$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8948d3c-891f-4adf-9ab1-30923302cc28.roa File: e8948d3c-891f-4adf-9ab1-30923302cc28.roa (raw, json) Hash identifier: tnZ53srehmJXcrqehJiuadLf4QLWBHBH0rkuS3g8xSI= Subject key identifier: 40:F6:FA:A3:31:81:3E:16:EC:EF:D1:9E:6E:E9:E6:39:0C:68:9E:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 20A35BB8806A42E1905668391180CAC0BF80773F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8948d3c-891f-4adf-9ab1-30923302cc28.roa Signing time: Tue 24 Feb 2026 02:20:03 +0000 ROA not before: Tue 24 Feb 2026 02:20:03 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:80e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:a3:5b:b8:80:6a:42:e1:90:56:68:39:11:80:ca:c0:bf:80:77:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:20:03 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=07f8ca084cbd2c1f8750654f8267d521558265cf905829a74866ef4387e56ff2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e4:b1:d5:a2:70:77:0e:56:07:65:b9:bb:c1: 76:5a:55:0b:10:ce:6a:1c:0a:21:3d:32:a9:1b:21: fb:0d:39:33:45:ba:f8:68:f2:67:07:9f:6b:64:86: e4:4c:c1:8e:c8:68:87:90:11:0a:3a:fd:31:13:58: 62:c6:fc:05:b2:1e:4f:ed:cd:99:07:d8:3f:b3:67: a7:20:4a:e1:96:3e:b3:5e:49:20:d9:2f:33:c8:8e: 18:4e:84:f0:2d:d8:80:ce:3c:32:c4:7f:5f:82:2e: c7:af:5a:28:43:ae:0f:97:cd:95:55:07:fb:1d:19: b6:ae:74:2b:15:8d:51:34:9e:80:ef:9d:02:31:e6: 84:a3:12:f2:50:ed:ec:f0:3e:d7:e3:0c:3d:eb:a2: c8:31:83:95:44:fb:67:a7:b4:85:c7:ce:45:41:fc: 02:bf:a8:40:40:0c:83:49:0d:18:38:7c:00:0a:c9: 24:23:de:17:38:68:9e:a5:88:b3:58:40:8f:d9:6e: ac:5b:5d:73:e9:f9:f9:16:24:a6:81:e2:61:35:af: 14:c0:1e:04:70:96:e1:04:f1:ba:59:ac:cc:4b:26: ed:06:b6:66:59:eb:92:b0:44:99:93:13:8a:75:52: db:43:00:77:74:ab:f1:9a:00:6a:bc:04:ff:87:e1: f8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:F6:FA:A3:31:81:3E:16:EC:EF:D1:9E:6E:E9:E6:39:0C:68:9E:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8948d3c-891f-4adf-9ab1-30923302cc28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:80e0::/48 Signature Algorithm: sha256WithRSAEncryption d2:be:d8:a5:00:08:ae:53:1d:2d:45:0c:f1:28:c7:21:66:60: 54:53:82:0f:2a:4f:82:37:1e:ab:8d:34:d2:a7:72:89:69:9b: af:25:73:d3:9e:2a:a5:48:cd:44:8d:7c:50:86:40:9c:89:a9: f6:96:7c:71:68:1c:51:c4:bd:bb:84:10:88:da:da:94:1e:a0: c6:c8:32:ac:af:d9:1c:2d:0d:8b:79:a7:b9:a5:32:2a:90:5e: 05:c0:fa:0a:fb:b0:fd:f2:aa:42:c1:12:23:32:a4:ec:c5:96: ef:22:d9:e7:e4:53:18:d0:56:57:50:e0:f2:ab:b9:47:99:9c: bc:7d:06:73:52:63:17:98:b0:ea:82:21:51:de:04:de:0c:9d: f7:7d:54:9c:bd:98:b1:bd:38:3a:d4:cb:26:2a:40:7e:28:76: 9a:52:62:7b:e6:9e:7a:9c:ff:89:5b:91:fe:ca:3c:bf:8e:eb: e7:1f:01:a3:98:51:38:9c:9c:2e:25:99:14:36:7f:58:00:11: b0:21:94:c6:fa:47:a2:f7:1d:30:41:6b:6c:7d:0a:7b:af:e7: 0c:3c:4d:b9:6c:ee:75:25:39:af:2f:46:75:e7:de:5b:94:95: 38:f0:ae:0a:d5:53:8e:4a:bd:1d:b3:3e:21:dd:1e:47:3b:a9: 97:1d:53:f6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIKNbuIBqQuGQVmg5EYDKwL+Adz8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIyMDAzWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwN2Y4Y2EwODRjYmQyYzFmODc1MDY1NGY4MjY3ZDUyMTU1 ODI2NWNmOTA1ODI5YTc0ODY2ZWY0Mzg3ZTU2ZmYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU5LHVonB3DlYHZbm7wXZaVQsQzmocCiE9MqkbIfsNOTNF uvho8mcHn2tkhuRMwY7IaIeQEQo6/TETWGLG/AWyHk/tzZkH2D+zZ6cgSuGWPrNe SSDZLzPIjhhOhPAt2IDOPDLEf1+CLsevWihDrg+XzZVVB/sdGbaudCsVjVE0noDv nQIx5oSjEvJQ7ezwPtfjDD3rosgxg5VE+2entIXHzkVB/AK/qEBADINJDRg4fAAK ySQj3hc4aJ6liLNYQI/ZbqxbXXPp+fkWJKaB4mE1rxTAHgRwluEE8bpZrMxLJu0G tmZZ65KwRJmTE4p1UttDAHd0q/GaAGq8BP+H4fhHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQPb6ozGBPhbs79GebunmOQxono4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4OTQ4ZDNjLTg5MWYtNGFkZi05YWIxLTMwOTIzMzAyY2MyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgOAwDQYJKoZIhvcNAQELBQADggEBANK+2KUACK5THS1FDPEoxyFm YFRTgg8qT4I3HquNNNKncolpm68lc9OeKqVIzUSNfFCGQJyJqfaWfHFoHFHEvbuE EIja2pQeoMbIMqyv2RwtDYt5p7mlMiqQXgXA+gr7sP3yqkLBEiMypOzFlu8i2efk UxjQVldQ4PKruUeZnLx9BnNSYxeYsOqCIVHeBN4Mnfd9VJy9mLG9ODrUyyYqQH4o dppSYnvmnnqc/4lbkf7KPL+O6+cfAaOYUTicnC4lmRQ2f1gAEbAhlMb6R6L3HTBB a2x9Cnuv5ww8Tbls7nUlOa8vRnXn3luUlTjwrgrVU45KvR2zPiHdHkc7qZcdU/Y= -----END CERTIFICATE-----Generated at Mon Mar 2 00:11:18 2026 by rpki-client