$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/89570917-e234-4dbb-8694-dc75eb220444.roa File: 89570917-e234-4dbb-8694-dc75eb220444.roa (raw, json) Hash identifier: H0JEzlEOoDlDlSHbEyFklIoKtvAKo9dnEDFiO566ux8= Subject key identifier: 22:A3:BB:89:CB:DA:B4:BF:B1:06:E7:25:A5:52:FB:0A:6D:05:56:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F1523BB609305006AF856713B8047CD06F10814 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/89570917-e234-4dbb-8694-dc75eb220444.roa Signing time: Sat 02 May 2026 00:50:46 +0000 ROA not before: Sat 02 May 2026 00:50:46 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff2:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:15:23:bb:60:93:05:00:6a:f8:56:71:3b:80:47:cd:06:f1:08:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:50:46 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=fa5b7f15cf56e1b6a168fc5bbb4c8e8a34c6329920dfb48269a38f42a48174b9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:33:57:61:4e:97:d8:19:bb:99:c7:11:ef:0b: 33:37:2b:07:05:b0:23:51:62:80:eb:99:0d:8b:fd: e3:c8:fc:2c:ab:7e:45:c6:1e:95:27:f6:9c:17:7a: 42:f1:50:4f:7b:41:21:c2:1a:bb:4c:11:5b:ca:a4: 3d:6a:ff:b1:0e:e0:fb:3c:17:13:1f:f6:66:c9:22: 24:79:88:85:21:ac:7c:22:0c:7f:d7:c4:6d:64:71: 36:9f:eb:8f:b3:2e:c1:06:b0:08:2f:fb:59:ce:60: fd:3f:39:5d:e8:0b:41:68:41:79:e3:57:4b:03:20: ad:46:a3:7f:35:ad:05:e3:28:de:36:a6:58:d3:cb: af:78:3e:50:8b:f7:52:22:fc:64:c0:3d:71:33:dd: 23:af:d6:ef:7a:4f:4d:22:44:8d:fc:c5:7d:07:25: e5:19:6d:f8:cc:cd:5a:8d:d2:91:04:49:0b:a4:91: 33:70:a9:49:d5:bb:a2:2f:63:fd:2c:db:31:8a:84: ca:54:88:df:f3:f0:f1:7d:7f:db:e3:a0:c5:35:fb: b5:24:5e:a6:77:90:58:67:9e:2e:e6:2f:86:b8:15: cf:11:57:06:4e:93:5e:6d:8c:de:1f:4a:ec:b5:4b: 55:b4:43:d6:7e:d4:c8:fa:26:e5:00:5a:a8:ca:47: b8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A3:BB:89:CB:DA:B4:BF:B1:06:E7:25:A5:52:FB:0A:6D:05:56:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/89570917-e234-4dbb-8694-dc75eb220444.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:8000::/39 Signature Algorithm: sha256WithRSAEncryption 39:51:b3:30:ff:d8:4c:86:87:0d:be:d8:5f:68:4e:74:ec:0d: 84:c5:a7:53:b9:2e:f4:8c:46:5a:73:b9:8c:36:79:1e:e3:14: 19:47:30:86:28:da:ee:5d:d6:c0:1f:b1:bc:69:fd:d8:46:a4: ff:b5:41:3b:2d:89:af:04:e1:51:81:29:b5:84:6b:1b:f7:62: 94:49:56:b4:e3:2e:18:b0:d6:87:e6:95:5c:aa:21:99:03:e1: c2:e9:80:c3:5a:b9:95:82:2c:e1:a1:b8:38:f6:eb:22:f9:dd: 56:fe:d7:95:a9:0e:ef:11:3d:fe:c8:cf:11:4e:f6:7d:69:62: 88:bc:8c:21:b2:e6:3d:37:9c:d5:fb:74:ba:37:7e:a5:ba:2a: 7d:53:81:01:a4:a1:46:e2:2b:e4:75:0b:22:a4:e1:fa:d2:5c: a1:29:f6:d9:f4:12:54:fa:70:84:7b:01:2a:2b:0a:63:19:73: ad:32:98:dd:03:7f:b4:7b:3f:0b:9b:73:36:19:b1:af:26:b5: bc:a7:52:78:40:de:09:b0:4b:77:c0:15:5f:0d:ee:d1:2b:f2: 7e:56:95:34:1f:37:0c:76:ea:8c:be:b6:ab:7b:f7:bf:20:50: 3d:00:d6:3a:b0:f7:ca:d7:03:62:c9:6a:c5:04:1a:ea:66:23: 76:7d:35:7a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbxUju2CTBQBq+FZxO4BHzQbxCBQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAyMDA1MDQ2WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTViN2YxNWNmNTZlMWI2YTE2OGZjNWJiYjRjOGU4YTM0 YzYzMjk5MjBkZmI0ODI2OWEzOGY0MmE0ODE3NGI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSM1dhTpfYGbuZxxHvCzM3KwcFsCNRYoDrmQ2L/ePI/Cyr fkXGHpUn9pwXekLxUE97QSHCGrtMEVvKpD1q/7EO4Ps8FxMf9mbJIiR5iIUhrHwi DH/XxG1kcTaf64+zLsEGsAgv+1nOYP0/OV3oC0FoQXnjV0sDIK1Go381rQXjKN42 pljTy694PlCL91Ii/GTAPXEz3SOv1u96T00iRI38xX0HJeUZbfjMzVqN0pEESQuk kTNwqUnVu6IvY/0s2zGKhMpUiN/z8PF9f9vjoMU1+7UkXqZ3kFhnni7mL4a4Fc8R VwZOk15tjN4fSuy1S1W0Q9Z+1Mj6JuUAWqjKR7jhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUIqO7icvatL+xBuclpVL7Cm0FVk4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg5NTcwOTE3LWUyMzQtNGRiYi04Njk0LWRjNzVlYjIyMDQ0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/ygDANBgkqhkiG9w0BAQsFAAOCAQEAOVGzMP/YTIaHDb7YX2hOdOwN hMWnU7ku9IxGWnO5jDZ5HuMUGUcwhija7l3WwB+xvGn92Eak/7VBOy2JrwThUYEp tYRrG/dilElWtOMuGLDWh+aVXKohmQPhwumAw1q5lYIs4aG4OPbrIvndVv7XlakO 7xE9/sjPEU72fWliiLyMIbLmPTec1ft0ujd+pboqfVOBAaShRuIr5HULIqTh+tJc oSn22fQSVPpwhHsBKisKYxlzrTKY3QN/tHs/C5tzNhmxrya1vKdSeEDeCbBLd8AV Xw3u0SvyflaVNB83DHbqjL62q3v3vyBQPQDWOrD3ytcDYslqxQQa6mYjdn01eg== -----END CERTIFICATE-----Generated at Wed May 13 00:52:22 2026 by rpki-client