$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd1ad95b-f3a9-44ac-aa3b-30c0aa5e39d2.roa File: cd1ad95b-f3a9-44ac-aa3b-30c0aa5e39d2.roa (raw, json) Hash identifier: OZoKQ8hkYFVf1Ly6OLgiGPeKKp5US7XnfYta4HHy98I= Subject key identifier: 23:DA:A2:52:DD:33:89:B3:B1:2E:4B:16:27:3F:4F:06:56:85:C5:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F420E048F7429DE24770E777E91B224D4B70FFC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd1ad95b-f3a9-44ac-aa3b-30c0aa5e39d2.roa Signing time: Sun 08 Feb 2026 00:40:09 +0000 ROA not before: Sun 08 Feb 2026 00:40:09 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff9:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:42:0e:04:8f:74:29:de:24:77:0e:77:7e:91:b2:24:d4:b7:0f:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:40:09 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=11a89f9712cfab377ccee74ea89c0f03b26ab34783fa75bd193af079c3fedbb9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9c:73:34:7b:cc:6c:26:c3:36:16:58:e4:21: e4:ab:28:cc:e8:98:c1:0e:28:a6:e1:71:9b:d5:c5: b3:a6:f2:fe:9c:80:c2:94:46:4e:14:ad:06:65:16: c2:bb:f6:0d:06:bc:1f:41:41:b4:ea:7c:1d:b8:f6: 9e:0d:81:46:1c:4f:48:4b:bb:f4:2e:65:78:ca:97: b2:62:6f:1b:28:50:56:97:18:1d:c0:b5:7a:a3:20: 2c:66:08:48:e7:6a:a5:3c:e4:98:f3:0a:ca:93:dd: ad:e4:3d:a5:8b:73:f7:c7:81:f0:8c:c4:ea:f0:a7: 36:68:20:c9:71:6e:95:af:44:85:f9:e2:b0:c2:fd: 88:d7:33:e6:00:dd:cb:0c:5a:28:d6:ed:aa:21:0d: 38:f4:88:a2:b0:17:8c:2a:f7:84:55:92:76:b4:65: eb:28:93:78:f9:41:52:74:44:13:78:51:8d:9f:ac: a4:2d:fa:fd:eb:47:6b:ae:19:9d:77:8b:8a:e6:bb: d2:86:da:b3:d0:23:1c:02:0e:a5:a2:0e:8b:b6:e1: bf:ac:3b:c0:35:05:cf:49:d0:92:a1:ba:74:ff:b1: 4f:00:3f:87:01:39:af:d3:c7:b5:b0:83:82:24:1c: 91:f6:c8:30:4a:86:42:5e:b8:f4:eb:d7:e5:0e:1e: cd:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:DA:A2:52:DD:33:89:B3:B1:2E:4B:16:27:3F:4F:06:56:85:C5:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd1ad95b-f3a9-44ac-aa3b-30c0aa5e39d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff9:8000::/39 Signature Algorithm: sha256WithRSAEncryption 60:9c:5b:c6:7a:07:9f:ac:e4:7f:6e:10:6a:88:9e:3a:01:21: 01:1a:30:18:15:3f:33:66:c3:a0:6d:bc:f7:62:90:96:af:37: 4b:cc:42:d7:42:8a:2e:b9:d9:f1:64:6a:ab:c9:70:ce:a9:a8: 61:c1:10:98:5b:42:dd:e2:b8:8a:0d:a4:5d:21:2b:9a:94:8f: b2:cf:b0:8d:21:a9:e5:6a:76:3c:16:cb:25:96:d8:e1:d5:e6: 0a:98:b1:77:4f:f0:36:1a:90:c9:22:ef:cf:46:14:46:3f:6e: 6b:51:55:46:1f:9a:16:2f:1b:8e:22:58:36:7e:e9:22:05:e1: d0:cb:1f:bd:6d:9b:c5:17:16:a8:3b:1e:7b:1a:be:8f:ec:50: d8:24:cc:b6:a1:bc:d1:62:fb:21:d1:40:ca:98:6d:0c:04:91: 5d:66:88:ef:72:9d:79:91:29:49:e2:dd:36:55:d5:9d:57:79: c0:c9:f4:34:63:97:35:ae:69:36:4b:18:32:50:48:6f:1e:0f: 55:55:a1:5c:40:26:85:ce:fa:49:30:cb:38:a1:96:15:42:a2: 87:52:55:3f:f4:cd:2f:74:e5:53:7e:ac:1a:cc:b1:e5:ce:ed: 40:90:8d:d1:27:61:60:59:f4:8f:55:1e:5b:e0:dd:5d:87:94: 45:90:49:32 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUX0IOBI90Kd4kdw53fpGyJNS3D/wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDA0MDA5WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMWE4OWY5NzEyY2ZhYjM3N2NjZWU3NGVhODljMGYwM2Iy NmFiMzQ3ODNmYTc1YmQxOTNhZjA3OWMzZmVkYmI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4nHM0e8xsJsM2FljkIeSrKMzomMEOKKbhcZvVxbOm8v6c gMKURk4UrQZlFsK79g0GvB9BQbTqfB249p4NgUYcT0hLu/QuZXjKl7JibxsoUFaX GB3AtXqjICxmCEjnaqU85JjzCsqT3a3kPaWLc/fHgfCMxOrwpzZoIMlxbpWvRIX5 4rDC/YjXM+YA3csMWijW7aohDTj0iKKwF4wq94RVkna0Zesok3j5QVJ0RBN4UY2f rKQt+v3rR2uuGZ13i4rmu9KG2rPQIxwCDqWiDou24b+sO8A1Bc9J0JKhunT/sU8A P4cBOa/Tx7Wwg4IkHJH2yDBKhkJeuPTr1+UOHs0FAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUI9qiUt0zibOxLksWJz9PBlaFxXswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkMWFkOTViLWYzYTktNDRhYy1hYTNiLTMwYzBhYTVlMzlkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/5gDANBgkqhkiG9w0BAQsFAAOCAQEAYJxbxnoHn6zkf24QaoieOgEh ARowGBU/M2bDoG2892KQlq83S8xC10KKLrnZ8WRqq8lwzqmoYcEQmFtC3eK4ig2k XSErmpSPss+wjSGp5Wp2PBbLJZbY4dXmCpixd0/wNhqQySLvz0YURj9ua1FVRh+a Fi8bjiJYNn7pIgXh0MsfvW2bxRcWqDseexq+j+xQ2CTMtqG80WL7IdFAyphtDASR XWaI73KdeZEpSeLdNlXVnVd5wMn0NGOXNa5pNksYMlBIbx4PVVWhXEAmhc76STDL OKGWFUKih1JVP/TNL3TlU36sGsyx5c7tQJCN0SdhYFn0j1UeW+DdXYeURZBJMg== -----END CERTIFICATE-----Generated at Mon Mar 2 00:11:06 2026 by rpki-client