$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6749e685-7553-4e7d-afac-707b3c465e28.roa File: 6749e685-7553-4e7d-afac-707b3c465e28.roa (raw, json) Hash identifier: pZBQnCIhbAumXhgWikHEp9AbW6Xzql/ikj314Z36mzM= Subject key identifier: 37:54:1B:CC:4E:56:79:8C:18:13:8A:DF:7E:77:FD:FF:AF:F5:4E:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 55686ECA52EF810EDA1979BC633D6C8EC0BEE9C1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6749e685-7553-4e7d-afac-707b3c465e28.roa Signing time: Thu 12 Mar 2026 16:06:46 +0000 ROA not before: Thu 12 Mar 2026 16:06:46 +0000 ROA not after: Wed 10 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fba:3480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Mar 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:68:6e:ca:52:ef:81:0e:da:19:79:bc:63:3d:6c:8e:c0:be:e9:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 16:06:46 2026 GMT Not After : Jun 10 23:59:59 2026 GMT Subject: serialNumber=11786fe3b6a652c5c24d51e9df7c60a30c3806e9f5b99c3cefd2b549d9d63b10, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:45:d3:8f:33:a1:a0:e9:35:65:78:df:e3:0f: f6:ad:33:d9:17:7e:57:3e:6b:60:29:cb:73:33:b7: 77:ed:37:e4:44:4c:8d:d1:d5:a0:60:95:d8:2a:90: 50:07:31:ad:8a:7a:10:ba:eb:27:ad:90:f1:cb:8d: 02:7c:05:fa:54:93:7d:ee:9b:b3:77:75:f6:99:b4: 6d:9b:88:2a:7b:9b:8d:39:58:bc:c7:36:5c:35:a2: 87:ac:eb:04:37:07:5a:b2:c9:8a:61:05:5c:91:30: 79:4c:98:f2:7c:6e:a8:93:0e:fe:4a:4b:d1:3b:5f: 53:0c:18:f4:7e:98:02:ef:d2:45:16:83:0a:f8:ce: 5c:b9:07:be:b0:51:40:1e:06:d3:58:c8:8c:70:76: 8f:cc:19:7a:f2:d5:dd:de:ea:cf:aa:8e:d3:a5:73: 18:31:a8:ec:9d:50:af:c7:cb:21:bb:63:da:44:ce: c1:6e:93:64:f8:52:d9:bc:15:51:07:7e:3f:dd:59: 92:7f:36:9f:59:69:4c:14:a3:9f:e6:9a:52:9f:40: ec:d6:13:5d:e4:b4:84:fd:b5:f8:5a:8e:4d:ef:9b: a2:db:b8:da:9a:e8:28:3a:f9:ec:8a:55:50:54:cb: 74:d3:d6:7e:2f:c7:18:18:0f:ce:3f:b9:d9:9e:bf: 07:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:54:1B:CC:4E:56:79:8C:18:13:8A:DF:7E:77:FD:FF:AF:F5:4E:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6749e685-7553-4e7d-afac-707b3c465e28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fba:3480::/48 Signature Algorithm: sha256WithRSAEncryption 5e:c2:20:7a:04:ce:e1:2e:4f:6e:52:46:07:d3:2b:33:22:e7: 2a:27:f4:76:80:99:1a:69:2d:b1:d3:e7:46:62:cf:1b:33:87: c0:7a:ed:c8:3e:4f:54:c3:68:00:73:01:bb:2f:05:50:ad:77: 42:61:0f:fc:a3:b5:2e:aa:48:36:b1:7d:81:a3:d7:b6:64:44: a2:03:7e:49:13:9a:6a:8a:18:16:d8:e9:0e:21:a6:c2:1a:52: 80:3e:61:7d:af:e1:65:94:79:22:af:a0:87:fb:57:f3:0c:55: 53:bb:95:b5:a8:83:79:ab:89:d3:61:1f:fd:8e:c5:81:c7:2e: 67:7c:85:f2:89:cf:53:ae:91:21:48:b8:05:f8:b5:01:68:09: e0:7b:bd:84:ec:50:a6:1b:15:ee:9d:bd:16:c8:f0:85:58:34: 88:bb:98:a9:65:44:50:50:64:3b:c0:0e:0e:be:3d:f4:2f:f1: 50:19:d4:0d:65:35:14:9c:23:23:0c:fa:ba:5d:79:1a:48:cc: 87:ae:4e:19:a5:2e:f2:f6:f9:66:fa:14:c4:b4:85:0e:01:d3: c4:fd:83:90:20:da:3e:44:32:29:dc:e9:f2:de:6e:b0:93:f2: fd:fd:d8:8a:eb:ab:3c:06:13:c9:31:5c:d5:ac:15:59:11:d3: fd:75:fb:93 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVWhuylLvgQ7aGXm8Yz1sjsC+6cEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzEyMTYwNjQ2WhcNMjYwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTc4NmZlM2I2YTY1MmM1YzI0ZDUxZTlkZjdjNjBhMzBj MzgwNmU5ZjViOTljM2NlZmQyYjU0OWQ5ZDYzYjEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6RdOPM6Gg6TVleN/jD/atM9kXflc+a2Apy3Mzt3ftN+RE TI3R1aBgldgqkFAHMa2KehC66yetkPHLjQJ8BfpUk33um7N3dfaZtG2biCp7m405 WLzHNlw1ooes6wQ3B1qyyYphBVyRMHlMmPJ8bqiTDv5KS9E7X1MMGPR+mALv0kUW gwr4zly5B76wUUAeBtNYyIxwdo/MGXry1d3e6s+qjtOlcxgxqOydUK/HyyG7Y9pE zsFuk2T4Utm8FVEHfj/dWZJ/Np9ZaUwUo5/mmlKfQOzWE13ktIT9tfhajk3vm6Lb uNqa6Cg6+eyKVVBUy3TT1n4vxxgYD84/udmevwctAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUN1QbzE5WeYwYE4rffnf9/6/1TgwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3NDllNjg1LTc1NTMtNGU3ZC1hZmFjLTcwN2IzYzQ2NWUyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB+6NIAwDQYJKoZIhvcNAQELBQADggEBAF7CIHoEzuEuT25SRgfTKzMi 5yon9HaAmRppLbHT50Zizxszh8B67cg+T1TDaABzAbsvBVCtd0JhD/yjtS6qSDax fYGj17ZkRKIDfkkTmmqKGBbY6Q4hpsIaUoA+YX2v4WWUeSKvoIf7V/MMVVO7lbWo g3mridNhH/2OxYHHLmd8hfKJz1OukSFIuAX4tQFoCeB7vYTsUKYbFe6dvRbI8IVY NIi7mKllRFBQZDvADg6+PfQv8VAZ1A1lNRScIyMM+rpdeRpIzIeuThmlLvL2+Wb6 FMS0hQ4B08T9g5Ag2j5EMinc6fLebrCT8v392IrrqzwGE8kxXNWsFVkR0/11+5M= -----END CERTIFICATE-----Generated at Thu Mar 19 12:24:19 2026 by rpki-client