$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbed3a5f-ab91-4d00-9617-65b88c24ab33.roa File: dbed3a5f-ab91-4d00-9617-65b88c24ab33.roa (raw, json) Hash identifier: Tso8jg1aUmGmOAMh8gjkvY545VK9LnX6lXzSmP36MEk= Subject key identifier: BD:9B:A0:6E:C6:DD:E2:74:88:AC:1B:E9:21:64:07:DE:88:66:31:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B23CD18635BF29251FB686C4D044F632B233D8C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbed3a5f-ab91-4d00-9617-65b88c24ab33.roa Signing time: Wed 06 May 2026 00:22:01 +0000 ROA not before: Wed 06 May 2026 00:22:01 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:23:cd:18:63:5b:f2:92:51:fb:68:6c:4d:04:4f:63:2b:23:3d:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:22:01 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=28b84f20e1f86bf3b7b117ac5ef860f3e6b9f54a4864ac57c60fb1ca22a39cb3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:44:14:3f:1f:e5:a1:5a:b8:82:93:59:26:3d: 4f:bd:41:dd:30:eb:c9:95:9b:62:44:c2:51:b5:cf: 3c:fa:70:b5:1e:f0:61:cc:8f:f8:5e:b1:f2:fc:80: e9:70:7a:09:52:21:45:e0:b9:ee:f5:18:83:14:b7: 20:37:16:29:e0:67:b8:0e:86:62:5e:aa:c8:e7:6b: af:09:e9:b4:07:f7:22:7f:bf:36:cb:3a:ee:0d:83: 4b:6a:c8:a9:c1:17:b5:6f:ea:68:ee:c0:0b:80:62: c7:ea:fb:da:05:41:36:a3:17:93:2a:3e:1c:98:19: 1f:30:36:a2:c5:d2:d3:4d:a2:41:6d:80:01:6b:d5: 6e:68:2e:f8:c4:52:b9:02:80:c2:21:9a:95:c5:99: 7a:1b:e2:3e:4a:14:e9:af:dd:cb:d3:ea:2a:ef:e0: 35:06:1c:e0:97:3a:0f:39:46:c5:b3:db:b7:92:24: 18:dc:79:fa:ca:f9:29:35:90:7a:ce:b5:be:b6:f6: b5:b8:1e:5f:b9:5b:25:37:ed:72:84:e0:97:bb:e9: ac:0a:6d:94:7c:a3:5a:77:5a:4c:65:e5:fb:a8:3c: d1:28:2b:da:a4:c1:52:ff:2b:99:78:56:6e:0f:15: 2e:a9:ca:5b:93:29:62:22:b2:c9:66:59:3e:b6:6a: fb:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:9B:A0:6E:C6:DD:E2:74:88:AC:1B:E9:21:64:07:DE:88:66:31:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbed3a5f-ab91-4d00-9617-65b88c24ab33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:a400::/40 Signature Algorithm: sha256WithRSAEncryption c6:3a:78:fb:c7:dd:32:18:60:6d:7d:93:73:4b:9b:be:15:65: d3:f4:00:cd:5d:a3:a5:38:3e:5f:07:6f:93:11:cc:00:43:68: 15:39:bb:e2:d4:b8:f4:ab:94:55:66:41:76:93:54:a7:16:e4: f4:ff:9b:d1:9a:02:4d:34:69:4c:7f:82:08:7f:f4:e5:30:21: c1:41:8a:a0:74:46:6a:95:0e:8b:56:c7:b7:21:65:b1:63:d0: 79:73:5e:a1:18:53:8e:5e:2f:0f:7a:35:25:89:c1:dd:08:62: b2:f5:cd:28:98:0e:1d:28:cb:0d:db:48:60:5d:ae:21:7e:07: 7f:e6:7e:c4:4e:f5:ab:d5:08:14:99:45:e0:42:0c:be:cd:80: 5b:c5:c7:4c:ef:bd:1e:49:bf:11:0c:2d:97:75:31:63:20:18: 5a:33:da:d5:38:4c:9e:ac:c7:e0:42:79:81:c8:1e:d3:a0:7c: 7b:37:51:33:05:6a:ed:1b:28:f0:21:fe:c2:9b:1e:81:4b:08: 26:e8:59:64:1d:e6:ee:7f:c3:e4:54:1c:60:ed:80:93:29:84: 8e:40:44:83:8e:4c:e1:e7:ee:2c:ec:c7:8c:43:0d:49:35:f7: 27:0f:91:5c:a6:d3:b1:0a:15:4c:ec:76:b3:ff:d4:a9:42:ed: e6:36:c0:3e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKyPNGGNb8pJR+2hsTQRPYysjPYwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAyMjAxWhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGI4NGYyMGUxZjg2YmYzYjdiMTE3YWM1ZWY4NjBmM2U2 YjlmNTRhNDg2NGFjNTdjNjBmYjFjYTIyYTM5Y2IzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkRBQ/H+WhWriCk1kmPU+9Qd0w68mVm2JEwlG1zzz6cLUe 8GHMj/hesfL8gOlweglSIUXgue71GIMUtyA3FingZ7gOhmJeqsjna68J6bQH9yJ/ vzbLOu4Ng0tqyKnBF7Vv6mjuwAuAYsfq+9oFQTajF5MqPhyYGR8wNqLF0tNNokFt gAFr1W5oLvjEUrkCgMIhmpXFmXob4j5KFOmv3cvT6irv4DUGHOCXOg85RsWz27eS JBjcefrK+Sk1kHrOtb629rW4Hl+5WyU37XKE4Je76awKbZR8o1p3Wkxl5fuoPNEo K9qkwVL/K5l4Vm4PFS6pyluTKWIisslmWT62avuNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvZugbsbd4nSIrBvpIWQH3ohmMd8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RiZWQzYTVmLWFiOTEtNGQwMC05NjE3LTY1Yjg4YzI0YWIzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gpDANBgkqhkiG9w0BAQsFAAOCAQEAxjp4+8fdMhhgbX2Tc0ubvhVl 0/QAzV2jpTg+XwdvkxHMAENoFTm74tS49KuUVWZBdpNUpxbk9P+b0ZoCTTRpTH+C CH/05TAhwUGKoHRGapUOi1bHtyFlsWPQeXNeoRhTjl4vD3o1JYnB3QhisvXNKJgO HSjLDdtIYF2uIX4Hf+Z+xE71q9UIFJlF4EIMvs2AW8XHTO+9Hkm/EQwtl3UxYyAY WjPa1ThMnqzH4EJ5gcge06B8ezdRMwVq7Rso8CH+wpsegUsIJuhZZB3m7n/D5FQc YO2AkymEjkBEg45M4efuLOzHjEMNSTX3Jw+RXKbTsQoVTOx2s//UqULt5jbAPg== -----END CERTIFICATE-----Generated at Wed May 13 01:20:20 2026 by rpki-client