$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d959801f-b58c-48d8-843e-c5a8913f122d.roa File: d959801f-b58c-48d8-843e-c5a8913f122d.roa (raw, json) Hash identifier: 0mQDtpx1TBdOiTImzU2KggSWNXqI8b3Rl6J/mgp+pes= Subject key identifier: 1C:25:21:93:EA:D6:5F:9D:7E:59:28:18:C8:AE:63:67:0D:E6:FF:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 120A7B542AF346A7BFB2AD04F7F20A66C5A63B82 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d959801f-b58c-48d8-843e-c5a8913f122d.roa Signing time: Thu 12 Mar 2026 16:08:20 +0000 ROA not before: Thu 12 Mar 2026 16:08:20 +0000 ROA not after: Wed 10 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fba:80e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Mar 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:0a:7b:54:2a:f3:46:a7:bf:b2:ad:04:f7:f2:0a:66:c5:a6:3b:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 16:08:20 2026 GMT Not After : Jun 10 23:59:59 2026 GMT Subject: serialNumber=ef05ecabc0d597215fbd0cebb5a9f3c59bdd20e031a4a4836eb79039e407b394, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6f:52:c2:05:f4:26:1b:2c:bb:57:84:9d:0d: a0:c7:3d:f6:26:d0:19:20:0a:bb:e7:61:b7:6f:8e: b1:a0:ea:21:85:64:09:67:34:ce:dc:6e:88:71:85: 73:f4:5a:1a:ca:24:c5:10:9f:ec:66:db:eb:fd:35: 5e:f3:af:eb:95:a9:9a:bf:2c:d1:da:5f:04:52:69: 4b:ae:11:97:4b:52:7a:c5:7a:a9:67:77:24:fe:ce: b6:73:cb:7d:73:d7:23:1e:87:8b:8d:4b:a5:44:dc: 67:33:cc:b6:23:11:f6:6c:05:53:78:6c:5e:80:37: ba:49:ec:8e:0e:13:fb:c1:6e:3f:93:23:53:63:22: 68:a1:83:b3:1c:06:da:66:ec:33:65:2a:c1:fc:00: c7:78:f6:a6:af:8a:36:b5:df:86:10:e3:7f:6b:23: ee:c6:8b:72:9f:de:86:df:d3:1f:71:af:a8:31:8c: 47:ed:31:7b:9b:e9:e1:5f:e3:01:15:ff:a7:51:28: af:f9:76:65:3d:6f:0d:7c:ed:ae:92:5f:a3:a7:37: ed:98:73:0b:1a:b2:61:8a:f7:85:35:77:c5:66:bd: 93:d0:04:34:ff:59:a3:20:b3:74:c8:9c:33:81:10: 7f:e6:d1:89:87:34:8f:86:c1:df:1e:0b:bf:de:45: 0a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:25:21:93:EA:D6:5F:9D:7E:59:28:18:C8:AE:63:67:0D:E6:FF:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d959801f-b58c-48d8-843e-c5a8913f122d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fba:80e0::/48 Signature Algorithm: sha256WithRSAEncryption 6a:5b:82:0b:51:1e:b2:9e:f2:13:8d:25:8e:ac:01:17:26:79: 65:38:8d:f2:05:d3:8a:39:7c:4b:e1:a8:8d:4e:c2:68:c7:d0: 17:bd:f0:b6:96:38:97:d5:65:c6:56:ea:91:f7:a4:94:05:de: 8a:b0:ba:06:72:b8:24:10:d0:5e:51:06:ad:da:63:a1:59:ae: 4c:99:1c:e8:f5:70:71:03:79:09:de:4b:16:2c:c4:25:99:6d: a9:88:02:89:b8:62:1f:2f:08:b4:c2:ee:9f:5c:56:40:5a:fc: 0d:60:fc:f6:5c:b3:3d:06:dc:1e:ee:51:d2:7d:05:44:07:98: 2a:3f:1e:49:ec:90:30:2e:d6:21:17:24:81:b7:4c:ca:fc:0f: 98:bc:bc:ca:6a:ee:24:99:2b:00:63:f1:e7:dc:f1:8e:12:d8: d0:8b:f7:6d:e8:ff:25:35:19:f2:d5:fe:9b:ac:38:df:20:ec: 40:67:43:8c:0c:ee:5f:a4:48:b9:e8:c9:ab:af:9b:ac:70:f1: ea:c3:25:72:97:dd:e7:8d:07:c0:b6:fe:69:e5:02:71:1a:79: 1d:71:26:50:ba:94:5b:d1:51:e8:b1:e1:ac:d8:07:eb:44:21: 6c:30:fa:46:7a:5d:88:19:e9:93:81:3c:2b:7f:fc:fc:37:83: 59:4b:7e:3d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEgp7VCrzRqe/sq0E9/IKZsWmO4IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzEyMTYwODIwWhcNMjYwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjA1ZWNhYmMwZDU5NzIxNWZiZDBjZWJiNWE5ZjNjNTli ZGQyMGUwMzFhNGE0ODM2ZWI3OTAzOWU0MDdiMzk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9b1LCBfQmGyy7V4SdDaDHPfYm0BkgCrvnYbdvjrGg6iGF ZAlnNM7cbohxhXP0WhrKJMUQn+xm2+v9NV7zr+uVqZq/LNHaXwRSaUuuEZdLUnrF eqlndyT+zrZzy31z1yMeh4uNS6VE3GczzLYjEfZsBVN4bF6AN7pJ7I4OE/vBbj+T I1NjImihg7McBtpm7DNlKsH8AMd49qavija134YQ439rI+7Gi3Kf3obf0x9xr6gx jEftMXub6eFf4wEV/6dRKK/5dmU9bw187a6SX6OnN+2YcwsasmGK94U1d8VmvZPQ BDT/WaMgs3TInDOBEH/m0YmHNI+Gwd8eC7/eRQrpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHCUhk+rWX51+WSgYyK5jZw3m/+8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5NTk4MDFmLWI1OGMtNDhkOC04NDNlLWM1YTg5MTNmMTIyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB+6gOAwDQYJKoZIhvcNAQELBQADggEBAGpbggtRHrKe8hONJY6sARcm eWU4jfIF04o5fEvhqI1OwmjH0Be98LaWOJfVZcZW6pH3pJQF3oqwugZyuCQQ0F5R Bq3aY6FZrkyZHOj1cHEDeQneSxYsxCWZbamIAom4Yh8vCLTC7p9cVkBa/A1g/PZc sz0G3B7uUdJ9BUQHmCo/HknskDAu1iEXJIG3TMr8D5i8vMpq7iSZKwBj8efc8Y4S 2NCL923o/yU1GfLV/pusON8g7EBnQ4wM7l+kSLnoyauvm6xw8erDJXKX3eeNB8C2 /mnlAnEaeR1xJlC6lFvRUeix4azYB+tEIWww+kZ6XYgZ6ZOBPCt//Pw3g1lLfj0= -----END CERTIFICATE-----Generated at Thu Mar 19 12:24:12 2026 by rpki-client