$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33d00f85-2dad-40e9-ad84-05aa8de0f228.roa File: 33d00f85-2dad-40e9-ad84-05aa8de0f228.roa (raw, json) Hash identifier: CI7oC2vG4HS1/EuMXsiWdtozeEljJ4fC+0to2VpPino= Subject key identifier: 79:97:F3:E2:73:00:2F:04:EB:6D:F4:A7:7A:1B:11:4F:4A:C6:E3:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 620731D1FD2B4EB1554A6129F522AE43D140ACDC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33d00f85-2dad-40e9-ad84-05aa8de0f228.roa Signing time: Tue 10 Feb 2026 01:00:11 +0000 ROA not before: Tue 10 Feb 2026 01:00:11 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1b:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:07:31:d1:fd:2b:4e:b1:55:4a:61:29:f5:22:ae:43:d1:40:ac:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 01:00:11 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=50fc508b86c68c6aa1a6ff3a87c1b1266e38525d3610dbc0df917601be15d663, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:56:57:c6:66:43:92:57:7e:c0:86:10:c0:cb: 47:3f:f3:73:70:c3:22:c1:b8:0b:44:8e:a3:b7:1c: a7:2d:10:53:d2:dd:d9:38:01:20:fe:d2:d1:7f:fe: 1f:f9:90:c9:69:ff:6d:0e:8e:c7:34:b6:57:c2:9d: cc:39:f1:04:a0:80:56:09:ba:c9:87:d1:31:18:cb: 99:7d:34:58:bb:48:3f:84:bd:75:7f:7d:8b:2b:ff: 6a:e0:4f:f4:29:fa:3e:05:9b:75:e9:ad:b3:69:29: 5c:f8:d1:13:9e:49:2b:ea:07:f6:1e:8d:7b:e2:f9: a9:a2:08:45:cf:b7:80:00:0d:6b:20:98:0a:45:31: 24:c6:94:e8:cc:1d:43:33:42:a0:c7:66:96:43:96: e4:40:93:28:5c:4e:2a:4f:48:21:cc:e2:a3:c8:61: d2:2b:44:31:c3:7b:a3:c4:03:6c:02:41:41:9b:07: aa:4e:74:97:46:14:7e:b9:54:34:f0:69:ff:62:aa: 3f:8a:c1:9f:8a:ac:f5:e5:be:47:07:de:40:f7:32: ea:82:f5:f0:6b:98:88:c8:49:a1:12:d1:72:c2:08: 30:2c:c6:7f:a3:2d:29:62:e9:84:16:1b:3c:88:ba: a0:36:a9:02:21:dd:97:7b:09:6d:84:4a:45:8f:af: 93:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:97:F3:E2:73:00:2F:04:EB:6D:F4:A7:7A:1B:11:4F:4A:C6:E3:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33d00f85-2dad-40e9-ad84-05aa8de0f228.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1b:8000::/36 Signature Algorithm: sha256WithRSAEncryption 00:f3:7e:9e:0c:9a:ae:52:88:a3:a0:c8:3e:c7:ff:06:e6:58: ed:4e:19:4a:af:43:79:84:2c:a2:01:e9:44:19:93:29:ff:10: 55:7c:28:6e:6b:e1:a9:39:9a:e6:b8:36:49:b3:c2:d8:14:ae: 70:e7:0c:89:fc:43:16:2f:c8:47:17:ec:c4:77:2e:95:e6:10: 9d:9e:e1:9a:fc:8c:7c:d5:19:b5:8f:40:43:fd:bb:a4:32:31: 5b:cb:e1:65:36:55:29:9f:25:2f:2a:c8:ec:69:e8:d6:7f:63: 0e:a2:f5:0b:0d:1f:d0:a9:ec:a7:b1:d2:6d:37:8a:03:1c:6e: d0:fb:eb:57:5a:f2:04:cc:19:ad:24:6a:02:d4:62:f7:7e:ab: 45:5e:68:ae:61:93:7e:e2:0c:cd:aa:44:28:db:55:0a:d1:f8: 57:8d:99:4c:78:3c:d6:a2:49:c9:9c:27:e9:9a:c6:df:57:ee: 01:08:e1:f6:67:e1:ff:b0:6f:47:4f:ff:15:6d:14:df:c7:e5: 42:29:e9:2f:c3:c3:d0:92:e9:3f:cb:e9:15:ea:53:b6:1d:53: 90:02:fa:ff:11:bd:6e:50:3c:24:21:2c:75:ec:eb:8a:30:86: c8:9c:fa:bb:df:e8:e3:12:4b:03:4a:d0:7a:06:0e:93:5b:ba: a4:a7:a3:73 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYgcx0f0rTrFVSmEp9SKuQ9FArNwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDEwMDExWhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MGZjNTA4Yjg2YzY4YzZhYTFhNmZmM2E4N2MxYjEyNjZl Mzg1MjVkMzYxMGRiYzBkZjkxNzYwMWJlMTVkNjYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjVlfGZkOSV37AhhDAy0c/83NwwyLBuAtEjqO3HKctEFPS 3dk4ASD+0tF//h/5kMlp/20Ojsc0tlfCncw58QSggFYJusmH0TEYy5l9NFi7SD+E vXV/fYsr/2rgT/Qp+j4Fm3XprbNpKVz40ROeSSvqB/YejXvi+amiCEXPt4AADWsg mApFMSTGlOjMHUMzQqDHZpZDluRAkyhcTipPSCHM4qPIYdIrRDHDe6PEA2wCQUGb B6pOdJdGFH65VDTwaf9iqj+KwZ+KrPXlvkcH3kD3MuqC9fBrmIjISaES0XLCCDAs xn+jLSli6YQWGzyIuqA2qQIh3Zd7CW2ESkWPr5PFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUeZfz4nMALwTrbfSnehsRT0rG414wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzZDAwZjg1LTJkYWQtNDBlOS1hZDg0LTA1YWE4ZGUwZjIyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8bgDANBgkqhkiG9w0BAQsFAAOCAQEAAPN+ngyarlKIo6DIPsf/BuZY 7U4ZSq9DeYQsogHpRBmTKf8QVXwobmvhqTma5rg2SbPC2BSucOcMifxDFi/IRxfs xHculeYQnZ7hmvyMfNUZtY9AQ/27pDIxW8vhZTZVKZ8lLyrI7Gno1n9jDqL1Cw0f 0Knsp7HSbTeKAxxu0PvrV1ryBMwZrSRqAtRi936rRV5ormGTfuIMzapEKNtVCtH4 V42ZTHg81qJJyZwn6ZrG31fuAQjh9mfh/7BvR0//FW0U38flQinpL8PD0JLpP8vp FepTth1TkAL6/xG9blA8JCEsdezrijCGyJz6u9/o4xJLA0rQegYOk1u6pKejcw== -----END CERTIFICATE-----Generated at Sun Mar 1 15:44:23 2026 by rpki-client