$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd64c813-4e96-4816-8859-1bae313eec70.roa File: dd64c813-4e96-4816-8859-1bae313eec70.roa (raw, json) Hash identifier: f7StM+4dMg+KMzs2MTDf3rbi7bJerRSBAKDEQmli9EE= Subject key identifier: 4F:EE:0B:4B:CF:0D:FA:DB:13:96:59:BA:67:40:F9:2D:91:3E:1D:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 046252AEDB710BFC84F3053444BB7A42561EC358 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd64c813-4e96-4816-8859-1bae313eec70.roa Signing time: Tue 17 Mar 2026 22:06:36 +0000 ROA not before: Tue 17 Mar 2026 22:06:36 +0000 ROA not after: Mon 15 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:7400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Mar 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:62:52:ae:db:71:0b:fc:84:f3:05:34:44:bb:7a:42:56:1e:c3:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 17 22:06:36 2026 GMT Not After : Jun 15 23:59:59 2026 GMT Subject: serialNumber=47e7beb42026b6cc828fe6b0bb6ec47a0d9e747bb4483e3adde60f46a9429736, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:eb:92:48:e9:29:05:c2:6f:6c:a5:13:05:0c: 83:0c:8c:fe:33:1d:07:8f:b7:a9:19:63:f5:0f:79: 5b:b1:2f:5b:3a:7c:6b:18:61:34:d2:91:b2:ba:bd: 78:3e:b9:60:fa:fd:bd:d3:9d:3b:56:a7:f5:22:e8: cb:11:05:88:b4:d7:0e:86:38:ce:1c:84:e5:35:02: 5d:37:a9:71:da:7e:2f:b7:c0:ca:b5:3c:eb:da:16: 17:7c:9a:4d:2b:4c:28:4e:41:2c:e3:13:f0:2e:b2: dc:b5:a5:c9:20:fb:f3:2b:6c:c2:96:e4:8a:eb:85: 42:5a:b6:1d:0b:7e:2d:03:e9:78:fa:f9:08:18:5a: 6d:3d:21:3f:0a:80:66:da:83:1b:36:a5:87:60:58: b1:da:fe:7f:60:50:0f:f0:19:ea:a8:38:f6:11:68: 77:fa:7b:90:4a:da:a0:c2:b3:74:36:5d:ac:bb:a5: 34:0e:c7:4f:e0:5f:b8:78:f6:16:9b:66:1d:7e:47: 95:15:40:70:c3:59:88:2e:6d:ad:c2:d6:6a:c4:40: ea:29:f3:d4:db:14:9e:35:f0:13:3c:32:c6:64:ed: 8d:4a:1f:78:3d:69:00:67:c7:de:13:8b:2e:cd:9d: 2d:bc:5e:a2:3a:9c:3e:ac:de:5d:25:a3:1f:7e:d1: ef:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:EE:0B:4B:CF:0D:FA:DB:13:96:59:BA:67:40:F9:2D:91:3E:1D:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd64c813-4e96-4816-8859-1bae313eec70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:7400::/48 Signature Algorithm: sha256WithRSAEncryption d7:35:fc:b0:76:47:d6:58:9b:92:e1:81:b4:ab:61:b3:3b:04: 2d:57:d1:ba:af:4b:fe:59:fd:46:f6:78:45:43:a6:3d:50:45: a4:f2:ca:24:35:fc:30:d0:c4:5d:c8:d8:ed:09:cf:b6:b4:9a: 8f:5c:fa:80:ad:b3:78:f1:07:69:40:37:66:4c:92:06:ce:ee: 84:ec:2e:cd:97:d0:95:cd:c0:9b:af:43:a3:92:48:8f:2e:89: 29:6d:ce:4a:06:44:b7:f9:ff:e0:df:7e:ff:03:b8:6c:df:89: 6b:67:c4:36:ac:03:e8:67:82:83:da:ee:ce:b2:55:87:50:30: 2e:a4:ef:f6:a0:e8:37:a0:36:a2:f7:27:10:40:f4:a9:b6:a4: 58:a4:ec:c2:bd:99:15:b8:e0:fc:6a:21:f4:77:e9:5b:76:7f: 6c:b6:9e:ab:e4:86:76:b7:96:7d:91:6c:6e:a7:86:ae:c1:8e: 82:13:9c:8a:b5:08:8d:9c:2b:38:26:fc:28:11:f4:6f:5f:d0: 8f:c8:3e:7b:98:67:c5:ae:36:9b:fc:1c:92:e7:97:00:16:d5: d5:c7:ae:48:01:ed:f8:53:45:e3:8f:3b:48:3e:3c:47:d7:50: 0c:59:b7:fc:60:0b:aa:56:d6:e0:66:3f:c8:96:f5:f4:09:46: 26:13:81:14 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBGJSrttxC/yE8wU0RLt6QlYew1gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzE3MjIwNjM2WhcNMjYwNjE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2U3YmViNDIwMjZiNmNjODI4ZmU2YjBiYjZlYzQ3YTBk OWU3NDdiYjQ0ODNlM2FkZGU2MGY0NmE5NDI5NzM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz65JI6SkFwm9spRMFDIMMjP4zHQePt6kZY/UPeVuxL1s6 fGsYYTTSkbK6vXg+uWD6/b3TnTtWp/Ui6MsRBYi01w6GOM4chOU1Al03qXHafi+3 wMq1POvaFhd8mk0rTChOQSzjE/Austy1pckg+/MrbMKW5IrrhUJath0Lfi0D6Xj6 +QgYWm09IT8KgGbagxs2pYdgWLHa/n9gUA/wGeqoOPYRaHf6e5BK2qDCs3Q2Xay7 pTQOx0/gX7h49habZh1+R5UVQHDDWYguba3C1mrEQOop89TbFJ418BM8MsZk7Y1K H3g9aQBnx94Tiy7NnS28XqI6nD6s3l0lox9+0e+vAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUT+4LS88N+tsTllm6Z0D5LZE+HWkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RkNjRjODEzLTRlOTYtNDgxNi04ODU5LTFiYWUzMTNlZWM3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/2dAAwDQYJKoZIhvcNAQELBQADggEBANc1/LB2R9ZYm5LhgbSrYbM7 BC1X0bqvS/5Z/Ub2eEVDpj1QRaTyyiQ1/DDQxF3I2O0Jz7a0mo9c+oCts3jxB2lA N2ZMkgbO7oTsLs2X0JXNwJuvQ6OSSI8uiSltzkoGRLf5/+Dffv8DuGzfiWtnxDas A+hngoPa7s6yVYdQMC6k7/ag6DegNqL3JxBA9Km2pFik7MK9mRW44PxqIfR36Vt2 f2y2nqvkhna3ln2RbG6nhq7BjoITnIq1CI2cKzgm/CgR9G9f0I/IPnuYZ8WuNpv8 HJLnlwAW1dXHrkgB7fhTReOPO0g+PEfXUAxZt/xgC6pW1uBmP8iW9fQJRiYTgRQ= -----END CERTIFICATE-----Generated at Thu Mar 19 12:27:49 2026 by rpki-client