$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c96d5347-7bf9-4984-b298-4dee0ceb88ed.roa File: c96d5347-7bf9-4984-b298-4dee0ceb88ed.roa (raw, json) Hash identifier: T3JyRkWKOLh5S6Q5NgC9WPlZQ9ZwHtLgUk5amEERMxc= Subject key identifier: 9F:F3:92:49:37:D8:8F:5B:38:A5:77:AE:43:BE:09:3D:5A:7F:97:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5613E4A954672EC90E2D0E760D97C86BCF70D8DB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c96d5347-7bf9-4984-b298-4dee0ceb88ed.roa Signing time: Tue 24 Feb 2026 02:01:24 +0000 ROA not before: Tue 24 Feb 2026 02:01:24 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8060::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:13:e4:a9:54:67:2e:c9:0e:2d:0e:76:0d:97:c8:6b:cf:70:d8:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:01:24 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=54b84fd4e4bf0494f5f2e64ba273f719defa54e0878e91b93318cf5ae4c7bc32, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:39:b3:28:58:da:09:e7:d8:6d:92:f0:c5:b4: 06:53:82:04:3f:9c:e3:0d:07:ae:78:58:23:6a:69: 30:49:e6:c7:49:0b:3e:27:20:c5:b6:bc:b1:65:7e: 3c:b9:b0:03:56:6c:9e:c2:4c:b1:3c:f8:fe:b8:f2: 24:33:66:67:f2:69:28:7e:f4:29:49:1f:29:7b:16: 85:28:4e:11:71:ac:be:4a:27:95:43:e8:a7:9c:bd: c9:83:bd:2e:44:4a:09:d0:ec:05:19:1e:73:5c:77: 4f:1b:4a:d3:02:8f:9f:bc:21:bc:36:eb:3c:be:3f: ce:6d:aa:49:fb:32:84:e8:b9:4a:21:6f:07:a2:37: 12:7a:fc:5b:2d:ce:7f:80:e9:97:76:9b:31:c8:c2: 8f:9c:30:bd:69:1b:87:a3:1a:2c:28:06:0c:0f:bb: b1:9a:a9:21:24:cd:24:94:2c:38:3d:f2:7e:37:5b: 34:44:88:c8:12:84:8b:c8:56:56:b9:70:95:00:fb: 8b:8c:86:3b:fb:cc:32:fe:8c:46:db:84:89:51:79: c0:a2:a5:6c:50:c5:6f:84:51:75:6f:40:27:a1:4b: 32:23:98:fe:02:2f:bf:68:8a:ea:12:bc:99:f2:b5: 3f:83:d1:93:38:79:5b:ec:4a:2d:2d:aa:30:9f:c0: 54:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:F3:92:49:37:D8:8F:5B:38:A5:77:AE:43:BE:09:3D:5A:7F:97:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c96d5347-7bf9-4984-b298-4dee0ceb88ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8060::/48 Signature Algorithm: sha256WithRSAEncryption 69:ef:68:71:3f:ba:f9:a7:b2:93:59:2b:fa:80:13:9c:14:5e: 8a:a3:e6:63:0c:c0:0d:2a:64:df:d3:ed:85:0a:e0:db:bc:76: ac:0a:bb:68:b6:2b:fd:c8:26:b1:72:42:b3:5e:8c:41:0a:04: f7:38:89:b4:65:6e:82:14:7f:a5:bd:85:52:f9:15:80:da:e2: a0:7c:a4:8b:72:ae:d8:7d:c3:c8:88:3e:e8:03:19:7d:da:42: f4:cf:1f:36:80:f0:95:2a:b6:0a:75:c6:d4:52:d2:1c:8d:da: e9:de:56:3e:7c:b0:a1:80:0b:f4:77:89:2d:86:a1:b2:4c:74: ca:ef:1a:00:4b:2f:f5:1f:6d:d7:6b:f1:08:f5:6a:80:ed:25: 96:26:d8:91:20:c6:d0:08:bb:90:80:90:ff:46:e1:09:64:78: c1:12:63:42:37:04:3b:62:05:ee:ff:82:40:75:9b:d9:21:4b: 95:de:05:3e:9c:3f:3b:b8:50:23:c7:69:9d:00:d8:fd:68:b4: 62:8f:29:6e:47:44:cc:15:1f:da:5d:28:d9:0f:12:03:3c:6a: b7:76:8a:ff:4f:87:3a:40:8f:a7:4a:f2:f0:fb:41:0b:5a:0d: b0:8f:92:fb:f7:b7:89:1b:a5:05:bc:c6:f3:11:2e:05:10:32: 4f:18:10:89 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVhPkqVRnLskOLQ52DZfIa89w2NswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIwMTI0WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGI4NGZkNGU0YmYwNDk0ZjVmMmU2NGJhMjczZjcxOWRl ZmE1NGUwODc4ZTkxYjkzMzE4Y2Y1YWU0YzdiYzMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD4ObMoWNoJ59htkvDFtAZTggQ/nOMNB654WCNqaTBJ5sdJ Cz4nIMW2vLFlfjy5sANWbJ7CTLE8+P648iQzZmfyaSh+9ClJHyl7FoUoThFxrL5K J5VD6KecvcmDvS5ESgnQ7AUZHnNcd08bStMCj5+8Ibw26zy+P85tqkn7MoTouUoh bweiNxJ6/Fstzn+A6Zd2mzHIwo+cML1pG4ejGiwoBgwPu7GaqSEkzSSULDg98n43 WzREiMgShIvIVla5cJUA+4uMhjv7zDL+jEbbhIlRecCipWxQxW+EUXVvQCehSzIj mP4CL79oiuoSvJnytT+D0ZM4eVvsSi0tqjCfwFSbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUn/OSSTfYj1s4pXeuQ74JPVp/l/kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NmQ1MzQ3LTdiZjktNDk4NC1iMjk4LTRkZWUwY2ViODhlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gGAwDQYJKoZIhvcNAQELBQADggEBAGnvaHE/uvmnspNZK/qAE5wU Xoqj5mMMwA0qZN/T7YUK4Nu8dqwKu2i2K/3IJrFyQrNejEEKBPc4ibRlboIUf6W9 hVL5FYDa4qB8pItyrth9w8iIPugDGX3aQvTPHzaA8JUqtgp1xtRS0hyN2uneVj58 sKGAC/R3iS2GobJMdMrvGgBLL/Ufbddr8Qj1aoDtJZYm2JEgxtAIu5CAkP9G4Qlk eMESY0I3BDtiBe7/gkB1m9khS5XeBT6cPzu4UCPHaZ0A2P1otGKPKW5HRMwVH9pd KNkPEgM8ard2iv9PhzpAj6dK8vD7QQtaDbCPkvv3t4kbpQW8xvMRLgUQMk8YEIk= -----END CERTIFICATE-----Generated at Mon Mar 2 03:45:28 2026 by rpki-client