$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e88e42d9-ad29-4555-92e9-c4375663ec2e.roa File: e88e42d9-ad29-4555-92e9-c4375663ec2e.roa (raw, json) Hash identifier: ktXYpbQIfosTtZeZ1U0jpAxbUkNY29gndb0Jm019nrc= Subject key identifier: 62:0E:9A:A6:FA:8E:5E:2C:0C:E5:75:B2:2E:F8:D6:41:B7:71:1F:20 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6DA99A96F9E319DF6D0239D98B9242D6EACF0C58 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e88e42d9-ad29-4555-92e9-c4375663ec2e.roa Signing time: Sun 08 Feb 2026 00:10:56 +0000 ROA not before: Sun 08 Feb 2026 00:10:56 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff1:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:a9:9a:96:f9:e3:19:df:6d:02:39:d9:8b:92:42:d6:ea:cf:0c:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:10:56 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=00a1186a9a21ceef402713bf935ae578ed3a6c3dd30bb6dcea9d8807abde4c58, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b6:6c:2d:61:2c:00:f5:06:cd:78:ca:10:29: 63:b3:12:60:1a:17:43:33:cd:80:a5:17:8b:f4:82: 65:03:cf:33:23:48:4a:b3:f7:e0:ed:45:42:c9:ba: 1d:d7:90:18:ac:4d:30:40:7c:4d:5c:45:2c:e4:41: ac:92:50:35:3c:e4:0a:a8:55:8e:a4:e5:52:6b:fe: a8:21:a9:70:ce:1e:ab:d2:e3:bf:7a:6b:a5:25:d0: bf:fc:35:35:5b:ba:14:18:73:ef:40:48:20:f9:42: b7:b3:95:ce:2b:9d:5b:80:9c:08:dd:79:c6:52:cb: 10:3c:28:4c:0d:35:00:15:72:8e:13:d8:58:7c:1c: 60:e2:e2:fe:20:fd:17:59:50:46:a8:78:8c:47:8c: c3:73:39:92:71:46:45:a6:3b:e6:23:59:90:95:f6: 41:18:cd:e8:0e:0f:60:50:a8:73:36:d7:c7:53:4d: e2:b2:20:f7:b3:f0:02:87:aa:ad:33:f9:a6:a5:9d: 1d:23:69:19:eb:28:90:03:43:46:3d:27:84:d7:e9: da:66:a5:80:b7:9b:38:c0:bf:85:a1:9a:a7:41:07: 65:bc:a6:5d:7d:d5:36:58:3d:49:f2:68:6c:78:39: 1e:ef:6a:b2:7c:58:56:77:d8:da:e7:f9:5c:75:83: 12:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:0E:9A:A6:FA:8E:5E:2C:0C:E5:75:B2:2E:F8:D6:41:B7:71:1F:20 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e88e42d9-ad29-4555-92e9-c4375663ec2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:5000::/40 Signature Algorithm: sha256WithRSAEncryption 31:5c:84:bf:04:87:62:59:5b:93:11:19:0d:57:59:b6:cf:71: d9:12:81:e2:7f:5c:00:bc:37:0e:50:70:4a:11:3f:30:b6:a9: da:e9:b0:fa:06:d5:06:b4:56:0b:33:20:7b:2b:be:cf:62:db: a2:b7:7d:4f:ec:7a:75:83:b6:00:7f:85:07:31:45:8d:fe:41: e0:f5:44:55:44:c0:fc:25:11:ab:8d:5c:1f:de:aa:e4:57:cb: 80:39:b3:fc:b1:61:7f:e8:87:f8:fa:ce:75:42:8d:af:ab:86: f6:41:e4:83:36:09:d0:fe:21:9f:0e:24:16:ad:21:78:34:a2: 83:08:10:fc:42:7f:99:53:9a:14:e8:8a:6d:1d:fa:c9:32:15: 23:0a:74:05:33:36:3e:bd:ae:0b:55:b0:2d:a4:51:6c:28:ae: c9:83:f8:7d:41:77:ac:19:fc:68:df:4c:a0:b6:98:f2:4d:c8: 65:53:c4:9d:a6:71:0e:dd:4d:9c:3f:77:0d:a4:e1:bd:9b:bf: c5:32:91:7c:80:f9:70:36:e8:38:67:b4:25:e9:c5:e2:30:da: 72:04:51:8a:26:33:d8:3f:3f:eb:bd:e9:e8:af:cf:fb:4b:33: 47:b7:5c:9e:50:72:16:20:36:71:23:59:67:9e:1c:6d:9d:08: c2:fd:c6:37 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbamalvnjGd9tAjnZi5JC1urPDFgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAxMDU2WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGExMTg2YTlhMjFjZWVmNDAyNzEzYmY5MzVhZTU3OGVk M2E2YzNkZDMwYmI2ZGNlYTlkODgwN2FiZGU0YzU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDtmwtYSwA9QbNeMoQKWOzEmAaF0MzzYClF4v0gmUDzzMj SEqz9+DtRULJuh3XkBisTTBAfE1cRSzkQaySUDU85AqoVY6k5VJr/qghqXDOHqvS 4796a6Ul0L/8NTVbuhQYc+9ASCD5Qrezlc4rnVuAnAjdecZSyxA8KEwNNQAVco4T 2Fh8HGDi4v4g/RdZUEaoeIxHjMNzOZJxRkWmO+YjWZCV9kEYzegOD2BQqHM218dT TeKyIPez8AKHqq0z+aalnR0jaRnrKJADQ0Y9J4TX6dpmpYC3mzjAv4WhmqdBB2W8 pl191TZYPUnyaGx4OR7varJ8WFZ32Nrn+Vx1gxL1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUYg6apvqOXiwM5XWyLvjWQbdxHyAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4OGU0MmQ5LWFkMjktNDU1NS05MmU5LWM0Mzc1NjYzZWMyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/xUDANBgkqhkiG9w0BAQsFAAOCAQEAMVyEvwSHYllbkxEZDVdZts9x 2RKB4n9cALw3DlBwShE/MLap2umw+gbVBrRWCzMgeyu+z2Lbord9T+x6dYO2AH+F BzFFjf5B4PVEVUTA/CURq41cH96q5FfLgDmz/LFhf+iH+PrOdUKNr6uG9kHkgzYJ 0P4hnw4kFq0heDSigwgQ/EJ/mVOaFOiKbR36yTIVIwp0BTM2Pr2uC1WwLaRRbCiu yYP4fUF3rBn8aN9MoLaY8k3IZVPEnaZxDt1NnD93DaThvZu/xTKRfID5cDboOGe0 JenF4jDacgRRiiYz2D8/673p6K/P+0szR7dcnlByFiA2cSNZZ54cbZ0Iwv3GNw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:05:35 2026 by rpki-client