$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32c0d88b-d373-4855-95c8-86da907113f3.roa File: 32c0d88b-d373-4855-95c8-86da907113f3.roa (raw, json) Hash identifier: w+T+Z/0y/Z1Clzn2WTaEeeR3f/KXys+zoleafTMune0= Subject key identifier: 10:56:B8:37:FA:8F:A8:21:EA:4F:45:A4:13:45:F9:7F:34:D1:69:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D64E56DC65A8C8F5D59F3E026D240FB72CC44CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32c0d88b-d373-4855-95c8-86da907113f3.roa Signing time: Tue 05 May 2026 00:31:21 +0000 ROA not before: Tue 05 May 2026 00:31:21 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fb9:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:64:e5:6d:c6:5a:8c:8f:5d:59:f3:e0:26:d2:40:fb:72:cc:44:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:31:21 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=72a20e912480a5e34d36760c859b79bb5a345df1165168fe674a381399aa0660, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:41:28:62:3b:70:9a:a3:73:93:32:93:2b:d1: 05:56:e8:e3:22:fd:73:98:76:26:f1:07:e9:1b:ec: fa:d7:6d:fd:ce:66:4e:cb:40:73:8d:d4:eb:2a:3a: e3:5c:e5:39:fc:5d:87:ba:73:cd:8c:f8:34:61:09: c6:56:9f:59:41:a3:98:e9:79:6a:a5:d5:3c:cf:b3: 58:de:13:d8:80:d3:0a:be:a8:8d:d7:c4:a6:a9:d6: 7f:b8:e3:e9:54:62:71:6f:5d:26:83:6a:cc:cc:31: 46:d5:85:cd:9b:f4:0c:2e:15:1b:69:57:ad:0b:9f: 2d:6e:20:ff:9f:63:e1:db:3e:78:c0:a3:1a:f2:aa: e2:0a:5b:f7:cc:f4:07:8c:f4:87:8b:c6:c8:77:a6: ee:a0:e6:0b:11:af:10:27:79:d8:ba:87:2a:35:f2: 36:0b:53:79:cf:db:7c:86:92:fb:1d:fb:d9:ee:3e: ef:61:e2:bc:2b:f8:50:5c:08:c2:89:be:da:9a:5f: 7c:7a:60:16:3e:bc:f4:04:fd:3b:c1:35:57:e6:72: ef:86:06:5d:ce:f4:c0:fd:48:93:8d:f3:9f:0d:9a: 43:43:15:75:d6:4d:aa:a5:50:81:c7:50:d3:2f:9a: 93:a2:69:7f:9e:b5:31:5f:07:70:83:63:9b:04:b9: 16:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:56:B8:37:FA:8F:A8:21:EA:4F:45:A4:13:45:F9:7F:34:D1:69:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32c0d88b-d373-4855-95c8-86da907113f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:7400::/40 Signature Algorithm: sha256WithRSAEncryption 3b:2b:a1:ab:9d:8e:95:14:aa:b4:66:b3:61:e3:38:c6:3e:93: fd:23:25:91:36:83:fc:4a:da:b7:87:a7:54:0e:c3:10:01:85: 80:8e:6c:93:f5:35:d8:64:f4:8e:35:8b:b0:9b:b7:e4:f1:9b: 1f:a4:ee:27:d3:d6:70:34:69:62:cf:60:1d:8a:aa:0c:12:e5: a4:63:55:f3:25:59:52:b4:19:0f:d3:a2:09:3a:fc:61:85:d1: 2e:aa:c9:31:4f:fb:b0:52:fc:08:d7:80:3d:e6:bd:89:24:6f: 39:54:15:1e:bf:30:f1:c0:bf:5a:aa:56:1a:4d:8e:bb:10:78: 5e:c8:23:01:ed:b6:7f:9f:a2:d8:58:b6:de:54:c1:ab:fe:9a: 74:3c:3f:ed:70:ae:7d:b7:e4:16:a0:b7:7a:de:04:47:82:87: 2a:60:5e:54:f8:f5:ac:ef:fd:35:33:f0:2b:e6:f6:bf:b6:f2: 5c:53:7e:8f:0d:9c:1a:a3:40:ad:be:83:b9:df:d7:a8:a0:79: dd:b7:ba:c0:ed:3e:54:51:53:ec:5d:7d:d9:18:f9:1a:a6:fc: ca:7d:9c:6b:e7:c1:2c:59:72:f7:95:36:04:bb:46:b3:75:e4: 9f:1a:e6:99:b4:d7:85:90:3d:79:d0:68:98:99:d1:31:3c:0c: ff:73:30:14 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHWTlbcZajI9dWfPgJtJA+3LMRMwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAzMTIxWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MmEyMGU5MTI0ODBhNWUzNGQzNjc2MGM4NTliNzliYjVh MzQ1ZGYxMTY1MTY4ZmU2NzRhMzgxMzk5YWEwNjYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrQShiO3Cao3OTMpMr0QVW6OMi/XOYdibxB+kb7PrXbf3O Zk7LQHON1OsqOuNc5Tn8XYe6c82M+DRhCcZWn1lBo5jpeWql1TzPs1jeE9iA0wq+ qI3XxKap1n+44+lUYnFvXSaDaszMMUbVhc2b9AwuFRtpV60Lny1uIP+fY+HbPnjA oxryquIKW/fM9AeM9IeLxsh3pu6g5gsRrxAnedi6hyo18jYLU3nP23yGkvsd+9nu Pu9h4rwr+FBcCMKJvtqaX3x6YBY+vPQE/TvBNVfmcu+GBl3O9MD9SJON858NmkND FXXWTaqlUIHHUNMvmpOiaX+etTFfB3CDY5sEuRYFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUEFa4N/qPqCHqT0WkE0X5fzTRaRowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMyYzBkODhiLWQzNzMtNDg1NS05NWM4LTg2ZGE5MDcxMTNmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+5dDANBgkqhkiG9w0BAQsFAAOCAQEAOyuhq52OlRSqtGazYeM4xj6T /SMlkTaD/Erat4enVA7DEAGFgI5sk/U12GT0jjWLsJu35PGbH6TuJ9PWcDRpYs9g HYqqDBLlpGNV8yVZUrQZD9OiCTr8YYXRLqrJMU/7sFL8CNeAPea9iSRvOVQVHr8w 8cC/WqpWGk2OuxB4XsgjAe22f5+i2Fi23lTBq/6adDw/7XCufbfkFqC3et4ER4KH KmBeVPj1rO/9NTPwK+b2v7byXFN+jw2cGqNArb6Dud/XqKB53be6wO0+VFFT7F19 2Rj5Gqb8yn2ca+fBLFly95U2BLtGs3XknxrmmbTXhZA9edBomJnRMTwM/3MwFA== -----END CERTIFICATE-----Generated at Wed May 13 00:56:58 2026 by rpki-client