$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf99f295-53e6-4f75-8147-bd9a959935ff.roa File: cf99f295-53e6-4f75-8147-bd9a959935ff.roa (raw, json) Hash identifier: hBxpC81bx/1u5uxJzAVd8crywHCSWQiEzwV+iIgEYpk= Subject key identifier: 22:16:5A:8B:78:18:B5:DE:6D:1B:26:CF:83:B0:61:8D:F7:E5:E8:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02AB154E05C147ACF185DAC58533CABAEB647671 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf99f295-53e6-4f75-8147-bd9a959935ff.roa Signing time: Tue 05 May 2026 00:40:03 +0000 ROA not before: Tue 05 May 2026 00:40:03 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb9:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ab:15:4e:05:c1:47:ac:f1:85:da:c5:85:33:ca:ba:eb:64:76:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:40:03 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=56fa0a5d118cbd093e97ad5f90cafbd48471692cf7ce8ba8e6cb889c715e7565, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0a:40:3a:e3:89:ec:fa:00:43:85:25:c0:ab: 1d:3f:a2:52:0d:89:7b:e6:a9:a5:07:d8:ab:ab:cf: 2f:fc:0f:bc:28:80:d0:48:fb:9a:99:01:36:0f:af: 78:75:4c:4a:eb:53:ae:43:33:7f:aa:e4:1b:3c:a5: 6e:28:79:1f:b9:bc:52:ed:35:17:33:26:a0:88:ed: 9a:00:6e:99:f6:c5:23:a4:1b:bd:c4:22:b2:3b:3b: 0f:73:18:11:92:ac:30:1f:3e:bd:b9:24:10:58:d8: c9:54:a4:53:74:b3:f8:b5:7c:c8:b4:a5:6b:36:a8: ac:c0:64:70:eb:10:22:07:d2:26:3c:74:5e:9f:4a: 3c:49:27:ba:31:36:4e:03:22:0c:19:4f:a3:4f:f2: 96:17:4a:7f:68:79:97:f3:d3:9d:7c:4e:10:f6:99: ea:d4:80:cb:df:f3:11:89:f6:db:ad:d0:d7:8e:d9: 6c:79:7e:12:ef:5a:df:3c:83:ed:e7:d2:05:36:25: 5a:d0:a4:2b:63:37:0c:29:0d:a1:1c:fe:c8:12:b7: 3c:13:6a:ee:91:8c:31:11:95:f7:a0:7a:6f:19:4a: 83:4b:e0:7a:17:96:a4:a2:96:6c:f1:0a:6d:f0:db: f6:bc:85:a3:4f:99:ea:32:b1:2e:cc:49:d7:be:83: f2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:16:5A:8B:78:18:B5:DE:6D:1B:26:CF:83:B0:61:8D:F7:E5:E8:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf99f295-53e6-4f75-8147-bd9a959935ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:1000::/40 Signature Algorithm: sha256WithRSAEncryption 64:9c:bc:41:19:58:0e:c3:05:fa:1a:41:e5:b3:1b:ef:f1:72: 4e:f6:64:2d:e5:5a:c7:6a:36:ef:a7:07:2d:0e:94:2e:f0:78: dc:1d:35:3c:30:34:6e:d0:9b:b5:68:bb:2b:51:30:62:52:cb: d9:f0:14:81:2b:ca:3e:28:5e:c9:37:59:6d:9d:99:4c:36:62: 2a:e2:e4:99:6a:2a:71:73:08:0c:50:f6:66:1f:c5:1d:d7:82: f4:af:14:48:76:15:e0:52:f1:e1:ab:5b:4d:1c:aa:91:b2:ce: e2:7d:3d:38:00:9d:cd:91:f4:a0:cd:68:01:5d:c3:c9:1a:09: 11:65:9c:eb:2e:75:d1:60:8e:38:a8:8b:87:ef:cf:5f:a7:7a: 99:05:c3:d8:9e:c5:cb:a8:d1:9b:3b:69:f3:eb:a5:2f:56:48: 42:3e:07:37:51:54:1c:01:3d:09:08:11:3b:cb:7f:87:57:f3: 3a:7f:5c:72:f8:c1:dc:a5:cf:26:82:f4:87:eb:1a:7b:91:c5: 2f:b6:d2:76:35:af:2f:5c:40:cc:26:10:6c:e8:59:8a:41:a0: c4:91:30:4c:9a:dc:bd:c0:c9:7e:59:3a:90:5c:d9:e6:54:cc: 5c:03:f3:84:0e:6b:ce:6e:b7:b5:21:5a:78:f9:0b:fe:0d:77: ca:d0:95:2f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAqsVTgXBR6zxhdrFhTPKuutkdnEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA0MDAzWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NmZhMGE1ZDExOGNiZDA5M2U5N2FkNWY5MGNhZmJkNDg0 NzE2OTJjZjdjZThiYThlNmNiODg5YzcxNWU3NTY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMCkA644ns+gBDhSXAqx0/olINiXvmqaUH2Kurzy/8D7wo gNBI+5qZATYPr3h1TErrU65DM3+q5Bs8pW4oeR+5vFLtNRczJqCI7ZoAbpn2xSOk G73EIrI7Ow9zGBGSrDAfPr25JBBY2MlUpFN0s/i1fMi0pWs2qKzAZHDrECIH0iY8 dF6fSjxJJ7oxNk4DIgwZT6NP8pYXSn9oeZfz0518ThD2merUgMvf8xGJ9tut0NeO 2Wx5fhLvWt88g+3n0gU2JVrQpCtjNwwpDaEc/sgStzwTau6RjDERlfegem8ZSoNL 4HoXlqSilmzxCm3w2/a8haNPmeoysS7MSde+g/IpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUIhZai3gYtd5tGybPg7Bhjffl6IAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmOTlmMjk1LTUzZTYtNGY3NS04MTQ3LWJkOWE5NTk5MzVmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+5EDANBgkqhkiG9w0BAQsFAAOCAQEAZJy8QRlYDsMF+hpB5bMb7/Fy TvZkLeVax2o276cHLQ6ULvB43B01PDA0btCbtWi7K1EwYlLL2fAUgSvKPiheyTdZ bZ2ZTDZiKuLkmWoqcXMIDFD2Zh/FHdeC9K8USHYV4FLx4atbTRyqkbLO4n09OACd zZH0oM1oAV3DyRoJEWWc6y510WCOOKiLh+/PX6d6mQXD2J7Fy6jRmztp8+ulL1ZI Qj4HN1FUHAE9CQgRO8t/h1fzOn9ccvjB3KXPJoL0h+sae5HFL7bSdjWvL1xAzCYQ bOhZikGgxJEwTJrcvcDJflk6kFzZ5lTMXAPzhA5rzm63tSFaePkL/g13ytCVLw== -----END CERTIFICATE-----Generated at Wed May 13 08:16:52 2026 by rpki-client