$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f13c765a-2620-4adf-afc8-71c523da0fe2.roa File: f13c765a-2620-4adf-afc8-71c523da0fe2.roa (raw, json) Hash identifier: nGT8nKL+TWTUsrmjULh4UKzoW5hyPgn5vDwPKADCGgA= Subject key identifier: 2B:EF:12:7D:D2:8B:0E:88:0E:DC:0A:77:AF:6D:4A:8E:E0:EC:40:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6DFF439F986A031923CC33EA92FC8B22C8985D7B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f13c765a-2620-4adf-afc8-71c523da0fe2.roa Signing time: Sat 21 Feb 2026 01:40:08 +0000 ROA not before: Sat 21 Feb 2026 01:40:08 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff7::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:ff:43:9f:98:6a:03:19:23:cc:33:ea:92:fc:8b:22:c8:98:5d:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:40:08 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=e7944ef4af5b05f18c72fe2f7caba931479bf1d6ebac30f7ac794ffda0a1f09c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8b:39:1e:59:82:63:75:d4:1a:3e:88:2d:61: c5:e7:fb:84:b5:45:6e:f8:52:73:10:a6:7c:37:1f: 3e:fd:f6:f2:4b:69:6c:ac:54:8b:e9:ac:4b:eb:b5: f9:20:59:86:e8:2e:77:6b:fd:96:0c:ef:b7:0a:c8: e1:60:ca:ac:43:87:c0:49:08:37:db:b0:c6:66:6b: 70:0c:e7:79:28:29:8c:c9:9c:76:0b:62:7a:72:b0: 1c:4d:2c:e7:ca:4a:17:69:45:4b:6c:3d:a4:b3:11: 1a:b3:b7:63:48:0f:f4:91:89:20:3b:06:0b:1a:d7: f1:6e:a9:08:42:09:ab:04:5e:b9:43:7a:1b:77:49: 11:55:b7:e6:5d:57:06:36:11:a8:08:fd:bc:f5:fe: c5:26:71:b3:98:f4:58:91:ae:45:a2:c7:44:b6:23: a2:dc:3d:de:bb:93:f7:9f:4e:21:2a:8f:4b:fe:a4: 58:01:6e:ae:49:57:1f:c8:6b:82:c7:b7:aa:4c:97: 9f:a7:b8:b0:7f:79:3e:2f:45:e6:13:1c:10:e0:4f: 36:22:82:98:0a:a0:c4:ae:a3:21:8b:a1:8b:3c:c5: dc:0d:a8:1b:64:36:9b:8f:2b:8f:d5:00:03:a1:d2: 0c:89:28:fe:bb:62:e6:39:3a:1d:8a:8c:92:c2:57: 87:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:EF:12:7D:D2:8B:0E:88:0E:DC:0A:77:AF:6D:4A:8E:E0:EC:40:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f13c765a-2620-4adf-afc8-71c523da0fe2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7::/32 Signature Algorithm: sha256WithRSAEncryption 54:6d:54:33:02:46:c2:9a:2b:f9:f4:2c:47:5b:5a:64:77:f6: 4e:18:3e:35:bb:0d:ba:c7:14:df:ce:5e:32:77:96:e4:76:88: 02:f4:88:06:77:79:17:dd:9d:d6:7a:bc:1e:cf:8d:3d:44:1f: 60:b1:43:73:98:70:aa:81:51:44:04:0f:23:8f:a1:b3:2d:56: 48:c7:a9:09:6f:7e:16:9a:d0:fc:b7:a0:82:8d:08:5f:74:02: ac:16:35:5a:d9:37:00:f4:cc:af:09:72:f3:7b:65:77:ad:7b: 79:ae:fa:c1:ef:ec:f1:7b:f7:56:f6:61:16:88:20:37:3f:8e: 58:36:6b:f2:38:41:94:35:ec:03:fc:1c:8d:b3:af:b9:b2:a5: da:90:98:f3:94:6e:2b:34:06:9a:30:fb:ba:50:a1:d6:2e:b4: 72:fa:15:bb:03:bb:02:e9:89:80:62:ac:c0:74:b2:72:2a:6f: 9f:af:26:03:b1:22:45:f4:72:8b:be:15:b8:d2:ad:f6:05:8c: 28:3a:9b:f6:67:a5:38:31:ee:00:80:c9:9c:ca:6b:b8:df:b7: 20:a7:de:cd:af:85:2b:f1:25:7b:cb:e7:ae:6c:8a:7e:73:52: d8:28:6a:1a:a6:e8:38:2c:54:f7:65:b8:0c:27:df:2e:04:6e: bc:7d:43:72 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUbf9Dn5hqAxkjzDPqkvyLIsiYXXswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDE0MDA4WhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzk0NGVmNGFmNWIwNWYxOGM3MmZlMmY3Y2FiYTkzMTQ3 OWJmMWQ2ZWJhYzMwZjdhYzc5NGZmZGEwYTFmMDljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiizkeWYJjddQaPogtYcXn+4S1RW74UnMQpnw3Hz799vJL aWysVIvprEvrtfkgWYboLndr/ZYM77cKyOFgyqxDh8BJCDfbsMZma3AM53koKYzJ nHYLYnpysBxNLOfKShdpRUtsPaSzERqzt2NID/SRiSA7Bgsa1/FuqQhCCasEXrlD eht3SRFVt+ZdVwY2EagI/bz1/sUmcbOY9FiRrkWix0S2I6LcPd67k/efTiEqj0v+ pFgBbq5JVx/Ia4LHt6pMl5+nuLB/eT4vReYTHBDgTzYigpgKoMSuoyGLoYs8xdwN qBtkNpuPK4/VAAOh0gyJKP67YuY5Oh2KjJLCV4fvAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUK+8SfdKLDogO3Ap3r21KjuDsQF0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxM2M3NjVhLTI2MjAtNGFkZi1hZmM4LTcxYzUyM2RhMGZlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB/3MA0GCSqGSIb3DQEBCwUAA4IBAQBUbVQzAkbCmiv59CxHW1pkd/ZO GD41uw26xxTfzl4yd5bkdogC9IgGd3kX3Z3Werwez409RB9gsUNzmHCqgVFEBA8j j6GzLVZIx6kJb34WmtD8t6CCjQhfdAKsFjVa2TcA9MyvCXLze2V3rXt5rvrB7+zx e/dW9mEWiCA3P45YNmvyOEGUNewD/ByNs6+5sqXakJjzlG4rNAaaMPu6UKHWLrRy +hW7A7sC6YmAYqzAdLJyKm+fryYDsSJF9HKLvhW40q32BYwoOpv2Z6U4Me4AgMmc ymu437cgp97Nr4Ur8SV7y+eubIp+c1LYKGoapug4LFT3ZbgMJ98uBG68fUNy -----END CERTIFICATE-----Generated at Mon Mar 2 00:08:09 2026 by rpki-client