$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cc58e44-390c-409c-956a-31b9dc974d53.roa File: 3cc58e44-390c-409c-956a-31b9dc974d53.roa (raw, json) Hash identifier: Hh/AP9XZRg2jI2HmFgDtcLaJ6qUyDgLvQvKRA1XimtY= Subject key identifier: D8:45:40:1B:44:39:D1:87:CC:7B:F5:53:41:B2:B4:65:22:13:D1:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4EEADF886D7426B11BC28128BD41C24018C523C0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cc58e44-390c-409c-956a-31b9dc974d53.roa Signing time: Thu 12 Mar 2026 16:11:33 +0000 ROA not before: Thu 12 Mar 2026 16:11:33 +0000 ROA not after: Wed 10 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fe9:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Mar 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ea:df:88:6d:74:26:b1:1b:c2:81:28:bd:41:c2:40:18:c5:23:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 16:11:33 2026 GMT Not After : Jun 10 23:59:59 2026 GMT Subject: serialNumber=f1a1ec8a402a43141307880c86eec7b9a710bdbba9028d6536655f2a39e7244f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e0:41:18:ca:9a:a6:98:f7:0a:c0:d3:22:1f: 20:2c:17:c2:6e:d7:73:e3:07:ea:78:46:47:ca:98: 46:74:ba:c4:32:a0:b1:e1:80:05:ee:f3:45:6a:26: 05:34:bd:46:b2:0f:f9:01:52:f7:1f:40:a3:ef:a7: 52:67:3c:4a:39:82:7b:80:33:6d:10:3f:5b:77:de: 3f:5e:f9:84:d4:0c:b1:10:c3:d1:47:f6:19:2b:29: df:89:70:69:9e:85:aa:7b:ab:03:2e:0b:9b:6b:76: 60:5a:4b:07:59:d2:5f:67:23:c9:a4:6a:60:54:69: fd:76:e5:e2:c2:0e:e3:0b:a3:3e:a4:e8:f0:65:2e: a1:9f:8e:f4:6b:8f:02:83:ea:3b:db:4c:b1:6e:92: 2b:cc:3b:00:5c:70:a1:0d:09:3c:3b:85:28:55:41: 6b:bb:6a:7a:5d:00:db:52:27:50:29:fe:23:ff:26: 6b:d8:b2:19:99:bf:c2:94:ec:0a:16:4e:c6:83:17: 83:24:62:8f:e0:df:0a:c8:29:53:cb:82:70:83:0c: 6b:4c:69:e1:d6:7f:e9:96:71:15:87:04:1f:cd:ff: 12:6c:d2:96:b3:21:a1:f8:79:00:a7:d6:93:74:e9: 5e:d4:b0:63:98:69:ce:fd:55:52:b6:ab:76:a8:34: bc:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:45:40:1B:44:39:D1:87:CC:7B:F5:53:41:B2:B4:65:22:13:D1:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cc58e44-390c-409c-956a-31b9dc974d53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fe9:6000::/40 Signature Algorithm: sha256WithRSAEncryption 26:46:ef:c6:2c:e8:ca:e8:76:5b:c1:8e:12:1e:78:86:00:9d: 3b:ea:7d:3e:a5:d1:18:e2:ff:48:86:ca:79:4e:c2:c1:79:68: 4d:30:d0:e6:2d:0d:8f:ec:22:bd:73:4e:2d:51:46:61:dc:d2: 24:2a:82:66:79:15:51:62:55:ca:73:de:76:d4:a3:64:af:af: 02:3a:33:d8:97:7b:15:20:3c:07:63:cd:f2:bb:65:7f:63:9a: 9c:38:94:08:dc:e4:db:f1:ef:4f:b7:11:da:57:02:17:9f:7c: 72:c7:8c:5f:75:9e:b4:34:0c:91:d7:f5:99:64:94:16:b8:ee: ee:a0:5a:b3:dd:ec:5d:1b:a6:56:38:a4:a5:42:60:52:4e:6d: 46:a4:41:8b:32:c2:31:fa:59:47:54:b6:0f:fd:93:88:8c:24: 8d:13:99:18:5f:f4:de:83:e2:73:4a:91:33:e9:d0:c0:55:c4: b9:cd:06:2f:0a:ed:f4:5c:cc:ac:6e:b2:29:a1:50:31:fb:3b: 31:09:4c:cf:7f:08:24:0a:29:c2:60:91:d0:d4:af:c3:98:8f: da:af:06:ed:21:b8:05:41:32:b1:92:e8:1f:5b:f8:5f:ae:2a: f6:a0:57:f5:c9:57:96:ba:96:08:03:41:a1:77:e5:4d:9d:9d: 17:4e:3b:c9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTurfiG10JrEbwoEovUHCQBjFI8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzEyMTYxMTMzWhcNMjYwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMWExZWM4YTQwMmE0MzE0MTMwNzg4MGM4NmVlYzdiOWE3 MTBiZGJiYTkwMjhkNjUzNjY1NWYyYTM5ZTcyNDRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDN4EEYypqmmPcKwNMiHyAsF8Ju13PjB+p4RkfKmEZ0usQy oLHhgAXu80VqJgU0vUayD/kBUvcfQKPvp1JnPEo5gnuAM20QP1t33j9e+YTUDLEQ w9FH9hkrKd+JcGmehap7qwMuC5trdmBaSwdZ0l9nI8mkamBUaf125eLCDuMLoz6k 6PBlLqGfjvRrjwKD6jvbTLFukivMOwBccKENCTw7hShVQWu7anpdANtSJ1Ap/iP/ JmvYshmZv8KU7AoWTsaDF4MkYo/g3wrIKVPLgnCDDGtMaeHWf+mWcRWHBB/N/xJs 0pazIaH4eQCn1pN06V7UsGOYac79VVK2q3aoNLyHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU2EVAG0Q50YfMe/VTQbK0ZSIT0eMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjYzU4ZTQ0LTM5MGMtNDA5Yy05NTZhLTMxYjlkYzk3NGQ1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/pYDANBgkqhkiG9w0BAQsFAAOCAQEAJkbvxizoyuh2W8GOEh54hgCd O+p9PqXRGOL/SIbKeU7CwXloTTDQ5i0Nj+wivXNOLVFGYdzSJCqCZnkVUWJVynPe dtSjZK+vAjoz2Jd7FSA8B2PN8rtlf2OanDiUCNzk2/HvT7cR2lcCF598cseMX3We tDQMkdf1mWSUFrju7qBas93sXRumVjikpUJgUk5tRqRBizLCMfpZR1S2D/2TiIwk jROZGF/03oPic0qRM+nQwFXEuc0GLwrt9FzMrG6yKaFQMfs7MQlMz38IJAopwmCR 0NSvw5iP2q8G7SG4BUEysZLoH1v4X64q9qBX9clXlrqWCANBoXflTZ2dF047yQ== -----END CERTIFICATE-----Generated at Thu Mar 19 12:22:47 2026 by rpki-client