$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbdd7149-1b63-485c-91e0-217a5a311a88.roa File: dbdd7149-1b63-485c-91e0-217a5a311a88.roa (raw, json) Hash identifier: lwtP56s4RLrphhVy4zrB9DEonTW/Ix5ymI31s9Sgocg= Subject key identifier: E8:44:61:37:FA:8C:3F:16:75:85:40:A3:A5:9E:04:DA:8E:FC:D8:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D97961189D3813889B7E525E4B736065F4AC67A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbdd7149-1b63-485c-91e0-217a5a311a88.roa Signing time: Tue 24 Feb 2026 02:01:26 +0000 ROA not before: Tue 24 Feb 2026 02:01:26 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:80f0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:97:96:11:89:d3:81:38:89:b7:e5:25:e4:b7:36:06:5f:4a:c6:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:01:26 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=35add1f94a0addf8d773fdbb21568e5a8c3d98dcf6f73b58b3e6d9a674d6bddd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:59:af:5a:f2:8b:a8:1a:3c:e5:e2:9b:67:46: 74:a1:2b:c9:de:b2:22:81:1b:ff:15:a0:e5:19:16: 61:8c:85:ec:9f:ec:3b:f1:54:74:28:82:b3:29:00: 73:e2:6f:15:60:f9:da:46:ed:8b:03:f9:22:ef:13: e6:e6:70:c5:b5:2d:db:b8:8a:98:51:ec:a2:33:7c: bf:02:3d:e0:59:1b:e1:56:90:89:d5:09:38:cc:99: 8d:5c:46:68:78:0e:ea:50:53:81:ae:a8:a9:9b:9a: f5:a9:b2:1d:d8:d9:12:25:48:87:ce:31:e2:37:56: f9:60:10:8b:dd:f9:07:77:e6:2b:3a:d5:a0:e0:54: f3:13:12:51:ca:58:b2:e4:5a:d7:01:5c:4d:0d:a6: b1:1a:df:62:f5:6e:78:bc:66:36:82:81:d2:d0:0e: ea:ef:12:f8:a6:9c:50:f9:8b:de:8e:ea:f1:c8:1f: 7f:e5:3a:99:e1:93:a6:65:5a:6e:1c:81:ea:34:5c: f5:7a:71:20:83:12:07:9d:34:10:57:eb:8b:8c:26: 98:8e:27:5e:e2:9a:34:19:6b:fb:7c:28:fd:ce:22: c3:c3:2a:6d:bb:f5:01:53:92:32:76:1d:80:42:46: 65:2f:04:42:17:bd:61:a9:b3:3e:b4:47:54:4b:5d: eb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:44:61:37:FA:8C:3F:16:75:85:40:A3:A5:9E:04:DA:8E:FC:D8:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbdd7149-1b63-485c-91e0-217a5a311a88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:80f0::/48 Signature Algorithm: sha256WithRSAEncryption 01:57:de:e4:cb:a8:77:f9:25:e4:12:d1:8b:1f:bd:a5:d6:0e: f8:cc:60:73:48:56:a2:f1:50:7b:99:9e:12:91:1c:e5:68:b8: 97:c9:01:95:1b:b5:3b:3d:e4:3b:1e:57:f0:ed:39:79:81:8c: 6b:c7:dc:70:a5:38:09:b5:a7:8b:5e:cf:76:a0:6c:0d:e8:33: d0:85:66:16:60:e3:3b:11:54:46:a0:7e:e2:42:1e:f9:c7:76: ea:6f:96:48:35:f7:29:20:23:5b:61:55:a2:4a:9c:6d:99:15: 48:91:cd:78:cc:91:7b:5e:15:f9:e4:ef:ef:95:1c:dc:50:7a: 2e:2c:fe:d9:5f:a2:d3:0f:cd:a1:75:a1:02:57:ec:cc:c8:50: 6d:20:11:bc:35:71:95:62:32:f6:5f:17:81:3b:23:95:40:d0: 7c:f5:7d:50:aa:ee:6a:2a:88:66:85:5e:ef:44:be:a9:69:3b: cf:7f:79:3a:15:e3:88:d6:d1:f0:70:29:c4:8a:c8:ec:19:8b: 05:8d:b8:56:45:dc:c3:30:fc:2b:7f:fb:08:f4:c1:5b:81:99: 25:e4:7a:04:1a:16:ec:5c:bb:cf:86:0d:96:f2:95:84:a0:9c: f5:54:1e:36:70:48:dd:e4:b0:a4:97:47:d3:f9:cf:23:f0:6e: e3:86:75:65 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULZeWEYnTgTiJt+Ul5Lc2Bl9KxnowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIwMTI2WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWFkZDFmOTRhMGFkZGY4ZDc3M2ZkYmIyMTU2OGU1YThj M2Q5OGRjZjZmNzNiNThiM2U2ZDlhNjc0ZDZiZGRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3Wa9a8ouoGjzl4ptnRnShK8nesiKBG/8VoOUZFmGMheyf 7DvxVHQogrMpAHPibxVg+dpG7YsD+SLvE+bmcMW1Ldu4iphR7KIzfL8CPeBZG+FW kInVCTjMmY1cRmh4DupQU4GuqKmbmvWpsh3Y2RIlSIfOMeI3VvlgEIvd+Qd35is6 1aDgVPMTElHKWLLkWtcBXE0NprEa32L1bni8ZjaCgdLQDurvEvimnFD5i96O6vHI H3/lOpnhk6ZlWm4cgeo0XPV6cSCDEgedNBBX64uMJpiOJ17imjQZa/t8KP3OIsPD Km279QFTkjJ2HYBCRmUvBEIXvWGpsz60R1RLXeurAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6ERhN/qMPxZ1hUCjpZ4E2o782NwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RiZGQ3MTQ5LTFiNjMtNDg1Yy05MWUwLTIxN2E1YTMxMWE4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgPAwDQYJKoZIhvcNAQELBQADggEBAAFX3uTLqHf5JeQS0YsfvaXW DvjMYHNIVqLxUHuZnhKRHOVouJfJAZUbtTs95DseV/DtOXmBjGvH3HClOAm1p4te z3agbA3oM9CFZhZg4zsRVEagfuJCHvnHdupvlkg19ykgI1thVaJKnG2ZFUiRzXjM kXteFfnk7++VHNxQei4s/tlfotMPzaF1oQJX7MzIUG0gEbw1cZViMvZfF4E7I5VA 0Hz1fVCq7moqiGaFXu9EvqlpO89/eToV44jW0fBwKcSKyOwZiwWNuFZF3MMw/Ct/ +wj0wVuBmSXkegQaFuxcu8+GDZbylYSgnPVUHjZwSN3ksKSXR9P5zyPwbuOGdWU= -----END CERTIFICATE-----Generated at Sun Mar 1 22:31:25 2026 by rpki-client