$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa File: 2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa (raw, json) Hash identifier: RnSlPQgVcKEa/mvufyKNIZl68eOeiGcLSiPkMI3NIk8= Subject key identifier: 4B:CA:E7:B4:F1:0D:84:50:12:9C:01:79:A7:E8:D4:C9:93:06:91:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34911EE344BF07A8A368C8A3BC7FA4DE9F19339A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa Signing time: Wed 29 Apr 2026 00:30:42 +0000 ROA not before: Wed 29 Apr 2026 00:30:42 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff0:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:91:1e:e3:44:bf:07:a8:a3:68:c8:a3:bc:7f:a4:de:9f:19:33:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:30:42 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=15441a7be67b7915f7cc1cdf090612c5d81a992a7662156b57e4bd2963280178, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c0:67:91:3a:01:d4:91:21:37:89:d5:86:c3: 82:3a:70:82:49:4b:03:7a:bb:c2:43:0b:16:70:6d: 3f:8f:e6:32:7c:5b:d6:3e:33:91:f7:db:b1:8b:30: 05:68:75:9e:93:b9:e1:30:10:47:d7:7f:28:ed:ee: d4:b3:24:e6:46:c0:52:e8:ca:d7:6a:32:4c:bb:b6: 8e:b5:dd:6f:23:44:f2:03:82:c4:3a:b2:97:a0:e3: a8:98:4f:b8:9c:c8:10:b5:b7:d7:40:8f:9a:b8:7c: ea:b5:5f:ed:02:9f:f3:ae:a8:68:29:67:4c:5a:92: 56:d0:60:79:b1:59:8e:a0:4e:0f:6e:a3:1f:36:d2: 16:8a:e0:6c:4d:1b:d5:69:f4:c3:1e:0b:0d:85:4c: 5f:42:d9:9b:17:34:e4:67:02:f2:60:23:4d:1c:ac: 0a:7f:75:4d:bd:ff:41:b6:e6:59:34:49:20:b2:fb: d8:bd:5a:be:7d:6a:1f:52:aa:e0:f7:86:dc:7f:94: 29:cc:bf:54:cf:11:38:3a:87:96:0f:ee:3c:b8:fe: 39:fa:f6:34:de:22:67:b3:74:21:8f:ca:5a:c0:69: cc:2c:1b:e6:7b:18:48:fe:2f:28:50:5c:19:b5:90: 1d:9d:14:dc:4b:00:f4:99:02:1c:84:79:41:f5:18: 88:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:CA:E7:B4:F1:0D:84:50:12:9C:01:79:A7:E8:D4:C9:93:06:91:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff0:5000::/40 Signature Algorithm: sha256WithRSAEncryption c2:96:e8:e0:84:b6:88:8e:77:52:90:32:bf:b6:ef:76:45:59: f0:78:a2:a1:0d:d4:2d:a7:e8:f6:0a:16:e1:26:eb:df:6a:4b: 66:d7:9f:87:66:c0:04:7d:7e:0f:19:0a:cb:9c:28:7e:d9:25: a4:6c:b0:d5:2b:ac:20:5a:fe:31:1e:38:15:b0:5c:ef:00:00: 4c:fc:60:2c:2b:0c:4c:5d:35:d8:6d:eb:b6:70:ee:9b:a2:4e: 60:db:7d:05:59:4f:eb:27:10:4b:53:6d:80:67:05:c4:7c:ef: b9:2f:bc:b0:13:bd:2b:37:e2:b8:5a:e4:a5:05:f7:5d:92:71: ef:5c:51:ba:c5:b1:a8:1e:de:a6:83:87:ed:3e:f7:ec:b1:8b: f1:fb:98:56:6a:dc:fb:1e:f9:30:bf:4b:00:fa:bd:7a:bf:1a: 65:26:89:6c:b2:57:91:10:3e:7d:4e:cb:43:96:2e:ce:dc:49: f3:55:ee:f3:41:50:69:73:28:f4:e6:49:f4:54:5a:e9:2f:f1: c9:65:5b:75:d3:2e:90:60:ac:f0:cf:93:b8:7f:5d:23:79:21: 5c:f7:52:0e:99:1d:e0:45:f3:ac:77:9f:00:f9:fe:80:ac:86: 91:e2:a3:98:e8:24:bd:ee:f2:1a:9c:90:ee:54:d6:a9:bb:d4: ce:e8:b9:8a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNJEe40S/B6ijaMijvH+k3p8ZM5owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAzMDQyWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTQ0MWE3YmU2N2I3OTE1ZjdjYzFjZGYwOTA2MTJjNWQ4 MWE5OTJhNzY2MjE1NmI1N2U0YmQyOTYzMjgwMTc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcwGeROgHUkSE3idWGw4I6cIJJSwN6u8JDCxZwbT+P5jJ8 W9Y+M5H327GLMAVodZ6TueEwEEfXfyjt7tSzJOZGwFLoytdqMky7to613W8jRPID gsQ6speg46iYT7icyBC1t9dAj5q4fOq1X+0Cn/OuqGgpZ0xaklbQYHmxWY6gTg9u ox820haK4GxNG9Vp9MMeCw2FTF9C2ZsXNORnAvJgI00crAp/dU29/0G25lk0SSCy +9i9Wr59ah9SquD3htx/lCnMv1TPETg6h5YP7jy4/jn69jTeImezdCGPylrAacws G+Z7GEj+LyhQXBm1kB2dFNxLAPSZAhyEeUH1GIi3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUS8rntPENhFASnAF5p+jUyZMGkUowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmZjEwYmNmLWEwZDEtNGY0MC1iNzljLWQ4NGIwN2QzYzdiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/wUDANBgkqhkiG9w0BAQsFAAOCAQEAwpbo4IS2iI53UpAyv7bvdkVZ 8HiioQ3ULafo9goW4Sbr32pLZtefh2bABH1+DxkKy5woftklpGyw1SusIFr+MR44 FbBc7wAATPxgLCsMTF012G3rtnDum6JOYNt9BVlP6ycQS1NtgGcFxHzvuS+8sBO9 KzfiuFrkpQX3XZJx71xRusWxqB7epoOH7T737LGL8fuYVmrc+x75ML9LAPq9er8a ZSaJbLJXkRA+fU7LQ5YuztxJ81Xu80FQaXMo9OZJ9FRa6S/xyWVbddMukGCs8M+T uH9dI3khXPdSDpkd4EXzrHefAPn+gKyGkeKjmOgkve7yGpyQ7lTWqbvUzui5ig== -----END CERTIFICATE-----Generated at Wed May 13 00:00:25 2026 by rpki-client