$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aeaadb37-96ca-42dc-b733-b766316e5818.roa File: aeaadb37-96ca-42dc-b733-b766316e5818.roa (raw, json) Hash identifier: F9li4VCTg1x/vZOFT6tujtacgbcWGGfrAvt56sPY9pI= Subject key identifier: 89:DB:5D:25:FA:C0:B4:7E:74:31:92:AE:D5:00:8F:47:C9:5B:8D:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 60AB14D87640C58F71F2F4AE81CA25464F28DE20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aeaadb37-96ca-42dc-b733-b766316e5818.roa Signing time: Fri 08 May 2026 00:10:09 +0000 ROA not before: Fri 08 May 2026 00:10:09 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f15:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ab:14:d8:76:40:c5:8f:71:f2:f4:ae:81:ca:25:46:4f:28:de:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 00:10:09 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=6ba07b8b23f8288bde979b1b18e60c50909119e59c88442532d750e150be20e6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:94:97:e1:8e:3f:23:7a:94:9b:18:70:6a:c0: 76:02:6e:76:82:5b:f6:d7:39:df:3e:9f:6c:5e:de: fc:de:b3:07:fb:ea:1e:77:31:c9:26:a0:85:fc:fe: 23:21:e0:5c:6d:1d:fc:b5:87:31:3e:ba:2a:9e:29: d7:34:32:18:c7:6f:e4:50:f7:25:6b:b4:77:38:4d: 5b:fa:38:23:b0:49:27:fb:f9:c4:82:4e:bd:84:f2: f4:4b:a7:42:76:ba:66:84:f1:f2:40:18:14:6f:2e: bc:8c:df:52:f5:f9:42:aa:6a:9c:e6:04:cc:ec:cc: a2:40:ce:bb:ce:ff:ea:af:4a:15:dd:05:a0:6f:91: 14:7b:d8:6c:48:68:8d:29:f1:2a:c2:dc:5e:3f:44: ef:d8:b9:a7:b7:88:9a:f7:cd:c4:66:6b:d0:2e:3c: f0:8a:4c:bf:bd:cd:ac:d1:06:e0:85:9f:72:a0:28: f1:4a:55:a6:f3:4e:31:0c:d7:39:d4:8d:b6:29:3b: ea:e6:d8:91:54:1e:3c:94:53:26:ca:b4:df:06:09: dd:25:af:3c:57:fb:a1:6f:3c:af:09:8a:0b:06:f9: a8:28:60:c1:5d:6f:ff:3c:35:2d:41:02:b0:37:12: d6:96:1c:35:38:b2:94:6b:dd:a7:87:60:96:c3:d9: 9d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:DB:5D:25:FA:C0:B4:7E:74:31:92:AE:D5:00:8F:47:C9:5B:8D:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aeaadb37-96ca-42dc-b733-b766316e5818.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f15:c000::/36 Signature Algorithm: sha256WithRSAEncryption 99:13:67:66:f6:08:e9:ad:62:5f:a5:85:a8:4a:30:85:96:9c: 3a:ad:ec:f1:05:11:b7:ab:0e:4c:91:3c:61:63:54:9f:6b:72: e8:64:38:02:0c:16:b0:3e:d1:27:a8:94:1b:7a:8b:23:55:6d: 02:c2:22:10:20:ba:a4:7f:f0:51:73:06:58:82:3f:0d:11:4e: ef:42:74:c1:02:b6:f5:9c:72:e6:10:ba:3e:9a:6e:de:3c:fd: 81:ed:56:f1:fa:a8:a3:89:fb:51:4d:8a:07:54:2c:3e:71:92: 3a:85:d0:6f:b7:a5:2d:56:28:30:1e:27:6e:46:ca:a7:e0:69: 94:47:2f:d2:22:55:14:8f:3b:3f:88:4a:7a:c3:52:47:6e:a2: e1:35:5f:09:6a:78:55:4a:25:f2:bb:d5:cf:0e:21:53:ae:f5: cd:c8:5f:f4:c6:de:b4:c6:23:f9:95:9f:cb:71:3d:2d:8c:86: 19:f9:36:86:5c:bb:5e:f5:36:c1:6b:f3:65:f2:82:5a:cb:f3: ee:52:97:b0:22:3c:64:68:1b:6c:e0:db:7b:e6:52:e6:6e:20: 9e:41:3d:09:90:61:cc:4b:7c:10:27:47:f1:4d:a9:5c:a2:ce: 9a:08:a3:bc:35:2c:8a:76:18:11:f7:3d:4e:10:35:3e:15:35: 8e:e9:3f:d2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYKsU2HZAxY9x8vSugcolRk8o3iAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA4MDAxMDA5WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmEwN2I4YjIzZjgyODhiZGU5NzliMWIxOGU2MGM1MDkw OTExOWU1OWM4ODQ0MjUzMmQ3NTBlMTUwYmUyMGU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0lJfhjj8jepSbGHBqwHYCbnaCW/bXOd8+n2xe3vzeswf7 6h53MckmoIX8/iMh4FxtHfy1hzE+uiqeKdc0MhjHb+RQ9yVrtHc4TVv6OCOwSSf7 +cSCTr2E8vRLp0J2umaE8fJAGBRvLryM31L1+UKqapzmBMzszKJAzrvO/+qvShXd BaBvkRR72GxIaI0p8SrC3F4/RO/Yuae3iJr3zcRma9AuPPCKTL+9zazRBuCFn3Kg KPFKVabzTjEM1znUjbYpO+rm2JFUHjyUUybKtN8GCd0lrzxX+6FvPK8JigsG+ago YMFdb/88NS1BArA3EtaWHDU4spRr3aeHYJbD2Z0nAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUidtdJfrAtH50MZKu1QCPR8lbjYcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlYWFkYjM3LTk2Y2EtNDJkYy1iNzMzLWI3NjYzMTZlNTgxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8VwDANBgkqhkiG9w0BAQsFAAOCAQEAmRNnZvYI6a1iX6WFqEowhZac Oq3s8QURt6sOTJE8YWNUn2ty6GQ4AgwWsD7RJ6iUG3qLI1VtAsIiECC6pH/wUXMG WII/DRFO70J0wQK29Zxy5hC6Pppu3jz9ge1W8fqoo4n7UU2KB1QsPnGSOoXQb7el LVYoMB4nbkbKp+BplEcv0iJVFI87P4hKesNSR26i4TVfCWp4VUol8rvVzw4hU671 zchf9MbetMYj+ZWfy3E9LYyGGfk2hly7XvU2wWvzZfKCWsvz7lKXsCI8ZGgbbODb e+ZS5m4gnkE9CZBhzEt8ECdH8U2pXKLOmgijvDUsinYYEfc9ThA1PhU1juk/0g== -----END CERTIFICATE-----Generated at Wed May 13 10:45:57 2026 by rpki-client