$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa File: cd3025ff-3653-4276-a530-1fa2eed87e53.roa (raw, json) Hash identifier: QFom5+3ETQZWd/8DcKRf7pLQ6DXzOqtV2/ctqnh/q+w= Subject key identifier: 6F:1F:C9:A6:05:53:C6:E6:4F:1B:52:B7:BA:1B:59:53:51:09:6C:51 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 085D8ED6CF63752358FDAE3DBCBFDF7D66E00E80 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa Signing time: Fri 13 Feb 2026 00:00:33 +0000 ROA not before: Fri 13 Feb 2026 00:00:33 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:5d:8e:d6:cf:63:75:23:58:fd:ae:3d:bc:bf:df:7d:66:e0:0e:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Feb 13 00:00:33 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=7175b63c25e61eee15f8d8fc9f9247576874e4445b8c277a8c36d3929b9f47da, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a4:c1:d9:22:d7:e3:cd:7a:b4:2b:fe:e4:b5: f1:2b:71:bf:f7:ff:23:f4:4f:05:15:93:d5:f3:2f: 00:e9:27:03:c4:19:8c:ee:b3:36:13:5e:f5:0c:3c: 9d:50:cc:22:1a:df:60:32:48:51:91:78:af:77:86: df:0e:39:0e:76:9d:41:4c:a6:53:ce:1d:60:28:4e: 65:ac:e6:cf:15:8a:54:3d:0f:59:d5:30:a7:7f:d9: 50:b3:30:0b:3d:85:60:90:66:b6:60:68:be:e6:d4: 15:ef:fa:68:a7:96:c2:a2:78:07:9a:f2:aa:2e:81: 4c:9b:4f:2b:c7:b5:fa:a5:fc:73:3b:4a:bf:5c:4f: 48:1c:86:29:5f:62:e0:b2:ca:f9:88:b3:ac:45:55: 92:68:17:37:64:d9:ea:8c:3c:14:34:e9:32:f1:2f: bc:78:23:f5:99:8d:47:9e:25:f3:31:e4:87:62:38: 47:d0:21:69:2c:eb:cc:c6:ef:38:6e:9a:c4:90:8e: 04:27:20:d9:2c:a0:fb:90:f2:a6:7c:43:f2:d4:cc: 4f:a3:3d:0b:31:c3:f1:81:bb:52:dc:bf:78:e3:83: f4:a2:c7:59:59:cf:73:82:cf:05:6f:df:2a:64:a4: c2:e3:66:a5:72:95:55:dd:1c:48:10:28:9d:10:1a: 42:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:1F:C9:A6:05:53:C6:E6:4F:1B:52:B7:BA:1B:59:53:51:09:6C:51 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3000::/44 Signature Algorithm: sha256WithRSAEncryption 07:38:ab:d1:d0:fd:a5:d7:2a:69:b7:74:14:18:92:a9:e2:13: 4a:f3:1a:8d:19:a3:ed:cc:ee:5b:3a:1c:5c:82:b0:5d:40:09: d8:ff:3b:ba:6c:44:c8:dd:51:5e:a3:5e:41:c8:a9:a8:70:9c: de:61:89:c0:e3:d4:29:7f:29:9d:7c:3b:73:ff:b9:83:b2:35: 6e:e3:4f:ba:36:f1:df:5b:e3:e5:c6:cc:44:c3:fa:5c:c4:01: 8b:60:98:56:ee:77:a0:a5:bc:3f:a8:92:de:d7:cf:2e:50:2c: ea:bf:bf:74:e9:84:a7:4c:40:23:e2:77:1e:df:e6:0d:5e:30: 6c:ba:2d:63:81:26:f3:96:61:27:fb:60:4a:50:4e:3f:61:a4: 74:1a:c5:b1:13:5d:d5:34:31:dc:9a:ac:3e:c6:db:0b:dd:5d: 11:1d:38:58:9e:b1:9f:7b:02:e7:ab:8c:b6:de:c8:e8:e9:cd: 1a:c0:93:d7:18:04:ed:57:d9:ba:31:8f:33:72:53:ed:ca:aa: f4:64:e0:11:1d:9f:7a:21:65:4e:94:fb:06:83:2b:f1:ae:9d: 07:f8:c1:5d:57:23:fb:4d:d4:5f:33:91:2b:71:04:f3:07:59: 34:c6:ea:29:c2:1d:6f:93:b4:a3:7a:33:c7:6c:20:5d:0f:b8: b5:d1:ff:a6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCF2O1s9jdSNY/a49vL/ffWbgDoAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjYwMjEzMDAwMDMzWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTc1YjYzYzI1ZTYxZWVlMTVmOGQ4ZmM5ZjkyNDc1NzY4 NzRlNDQ0NWI4YzI3N2E4YzM2ZDM5MjliOWY0N2RhMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjpMHZItfjzXq0K/7ktfErcb/3/yP0TwUVk9XzLwDpJwPE GYzuszYTXvUMPJ1QzCIa32AySFGReK93ht8OOQ52nUFMplPOHWAoTmWs5s8VilQ9 D1nVMKd/2VCzMAs9hWCQZrZgaL7m1BXv+minlsKieAea8qougUybTyvHtfql/HM7 Sr9cT0gchilfYuCyyvmIs6xFVZJoFzdk2eqMPBQ06TLxL7x4I/WZjUeeJfMx5Idi OEfQIWks68zG7zhumsSQjgQnINksoPuQ8qZ8Q/LUzE+jPQsxw/GBu1Lcv3jjg/Si x1lZz3OCzwVv3ypkpMLjZqVylVXdHEgQKJ0QGkIPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbx/JpgVTxuZPG1K3uhtZU1EJbFEwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2NkMzAyNWZmLTM2NTMtNDI3Ni1hNTMwLTFmYTJlZWQ4N2U1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEHMAAwDQYJKoZIhvcNAQELBQADggEBAAc4q9HQ/aXXKmm3dBQYkqni E0rzGo0Zo+3M7ls6HFyCsF1ACdj/O7psRMjdUV6jXkHIqahwnN5hicDj1Cl/KZ18 O3P/uYOyNW7jT7o28d9b4+XGzETD+lzEAYtgmFbud6ClvD+okt7Xzy5QLOq/v3Tp hKdMQCPidx7f5g1eMGy6LWOBJvOWYSf7YEpQTj9hpHQaxbETXdU0MdyarD7G2wvd XREdOFiesZ97AuerjLbeyOjpzRrAk9cYBO1X2boxjzNyU+3KqvRk4BEdn3ohZU6U +waDK/GunQf4wV1XI/tN1F8zkStxBPMHWTTG6inCHW+TtKN6M8dsIF0PuLXR/6Y= -----END CERTIFICATE-----Generated at Sun Mar 1 22:04:16 2026 by rpki-client