$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0aa7844e-89d7-4cea-a110-16b5bca6c57f.roa File: 0aa7844e-89d7-4cea-a110-16b5bca6c57f.roa (raw, json) Hash identifier: tsPyUHYnTX2qsqfXyeLWwkVxk/eHqhy8wD8tYCN3uBQ= Subject key identifier: CA:9D:EC:A0:20:7B:78:18:97:96:C1:F8:1C:09:2E:4F:1F:26:CE:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BE8AB094CAC6EA0449297F56908BEAB5962AB74 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0aa7844e-89d7-4cea-a110-16b5bca6c57f.roa Signing time: Thu 12 Mar 2026 16:06:49 +0000 ROA not before: Thu 12 Mar 2026 16:06:49 +0000 ROA not after: Wed 10 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fba:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Mar 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:e8:ab:09:4c:ac:6e:a0:44:92:97:f5:69:08:be:ab:59:62:ab:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 16:06:49 2026 GMT Not After : Jun 10 23:59:59 2026 GMT Subject: serialNumber=6ae6464887f8723f9e09d15b01aeb99b610914f01991dcddac9fb5ab3b23e756, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f1:e3:be:47:44:98:d2:cd:e5:39:00:ab:0e: 54:53:57:10:15:39:7d:19:4b:1b:d0:88:66:60:f5: 71:9b:04:94:b8:d5:a4:5d:9f:07:e9:8b:59:bb:f6: 4c:06:64:9c:95:97:50:5f:89:ef:f0:d1:d3:2e:d9: f5:78:07:03:eb:d7:86:3f:fa:64:9a:e1:8e:ba:a1: 5a:2d:df:aa:92:b6:83:8a:37:86:f7:ad:67:40:02: c1:88:02:e7:a0:05:a3:0c:34:78:06:2b:15:d5:b1: bc:47:3a:dc:8f:b3:ae:f3:d4:d1:0f:0d:c9:13:f1: 07:12:80:e8:ba:f0:7d:8b:8c:62:7b:01:df:f3:2f: 9b:fc:e4:dd:76:7b:7d:6f:6b:bd:78:a5:41:17:81: 5e:d8:e5:8f:e5:99:b6:40:13:f1:51:46:86:ab:e0: 25:be:c1:0f:af:4b:60:da:fe:09:27:18:7d:7d:78: df:f6:e7:5d:1b:90:4a:b1:bd:86:29:65:8b:57:7a: 97:07:57:b8:0f:ca:82:4b:a3:7f:e1:d3:06:86:16: a8:d1:e5:8a:31:83:e1:85:0e:29:f3:44:f0:8c:fa: 7a:a2:e1:79:4c:b9:d0:85:af:96:7c:e5:50:cd:9e: 0b:07:47:7d:20:4e:c1:75:c5:4a:f4:27:bb:6f:19: 2b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:9D:EC:A0:20:7B:78:18:97:96:C1:F8:1C:09:2E:4F:1F:26:CE:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0aa7844e-89d7-4cea-a110-16b5bca6c57f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fba:5040::/48 Signature Algorithm: sha256WithRSAEncryption b2:4b:0f:e6:a5:7a:0b:e5:69:c3:01:d3:e1:11:ee:21:56:5c: 15:99:e9:3e:04:9b:79:e6:72:e0:8c:15:ed:7e:e6:b6:23:da: 62:ec:5d:67:d3:ca:73:62:9c:c1:63:e5:18:03:e9:2c:7c:99: 63:97:e4:a9:51:06:53:ef:9f:a7:2d:f4:82:8b:73:fd:73:7d: a1:93:31:68:5e:6e:41:72:78:53:c6:af:60:1c:2b:15:be:8f: 2b:21:51:38:96:0d:53:ea:51:dc:43:9a:6e:1c:cb:a2:e3:14: 5b:42:c6:2f:1d:0c:82:13:c7:46:fa:8e:fb:41:5a:df:51:7a: dc:05:fe:0e:71:d7:44:3b:ec:31:07:3a:52:96:9a:09:af:36: 28:fa:4f:d9:c7:0c:ed:06:f9:bb:e9:27:87:32:3f:a3:46:5c: e7:4c:6a:b6:7d:d5:3f:79:4b:17:21:f4:74:70:d5:53:b9:34: 2d:48:34:38:97:5f:f0:7e:64:2b:fc:ba:7c:2a:c8:1b:a2:63: 8b:e7:7d:f5:9d:63:f0:02:81:e2:5a:56:ce:fd:b1:79:98:cb: e7:06:4b:13:c7:c4:35:4c:9f:7a:0a:6a:da:aa:3a:51:f0:ef: 11:3a:32:39:77:5a:9d:48:57:95:f8:21:c6:03:7c:b1:2b:04: 7e:0a:14:40 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS+irCUysbqBEkpf1aQi+q1liq3QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzEyMTYwNjQ5WhcNMjYwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWU2NDY0ODg3Zjg3MjNmOWUwOWQxNWIwMWFlYjk5YjYx MDkxNGYwMTk5MWRjZGRhYzlmYjVhYjNiMjNlNzU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa8eO+R0SY0s3lOQCrDlRTVxAVOX0ZSxvQiGZg9XGbBJS4 1aRdnwfpi1m79kwGZJyVl1Bfie/w0dMu2fV4BwPr14Y/+mSa4Y66oVot36qStoOK N4b3rWdAAsGIAuegBaMMNHgGKxXVsbxHOtyPs67z1NEPDckT8QcSgOi68H2LjGJ7 Ad/zL5v85N12e31va714pUEXgV7Y5Y/lmbZAE/FRRoar4CW+wQ+vS2Da/gknGH19 eN/2510bkEqxvYYpZYtXepcHV7gPyoJLo3/h0waGFqjR5Yoxg+GFDinzRPCM+nqi 4XlMudCFr5Z85VDNngsHR30gTsF1xUr0J7tvGSuZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyp3soCB7eBiXlsH4HAkuTx8mzikwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhYTc4NDRlLTg5ZDctNGNlYS1hMTEwLTE2YjViY2E2YzU3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB+6UEAwDQYJKoZIhvcNAQELBQADggEBALJLD+alegvlacMB0+ER7iFW XBWZ6T4Em3nmcuCMFe1+5rYj2mLsXWfTynNinMFj5RgD6Sx8mWOX5KlRBlPvn6ct 9IKLc/1zfaGTMWhebkFyeFPGr2AcKxW+jyshUTiWDVPqUdxDmm4cy6LjFFtCxi8d DIITx0b6jvtBWt9RetwF/g5x10Q77DEHOlKWmgmvNij6T9nHDO0G+bvpJ4cyP6NG XOdMarZ91T95Sxch9HRw1VO5NC1INDiXX/B+ZCv8unwqyBuiY4vnffWdY/ACgeJa Vs79sXmYy+cGSxPHxDVMn3oKatqqOlHw7xE6Mjl3Wp1IV5X4IcYDfLErBH4KFEA= -----END CERTIFICATE-----Generated at Thu Mar 19 12:24:20 2026 by rpki-client