$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f669289-cec0-4a89-80fa-8313dfd9b358.roa File: 4f669289-cec0-4a89-80fa-8313dfd9b358.roa (raw, json) Hash identifier: QdW6SYlb0iLbVCV4bESWsFFGgJhf4P5fUp+hG2/pTz0= Subject key identifier: 6D:98:9D:27:88:5B:41:8D:FC:C5:7C:81:FD:83:50:18:84:22:9D:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40E903B95774AC5E345924B420830236C23D745D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f669289-cec0-4a89-80fa-8313dfd9b358.roa Signing time: Thu 12 Mar 2026 16:11:24 +0000 ROA not before: Thu 12 Mar 2026 16:11:24 +0000 ROA not after: Wed 10 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f33:ec00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Mar 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:e9:03:b9:57:74:ac:5e:34:59:24:b4:20:83:02:36:c2:3d:74:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 16:11:24 2026 GMT Not After : Jun 10 23:59:59 2026 GMT Subject: serialNumber=9e98af50f609a51d67ef16aacf9a558c2607b85989e83cd188800919c654edc6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:14:2d:36:60:80:67:34:ca:80:06:02:ae:b9: 25:74:97:45:46:54:62:0f:63:db:61:ef:0a:76:b2: e7:39:c0:3f:83:99:5e:e9:8f:0d:a4:db:90:a5:e8: 5b:7c:f2:54:fe:88:1d:b2:2b:a3:35:3c:a6:99:c0: 00:ac:58:3f:64:08:7c:1e:cd:4a:8f:0e:b6:9f:73: 71:60:22:4f:eb:55:7c:6a:be:9c:68:02:ad:ed:4e: 72:57:a0:a0:cd:b1:ae:aa:4d:c9:e8:ea:80:ec:8e: f8:a5:c5:99:81:29:d8:63:a0:65:13:66:71:f1:9a: b7:02:ea:a8:4b:80:e5:dc:0d:e4:6d:4c:b3:68:2e: eb:19:5b:d6:32:43:f2:78:99:19:b7:e2:44:ac:72: 5a:77:00:3e:2c:0d:6d:68:67:41:8f:96:77:66:fb: 90:a4:f7:21:5b:b0:9a:8b:4b:76:a2:79:48:89:21: 78:32:9f:00:a3:e3:4b:03:d9:86:7c:51:e4:6b:3b: e4:a2:91:ad:98:3a:0c:2a:79:2d:8f:04:54:d1:44: e4:bd:d6:57:ce:b6:1b:5b:df:26:ea:70:1a:b9:3a: 39:1e:47:64:8c:3f:f2:ff:a3:2b:4f:fc:45:7e:02: 64:6e:25:90:13:78:b3:05:e8:5d:6b:15:96:57:21: 51:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:98:9D:27:88:5B:41:8D:FC:C5:7C:81:FD:83:50:18:84:22:9D:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f669289-cec0-4a89-80fa-8313dfd9b358.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f33:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 9e:ab:14:80:19:91:5d:5d:dc:62:72:78:63:05:eb:ab:c4:9c: a0:54:9c:a3:ff:bf:6d:c9:3a:d2:00:a1:dc:72:f1:b7:d9:26: e3:5a:8b:a7:f4:28:f2:af:45:7f:17:a2:3d:17:0e:d6:1c:33: 08:37:a5:00:a2:f0:28:6c:4b:c8:9a:91:5d:75:7c:22:34:ca: 86:a1:9f:f5:10:9b:07:20:6e:5b:41:ef:79:f2:15:f4:b2:af: f9:c5:6e:03:d9:05:47:43:7c:bc:e6:62:ba:0a:5f:d4:33:4b: 39:a4:98:94:f4:49:12:25:70:80:67:c2:69:f3:62:da:63:6b: 3a:3b:8c:42:55:8c:86:37:d0:45:16:d2:7f:84:a4:c1:77:32: 38:1e:e8:85:3a:5d:f9:ab:54:75:71:cc:6a:c7:84:48:8a:85: 90:94:c4:f8:f6:f0:8e:b5:23:db:86:86:4c:6e:c4:c1:55:6b: 56:97:2a:d7:ce:08:67:5e:2e:1e:80:e4:8f:11:99:aa:73:4f: 15:93:87:e8:0c:68:c8:53:aa:3e:42:e6:f0:c2:7d:6c:36:7c: 37:ba:2f:96:75:21:2f:3b:1e:37:ae:3f:95:62:de:ef:0d:04: c2:99:96:f6:e0:08:08:e2:b0:d0:f8:18:f0:49:c8:c9:c4:cc: 1d:4d:c8:ec -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQOkDuVd0rF40WSS0IIMCNsI9dF0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzEyMTYxMTI0WhcNMjYwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTk4YWY1MGY2MDlhNTFkNjdlZjE2YWFjZjlhNTU4YzI2 MDdiODU5ODllODNjZDE4ODgwMDkxOWM2NTRlZGM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGFC02YIBnNMqABgKuuSV0l0VGVGIPY9th7wp2suc5wD+D mV7pjw2k25Cl6Ft88lT+iB2yK6M1PKaZwACsWD9kCHwezUqPDrafc3FgIk/rVXxq vpxoAq3tTnJXoKDNsa6qTcno6oDsjvilxZmBKdhjoGUTZnHxmrcC6qhLgOXcDeRt TLNoLusZW9YyQ/J4mRm34kSsclp3AD4sDW1oZ0GPlndm+5Ck9yFbsJqLS3aieUiJ IXgynwCj40sD2YZ8UeRrO+Sika2YOgwqeS2PBFTRROS91lfOthtb3ybqcBq5Ojke R2SMP/L/oytP/EV+AmRuJZATeLMF6F1rFZZXIVF5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUbZidJ4hbQY38xXyB/YNQGIQinecwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmNjY5Mjg5LWNlYzAtNGE4OS04MGZhLTgzMTNkZmQ5YjM1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8z7DANBgkqhkiG9w0BAQsFAAOCAQEAnqsUgBmRXV3cYnJ4YwXrq8Sc oFSco/+/bck60gCh3HLxt9km41qLp/Qo8q9FfxeiPRcO1hwzCDelAKLwKGxLyJqR XXV8IjTKhqGf9RCbByBuW0HvefIV9LKv+cVuA9kFR0N8vOZiugpf1DNLOaSYlPRJ EiVwgGfCafNi2mNrOjuMQlWMhjfQRRbSf4SkwXcyOB7ohTpd+atUdXHMaseESIqF kJTE+PbwjrUj24aGTG7EwVVrVpcq184IZ14uHoDkjxGZqnNPFZOH6AxoyFOqPkLm 8MJ9bDZ8N7ovlnUhLzseN64/lWLe7w0EwpmW9uAICOKw0PgY8EnIycTMHU3I7A== -----END CERTIFICATE-----Generated at Thu Mar 19 12:24:23 2026 by rpki-client