$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0233ae0-0e1e-4136-a54b-f0ab70af5a69.roa File: d0233ae0-0e1e-4136-a54b-f0ab70af5a69.roa (raw, json) Hash identifier: EEdz5qLAFsncJm0SfAAKlVQ7uWUWjaH8zqliEkbLTRI= Subject key identifier: B1:BE:BD:59:84:CE:D9:08:9D:22:A1:48:6F:E4:83:BB:C7:E2:F1:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3089A170FD088954A1FAF4F468CDF65810DD4F44 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0233ae0-0e1e-4136-a54b-f0ab70af5a69.roa Signing time: Tue 24 Feb 2026 02:10:49 +0000 ROA not before: Tue 24 Feb 2026 02:10:49 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:81a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:89:a1:70:fd:08:89:54:a1:fa:f4:f4:68:cd:f6:58:10:dd:4f:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:10:49 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=c21b869256de778b316bcf0889dff1956c2cd59d031d1a9b4b36f0a953b6b7a1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a4:9d:0e:95:0f:c4:e6:c5:aa:ea:4f:22:1b: 60:cc:b9:d3:57:d0:f9:72:14:d9:3a:c0:24:d4:10: dd:59:b7:0d:8b:b2:40:1f:12:78:44:e2:5b:df:5f: 07:0c:fb:8b:c4:6a:5f:96:08:39:d0:cb:ec:af:81: f2:6f:18:9e:58:3d:27:d9:2f:1e:06:72:63:d6:47: e5:40:01:a1:7c:2f:31:f3:a9:4f:72:65:bd:7d:8a: 8a:b2:c7:d8:5a:86:33:84:ee:38:73:de:33:d9:a7: 34:2e:26:b2:ea:96:9c:52:ee:a3:4f:d6:07:11:1f: a1:75:3a:b0:c0:7c:cd:fa:04:e4:69:dd:3c:76:43: e3:c9:38:d5:23:91:32:f9:23:4a:1d:31:5a:5e:10: 07:b6:87:66:fb:65:c4:a5:d7:9a:3f:1d:d8:71:dc: a3:cd:f7:66:87:99:a8:46:f6:d5:86:74:86:00:f3: cf:cc:fd:5f:fe:fd:93:9a:73:08:a8:7a:46:12:2a: 96:20:99:ab:34:0c:b8:59:3f:dc:a2:0c:c6:36:ce: 11:5d:89:07:a7:bb:fd:5f:6d:09:c7:8f:92:bb:31: c1:6e:03:d4:24:f9:f7:73:59:01:50:4c:40:81:c1: 10:a1:2e:84:e2:16:46:ec:93:34:20:c1:7d:26:17: 09:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:BE:BD:59:84:CE:D9:08:9D:22:A1:48:6F:E4:83:BB:C7:E2:F1:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0233ae0-0e1e-4136-a54b-f0ab70af5a69.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:81a0::/48 Signature Algorithm: sha256WithRSAEncryption 87:d5:77:ec:fc:5b:2e:b5:ce:1d:1c:50:f1:83:fd:32:72:9c: 72:f6:aa:8b:46:27:11:da:be:90:d3:cc:1a:48:6b:64:ec:b4: bb:1a:2b:de:a5:e4:e8:23:44:f3:77:26:17:be:63:e7:d1:4d: 8f:75:31:11:c1:43:ec:87:fe:b2:b3:b3:3f:af:ec:42:78:76: 69:79:20:7c:5d:2f:be:e1:5b:34:47:23:54:8b:3c:e0:55:89: 85:6e:3c:dd:26:d3:d3:a1:e2:3d:fe:fe:45:d5:54:a7:a5:ea: c9:fb:47:f9:d9:5d:bd:3e:dc:54:67:b7:70:73:40:37:10:77: eb:c7:37:11:1a:c4:a2:08:bc:bd:b2:7f:d7:9f:f5:a6:28:89: 33:49:4f:f4:61:68:61:b7:89:3c:8c:72:1b:39:d0:91:a5:10: 6b:d7:f4:a1:7e:b5:be:14:2a:1b:90:eb:77:c7:48:29:59:52: 80:cf:6a:10:29:3b:08:8e:ff:89:08:2d:5e:4e:14:9f:b3:d0: 03:11:2f:91:35:bd:c1:c9:63:e9:37:0c:10:34:58:40:9b:4a: d2:27:c0:be:e3:91:ee:5d:81:60:5d:ba:65:2e:82:39:da:07: 75:b4:87:73:40:45:6e:f8:a0:4b:cb:18:00:9d:f5:19:74:36: c3:5c:4b:b0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMImhcP0IiVSh+vT0aM32WBDdT0QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIxMDQ5WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjFiODY5MjU2ZGU3NzhiMzE2YmNmMDg4OWRmZjE5NTZj MmNkNTlkMDMxZDFhOWI0YjM2ZjBhOTUzYjZiN2ExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTpJ0OlQ/E5sWq6k8iG2DMudNX0PlyFNk6wCTUEN1Ztw2L skAfEnhE4lvfXwcM+4vEal+WCDnQy+yvgfJvGJ5YPSfZLx4GcmPWR+VAAaF8LzHz qU9yZb19ioqyx9hahjOE7jhz3jPZpzQuJrLqlpxS7qNP1gcRH6F1OrDAfM36BORp 3Tx2Q+PJONUjkTL5I0odMVpeEAe2h2b7ZcSl15o/Hdhx3KPN92aHmahG9tWGdIYA 88/M/V/+/ZOacwioekYSKpYgmas0DLhZP9yiDMY2zhFdiQenu/1fbQnHj5K7McFu A9Qk+fdzWQFQTECBwRChLoTiFkbskzQgwX0mFwkfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsb69WYTO2QidIqFIb+SDu8fi8RgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwMjMzYWUwLTBlMWUtNDEzNi1hNTRiLWYwYWI3MGFmNWE2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gaAwDQYJKoZIhvcNAQELBQADggEBAIfVd+z8Wy61zh0cUPGD/TJy nHL2qotGJxHavpDTzBpIa2TstLsaK96l5OgjRPN3Jhe+Y+fRTY91MRHBQ+yH/rKz sz+v7EJ4dml5IHxdL77hWzRHI1SLPOBViYVuPN0m09Oh4j3+/kXVVKel6sn7R/nZ Xb0+3FRnt3BzQDcQd+vHNxEaxKIIvL2yf9ef9aYoiTNJT/RhaGG3iTyMchs50JGl EGvX9KF+tb4UKhuQ63fHSClZUoDPahApOwiO/4kILV5OFJ+z0AMRL5E1vcHJY+k3 DBA0WECbStInwL7jke5dgWBdumUugjnaB3W0h3NARW74oEvLGACd9Rl0NsNcS7A= -----END CERTIFICATE-----Generated at Mon Mar 2 13:00:59 2026 by rpki-client