$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/854afe71-a47b-4f9f-8274-9f19c4431d15.roa File: 854afe71-a47b-4f9f-8274-9f19c4431d15.roa (raw, json) Hash identifier: C8UnMvlVWVX3YEori92U0n1eK1h2vV9Y6eZNCd+Cqok= Subject key identifier: A0:46:9D:78:BA:2D:D4:7F:1C:F8:1D:44:98:F3:C7:46:80:49:2F:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11F6D408DEDDEEAE3562B11E24AE9667C7FCB542 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/854afe71-a47b-4f9f-8274-9f19c4431d15.roa Signing time: Mon 04 May 2026 00:30:49 +0000 ROA not before: Mon 04 May 2026 00:30:49 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f36::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:f6:d4:08:de:dd:ee:ae:35:62:b1:1e:24:ae:96:67:c7:fc:b5:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:30:49 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=599ed17372430f0322cff8274775d0886d5e7edb585f4a73487ab499848fa191, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8a:e7:18:65:ae:be:f9:04:23:e1:d2:77:05: 1d:97:bb:c8:09:91:c9:05:7b:67:a3:ae:f8:e1:b7: 92:e2:86:fb:0d:61:b8:23:25:7f:36:b9:bc:08:82: d0:64:ab:78:c6:a2:6d:77:5e:3d:bc:3e:26:db:e2: 13:70:58:6e:35:f1:98:e7:09:80:20:ca:88:89:de: 62:69:28:b8:b1:bf:0b:b2:07:12:9f:a8:13:c3:70: 3b:f7:fe:92:2b:12:4a:b3:e4:b0:67:e1:71:bb:2e: 8d:8a:57:9d:8a:40:64:92:a0:b1:7a:c7:80:e5:2d: 36:a4:e5:24:29:38:c1:18:27:f3:8c:b7:48:68:ba: 37:c8:41:5a:53:89:ba:cd:a3:41:73:14:1a:3d:f5: 6c:9e:cd:a8:9b:2a:2b:70:d7:1d:92:4a:ab:c3:4c: d4:f6:18:5f:65:50:d1:f4:6a:0d:0d:ac:ec:f4:8c: 52:e6:d1:dc:01:b8:0f:8f:19:2c:97:9c:36:7d:d6: 3d:59:ae:36:1c:ae:62:eb:29:3b:d1:b6:b9:2d:b1: 23:d9:8b:d6:69:fb:6e:df:e8:47:38:70:70:58:8c: 76:6b:f1:4c:6a:15:ab:e9:91:f5:22:c1:a5:91:73: 76:5f:50:bf:dd:41:7b:5e:16:67:c9:40:3d:0f:b9: ba:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:46:9D:78:BA:2D:D4:7F:1C:F8:1D:44:98:F3:C7:46:80:49:2F:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/854afe71-a47b-4f9f-8274-9f19c4431d15.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f36::/32 Signature Algorithm: sha256WithRSAEncryption ce:fa:f6:72:33:7b:f7:9d:b9:c6:c7:9e:6a:58:26:30:41:53: c8:b4:ea:bb:94:19:56:db:b7:57:72:4a:93:5c:77:fc:80:46: 48:71:5f:44:a2:42:63:c3:30:6d:3a:48:c4:75:25:bd:29:e7: 55:94:b1:7a:72:84:60:25:42:25:58:e3:5b:7f:e0:e1:b2:44: df:52:a3:dd:06:2d:ab:08:42:85:ae:af:ec:41:e7:8a:bb:51: 5a:d6:6e:71:6c:e9:70:a0:65:3d:65:ee:9c:6c:77:3b:c5:80: ab:2e:d1:b0:d2:27:5a:5d:2c:ab:ad:f7:73:35:53:1d:2a:c6: 3f:5d:f6:45:e2:17:7d:d8:1c:b8:75:a8:32:63:4f:d9:40:9b: f1:67:b9:c3:d3:57:76:f9:ff:8c:4f:b8:15:9f:bf:bf:4b:77: 61:e8:17:a8:7e:e5:86:b5:5f:6d:db:c6:98:d5:b7:02:63:49: 41:5f:c0:26:83:68:91:f3:20:68:13:49:cd:38:15:b1:72:6e: 23:64:3e:77:34:c3:fd:78:4c:42:ae:1b:8b:d0:6b:07:61:67: 43:ac:eb:08:d8:2f:c9:a8:fd:01:7b:34:58:ad:e9:1e:c4:53: c0:cb:4d:60:ff:b7:fe:61:44:f5:44:bf:9f:07:2e:2a:21:40: d8:d5:d1:23 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUEfbUCN7d7q41YrEeJK6WZ8f8tUIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDAzMDQ5WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTllZDE3MzcyNDMwZjAzMjJjZmY4Mjc0Nzc1ZDA4ODZk NWU3ZWRiNTg1ZjRhNzM0ODdhYjQ5OTg0OGZhMTkxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiiucYZa6++QQj4dJ3BR2Xu8gJkckFe2ejrvjht5LihvsN YbgjJX82ubwIgtBkq3jGom13Xj28Pibb4hNwWG418ZjnCYAgyoiJ3mJpKLixvwuy BxKfqBPDcDv3/pIrEkqz5LBn4XG7Lo2KV52KQGSSoLF6x4DlLTak5SQpOMEYJ/OM t0houjfIQVpTibrNo0FzFBo99WyezaibKitw1x2SSqvDTNT2GF9lUNH0ag0NrOz0 jFLm0dwBuA+PGSyXnDZ91j1ZrjYcrmLrKTvRtrktsSPZi9Zp+27f6Ec4cHBYjHZr 8UxqFavpkfUiwaWRc3ZfUL/dQXteFmfJQD0PubotAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUoEadeLot1H8c+B1EmPPHRoBJL0kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg1NGFmZTcxLWE0N2ItNGY5Zi04Mjc0LTlmMTljNDQzMWQxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB82MA0GCSqGSIb3DQEBCwUAA4IBAQDO+vZyM3v3nbnGx55qWCYwQVPI tOq7lBlW27dXckqTXHf8gEZIcV9EokJjwzBtOkjEdSW9KedVlLF6coRgJUIlWONb f+DhskTfUqPdBi2rCEKFrq/sQeeKu1Fa1m5xbOlwoGU9Ze6cbHc7xYCrLtGw0ida XSyrrfdzNVMdKsY/XfZF4hd92By4dagyY0/ZQJvxZ7nD01d2+f+MT7gVn7+/S3dh 6BeofuWGtV9t28aY1bcCY0lBX8Amg2iR8yBoE0nNOBWxcm4jZD53NMP9eExCrhuL 0GsHYWdDrOsI2C/JqP0BezRYrekexFPAy01g/7f+YUT1RL+fBy4qIUDY1dEj -----END CERTIFICATE-----Generated at Wed May 13 02:35:40 2026 by rpki-client