$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af43470f-def8-4840-aa08-08eedf0c4293.roa File: af43470f-def8-4840-aa08-08eedf0c4293.roa (raw, json) Hash identifier: 0D7+nRFYE7soc1LwPGJftARgk3ft+IOKupJqonWFfes= Subject key identifier: FE:F4:C2:F9:88:46:01:BD:65:D6:51:E0:0E:E0:94:4E:A9:CB:5B:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A7AD3FB19E3B23A474305CA3F9368538E718F06 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af43470f-def8-4840-aa08-08eedf0c4293.roa Signing time: Thu 12 Mar 2026 16:11:28 +0000 ROA not before: Thu 12 Mar 2026 16:11:28 +0000 ROA not after: Wed 10 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fba:7400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Mar 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:7a:d3:fb:19:e3:b2:3a:47:43:05:ca:3f:93:68:53:8e:71:8f:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 16:11:28 2026 GMT Not After : Jun 10 23:59:59 2026 GMT Subject: serialNumber=1e239a018dbb46cb31587a415eb45e508801c8cccb64ccadc1bd5102678bbb8a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:31:14:17:af:0b:09:24:f4:f9:46:6c:40:60: 38:46:5c:61:00:7c:76:49:45:fc:c5:6f:36:18:6e: 3f:99:96:31:9e:ee:ba:00:22:0d:6e:9c:35:b1:49: 23:03:a0:07:01:5b:01:94:f3:a1:bb:47:c3:33:fa: eb:ba:cb:1e:a6:4b:56:4e:03:dd:7b:bf:be:d3:73: 6e:06:f8:48:74:cc:2b:c4:e6:a6:a6:8f:45:df:e3: 69:f5:9f:40:cb:16:ce:f6:9d:35:ba:af:c1:28:02: f3:5c:9f:55:35:2c:9f:6c:91:8e:69:28:31:58:3b: 83:92:1f:b8:69:49:57:4a:47:18:1c:d5:16:8f:1e: 18:01:98:15:d6:e7:2d:e7:a5:11:bb:31:35:b9:0b: c4:80:f7:4b:ca:1e:ed:91:c0:79:73:ba:d7:d2:53: cb:80:42:56:0e:29:b9:08:6b:eb:78:49:52:35:d9: 8b:3b:31:91:61:9a:e1:91:ee:b1:60:dd:77:6f:8c: 39:d5:d6:22:10:b7:0b:8d:57:89:b3:42:5a:2d:51: 12:1c:15:6b:ae:62:a7:81:a3:90:c7:25:6d:05:52: c7:2f:61:c3:44:7c:e5:d2:ec:fa:9b:49:5c:ec:1b: e3:1c:77:d7:f9:a2:54:0c:49:9f:0c:ac:2c:b8:96: 6b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F4:C2:F9:88:46:01:BD:65:D6:51:E0:0E:E0:94:4E:A9:CB:5B:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af43470f-def8-4840-aa08-08eedf0c4293.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fba:7400::/40 Signature Algorithm: sha256WithRSAEncryption ac:da:d4:88:0f:ab:99:b7:ed:3f:7f:32:6d:bb:08:2a:a8:c3: 30:c4:04:8e:51:90:86:46:f5:8f:4c:d0:f0:e4:07:b8:6c:26: 7c:dc:52:08:ce:29:30:fe:73:10:54:73:dc:0d:c7:48:21:07: 52:c8:f2:a0:ce:c8:fc:00:a7:13:b9:07:6a:fc:9a:3b:52:dc: d6:a3:1d:f0:fd:90:3e:e5:70:01:4f:87:b1:0a:a7:09:b9:93: a9:22:18:e8:69:e3:fc:a2:b8:ac:fd:a3:e5:d7:8f:d0:3d:fa: 03:59:bb:f6:d4:4b:0e:e7:5a:c4:a2:22:a8:61:5e:bf:64:38: e5:57:1c:07:36:64:2f:89:73:b5:18:cf:1a:0a:81:59:3f:a3: b3:fd:fb:74:9a:b9:f5:e8:20:7c:d3:31:88:24:cf:8b:32:7f: 9c:db:f7:83:7b:14:c4:62:21:38:62:e6:a5:95:c5:66:5a:74: b7:75:97:ed:b3:3e:b5:50:ff:b9:fa:d7:36:ca:e9:c6:c4:8e: 7d:d9:c7:63:d3:be:47:ad:22:f9:5a:90:b4:dc:c7:a2:b7:28: 72:97:ee:dc:fb:71:59:fb:e4:49:8e:0a:f8:37:d0:4c:33:20: e0:25:f3:4a:b5:99:8d:52:f3:41:9b:ee:05:a1:50:31:23:e5: 90:3e:02:40 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCnrT+xnjsjpHQwXKP5NoU45xjwYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzEyMTYxMTI4WhcNMjYwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTIzOWEwMThkYmI0NmNiMzE1ODdhNDE1ZWI0NWU1MDg4 MDFjOGNjY2I2NGNjYWRjMWJkNTEwMjY3OGJiYjhhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeMRQXrwsJJPT5RmxAYDhGXGEAfHZJRfzFbzYYbj+ZljGe 7roAIg1unDWxSSMDoAcBWwGU86G7R8Mz+uu6yx6mS1ZOA917v77Tc24G+Eh0zCvE 5qamj0Xf42n1n0DLFs72nTW6r8EoAvNcn1U1LJ9skY5pKDFYO4OSH7hpSVdKRxgc 1RaPHhgBmBXW5y3npRG7MTW5C8SA90vKHu2RwHlzutfSU8uAQlYOKbkIa+t4SVI1 2Ys7MZFhmuGR7rFg3XdvjDnV1iIQtwuNV4mzQlotURIcFWuuYqeBo5DHJW0FUscv YcNEfOXS7PqbSVzsG+Mcd9f5olQMSZ8MrCy4lmsRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU/vTC+YhGAb1l1lHgDuCUTqnLW9UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmNDM0NzBmLWRlZjgtNDg0MC1hYTA4LTA4ZWVkZjBjNDI5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+6dDANBgkqhkiG9w0BAQsFAAOCAQEArNrUiA+rmbftP38ybbsIKqjD MMQEjlGQhkb1j0zQ8OQHuGwmfNxSCM4pMP5zEFRz3A3HSCEHUsjyoM7I/ACnE7kH avyaO1Lc1qMd8P2QPuVwAU+HsQqnCbmTqSIY6Gnj/KK4rP2j5deP0D36A1m79tRL DudaxKIiqGFev2Q45VccBzZkL4lztRjPGgqBWT+js/37dJq59eggfNMxiCTPizJ/ nNv3g3sUxGIhOGLmpZXFZlp0t3WX7bM+tVD/ufrXNsrpxsSOfdnHY9O+R60i+VqQ tNzHorcocpfu3PtxWfvkSY4K+DfQTDMg4CXzSrWZjVLzQZvuBaFQMSPlkD4CQA== -----END CERTIFICATE-----Generated at Thu Mar 19 12:24:04 2026 by rpki-client