$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c229c308-822f-45de-8ac2-20ec90d0aa43.roa File: c229c308-822f-45de-8ac2-20ec90d0aa43.roa (raw, json) Hash identifier: RNudQj9e93EMJKqkI2tWVyQ8A9ZM26QBXf3wHbJUabg= Subject key identifier: 63:E5:41:6A:8E:7E:6D:B1:F5:9E:BE:77:F4:A7:72:3E:0F:FB:BE:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D50A1A630CE4FDE5CC7FA981D6F3DD7941DB4FA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c229c308-822f-45de-8ac2-20ec90d0aa43.roa Signing time: Tue 05 May 2026 00:40:33 +0000 ROA not before: Tue 05 May 2026 00:40:33 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fee:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:50:a1:a6:30:ce:4f:de:5c:c7:fa:98:1d:6f:3d:d7:94:1d:b4:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:40:33 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=e888994eed8ac47030ba72053953949cd97b66bd8a1451376cd57557a9287b6d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c2:17:76:aa:7f:db:89:c6:8e:1f:18:84:45: 2f:f7:c8:41:41:f5:00:0b:f9:7e:f9:6c:43:98:db: 0f:83:59:a5:70:c1:cd:11:24:94:c6:85:e8:f5:2c: a3:ca:a2:1a:4c:4b:fc:2b:1a:57:cb:c7:13:1e:2a: 31:81:8e:fe:51:27:9a:d6:ca:4b:7b:63:ea:2b:9e: a6:c9:52:f0:5a:60:3a:81:30:ae:12:fa:11:61:98: f3:46:f2:de:9c:a8:fe:b1:01:ae:b8:be:c5:60:e9: 9e:06:6b:a8:37:a8:97:de:1a:b6:7f:3e:b2:d7:52: ee:07:1a:41:e4:aa:85:dc:d7:61:f2:c3:ed:2b:38: ac:e3:dc:d8:09:96:fd:7c:75:10:ab:a8:18:c4:43: 56:ea:d9:55:f9:da:bb:3b:fc:d5:c0:68:bb:9d:cd: c1:3f:47:c1:34:06:37:c7:ae:f3:ba:2e:3a:c9:7c: c8:bd:d6:6e:fc:c4:b4:b6:a2:68:5c:9f:73:64:bb: 94:00:59:6f:b9:6f:26:42:d5:fa:17:b4:aa:da:b0: 2a:9a:62:70:6f:5e:6a:35:35:ae:55:7c:51:ea:71: fc:69:5e:f2:5e:2b:99:e0:07:46:ea:98:68:bb:c3: 11:a2:4f:a9:3e:ee:37:75:cb:73:3d:9b:99:f6:d0: 6a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E5:41:6A:8E:7E:6D:B1:F5:9E:BE:77:F4:A7:72:3E:0F:FB:BE:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c229c308-822f-45de-8ac2-20ec90d0aa43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fee:2000::/40 Signature Algorithm: sha256WithRSAEncryption 9e:4e:d6:f2:02:07:99:41:51:d7:9c:1d:95:fa:4e:ba:72:eb: dc:0a:b6:ce:de:a5:7b:ee:06:80:a9:23:a5:bf:42:4d:53:26: ac:8b:d7:4f:3b:04:78:79:00:91:10:97:b9:27:20:6b:07:cc: 49:7b:9a:cb:db:c1:a1:6e:24:d1:ce:32:77:a7:5d:9d:5c:26: 68:1d:a4:c8:fc:83:f7:05:f9:12:5a:30:18:4e:80:21:dc:37: 91:e1:c8:8c:97:9a:b9:70:03:4c:fc:e0:b4:3d:cf:35:de:17: 6e:45:93:e8:db:de:fe:e7:d4:3a:cc:07:6b:5c:68:35:86:1e: 36:ec:00:66:8c:0c:a4:c7:e0:3d:2c:eb:58:1f:71:67:0d:d5: 67:14:e5:43:2b:47:52:6d:e6:cc:d5:b0:93:d4:6c:99:40:71: 7b:fd:6a:8d:ea:cd:c8:bb:30:a7:05:69:28:4b:04:08:5f:67: 25:27:37:6b:6b:08:37:2d:e3:91:3a:fd:1f:c6:81:a0:d1:a1: 76:03:45:72:ef:33:52:64:bf:d0:9e:8a:43:e8:e0:2f:c8:d8: 72:f8:9c:f8:c4:38:ba:47:6e:da:cb:ca:07:58:77:d3:47:f6: 5f:2d:fc:b4:47:a5:44:25:0d:da:cd:e7:07:60:7a:86:82:69: 06:f9:1a:97 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDVChpjDOT95cx/qYHW8915QdtPowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA0MDMzWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlODg4OTk0ZWVkOGFjNDcwMzBiYTcyMDUzOTUzOTQ5Y2Q5 N2I2NmJkOGExNDUxMzc2Y2Q1NzU1N2E5Mjg3YjZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXwhd2qn/bicaOHxiERS/3yEFB9QAL+X75bEOY2w+DWaVw wc0RJJTGhej1LKPKohpMS/wrGlfLxxMeKjGBjv5RJ5rWykt7Y+ornqbJUvBaYDqB MK4S+hFhmPNG8t6cqP6xAa64vsVg6Z4Ga6g3qJfeGrZ/PrLXUu4HGkHkqoXc12Hy w+0rOKzj3NgJlv18dRCrqBjEQ1bq2VX52rs7/NXAaLudzcE/R8E0BjfHrvO6LjrJ fMi91m78xLS2omhcn3Nku5QAWW+5byZC1foXtKrasCqaYnBvXmo1Na5VfFHqcfxp XvJeK5ngB0bqmGi7wxGiT6k+7jd1y3M9m5n20GqzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUY+VBao5+bbH1nr539KdyPg/7vtwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMjljMzA4LTgyMmYtNDVkZS04YWMyLTIwZWM5MGQwYWE0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/uIDANBgkqhkiG9w0BAQsFAAOCAQEAnk7W8gIHmUFR15wdlfpOunLr 3Aq2zt6le+4GgKkjpb9CTVMmrIvXTzsEeHkAkRCXuScgawfMSXuay9vBoW4k0c4y d6ddnVwmaB2kyPyD9wX5ElowGE6AIdw3keHIjJeauXADTPzgtD3PNd4XbkWT6Nve /ufUOswHa1xoNYYeNuwAZowMpMfgPSzrWB9xZw3VZxTlQytHUm3mzNWwk9RsmUBx e/1qjerNyLswpwVpKEsECF9nJSc3a2sINy3jkTr9H8aBoNGhdgNFcu8zUmS/0J6K Q+jgL8jYcvic+MQ4ukdu2svKB1h300f2Xy38tEelRCUN2s3nB2B6hoJpBvkalw== -----END CERTIFICATE-----Generated at Tue May 12 21:54:55 2026 by rpki-client