$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4d32ff3-a127-4080-a68b-176b3e75ad32.roa File: c4d32ff3-a127-4080-a68b-176b3e75ad32.roa (raw, json) Hash identifier: WtUuf1p/QTWUHERSFKCtNAxrfFZtNB/xjK0bylhDrSE= Subject key identifier: F8:13:BD:42:E6:50:88:B7:5C:DC:1A:C8:A5:25:AD:84:DA:D5:9F:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A5DA6176062B7C76823439B79463CE7C2A0D083 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4d32ff3-a127-4080-a68b-176b3e75ad32.roa Signing time: Tue 24 Feb 2026 00:31:05 +0000 ROA not before: Tue 24 Feb 2026 00:31:05 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffd:803f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:5d:a6:17:60:62:b7:c7:68:23:43:9b:79:46:3c:e7:c2:a0:d0:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:31:05 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=cc69657721dfa4c49161d26a5198714289f354f4de0a05ddefab38f64be00e05, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9d:6f:53:83:54:ce:d5:aa:a3:95:85:1e:71: ef:cc:33:0b:be:ca:f2:6c:62:26:ff:00:41:08:30: 0a:16:3e:ae:51:5f:85:2a:09:24:6f:a4:6f:5c:78: 05:a6:13:a3:e9:d0:4f:6a:ca:1b:83:c9:71:7e:cc: 85:cb:3f:f6:93:d9:80:68:6d:e7:92:10:15:06:1c: 95:62:1f:57:5e:f1:96:53:97:59:d2:72:d5:25:1f: 8a:0f:d9:84:17:97:e5:45:ee:f0:1d:34:27:83:84: 00:67:d6:4f:3a:39:2c:fc:53:70:6b:e6:f0:cb:35: 79:65:f8:9e:3c:4c:84:76:4a:59:70:58:0d:ba:33: 59:98:a0:ef:57:a8:36:a9:0f:dd:75:7d:36:6c:c8: 8c:4f:1c:56:c4:35:d5:89:3d:75:c5:fc:0f:30:00: a7:c4:10:7c:69:c6:55:11:8d:f0:9c:95:1b:57:f9: 34:29:f9:df:c2:94:02:ec:be:ed:26:1d:5d:30:4d: 85:06:ed:c2:3d:5a:04:ed:ec:be:af:66:94:69:61: 63:83:a6:f0:dc:77:21:74:1c:9e:59:f6:35:75:8e: 49:cb:34:47:40:d7:c3:53:bf:e9:c0:56:77:17:5f: d5:85:9b:30:65:09:c6:0e:5c:3a:70:c2:1d:3b:56: 8c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:13:BD:42:E6:50:88:B7:5C:DC:1A:C8:A5:25:AD:84:DA:D5:9F:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4d32ff3-a127-4080-a68b-176b3e75ad32.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:803f::/48 Signature Algorithm: sha256WithRSAEncryption 69:97:71:1e:21:cc:5c:46:5d:29:e5:3a:55:5d:af:ec:e0:f4: cb:7a:4a:49:3e:cd:8a:37:21:a5:09:cf:dd:d8:08:ab:dc:22: a2:d0:e7:9c:21:51:62:3c:7c:67:89:3e:4a:62:e6:be:93:97: 81:58:99:c8:1c:d2:b3:50:af:62:4c:66:99:18:5b:51:5c:20: b4:f0:88:75:37:11:26:29:a9:d6:63:df:7d:9d:61:ab:6c:c2: d6:36:17:94:77:83:ea:14:72:7a:2f:f7:f2:27:ed:ee:4a:8f: d1:62:53:1b:9a:d1:f0:78:77:bd:e3:f5:ca:26:77:f6:63:ff: fc:cd:43:a2:0d:4d:3e:41:82:cf:21:b8:c0:1a:74:35:83:b5: 91:76:e5:05:98:e4:c3:2b:3a:e6:7f:71:7c:c8:c5:18:aa:63: d8:d6:00:c8:d9:1c:6b:0f:79:52:3e:23:45:67:3f:ea:33:dc: 87:d1:f2:c5:f0:5a:17:f3:46:88:00:ce:ae:4b:10:70:16:93: 19:f8:88:b5:0d:68:11:0b:c4:43:92:03:ef:23:c1:e4:0c:c0: d1:e4:50:08:4f:8e:c4:77:2a:35:b5:47:53:3c:e5:a8:97:b4: 73:01:06:54:f4:de:40:ac:8b:86:e6:94:46:83:13:5c:16:f3: 58:3a:31:39 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKl2mF2Bit8doI0ObeUY858Kg0IMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDAzMTA1WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzY5NjU3NzIxZGZhNGM0OTE2MWQyNmE1MTk4NzE0Mjg5 ZjM1NGY0ZGUwYTA1ZGRlZmFiMzhmNjRiZTAwZTA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8nW9Tg1TO1aqjlYUece/MMwu+yvJsYib/AEEIMAoWPq5R X4UqCSRvpG9ceAWmE6Pp0E9qyhuDyXF+zIXLP/aT2YBobeeSEBUGHJViH1de8ZZT l1nSctUlH4oP2YQXl+VF7vAdNCeDhABn1k86OSz8U3Br5vDLNXll+J48TIR2Sllw WA26M1mYoO9XqDapD911fTZsyIxPHFbENdWJPXXF/A8wAKfEEHxpxlURjfCclRtX +TQp+d/ClALsvu0mHV0wTYUG7cI9WgTt7L6vZpRpYWODpvDcdyF0HJ5Z9jV1jknL NEdA18NTv+nAVncXX9WFmzBlCcYOXDpwwh07VoyrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+BO9QuZQiLdc3BrIpSWthNrVn7cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M0ZDMyZmYzLWExMjctNDA4MC1hNjhiLTE3NmIzZTc1YWQzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gD8wDQYJKoZIhvcNAQELBQADggEBAGmXcR4hzFxGXSnlOlVdr+zg 9Mt6Skk+zYo3IaUJz93YCKvcIqLQ55whUWI8fGeJPkpi5r6Tl4FYmcgc0rNQr2JM ZpkYW1FcILTwiHU3ESYpqdZj332dYatswtY2F5R3g+oUcnov9/In7e5Kj9FiUxua 0fB4d73j9comd/Zj//zNQ6INTT5Bgs8huMAadDWDtZF25QWY5MMrOuZ/cXzIxRiq Y9jWAMjZHGsPeVI+I0VnP+oz3IfR8sXwWhfzRogAzq5LEHAWkxn4iLUNaBELxEOS A+8jweQMwNHkUAhPjsR3KjW1R1M85aiXtHMBBlT03kCsi4bmlEaDE1wW81g6MTk= -----END CERTIFICATE-----Generated at Mon Mar 2 04:54:53 2026 by rpki-client