$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb576ea7-72d9-4eae-aee5-e61e6981de1e.roa File: fb576ea7-72d9-4eae-aee5-e61e6981de1e.roa (raw, json) Hash identifier: kFOqlH1mAENLiIGVccp8hVZoacUZMmiBM1wQdQ9RY3I= Subject key identifier: 45:A8:27:24:F2:11:E1:1A:69:71:FB:E9:6B:20:A9:3C:0F:AB:68:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 71B82CBA90592434EA4A8A85DAFDC0E2A39489C0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb576ea7-72d9-4eae-aee5-e61e6981de1e.roa Signing time: Sat 28 Feb 2026 00:10:11 +0000 ROA not before: Sat 28 Feb 2026 00:10:11 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:b8:2c:ba:90:59:24:34:ea:4a:8a:85:da:fd:c0:e2:a3:94:89:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:10:11 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=852f3e7697a8f45e67b94bd754df57f891d60690a8b9a9908de39223bf7c2c44, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8c:1d:cf:7c:63:eb:cf:75:8a:3e:06:b3:5f: ae:87:1d:81:9f:a6:b7:c4:6a:51:85:76:96:a0:21: dd:f2:11:c8:04:ae:1e:ee:0b:bb:ad:10:eb:eb:3b: 86:dc:46:cd:c7:85:07:44:c8:91:e7:3f:b6:d3:51: 18:48:98:e3:55:f1:3a:14:72:41:06:88:8d:5f:2c: 9c:02:2e:f0:c6:52:41:74:b8:1b:19:57:81:af:89: c7:52:d6:40:1a:e4:b9:3f:bc:5d:be:67:cb:07:88: 4c:34:b7:f6:c6:bb:99:6d:20:a2:6f:be:63:82:81: 33:25:5d:42:4e:0a:a9:ac:cf:e6:15:96:a5:83:10: f4:be:ef:67:7c:44:dd:22:d3:74:71:c9:59:b9:20: ee:91:f6:56:b5:00:9e:b5:fc:7d:e5:7f:51:86:16: 8b:bd:63:a2:04:b3:60:61:96:f4:e6:dc:5c:22:d6: d2:c4:0c:c6:b1:59:bc:d1:5a:9f:19:4b:89:02:d7: c8:e6:53:c4:ac:7a:bc:8e:1e:9f:47:f8:75:ce:53: 00:64:06:98:4c:6e:a4:29:06:eb:8a:17:be:42:e5: 38:1e:4c:f1:51:bd:3a:8a:1a:87:dd:4a:fd:0b:2c: 9f:4e:a3:92:be:fd:a4:d2:56:6f:88:a5:9f:38:4e: 00:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A8:27:24:F2:11:E1:1A:69:71:FB:E9:6B:20:A9:3C:0F:AB:68:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb576ea7-72d9-4eae-aee5-e61e6981de1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:5000::/40 Signature Algorithm: sha256WithRSAEncryption 05:a0:aa:af:2f:ac:67:76:e6:86:99:a8:f1:b8:60:63:68:d5: 19:c2:31:eb:00:16:30:c7:4b:2b:ee:9f:de:e7:12:e3:9d:2c: bc:71:96:34:6c:a3:23:c4:c5:ce:2c:08:33:4c:40:ce:cc:41: 84:ba:d2:a4:8d:8a:ca:82:da:69:0f:b9:ff:d1:9d:27:70:fe: bd:41:86:38:8f:25:43:e1:04:f3:10:d4:da:53:b7:fd:8e:ee: 1f:e0:26:a5:d4:bd:8c:e7:d1:28:10:c9:e4:df:ec:a8:0c:a8: 70:7f:9f:6c:55:8e:32:4b:27:03:35:20:ed:b4:09:21:42:ed: 76:d6:e1:3b:68:e4:4d:a9:75:26:85:bb:d1:3b:d0:bd:f3:dc: d1:76:b3:7c:71:ef:16:2c:14:a2:98:04:1d:ec:ac:25:7a:15: 97:a3:36:62:b5:e0:7a:0e:f3:92:9f:21:d9:f6:7c:44:93:19: 82:0b:35:02:fd:da:3d:db:59:68:10:ab:c8:a1:30:5a:e4:75: c9:31:07:05:ea:f2:22:ba:7a:5e:39:89:6a:d2:49:d4:8c:f5: 4a:8a:51:76:7d:43:03:a7:60:66:0e:37:e2:7a:12:d9:d9:88: 2f:0f:63:46:af:10:c2:6c:59:1c:bf:84:42:7f:65:90:14:65: 49:a2:90:3d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcbgsupBZJDTqSoqF2v3A4qOUicAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDAxMDExWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTJmM2U3Njk3YThmNDVlNjdiOTRiZDc1NGRmNTdmODkx ZDYwNjkwYThiOWE5OTA4ZGUzOTIyM2JmN2MyYzQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwjB3PfGPrz3WKPgazX66HHYGfprfEalGFdpagId3yEcgE rh7uC7utEOvrO4bcRs3HhQdEyJHnP7bTURhImONV8ToUckEGiI1fLJwCLvDGUkF0 uBsZV4GvicdS1kAa5Lk/vF2+Z8sHiEw0t/bGu5ltIKJvvmOCgTMlXUJOCqmsz+YV lqWDEPS+72d8RN0i03RxyVm5IO6R9la1AJ61/H3lf1GGFou9Y6IEs2BhlvTm3Fwi 1tLEDMaxWbzRWp8ZS4kC18jmU8SseryOHp9H+HXOUwBkBphMbqQpBuuKF75C5Tge TPFRvTqKGofdSv0LLJ9Oo5K+/aTSVm+IpZ84TgDnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURagnJPIR4RppcfvpayCpPA+raIEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiNTc2ZWE3LTcyZDktNGVhZS1hZWU1LWU2MWU2OTgxZGUxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gUDANBgkqhkiG9w0BAQsFAAOCAQEABaCqry+sZ3bmhpmo8bhgY2jV GcIx6wAWMMdLK+6f3ucS450svHGWNGyjI8TFziwIM0xAzsxBhLrSpI2KyoLaaQ+5 /9GdJ3D+vUGGOI8lQ+EE8xDU2lO3/Y7uH+AmpdS9jOfRKBDJ5N/sqAyocH+fbFWO MksnAzUg7bQJIULtdtbhO2jkTal1JoW70TvQvfPc0XazfHHvFiwUopgEHeysJXoV l6M2YrXgeg7zkp8h2fZ8RJMZggs1Av3aPdtZaBCryKEwWuR1yTEHBeryIrp6XjmJ atJJ1Iz1SopRdn1DA6dgZg434noS2dmILw9jRq8QwmxZHL+EQn9lkBRlSaKQPQ== -----END CERTIFICATE-----Generated at Mon Mar 2 06:47:57 2026 by rpki-client