$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa File: a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa (raw, json) Hash identifier: 5O6sIexM6HRLfFZxuz0zRPlmhGYIc3ttoKbdDJZCkrw= Subject key identifier: 91:03:45:CD:3E:C8:96:AC:23:0B:23:FA:21:DC:35:0E:0C:04:65:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CB54E3F9A740F19FE67567811401B4D3B16DC50 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa Signing time: Wed 06 May 2026 00:10:09 +0000 ROA not before: Wed 06 May 2026 00:10:09 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:b5:4e:3f:9a:74:0f:19:fe:67:56:78:11:40:1b:4d:3b:16:dc:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:10:09 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=28746ca40305d1a4f6bbb009702544de9276f3b3961f1be5fd0856ef149858b7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:4a:8f:1e:ec:b6:a9:dc:96:29:fc:6c:fe:7e: 28:8e:2f:34:f4:7f:b3:c1:72:06:07:b5:b9:4c:52: 02:48:58:16:fe:c4:cb:23:c5:05:96:7c:7a:8b:ea: fa:d6:be:e3:57:63:8d:f3:2d:37:8d:ce:a4:9a:2a: 79:c3:bd:95:19:85:c5:13:e8:78:5f:d7:c0:9d:3c: cf:eb:23:df:af:89:a7:35:89:20:e1:6c:86:fb:59: 06:30:2e:c3:ed:c4:f2:9c:c0:ae:16:65:8e:8e:83: 45:09:82:67:ba:61:70:6e:ab:55:99:c4:60:c3:75: b3:03:0d:37:0a:c8:c3:45:94:7d:e0:48:91:54:21: ce:91:80:44:49:6a:89:e0:32:66:0e:fb:be:c4:03: 44:bc:b4:a4:d0:3d:fa:d4:a1:35:38:53:f8:ca:a8: e5:7f:d7:0c:9a:7e:80:49:66:97:7c:3f:3f:a7:db: d2:14:dc:8a:71:bc:1c:a4:70:b2:2d:1d:26:45:90: d2:c4:f0:f6:0d:7f:b3:23:e9:ce:3b:9b:cf:b8:90: 58:dd:00:ff:ec:18:c4:74:b7:25:ab:39:b4:fc:22: 7b:d1:4f:a6:e7:68:04:81:fe:ba:73:6c:4e:c0:37: 5d:5f:5d:9d:91:d5:2a:31:00:c6:fc:e8:57:ee:80: 9f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:03:45:CD:3E:C8:96:AC:23:0B:23:FA:21:DC:35:0E:0C:04:65:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:3400::/40 Signature Algorithm: sha256WithRSAEncryption ac:7b:5a:9c:9c:0e:7c:e2:f7:ea:2e:47:29:29:32:f7:7d:bd: d0:02:e1:65:a0:c4:bf:cb:06:7c:d6:d5:8c:e5:68:91:f2:c6: c7:00:4f:16:41:5f:16:b6:94:ba:4b:8d:5f:29:e7:4d:19:b3: 81:31:d6:e2:88:ed:ce:7e:13:ad:d3:d9:d7:d3:d0:c0:c4:51: 83:dd:a7:20:23:e4:3d:a1:52:59:06:9b:27:a1:91:00:0a:7d: 75:e1:9c:72:db:87:76:ac:de:e5:1a:20:ba:9f:59:31:47:64: 15:d4:bd:fe:23:a9:42:3c:62:db:1c:99:d1:52:41:71:75:50: 46:96:a2:11:fc:48:d1:52:c9:f7:06:ff:ee:da:87:5a:fe:42: 1f:be:9d:ab:c7:f5:71:d3:56:c1:b3:f0:26:c7:73:f0:d8:c6: 9f:73:64:4b:d7:8f:61:87:41:14:97:02:d1:0a:2e:f1:b8:d2: d2:21:bf:f2:48:67:3e:3f:18:a1:e3:66:e3:48:2c:12:90:bd: 17:b5:0f:2c:a5:8c:25:b8:ec:f5:76:e5:ce:3e:b5:2f:4f:47: 54:e9:fd:ae:37:df:76:fa:e1:0b:9b:a3:f2:bd:01:6d:65:c1: 33:c4:76:1e:d0:cf:2d:28:0a:b7:3e:7f:2e:6f:6a:5c:05:52: fa:b0:4e:ee -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXLVOP5p0Dxn+Z1Z4EUAbTTsW3FAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAxMDA5WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODc0NmNhNDAzMDVkMWE0ZjZiYmIwMDk3MDI1NDRkZTky NzZmM2IzOTYxZjFiZTVmZDA4NTZlZjE0OTg1OGI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVSo8e7Lap3JYp/Gz+fiiOLzT0f7PBcgYHtblMUgJIWBb+ xMsjxQWWfHqL6vrWvuNXY43zLTeNzqSaKnnDvZUZhcUT6Hhf18CdPM/rI9+viac1 iSDhbIb7WQYwLsPtxPKcwK4WZY6Og0UJgme6YXBuq1WZxGDDdbMDDTcKyMNFlH3g SJFUIc6RgERJaongMmYO+77EA0S8tKTQPfrUoTU4U/jKqOV/1wyafoBJZpd8Pz+n 29IU3IpxvBykcLItHSZFkNLE8PYNf7Mj6c47m8+4kFjdAP/sGMR0tyWrObT8InvR T6bnaASB/rpzbE7AN11fXZ2R1SoxAMb86FfugJ9JAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUkQNFzT7IlqwjCyP6Idw1DgwEZcowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ZmZkYTk4LWJkNjctNGExOC05Nzk3LTM1YWEyZTA0YTJiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gNDANBgkqhkiG9w0BAQsFAAOCAQEArHtanJwOfOL36i5HKSky9329 0ALhZaDEv8sGfNbVjOVokfLGxwBPFkFfFraUukuNXynnTRmzgTHW4ojtzn4TrdPZ 19PQwMRRg92nICPkPaFSWQabJ6GRAAp9deGcctuHdqze5Rogup9ZMUdkFdS9/iOp Qjxi2xyZ0VJBcXVQRpaiEfxI0VLJ9wb/7tqHWv5CH76dq8f1cdNWwbPwJsdz8NjG n3NkS9ePYYdBFJcC0Qou8bjS0iG/8khnPj8YoeNm40gsEpC9F7UPLKWMJbjs9Xbl zj61L09HVOn9rjffdvrhC5uj8r0BbWXBM8R2HtDPLSgKtz5/Lm9qXAVS+rBO7g== -----END CERTIFICATE-----Generated at Tue May 12 22:31:39 2026 by rpki-client