$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da22f6ed-91b5-496a-92fc-485157f509f6.roa File: da22f6ed-91b5-496a-92fc-485157f509f6.roa (raw, json) Hash identifier: jaNi0KvrDaCJnCY4tlETit7wwnO7q8GS3aoOYjD00Ik= Subject key identifier: 7C:35:99:DB:63:AA:1B:24:E1:A5:C2:14:FE:EE:B9:10:97:D8:65:5C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 542FF6D1F406CCFBB3ED30F7520DA13CBC91723E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da22f6ed-91b5-496a-92fc-485157f509f6.roa Signing time: Tue 24 Feb 2026 00:20:49 +0000 ROA not before: Tue 24 Feb 2026 00:20:49 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:4140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:2f:f6:d1:f4:06:cc:fb:b3:ed:30:f7:52:0d:a1:3c:bc:91:72:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:20:49 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=a0ea9b811969b2e678e64b4bbb0bf3787ca624dd66c8a805c1cd799c8eab6d9a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d0:31:4c:e4:cc:1a:3d:9f:3b:80:93:21:fa: ac:bd:81:ad:25:d8:0f:38:a0:ba:39:d9:10:b6:e4: ef:7c:ef:ae:f6:bd:ee:0e:28:35:e5:07:2c:c4:e9: 44:b2:65:dd:96:a9:32:76:1f:d3:b8:74:73:7d:dc: 51:d4:5e:ba:0d:bb:0d:5e:d7:6b:17:63:95:8e:44: 35:72:b5:a1:c3:00:b5:e3:ed:e7:82:b4:a4:d3:7c: c0:f9:4d:7b:43:9c:3a:99:1a:40:bb:c2:4a:2b:5c: c1:5f:c3:0e:b1:4f:9b:8f:23:ca:5e:aa:8e:8e:13: ff:e0:8c:5b:ad:2f:cc:ac:4a:eb:bd:cb:dc:dd:ae: 9c:bb:fe:3e:bf:e7:c1:9f:0d:56:58:54:cf:b7:38: 47:50:db:e4:68:b0:79:83:5a:f1:b4:05:ff:49:53: e2:cc:02:92:43:2b:1c:6e:ed:c4:28:2a:64:79:0d: 6f:ab:75:7c:3a:e8:35:ce:4b:17:20:4f:fc:c7:a9: 13:e8:bb:6a:e7:75:81:d4:06:a8:e9:91:2b:84:c0: 41:87:e5:9d:63:18:0d:6c:e5:ae:48:0c:5e:f6:7f: fe:08:ac:d8:cf:04:ef:94:87:5f:17:65:38:70:24: 03:ba:3e:d6:6d:e9:25:f1:a2:e0:98:54:9e:dc:a9: d6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:35:99:DB:63:AA:1B:24:E1:A5:C2:14:FE:EE:B9:10:97:D8:65:5C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da22f6ed-91b5-496a-92fc-485157f509f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:4140::/48 Signature Algorithm: sha256WithRSAEncryption 7a:6f:ee:cf:2c:10:26:d6:90:48:5c:dc:d6:32:73:fe:a0:7a: 08:ef:06:d3:4a:49:56:15:56:8f:9f:a3:3a:1c:2d:8e:1b:ba: 08:5c:7f:e2:46:bd:2f:02:44:b6:40:d4:0d:e1:6b:5d:71:a2: 19:c9:b8:98:2b:ad:55:36:bd:6c:44:7c:12:d4:ce:7a:52:c5: 7b:e5:80:41:9f:4f:89:41:3e:95:af:e4:a1:e7:69:03:a6:00: 53:7f:0a:bf:58:e1:05:92:a0:48:10:c7:b5:df:6a:92:7a:05: 8b:ed:6c:2f:ee:fd:f8:84:8b:bc:b4:67:e2:2c:65:28:0d:ff: 4f:61:dd:1e:fb:89:eb:20:73:3e:a4:76:32:eb:5a:9f:20:92: 2e:c4:36:3c:be:3f:84:63:37:e1:92:d5:59:2e:83:66:02:7e: cd:aa:c5:71:7a:b1:d3:df:47:f4:ae:70:74:51:75:08:b4:2e: 7c:0c:1f:1c:cf:94:80:1f:64:ad:10:06:4e:d7:bc:3b:ee:d4: 6b:10:8d:71:4b:f0:b5:a5:da:c5:1f:d5:32:34:63:b2:a6:9b: d1:08:aa:5e:1a:e9:56:e5:8c:0f:6e:6d:8e:12:94:6c:ee:ca: e1:a0:d4:cb:9d:0b:ff:86:b9:a5:5d:11:ac:43:cd:fc:e8:8a: 53:5e:2a:fd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVC/20fQGzPuz7TD3Ug2hPLyRcj4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDAyMDQ5WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGVhOWI4MTE5NjliMmU2NzhlNjRiNGJiYjBiZjM3ODdj YTYyNGRkNjZjOGE4MDVjMWNkNzk5YzhlYWI2ZDlhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU0DFM5MwaPZ87gJMh+qy9ga0l2A84oLo52RC25O987672 ve4OKDXlByzE6USyZd2WqTJ2H9O4dHN93FHUXroNuw1e12sXY5WORDVytaHDALXj 7eeCtKTTfMD5TXtDnDqZGkC7wkorXMFfww6xT5uPI8peqo6OE//gjFutL8ysSuu9 y9zdrpy7/j6/58GfDVZYVM+3OEdQ2+RosHmDWvG0Bf9JU+LMApJDKxxu7cQoKmR5 DW+rdXw66DXOSxcgT/zHqRPou2rndYHUBqjpkSuEwEGH5Z1jGA1s5a5IDF72f/4I rNjPBO+Uh18XZThwJAO6PtZt6SXxouCYVJ7cqdaXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfDWZ22OqGyThpcIU/u65EJfYZVwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhMjJmNmVkLTkxYjUtNDk2YS05MmZjLTQ4NTE1N2Y1MDlmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//QUAwDQYJKoZIhvcNAQELBQADggEBAHpv7s8sECbWkEhc3NYyc/6g egjvBtNKSVYVVo+fozocLY4bughcf+JGvS8CRLZA1A3ha11xohnJuJgrrVU2vWxE fBLUznpSxXvlgEGfT4lBPpWv5KHnaQOmAFN/Cr9Y4QWSoEgQx7XfapJ6BYvtbC/u /fiEi7y0Z+IsZSgN/09h3R77iesgcz6kdjLrWp8gki7ENjy+P4RjN+GS1Vkug2YC fs2qxXF6sdPfR/SucHRRdQi0LnwMHxzPlIAfZK0QBk7XvDvu1GsQjXFL8LWl2sUf 1TI0Y7Kmm9EIql4a6VbljA9ubY4SlGzuyuGg1MudC/+GuaVdEaxDzfzoilNeKv0= -----END CERTIFICATE-----Generated at Mon Mar 2 00:11:22 2026 by rpki-client