$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fba6b008-4b15-445e-bf72-4181fbf88a82.roa File: fba6b008-4b15-445e-bf72-4181fbf88a82.roa (raw, json) Hash identifier: Mr1Ruhm3CxTs0drzrxjIf1xbFe23MT8l8sjAXMpqsfA= Subject key identifier: 0F:72:69:BC:C3:BD:CC:BF:0F:11:8B:18:5F:91:F0:E6:A2:27:4D:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F7AA310D4CF6439B4A934F2F0552BFB54D031F2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fba6b008-4b15-445e-bf72-4181fbf88a82.roa Signing time: Tue 24 Feb 2026 02:01:50 +0000 ROA not before: Tue 24 Feb 2026 02:01:50 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:6040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:7a:a3:10:d4:cf:64:39:b4:a9:34:f2:f0:55:2b:fb:54:d0:31:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:01:50 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=d1ec3aaefa25809608222a87960a24d73dfe5a23a04b96f6f4315f247645a744, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:86:4a:fb:54:3a:7a:1b:78:0f:ec:5f:d8:47: 90:b1:4f:16:02:9f:a2:a2:32:01:d5:40:62:69:78: 3a:c6:99:e8:fa:25:8c:61:c3:24:7f:7b:ab:7a:a7: 32:5b:ab:85:ff:49:6e:cb:7b:34:0d:73:be:45:a6: 16:1b:6f:f4:03:b3:3d:1b:bf:ef:65:df:85:bb:3a: de:10:0f:2c:66:35:62:8d:0c:f0:64:b6:c0:b2:4a: 5f:6a:70:ed:45:f1:01:10:12:17:79:f8:30:09:ce: f2:e5:1b:52:8a:a7:6d:94:d5:ce:4a:42:82:3d:7f: 98:07:04:12:b8:36:4e:51:6e:2b:2b:9d:ba:a9:d6: 85:cb:9f:fd:37:50:96:e7:f0:8a:5e:5e:0f:31:16: e5:47:a4:59:a2:72:96:66:24:3f:24:40:88:28:82: 8a:02:c7:85:40:24:cc:21:5b:28:5f:de:0c:49:80: 0d:70:c3:77:87:95:6e:3d:c0:4b:95:ab:69:2f:96: 41:2f:ba:06:cc:0e:f0:73:24:a7:2b:c5:6d:41:37: 8a:4a:2d:88:be:f6:a3:18:b2:a0:4f:f0:68:61:77: ea:c6:e7:83:c2:61:b0:c4:9f:27:0e:43:97:8c:36: 70:0b:5d:97:ac:f7:83:2c:9b:70:bc:dc:9c:4e:20: ef:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:72:69:BC:C3:BD:CC:BF:0F:11:8B:18:5F:91:F0:E6:A2:27:4D:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fba6b008-4b15-445e-bf72-4181fbf88a82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:6040::/48 Signature Algorithm: sha256WithRSAEncryption 1f:7e:3e:a1:10:ba:f6:41:f1:cf:c7:a5:73:61:d6:e7:b3:56: 92:f5:19:0d:3e:81:fe:9e:0b:af:09:fe:50:3e:a2:23:b6:e2: 10:1d:3e:75:e3:5c:3b:87:7d:b6:e7:0d:98:f8:54:cf:53:29: 28:d8:82:18:f3:e5:97:76:ac:e4:37:1a:61:14:ad:2a:75:02: da:70:89:c4:e3:47:ba:06:b1:78:d6:de:5a:77:cc:6d:77:10: 2a:85:9c:c1:a7:0d:0b:bc:36:b9:12:05:25:b4:f1:88:dc:49: d5:20:e5:07:20:41:33:31:9d:c6:c8:dc:37:90:23:e5:03:27: fc:fc:64:cd:cb:73:55:cc:0d:90:86:30:c7:18:18:98:5a:93: d2:60:76:b2:70:99:4a:49:ef:1b:3c:7e:4a:5f:6e:ba:05:b3: 56:44:9b:6b:e3:30:f7:c7:7f:11:5e:91:f7:8e:4b:84:d8:c9: c8:2c:dc:c0:bf:d2:b0:0e:51:83:65:32:18:cf:b9:0f:43:25: cd:5a:b2:52:b5:4f:b4:f9:99:a3:ef:29:b7:53:e4:1b:4a:aa: 94:6d:b8:ee:af:ba:35:bd:df:ff:4c:34:80:c5:e9:c9:49:bf: 52:46:49:04:13:18:74:b5:de:3b:0a:ef:23:cc:a7:da:ce:b4: 16:6d:bc:22 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUT3qjENTPZDm0qTTy8FUr+1TQMfIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIwMTUwWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWVjM2FhZWZhMjU4MDk2MDgyMjJhODc5NjBhMjRkNzNk ZmU1YTIzYTA0Yjk2ZjZmNDMxNWYyNDc2NDVhNzQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIhkr7VDp6G3gP7F/YR5CxTxYCn6KiMgHVQGJpeDrGmej6 JYxhwyR/e6t6pzJbq4X/SW7LezQNc75FphYbb/QDsz0bv+9l34W7Ot4QDyxmNWKN DPBktsCySl9qcO1F8QEQEhd5+DAJzvLlG1KKp22U1c5KQoI9f5gHBBK4Nk5Rbisr nbqp1oXLn/03UJbn8IpeXg8xFuVHpFmicpZmJD8kQIgogooCx4VAJMwhWyhf3gxJ gA1ww3eHlW49wEuVq2kvlkEvugbMDvBzJKcrxW1BN4pKLYi+9qMYsqBP8Ghhd+rG 54PCYbDEnycOQ5eMNnALXZes94Msm3C83JxOIO/bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUD3JpvMO9zL8PEYsYX5Hw5qInTZcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiYTZiMDA4LTRiMTUtNDQ1ZS1iZjcyLTQxODFmYmY4OGE4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AYEAwDQYJKoZIhvcNAQELBQADggEBAB9+PqEQuvZB8c/HpXNh1uez VpL1GQ0+gf6eC68J/lA+oiO24hAdPnXjXDuHfbbnDZj4VM9TKSjYghjz5Zd2rOQ3 GmEUrSp1AtpwicTjR7oGsXjW3lp3zG13ECqFnMGnDQu8NrkSBSW08YjcSdUg5Qcg QTMxncbI3DeQI+UDJ/z8ZM3Lc1XMDZCGMMcYGJhak9JgdrJwmUpJ7xs8fkpfbroF s1ZEm2vjMPfHfxFekfeOS4TYycgs3MC/0rAOUYNlMhjPuQ9DJc1aslK1T7T5maPv KbdT5BtKqpRtuO6vujW93/9MNIDF6clJv1JGSQQTGHS13jsK7yPMp9rOtBZtvCI= -----END CERTIFICATE-----Generated at Mon Mar 2 02:00:32 2026 by rpki-client