$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de2acc05-058e-454c-bf61-f70e34b6d2ff.roa File: de2acc05-058e-454c-bf61-f70e34b6d2ff.roa (raw, json) Hash identifier: g3CtlCwuaq8rGapXWIKjd/3I+cnvQU2rfR2P+nb0uXc= Subject key identifier: B3:02:68:FC:E3:33:9B:19:E1:2D:D4:66:55:CA:46:2F:69:1B:99:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F61AF916B5498E85D52B14FA4A1C44802BDEB3A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de2acc05-058e-454c-bf61-f70e34b6d2ff.roa Signing time: Tue 17 Feb 2026 00:20:48 +0000 ROA not before: Tue 17 Feb 2026 00:20:48 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:4000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:61:af:91:6b:54:98:e8:5d:52:b1:4f:a4:a1:c4:48:02:bd:eb:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 00:20:48 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=b01bb626b35218220218c90a94af624ab13d255bafe369b03fa065ff5abd153c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:dd:77:75:a1:ff:3f:b7:09:ad:7d:74:07:f8: 04:a4:41:db:7f:d9:42:51:90:10:18:8a:5a:fd:2e: 1e:e0:cd:93:04:4c:a1:2b:6b:f8:b6:6c:4e:48:c7: b0:fc:70:20:6e:3c:df:72:ae:79:25:12:1f:96:dd: dc:b4:67:de:53:e6:4b:ad:52:df:d4:fe:d3:88:ca: c6:14:2d:e8:15:82:15:81:6e:79:12:3f:f7:4f:5d: 9e:5f:55:44:26:7f:b4:47:29:60:89:f9:e2:26:34: 6a:27:59:af:be:77:ec:3f:6f:bd:29:c8:8a:e1:d4: 23:a9:8a:42:ee:00:61:e0:ed:48:d0:a8:67:c3:a8: e7:34:2a:b0:af:5d:dd:9a:dd:50:17:37:01:07:7c: 67:86:ec:a6:97:92:54:fe:28:0c:10:23:33:84:d1: 08:c1:95:64:9b:90:f7:7c:90:3b:22:8f:2e:f7:de: 9c:70:0c:c5:31:e0:49:4b:09:75:a3:40:d0:fe:47: e1:62:4f:57:8e:ad:65:41:19:c9:4e:01:01:4a:6e: 10:cd:64:4f:ae:7f:54:d8:ce:0c:f1:e9:65:c3:5a: b7:8c:b6:ce:ea:ba:d9:94:a0:32:47:32:69:90:64: 57:be:0e:55:e6:68:d5:bd:61:a7:44:d9:9c:cf:63: 5e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:02:68:FC:E3:33:9B:19:E1:2D:D4:66:55:CA:46:2F:69:1B:99:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de2acc05-058e-454c-bf61-f70e34b6d2ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:4000::/39 Signature Algorithm: sha256WithRSAEncryption 30:12:e2:f0:44:dd:dc:79:01:33:f6:0d:fa:6d:12:0b:51:03: 6c:b5:d7:51:7d:20:70:bd:83:71:73:eb:4b:ca:de:ea:54:d9: 12:5f:23:e4:90:38:9d:6a:bc:53:bf:0e:5e:1f:bd:d3:3e:ca: c3:12:d2:6a:b2:49:84:ef:91:bc:b5:39:74:5a:a4:bc:10:78: 38:98:86:fa:28:05:c4:bf:a3:b3:33:c1:4a:25:4a:e2:18:f9: 74:ae:d4:dc:dc:5f:9e:63:48:1f:ac:6c:c9:ff:08:1f:67:9a: f9:4f:5f:8a:84:e5:cb:0e:84:e9:88:75:c7:a2:c2:7f:a2:87: 44:a2:a4:6c:d1:c4:e0:8d:1d:b9:51:dd:c4:d9:56:fe:8a:c0: 8c:16:88:0a:9c:8b:bc:c8:d2:ad:98:1f:3c:9b:ad:f5:d5:53: 69:58:4a:c2:7b:40:6b:f7:f3:9a:79:b0:53:35:37:9e:83:e1: 8f:90:cc:5c:cf:f1:b9:0f:3c:37:89:bd:2f:c4:51:bb:10:99: 91:6c:62:a5:21:d1:ac:19:9d:09:4c:83:f6:bb:b1:8d:9e:9a: ea:9e:d4:2c:43:b9:ce:c7:0d:ad:34:24:2f:07:83:2c:93:70: d2:06:c6:fb:ab:cd:3e:6f:99:19:f8:65:69:fe:24:35:60:66: 4a:cc:54:d2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUf2GvkWtUmOhdUrFPpKHESAK96zowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE3MDAyMDQ4WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMDFiYjYyNmIzNTIxODIyMDIxOGM5MGE5NGFmNjI0YWIx M2QyNTViYWZlMzY5YjAzZmEwNjVmZjVhYmQxNTNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi3Xd1of8/twmtfXQH+ASkQdt/2UJRkBAYilr9Lh7gzZME TKEra/i2bE5Ix7D8cCBuPN9yrnklEh+W3dy0Z95T5kutUt/U/tOIysYULegVghWB bnkSP/dPXZ5fVUQmf7RHKWCJ+eImNGonWa++d+w/b70pyIrh1COpikLuAGHg7UjQ qGfDqOc0KrCvXd2a3VAXNwEHfGeG7KaXklT+KAwQIzOE0QjBlWSbkPd8kDsijy73 3pxwDMUx4ElLCXWjQND+R+FiT1eOrWVBGclOAQFKbhDNZE+uf1TYzgzx6WXDWreM ts7qutmUoDJHMmmQZFe+DlXmaNW9YadE2ZzPY16hAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUswJo/OMzmxnhLdRmVcpGL2kbmaswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RlMmFjYzA1LTA1OGUtNDU0Yy1iZjYxLWY3MGUzNGI2ZDJmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/2QDANBgkqhkiG9w0BAQsFAAOCAQEAMBLi8ETd3HkBM/YN+m0SC1ED bLXXUX0gcL2DcXPrS8re6lTZEl8j5JA4nWq8U78OXh+90z7KwxLSarJJhO+RvLU5 dFqkvBB4OJiG+igFxL+jszPBSiVK4hj5dK7U3NxfnmNIH6xsyf8IH2ea+U9fioTl yw6E6Yh1x6LCf6KHRKKkbNHE4I0duVHdxNlW/orAjBaICpyLvMjSrZgfPJut9dVT aVhKwntAa/fzmnmwUzU3noPhj5DMXM/xuQ88N4m9L8RRuxCZkWxipSHRrBmdCUyD 9ruxjZ6a6p7ULEO5zscNrTQkLweDLJNw0gbG+6vNPm+ZGfhlaf4kNWBmSsxU0g== -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:53 2026 by rpki-client