$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/073eb97d-e872-4ff0-ad8a-a334146b45e0.roa File: 073eb97d-e872-4ff0-ad8a-a334146b45e0.roa (raw, json) Hash identifier: jiBt3xVveTHAllpowWgQkGWH0kVavoyIDsiOKU1y7pE= Subject key identifier: 2E:15:D4:D9:CD:66:19:29:F6:63:5A:FF:B3:18:05:7C:11:51:98:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 471408C7FDEC4FAE29A714B539DA2458EDEA4165 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/073eb97d-e872-4ff0-ad8a-a334146b45e0.roa Signing time: Fri 01 May 2026 00:10:36 +0000 ROA not before: Fri 01 May 2026 00:10:36 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff9:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:14:08:c7:fd:ec:4f:ae:29:a7:14:b5:39:da:24:58:ed:ea:41:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:10:36 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=117e883e0bdd51a315a6537b2d29ffa98c35185661f88809d7cdfa0bf1e0fd17, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ca:2f:9d:48:fb:5c:b2:b0:0b:9b:8a:be:f5: 30:0c:f4:20:54:cc:ea:01:6c:09:17:bd:87:43:c3: db:b4:64:c9:fd:7e:c3:90:87:25:a1:66:2d:bc:da: ff:8b:3a:d6:5c:70:b7:83:d0:0d:89:19:2a:ed:2c: 9d:71:94:36:ef:14:f8:62:78:28:03:8c:33:be:89: 82:af:2f:55:14:cf:34:62:92:f8:a1:51:85:ae:83: 66:20:1d:a9:52:45:f6:1e:a1:2e:84:1d:20:92:39: 99:b5:bd:1d:e1:34:ec:2a:4e:e7:39:ae:e0:37:8b: 97:16:b8:fb:5c:19:38:50:dd:33:c5:64:7d:f3:62: 69:5e:35:56:33:cd:83:a9:36:0e:30:6e:fd:4b:88: db:37:f5:b9:42:af:ea:bc:80:c6:95:99:00:6f:9c: 1c:8a:e9:78:c9:08:10:09:67:b4:85:3a:6e:99:85: f0:46:a4:95:50:2a:58:f7:8a:68:71:f9:bc:cb:2f: 13:76:85:ac:8e:62:6c:ca:b7:0b:f2:0a:ed:f6:ca: b5:1c:45:ca:51:b9:4f:c7:f0:0f:8b:ad:31:21:20: 01:88:3d:37:fb:08:d5:39:5e:e2:b3:a3:2a:4e:cd: 2c:08:44:54:a3:a4:2a:57:00:66:b9:fd:62:4a:e5: c3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:15:D4:D9:CD:66:19:29:F6:63:5A:FF:B3:18:05:7C:11:51:98:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/073eb97d-e872-4ff0-ad8a-a334146b45e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff9:2000::/40 Signature Algorithm: sha256WithRSAEncryption 49:9d:49:23:e7:ff:4c:42:6b:45:2e:f0:b3:b6:41:2e:5e:f0: 0e:fc:e5:a4:2a:2d:7a:fd:bd:79:69:e4:e1:ae:a6:58:ab:de: 8c:53:a9:6d:3d:1b:f6:7a:e4:25:a9:2d:a6:4f:52:5d:49:b8: b0:0c:b2:29:36:ad:58:38:15:bf:f9:ab:63:28:b3:03:6c:f5: de:83:76:a3:a3:7d:f8:c9:21:c6:42:2d:95:3d:63:d5:f2:ef: ca:bf:bb:59:29:92:86:cb:fa:da:1f:1e:8a:d7:dd:15:ec:f9: 51:0c:77:77:59:0a:95:9b:43:f4:3f:6f:19:05:73:59:c1:16: f0:79:ef:7f:de:14:cb:db:e0:57:96:b0:74:07:b5:aa:e8:3f: 78:05:7f:a0:35:d7:c1:6f:28:97:7a:6e:fd:fb:9b:7c:a0:5f: 2b:19:22:0a:ec:d9:21:b0:fd:db:b0:40:1e:9b:f5:60:1a:be: 71:a5:48:88:8b:1c:34:eb:25:87:91:a9:ed:19:7d:7c:fe:43: 3a:e8:58:dd:a6:34:32:5c:d0:74:ca:73:f2:39:c2:33:99:9b: 4d:f2:4a:84:60:78:87:4b:c3:ea:12:59:21:68:5a:f1:0b:e5: 25:c5:53:10:3a:5d:27:f1:2b:d6:29:fb:17:4b:12:5a:fa:e4: 90:7f:57:ff -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURxQIx/3sT64ppxS1OdokWO3qQWUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAxMDM2WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTdlODgzZTBiZGQ1MWEzMTVhNjUzN2IyZDI5ZmZhOThj MzUxODU2NjFmODg4MDlkN2NkZmEwYmYxZTBmZDE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/yi+dSPtcsrALm4q+9TAM9CBUzOoBbAkXvYdDw9u0ZMn9 fsOQhyWhZi282v+LOtZccLeD0A2JGSrtLJ1xlDbvFPhieCgDjDO+iYKvL1UUzzRi kvihUYWug2YgHalSRfYeoS6EHSCSOZm1vR3hNOwqTuc5ruA3i5cWuPtcGThQ3TPF ZH3zYmleNVYzzYOpNg4wbv1LiNs39blCr+q8gMaVmQBvnByK6XjJCBAJZ7SFOm6Z hfBGpJVQKlj3imhx+bzLLxN2hayOYmzKtwvyCu32yrUcRcpRuU/H8A+LrTEhIAGI PTf7CNU5XuKzoypOzSwIRFSjpCpXAGa5/WJK5cM5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULhXU2c1mGSn2Y1r/sxgFfBFRmFIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3M2ViOTdkLWU4NzItNGZmMC1hZDhhLWEzMzQxNDZiNDVlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/5IDANBgkqhkiG9w0BAQsFAAOCAQEASZ1JI+f/TEJrRS7ws7ZBLl7w DvzlpCotev29eWnk4a6mWKvejFOpbT0b9nrkJaktpk9SXUm4sAyyKTatWDgVv/mr YyizA2z13oN2o6N9+MkhxkItlT1j1fLvyr+7WSmShsv62h8eitfdFez5UQx3d1kK lZtD9D9vGQVzWcEW8Hnvf94Uy9vgV5awdAe1qug/eAV/oDXXwW8ol3pu/fubfKBf KxkiCuzZIbD927BAHpv1YBq+caVIiIscNOslh5Gp7Rl9fP5DOuhY3aY0MlzQdMpz 8jnCM5mbTfJKhGB4h0vD6hJZIWha8QvlJcVTEDpdJ/Er1in7F0sSWvrkkH9X/w== -----END CERTIFICATE-----Generated at Sun May 3 14:44:59 2026 by rpki-client