$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6daca87-48c5-4a75-8da6-fb81094e9851.roa File: d6daca87-48c5-4a75-8da6-fb81094e9851.roa (raw, json) Hash identifier: m6dqjCQfvpbuGWd17F6St9O6P16ZqyMlcqoNtAK3vgg= Subject key identifier: 63:BD:31:A2:FD:1B:CC:21:3E:73:08:26:25:AB:C4:C9:BF:9E:77:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 525AA1485BC949AC55ED774FA4C3D4EF1967380F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6daca87-48c5-4a75-8da6-fb81094e9851.roa Signing time: Sat 21 Feb 2026 01:30:59 +0000 ROA not before: Sat 21 Feb 2026 01:30:59 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff7:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:5a:a1:48:5b:c9:49:ac:55:ed:77:4f:a4:c3:d4:ef:19:67:38:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:30:59 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=c523f047aad029cebe8c482112af1118d2991b46fabb781f7e23667f3009622e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:03:4d:46:32:19:17:fd:72:62:66:00:65:81: 53:42:33:f2:0b:da:40:09:ab:6d:d9:0e:d1:ae:cf: 47:94:81:76:65:a6:59:cd:b3:7c:3e:47:ee:08:5c: a4:d6:03:32:00:d8:81:23:40:b7:95:55:80:c2:3c: 06:f7:ec:78:02:15:ae:5d:80:07:db:ad:1c:8c:e0: 80:93:34:32:f9:32:d0:94:ac:76:c4:82:52:10:18: 47:83:d3:80:dd:bd:e6:8e:42:45:e5:2e:76:9b:4a: a9:9c:d6:9c:16:08:34:21:65:7a:06:7b:56:0f:bb: c8:a1:92:9f:cf:a4:bd:3d:5f:a2:89:88:2f:dd:ad: 82:2d:b0:02:1a:5c:ad:28:5b:85:f5:a1:8a:ac:51: bc:83:31:39:80:92:43:50:51:43:89:84:e9:39:82: f9:34:2d:78:cb:7c:64:93:33:a8:34:99:a9:99:7e: 3b:72:8e:ae:1d:71:48:7b:c1:43:4c:15:34:eb:10: 0d:73:ea:18:76:44:6f:f0:ee:20:ae:fc:6f:92:ec: 99:bc:84:b0:84:53:ae:84:01:75:95:b5:e2:84:da: 03:13:78:b9:04:71:97:d4:72:89:2a:01:37:19:eb: 65:43:52:a3:0a:00:e0:76:85:cc:36:55:7b:49:b4: a9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:BD:31:A2:FD:1B:CC:21:3E:73:08:26:25:AB:C4:C9:BF:9E:77:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6daca87-48c5-4a75-8da6-fb81094e9851.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:8000::/39 Signature Algorithm: sha256WithRSAEncryption b1:3c:22:4d:b0:a7:a0:81:df:4a:b9:e4:d1:b0:61:b7:4d:df: 09:58:26:40:8b:b6:05:2b:d7:d1:58:ba:6f:46:dc:1a:1d:d0: ce:fe:3a:12:b5:29:08:31:db:ea:b3:a5:89:d0:5c:77:3c:39: af:a4:3d:6f:9d:2e:6e:cb:43:20:e2:20:d6:78:a5:3f:b6:ed: d7:fb:7d:21:e1:ae:4c:92:83:32:b8:9d:88:dc:c7:2a:26:3d: 76:44:36:bc:c9:1c:41:38:c0:72:ec:c0:f9:5e:54:c5:20:4b: d8:57:f9:18:5d:da:cd:ad:29:55:87:02:ec:05:f6:20:8c:ae: 1c:0f:72:42:e8:61:17:db:cf:43:dc:a5:d4:11:d9:00:e0:b4: c1:ab:96:d8:63:e4:b4:6f:2e:49:c1:96:ff:a1:a3:55:66:b9: 92:b9:e9:9e:66:75:a3:81:a8:ad:89:c7:d3:5d:1b:47:ff:cd: 94:e7:8c:17:24:ea:e8:15:45:83:f6:a4:ca:bd:e2:98:0e:e1: 06:8b:1e:a9:c3:7d:4f:79:f1:43:aa:5d:e3:f2:5d:f2:9c:25: 60:d5:79:6e:a9:d3:81:42:a7:c0:70:16:8f:86:84:2b:5a:bf: 3b:9b:25:e4:72:93:0b:1e:65:98:92:d8:92:10:c6:d9:4b:3a: 64:61:d4:d8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUlqhSFvJSaxV7XdPpMPU7xlnOA8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDEzMDU5WhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTIzZjA0N2FhZDAyOWNlYmU4YzQ4MjExMmFmMTExOGQy OTkxYjQ2ZmFiYjc4MWY3ZTIzNjY3ZjMwMDk2MjJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1A01GMhkX/XJiZgBlgVNCM/IL2kAJq23ZDtGuz0eUgXZl plnNs3w+R+4IXKTWAzIA2IEjQLeVVYDCPAb37HgCFa5dgAfbrRyM4ICTNDL5MtCU rHbEglIQGEeD04DdveaOQkXlLnabSqmc1pwWCDQhZXoGe1YPu8ihkp/PpL09X6KJ iC/drYItsAIaXK0oW4X1oYqsUbyDMTmAkkNQUUOJhOk5gvk0LXjLfGSTM6g0mamZ fjtyjq4dcUh7wUNMFTTrEA1z6hh2RG/w7iCu/G+S7Jm8hLCEU66EAXWVteKE2gMT eLkEcZfUcokqATcZ62VDUqMKAOB2hcw2VXtJtKn7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUY70xov0bzCE+cwgmJavEyb+edzswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2ZGFjYTg3LTQ4YzUtNGE3NS04ZGE2LWZiODEwOTRlOTg1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/3gDANBgkqhkiG9w0BAQsFAAOCAQEAsTwiTbCnoIHfSrnk0bBht03f CVgmQIu2BSvX0Vi6b0bcGh3Qzv46ErUpCDHb6rOlidBcdzw5r6Q9b50ubstDIOIg 1nilP7bt1/t9IeGuTJKDMridiNzHKiY9dkQ2vMkcQTjAcuzA+V5UxSBL2Ff5GF3a za0pVYcC7AX2IIyuHA9yQuhhF9vPQ9yl1BHZAOC0wauW2GPktG8uScGW/6GjVWa5 krnpnmZ1o4GorYnH010bR//NlOeMFyTq6BVFg/akyr3imA7hBoseqcN9T3nxQ6pd 4/Jd8pwlYNV5bqnTgUKnwHAWj4aEK1q/O5sl5HKTCx5lmJLYkhDG2Us6ZGHU2A== -----END CERTIFICATE-----Generated at Mon Mar 2 00:14:34 2026 by rpki-client