$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/460a4623-9d1b-4427-8645-f899476ab46a.roa File: 460a4623-9d1b-4427-8645-f899476ab46a.roa (raw, json) Hash identifier: kTdys4DWK9+aea5DmEYPJgQYedeW2nR42ADUSGSjqBE= Subject key identifier: 55:5E:73:E8:BE:8B:4C:DA:13:B7:CD:1B:A4:2D:09:B9:77:34:C7:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C6415AC28352B841C4E4B2EB07DC7A614F266 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/460a4623-9d1b-4427-8645-f899476ab46a.roa Signing time: Thu 12 Mar 2026 16:11:18 +0000 ROA not before: Thu 12 Mar 2026 16:11:18 +0000 ROA not after: Wed 10 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fec:7c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Mar 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:64:15:ac:28:35:2b:84:1c:4e:4b:2e:b0:7d:c7:a6:14:f2:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 16:11:18 2026 GMT Not After : Jun 10 23:59:59 2026 GMT Subject: serialNumber=da81e2b7278c45355d61182145fc9b05a4024102e78fcb2abdd66d75f9a87e15, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:33:01:26:19:09:0c:97:78:ee:86:a1:ac:c6: c9:9f:ee:97:be:0c:f4:05:13:aa:1a:9f:be:97:67: 59:bc:6a:04:04:1b:36:76:f9:97:95:6d:a1:7f:0d: 02:13:28:d8:f5:e0:2c:9b:3d:90:97:13:c3:7e:7e: 28:5a:a9:68:ef:e5:89:bf:1d:d2:f6:6d:fb:11:7a: 02:61:04:2f:74:a5:ca:c7:e7:2b:d5:42:4c:a2:4e: bd:81:d5:5a:d3:05:7a:b5:f8:bf:a4:61:f7:54:56: 8b:46:43:d8:02:06:b7:66:5b:62:c5:24:c5:7d:7d: 40:3b:c2:3f:49:72:e6:aa:bc:1f:50:b0:22:96:7c: cb:f0:32:d7:ad:92:b0:2b:ba:b6:93:33:ff:65:d0: 95:60:de:17:98:33:8a:b8:6b:1c:aa:34:39:e2:74: fa:f6:53:10:74:87:17:83:75:f9:0b:40:d6:a8:8c: 1b:bd:61:32:6e:8e:97:7d:f3:15:cf:6e:d6:c7:89: 16:79:69:eb:48:03:1b:91:8c:d7:80:a5:4a:eb:f5: d1:bb:6a:24:a4:66:3c:24:cb:d3:b0:42:c3:2a:68: ca:96:d0:fc:b7:2d:30:b0:fd:c7:44:79:9e:e8:dc: c3:d8:c6:a5:70:7f:fa:a1:71:7d:c0:65:d1:18:9f: 92:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:5E:73:E8:BE:8B:4C:DA:13:B7:CD:1B:A4:2D:09:B9:77:34:C7:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/460a4623-9d1b-4427-8645-f899476ab46a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fec:7c00::/48 Signature Algorithm: sha256WithRSAEncryption 5b:8d:2f:65:c6:5e:40:02:0f:1f:96:cb:75:f9:57:c4:75:be: e9:b5:52:a5:c5:38:39:cd:53:9d:2e:f2:ed:e2:22:c3:77:97: d7:7c:6a:cb:83:40:2c:bc:06:55:94:80:ad:bd:86:d3:4c:b9: 44:bb:08:bb:c9:02:98:1f:cc:df:e4:a8:36:bc:e2:e0:06:a6: ec:ac:08:96:cd:a1:48:aa:95:c3:bc:00:85:f8:37:3c:86:81: ab:1b:99:f8:97:d8:41:67:87:e4:d0:23:bc:4c:c7:f4:31:1f: 61:37:76:bc:95:41:22:88:cb:21:1c:be:5a:47:dc:6a:f1:dc: 91:17:a6:73:f9:79:45:1d:47:4c:7f:da:50:1b:de:cd:71:51: 71:ad:a5:5e:c4:dc:91:02:da:18:ec:a1:b1:c0:59:5f:3b:39: e5:1b:92:35:49:a2:08:52:27:07:20:2a:7d:68:da:29:04:07: fc:8b:84:1c:de:24:d1:99:1f:23:63:58:b0:1f:12:3a:b5:34: ad:e4:84:89:3d:22:c1:05:7f:15:b9:44:3a:99:04:cb:6c:e5: 56:d4:0c:fe:7c:07:f3:39:b1:9e:7e:bd:5f:55:97:43:40:fb: 8b:ae:4c:2e:fc:d0:c9:ae:bd:a0:4e:f5:87:76:b9:9e:4d:48: 37:f1:ed:b6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITXGQVrCg1K4QcTksusH3HphTyZjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNjAzMTIxNjExMThaFw0yNjA2MTAyMzU5NTla MHoxSTBHBgNVBAUTQGRhODFlMmI3Mjc4YzQ1MzU1ZDYxMTgyMTQ1ZmM5YjA1YTQw MjQxMDJlNzhmY2IyYWJkZDY2ZDc1ZjlhODdlMTUxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJgzASYZCQyXeO6GoazGyZ/ul74M9AUTqhqfvpdnWbxqBAQb Nnb5l5VtoX8NAhMo2PXgLJs9kJcTw35+KFqpaO/lib8d0vZt+xF6AmEEL3Slysfn K9VCTKJOvYHVWtMFerX4v6Rh91RWi0ZD2AIGt2ZbYsUkxX19QDvCP0ly5qq8H1Cw IpZ8y/Ay162SsCu6tpMz/2XQlWDeF5gzirhrHKo0OeJ0+vZTEHSHF4N1+QtA1qiM G71hMm6Ol33zFc9u1seJFnlp60gDG5GM14ClSuv10btqJKRmPCTL07BCwypoypbQ /LctMLD9x0R5nujcw9jGpXB/+qFxfcBl0RifkkMCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBRVXnPovotM2hO3zRukLQm5dzTHLjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNDYwYTQ2MjMtOWQxYi00NDI3LTg2NDUtZjg5OTQ3NmFiNDZhLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACYAH+x8ADANBgkqhkiG9w0BAQsFAAOCAQEAW40vZcZeQAIPH5bLdflXxHW+ 6bVSpcU4Oc1TnS7y7eIiw3eX13xqy4NALLwGVZSArb2G00y5RLsIu8kCmB/M3+So Nrzi4Aam7KwIls2hSKqVw7wAhfg3PIaBqxuZ+JfYQWeH5NAjvEzH9DEfYTd2vJVB IojLIRy+WkfcavHckRemc/l5RR1HTH/aUBvezXFRca2lXsTckQLaGOyhscBZXzs5 5RuSNUmiCFInByAqfWjaKQQH/IuEHN4k0ZkfI2NYsB8SOrU0reSEiT0iwQV/FblE OpkEy2zlVtQM/nwH8zmxnn69X1WXQ0D7i65MLvzQya69oE71h3a5nk1IN/Httg== -----END CERTIFICATE-----Generated at Thu Mar 19 12:22:42 2026 by rpki-client