$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43963ea9-c865-4cb5-b075-eea3df535429.roa File: 43963ea9-c865-4cb5-b075-eea3df535429.roa (raw, json) Hash identifier: bI5mTDxdCaUeFpfer361waiH+nISioeQKE+vX80LGJI= Subject key identifier: 17:3B:70:16:E6:D8:64:44:74:5E:63:5C:1C:DE:96:94:18:6E:9E:2B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 681E84FA28E4FC0176F0471CED8348D5066081D4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43963ea9-c865-4cb5-b075-eea3df535429.roa Signing time: Wed 29 Apr 2026 00:10:35 +0000 ROA not before: Wed 29 Apr 2026 00:10:35 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:83d2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:1e:84:fa:28:e4:fc:01:76:f0:47:1c:ed:83:48:d5:06:60:81:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:10:35 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=b32872291339bbebd838e95ec18442452b7983c233a4ceace4fb30219facab98, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:00:05:78:37:fc:08:64:6e:c0:14:13:ab:00: be:65:3d:51:16:b6:b2:ab:6a:37:f4:8f:9f:ad:5e: 3b:81:30:83:09:db:06:cf:13:12:0c:a3:13:5a:4e: d6:7c:17:40:1d:69:c6:4e:e7:43:fa:21:55:ff:12: 04:68:5e:b3:0f:d5:02:23:9b:71:09:11:54:47:a7: 7e:78:0d:a5:28:74:8a:80:ba:ce:3a:04:75:c9:a4: 47:87:55:3c:2d:b5:08:cf:7b:c8:87:da:69:0b:d7: b8:cf:62:32:19:4e:d5:05:9a:39:c1:6e:89:5a:a6: d2:f0:45:04:b0:24:f3:c2:4d:0b:c6:8c:13:85:f1: 71:3e:83:eb:75:42:b8:a1:b2:79:10:a2:13:38:66: f8:60:63:77:12:6b:c3:6a:32:45:1f:7f:6a:e3:6e: ad:63:14:74:ab:2e:8d:0b:02:4c:cb:46:0b:ca:ca: 38:4e:bd:8b:44:46:4b:ca:76:c1:ea:c5:af:03:58: 22:f3:fb:70:32:05:6e:bd:3f:1f:b7:fb:02:17:a7: 9a:3c:7b:94:a1:52:54:dd:84:b0:b1:2c:6c:00:b1: dd:9b:c5:cc:20:1e:20:d0:79:7c:6e:ff:3a:ff:54: a3:0d:f6:a1:34:64:3f:5f:f8:d5:04:93:34:c1:2f: c6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3B:70:16:E6:D8:64:44:74:5E:63:5C:1C:DE:96:94:18:6E:9E:2B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43963ea9-c865-4cb5-b075-eea3df535429.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:83d2::/48 Signature Algorithm: sha256WithRSAEncryption 25:4c:76:17:86:a7:2d:89:93:0a:1a:09:7a:c8:ed:7a:bb:37: 86:8e:48:04:c2:99:9e:06:3a:b5:44:c7:d8:23:86:bc:02:51: ae:5f:60:1e:de:55:35:a3:8c:a4:d6:5c:8b:d8:4c:e0:94:37: 17:08:a6:b9:66:2f:d3:81:0e:cc:ed:bd:f8:8d:2e:aa:0b:63: 80:35:c2:11:d5:b0:70:65:5f:94:1a:ce:6d:de:d8:3f:ae:87: 5b:b4:47:55:0d:a7:ef:b5:3f:2a:48:ba:c8:ea:5e:83:a5:21: bd:fe:7f:4f:ec:8d:fb:16:17:82:f5:6d:d4:26:e0:3c:30:94: e0:7e:7c:f0:f9:0f:ce:64:6e:5f:c3:43:9b:51:18:a7:69:87: 12:b8:8c:1e:25:10:cc:71:1a:21:21:74:b8:66:2a:bc:5f:f5: 3f:ad:7a:df:fe:07:ec:43:d5:62:f9:18:e0:8d:b2:56:d3:42: d5:a5:0f:32:2c:7c:11:33:81:25:5d:dd:5e:ad:fd:31:82:6e: 04:c5:80:0e:d4:80:a1:f4:83:6d:d1:5d:91:e4:9a:34:8d:e4: b9:39:72:cc:4a:3a:75:3b:1b:3d:7e:13:8c:fb:52:44:51:48: e6:06:df:7d:93:9e:3c:dd:76:73:13:fa:78:73:72:83:2d:c1: da:08:3f:38 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaB6E+ijk/AF28Ecc7YNI1QZggdQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAxMDM1WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzI4NzIyOTEzMzliYmViZDgzOGU5NWVjMTg0NDI0NTJi Nzk4M2MyMzNhNGNlYWNlNGZiMzAyMTlmYWNhYjk4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjAAV4N/wIZG7AFBOrAL5lPVEWtrKrajf0j5+tXjuBMIMJ 2wbPExIMoxNaTtZ8F0AdacZO50P6IVX/EgRoXrMP1QIjm3EJEVRHp354DaUodIqA us46BHXJpEeHVTwttQjPe8iH2mkL17jPYjIZTtUFmjnBbolaptLwRQSwJPPCTQvG jBOF8XE+g+t1QrihsnkQohM4ZvhgY3cSa8NqMkUff2rjbq1jFHSrLo0LAkzLRgvK yjhOvYtERkvKdsHqxa8DWCLz+3AyBW69Px+3+wIXp5o8e5ShUlTdhLCxLGwAsd2b xcwgHiDQeXxu/zr/VKMN9qE0ZD9f+NUEkzTBL8ZTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFztwFubYZER0XmNcHN6WlBhuniswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzOTYzZWE5LWM4NjUtNGNiNS1iMDc1LWVlYTNkZjUzNTQyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9g9IwDQYJKoZIhvcNAQELBQADggEBACVMdheGpy2JkwoaCXrI7Xq7 N4aOSATCmZ4GOrVEx9gjhrwCUa5fYB7eVTWjjKTWXIvYTOCUNxcIprlmL9OBDszt vfiNLqoLY4A1whHVsHBlX5Qazm3e2D+uh1u0R1UNp++1PypIusjqXoOlIb3+f0/s jfsWF4L1bdQm4DwwlOB+fPD5D85kbl/DQ5tRGKdphxK4jB4lEMxxGiEhdLhmKrxf 9T+tet/+B+xD1WL5GOCNslbTQtWlDzIsfBEzgSVd3V6t/TGCbgTFgA7UgKH0g23R XZHkmjSN5Lk5csxKOnU7Gz1+E4z7UkRRSOYG332TnjzddnMT+nhzcoMtwdoIPzg= -----END CERTIFICATE-----Generated at Wed May 13 00:15:51 2026 by rpki-client