$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7f567f4-babd-45d0-82c9-1e940fee8aff.roa File: a7f567f4-babd-45d0-82c9-1e940fee8aff.roa (raw, json) Hash identifier: AfcQjFqdDSbVqSmVyccDgccGs0Axeo7LuDs1tOcc6fY= Subject key identifier: C4:17:B6:13:FC:1C:02:33:F6:56:54:F3:D4:F1:F4:B0:37:51:E3:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 447AFE3ED4EF39BD979DF462462032F4DF7C6AAC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7f567f4-babd-45d0-82c9-1e940fee8aff.roa Signing time: Tue 05 May 2026 00:41:09 +0000 ROA not before: Tue 05 May 2026 00:41:09 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff4:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:7a:fe:3e:d4:ef:39:bd:97:9d:f4:62:46:20:32:f4:df:7c:6a:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:41:09 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=f879a7c7743d7728d405dbff1edce6007d1d4aa37b25dc5fdddaa1e75ba09d56, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:94:00:9c:23:74:cc:58:ea:60:49:e5:aa:35: 01:58:d3:06:1f:aa:03:8b:56:77:e6:af:c3:7f:20: d6:bf:dc:21:86:80:b0:42:c2:5a:cb:e6:fc:67:27: 65:15:cf:5c:23:1c:8b:44:54:55:e5:51:cc:0c:9d: c6:d1:3a:e8:c4:14:1d:da:39:42:ab:48:ee:6c:a2: a6:06:dd:73:ed:73:06:20:46:59:b1:14:04:e3:bc: 46:e9:01:4a:af:af:90:13:25:92:34:8e:b0:cc:95: ee:15:00:48:a9:fa:1d:d8:d3:be:5c:16:55:45:2a: ba:a5:42:0d:27:d2:9d:3f:82:83:ba:66:34:6c:39: dc:23:06:a0:39:34:00:b4:36:da:61:55:e1:50:fe: 89:5f:96:3d:0d:fe:6b:15:da:13:27:b5:54:3a:2a: 0c:7a:cc:86:66:3c:12:cb:bc:78:48:73:2f:8c:60: eb:f2:d4:a0:cd:9f:db:7f:50:9a:ec:fb:78:8d:5f: b1:77:db:a2:c3:62:eb:df:ac:88:97:3f:f5:49:cc: 7e:e6:e5:a0:af:d9:b1:ee:8d:b2:6b:57:19:4d:57: d0:9f:94:0a:b6:a0:67:2f:42:7f:b3:13:24:b2:24: f1:0d:52:bf:f7:81:1e:2a:13:d8:62:f6:e9:97:ae: ff:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:17:B6:13:FC:1C:02:33:F6:56:54:F3:D4:F1:F4:B0:37:51:E3:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7f567f4-babd-45d0-82c9-1e940fee8aff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:3400::/40 Signature Algorithm: sha256WithRSAEncryption 6b:33:41:4e:01:88:56:93:e8:e1:56:4a:6f:d0:81:17:b3:33: 54:17:3f:a0:3f:57:4c:1e:4b:6c:6e:05:55:64:f7:52:cb:94: 0c:9a:7d:2a:41:c7:6f:49:db:fa:e6:d2:3c:b9:9c:7c:2d:f3: 2c:33:60:c9:c1:5e:ce:70:cf:32:93:eb:a5:8c:0c:bb:65:4e: b5:eb:f8:e6:47:25:92:22:a3:99:0b:b8:82:1d:30:f4:f6:5c: dc:64:c9:6e:53:e1:0a:84:3b:38:79:ed:d3:e8:4f:3e:9b:22: a2:e0:7e:59:de:df:7f:7b:8c:d1:65:1b:6b:85:67:1d:b6:ef: 39:6a:5f:bb:5f:34:cf:46:20:0c:d6:72:df:cc:75:6c:aa:44: 10:b7:9c:13:49:d6:4b:76:49:aa:eb:8c:a6:21:34:79:64:e4: f8:45:c9:e4:45:42:ef:a5:d6:3a:6b:ef:48:3a:5a:7b:74:cc: 2d:ef:f1:31:58:df:4c:9f:fc:82:6e:ca:28:bd:f7:22:4e:9f: fa:a9:c6:3b:54:c6:21:35:f8:56:36:f2:1c:b1:af:c0:c6:8a: 1e:ec:e5:da:20:00:9e:16:e9:98:35:47:45:c6:78:ba:3d:62: 52:2e:9f:84:cc:26:2b:63:85:74:fb:ea:1d:8f:fe:55:9e:c3: 7b:e9:50:7f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURHr+PtTvOb2XnfRiRiAy9N98aqwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA0MTA5WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmODc5YTdjNzc0M2Q3NzI4ZDQwNWRiZmYxZWRjZTYwMDdk MWQ0YWEzN2IyNWRjNWZkZGRhYTFlNzViYTA5ZDU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDilACcI3TMWOpgSeWqNQFY0wYfqgOLVnfmr8N/INa/3CGG gLBCwlrL5vxnJ2UVz1wjHItEVFXlUcwMncbROujEFB3aOUKrSO5soqYG3XPtcwYg RlmxFATjvEbpAUqvr5ATJZI0jrDMle4VAEip+h3Y075cFlVFKrqlQg0n0p0/goO6 ZjRsOdwjBqA5NAC0NtphVeFQ/olflj0N/msV2hMntVQ6Kgx6zIZmPBLLvHhIcy+M YOvy1KDNn9t/UJrs+3iNX7F326LDYuvfrIiXP/VJzH7m5aCv2bHujbJrVxlNV9Cf lAq2oGcvQn+zEySyJPENUr/3gR4qE9hi9umXrv8tAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUxBe2E/wcAjP2VlTz1PH0sDdR40QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ZjU2N2Y0LWJhYmQtNDVkMC04MmM5LTFlOTQwZmVlOGFmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/0NDANBgkqhkiG9w0BAQsFAAOCAQEAazNBTgGIVpPo4VZKb9CBF7Mz VBc/oD9XTB5LbG4FVWT3UsuUDJp9KkHHb0nb+ubSPLmcfC3zLDNgycFeznDPMpPr pYwMu2VOtev45kclkiKjmQu4gh0w9PZc3GTJblPhCoQ7OHnt0+hPPpsiouB+Wd7f f3uM0WUba4VnHbbvOWpfu180z0YgDNZy38x1bKpEELecE0nWS3ZJquuMpiE0eWTk +EXJ5EVC76XWOmvvSDpae3TMLe/xMVjfTJ/8gm7KKL33Ik6f+qnGO1TGITX4Vjby HLGvwMaKHuzl2iAAnhbpmDVHRcZ4uj1iUi6fhMwmK2OFdPvqHY/+VZ7De+lQfw== -----END CERTIFICATE-----Generated at Wed May 13 00:12:17 2026 by rpki-client