$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f2501e3-70a0-4b0e-9416-31dfdbb7e4ae.roa File: 8f2501e3-70a0-4b0e-9416-31dfdbb7e4ae.roa (raw, json) Hash identifier: NhfA2NovmMI5o95AcrUjM4rwcLhvLyW+PNOVzMHAOig= Subject key identifier: 7B:20:73:33:6B:F2:1C:03:FB:5F:44:46:44:53:8C:4F:08:97:8D:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68B5BDA93EF8D4368BD878AA7FAC8745A6FC5522 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f2501e3-70a0-4b0e-9416-31dfdbb7e4ae.roa Signing time: Mon 04 May 2026 00:40:03 +0000 ROA not before: Mon 04 May 2026 00:40:03 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb8:ec00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:b5:bd:a9:3e:f8:d4:36:8b:d8:78:aa:7f:ac:87:45:a6:fc:55:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:40:03 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=45d08dce6c6af4ba265fc73851a29f5ed3d4bf6a69aca51ea361de74aec7a415, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:0b:54:1c:c4:59:df:6f:16:8d:8d:20:9a:3e: f1:d9:ad:86:0e:c3:3a:f0:cb:80:85:fa:10:86:e8: d3:91:aa:f1:ef:72:1b:ae:ea:39:40:fa:bb:8f:76: 34:a3:24:26:80:55:94:11:7d:91:47:67:cb:b9:e9: 63:0c:6e:84:dd:d0:53:d4:a0:73:8a:0d:3f:72:d2: ce:f4:ca:ed:d6:20:08:50:b8:11:ff:cc:e4:f4:04: cf:61:be:3a:58:01:19:90:a3:2b:26:7c:76:c1:21: e1:67:e9:21:c0:b3:cd:89:d6:75:7a:eb:b9:4e:de: 90:f0:a6:2f:19:46:ba:ad:a6:c1:16:ed:83:e3:46: 93:1d:65:f8:c1:c0:ba:ec:d2:10:18:82:3a:85:a0: 8a:26:f7:7c:65:12:0c:d3:5c:7a:d2:90:fc:2d:89: 0c:9f:6b:97:02:3b:e7:f6:8f:78:90:27:54:95:c0: df:19:ac:cc:03:e1:0a:31:5a:1e:9c:55:fe:f5:d9: f2:31:26:a6:98:ba:77:3b:5c:64:0f:ee:6f:8b:e5: 22:a1:4f:44:bc:d2:90:d4:dc:d3:e5:fc:05:8f:14: c5:fd:77:a6:84:2c:60:25:b4:b9:51:95:d7:14:f4: 22:1d:2b:a5:6e:93:67:3f:1f:e1:31:30:ed:21:44: e8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:20:73:33:6B:F2:1C:03:FB:5F:44:46:44:53:8C:4F:08:97:8D:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f2501e3-70a0-4b0e-9416-31dfdbb7e4ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 0c:d0:6f:0a:5f:5f:85:5a:f9:b1:44:85:de:c6:de:0e:c5:3e: 20:a2:11:54:c9:77:ce:5f:35:6b:db:72:02:55:7b:a2:d2:a7: 16:de:47:bc:28:12:46:f8:61:75:2d:3b:b6:b4:66:ba:2c:4b: 14:e3:48:dc:9d:ba:25:f6:db:d4:04:d7:75:80:2b:c8:2c:3a: ff:45:5a:70:e1:b1:0d:8d:7d:14:39:95:49:6a:1d:fe:a3:4d: e3:5b:e8:27:90:40:9c:44:4f:ad:6f:fb:b3:18:4c:da:e4:18: dd:2d:f2:bd:69:79:b8:ec:b3:70:0a:01:be:9e:ee:f2:01:73: 01:b2:7e:14:06:4f:82:a4:d8:22:8d:2c:22:07:91:d3:a0:1f: 22:bc:d0:07:2d:ce:7a:f2:e5:5e:17:b6:70:14:aa:24:18:c4: 43:a8:cd:43:35:59:b3:06:8c:8b:de:92:e1:85:68:7f:47:26: ca:df:61:41:49:20:d0:2e:cc:68:c6:a2:c7:4d:3b:08:17:bf: 69:46:da:20:63:ab:45:1f:f0:b7:70:59:87:21:47:68:60:84: c8:ea:61:88:a5:4a:41:ca:cd:b3:cd:b7:2f:04:d2:13:5c:67: 18:f7:e9:2c:27:01:1c:dc:31:dc:56:8b:12:08:b0:ff:39:c6: 66:c1:db:93 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaLW9qT741DaL2Hiqf6yHRab8VSIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDA0MDAzWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NWQwOGRjZTZjNmFmNGJhMjY1ZmM3Mzg1MWEyOWY1ZWQz ZDRiZjZhNjlhY2E1MWVhMzYxZGU3NGFlYzdhNDE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXC1QcxFnfbxaNjSCaPvHZrYYOwzrwy4CF+hCG6NORqvHv chuu6jlA+ruPdjSjJCaAVZQRfZFHZ8u56WMMboTd0FPUoHOKDT9y0s70yu3WIAhQ uBH/zOT0BM9hvjpYARmQoysmfHbBIeFn6SHAs82J1nV667lO3pDwpi8ZRrqtpsEW 7YPjRpMdZfjBwLrs0hAYgjqFoIom93xlEgzTXHrSkPwtiQyfa5cCO+f2j3iQJ1SV wN8ZrMwD4QoxWh6cVf712fIxJqaYunc7XGQP7m+L5SKhT0S80pDU3NPl/AWPFMX9 d6aELGAltLlRldcU9CIdK6Vuk2c/H+ExMO0hROjbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUeyBzM2vyHAP7X0RGRFOMTwiXjV4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmMjUwMWUzLTcwYTAtNGIwZS05NDE2LTMxZGZkYmI3ZTRhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+47DANBgkqhkiG9w0BAQsFAAOCAQEADNBvCl9fhVr5sUSF3sbeDsU+ IKIRVMl3zl81a9tyAlV7otKnFt5HvCgSRvhhdS07trRmuixLFONI3J26Jfbb1ATX dYAryCw6/0VacOGxDY19FDmVSWod/qNN41voJ5BAnERPrW/7sxhM2uQY3S3yvWl5 uOyzcAoBvp7u8gFzAbJ+FAZPgqTYIo0sIgeR06AfIrzQBy3OevLlXhe2cBSqJBjE Q6jNQzVZswaMi96S4YVof0cmyt9hQUkg0C7MaMaix007CBe/aUbaIGOrRR/wt3BZ hyFHaGCEyOphiKVKQcrNs823LwTSE1xnGPfpLCcBHNwx3FaLEgiw/znGZsHbkw== -----END CERTIFICATE-----Generated at Tue May 12 21:59:22 2026 by rpki-client