPRKnTSqVNF2YidgOMYoaaJ1Hduknr O8pW4v4sGjfHFb/7qmjVoQQ6+MR8FzdZX4rmM3wo1kHMfL40AGTppwq5mjdGRgzj I5XSCZPfeoZDkjwvp6HPy03LpSq5XHcBfFUemEl1kQJoqaSeY1HZyTs/ARvJh8L9 DG1qcDHHzwZ0hjOp3PRMac1Oqx8fC98I6BZgOgT1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbPOeEM2yVQN9u5icJ9Och7AgcXowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxYmFiZDcxLTAzNzUtNDZlNS05ZmEzLTFlNDZkMjMxNTcxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AIIAwDQYJKoZIhvcNAQELBQADggEBALYFlCsEABRP7uLm7P+ruL3l 9yQX0U0SWglRCmpERDToJER2fG63QgEmaeW4o+tbY54UGxktCEDxcApyIxyPveFP GZIXcH8/StNzTCBsH0Jylnm1ZRqJRWwIVbbnpXPa+SWSl/u6zbxxPN0vEOi/gDp6 LZrm1kU+Eb3RG+Y7Ivt4+NcFAdmK6MeyI4+9pbSUBrKFKu79d410fEMSEWnQdoie Ii6OpGR3jc0TceqRraEHHArNqfuKa4FiLyfJguY0K05xsLHXpy5oTSSBWbFgSKtM c8nhmVSlQQtirBG6czdnuvzYDlnLvnhsNoaQjRCo9r5acDvSBnOzHj+KQW6edU8= -----END CERTIFICATE-----Generated at Mon Mar 2 11:35:40 2026 by rpki-client