$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a6e493f-275f-4a84-b751-a3051f88db2b.roa File: 1a6e493f-275f-4a84-b751-a3051f88db2b.roa (raw, json) Hash identifier: d6zEAF67ZP8Hn/DVdAH20bQjA/ksSCUjupQd6OFi1sE= Subject key identifier: E4:27:61:45:C2:8E:78:1D:89:86:A1:7B:9C:CC:F4:61:5E:FA:45:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42DA60BF80904BAEAC2652CAAC796B67BCA1654C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a6e493f-275f-4a84-b751-a3051f88db2b.roa Signing time: Wed 29 Apr 2026 00:00:45 +0000 ROA not before: Wed 29 Apr 2026 00:00:45 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fa0:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:da:60:bf:80:90:4b:ae:ac:26:52:ca:ac:79:6b:67:bc:a1:65:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:00:45 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=4bc73cb9faa81bc402a0fbd4c134608013a4c99dfaee0efa4179fc31860a658a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:70:58:1b:00:d7:ea:2c:7e:a4:7a:9f:a1:ad: 52:07:32:29:ff:ec:a6:5e:cd:d2:55:70:45:a5:8c: fc:12:73:d0:37:d8:64:47:ec:f0:22:ad:9c:8e:87: 5b:9c:fd:e8:2b:f5:92:69:00:4d:f9:5a:da:9c:b8: 82:cf:4c:11:63:1a:3c:46:be:42:66:10:98:b6:83: a4:43:5c:fd:8a:3c:d3:42:ca:3c:84:3e:06:89:e8: 29:6b:a1:fb:58:ae:0c:dd:04:4b:74:a4:ef:9c:f5: 85:6b:14:0f:39:9b:2a:de:1d:76:a4:e6:8a:ff:51: 42:ce:f7:f4:e3:4f:c4:f4:2a:90:67:21:c7:c7:83: 82:31:00:e8:e3:52:57:da:0e:52:dc:f3:96:c2:e3: 19:b1:98:bc:19:09:92:cd:82:47:2c:22:1d:67:02: e0:5b:02:97:fd:c8:1c:4f:c0:83:53:7c:cb:47:96: 59:8e:ce:e9:31:8f:2e:09:32:f2:17:a8:b8:7c:53: 25:4a:df:f3:40:1b:f1:04:a1:45:58:24:17:63:1f: 53:a4:bb:e2:d7:7d:fd:ca:57:91:fa:a5:fd:a1:5f: 4e:ba:85:cf:58:d1:ce:68:a2:e0:31:7d:23:03:1a: 88:6e:31:69:6c:d9:b5:2d:b7:19:d1:7d:8d:6d:6c: 69:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:27:61:45:C2:8E:78:1D:89:86:A1:7B:9C:CC:F4:61:5E:FA:45:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a6e493f-275f-4a84-b751-a3051f88db2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:2000::/40 Signature Algorithm: sha256WithRSAEncryption 60:fb:b7:2a:82:34:9e:c7:54:41:b2:19:ea:4b:ae:39:54:95: 5a:3f:6a:f0:55:fb:2c:6e:86:a2:61:fa:e9:40:9a:f7:ea:93: 21:69:ed:a5:62:c8:cc:8c:75:a7:45:97:62:2b:d9:18:46:1d: 7c:ce:af:71:7c:f1:df:7b:be:a3:e2:19:0b:4b:91:bd:17:48: a0:94:30:f2:c2:b3:e4:73:39:8a:ed:7e:c5:da:88:0d:87:8d: 55:59:b8:f8:c1:57:dc:9f:8e:aa:6c:b0:f7:08:fe:fa:c1:f6: f5:46:59:83:9f:37:ec:b7:fb:c1:05:1a:dd:cd:51:7e:e8:6c: 7f:be:a2:87:70:5c:cb:ce:4c:52:cd:52:b8:f1:f9:4d:2a:b6: f6:42:1c:ab:75:83:45:1a:0b:cc:b5:b5:8f:9a:f4:c6:d7:7a: db:0b:5c:21:79:3b:1e:f4:54:04:8e:02:00:12:19:b5:49:bb: 1f:86:bd:f1:c4:4c:49:d4:b4:33:de:5c:99:20:ae:67:70:db: 8e:29:16:8a:6e:5c:12:2f:20:aa:45:56:b6:61:95:00:a6:f3: c7:35:59:ed:18:3e:e3:c8:02:84:6f:c2:71:c6:94:34:85:0b: 51:4f:57:54:63:04:85:5a:60:a3:4a:e0:49:af:c2:54:ef:ac: a6:2d:dd:2a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQtpgv4CQS66sJlLKrHlrZ7yhZUwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAwMDQ1WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YmM3M2NiOWZhYTgxYmM0MDJhMGZiZDRjMTM0NjA4MDEz YTRjOTlkZmFlZTBlZmE0MTc5ZmMzMTg2MGE2NThhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfcFgbANfqLH6kep+hrVIHMin/7KZezdJVcEWljPwSc9A3 2GRH7PAirZyOh1uc/egr9ZJpAE35WtqcuILPTBFjGjxGvkJmEJi2g6RDXP2KPNNC yjyEPgaJ6ClroftYrgzdBEt0pO+c9YVrFA85myreHXak5or/UULO9/TjT8T0KpBn IcfHg4IxAOjjUlfaDlLc85bC4xmxmLwZCZLNgkcsIh1nAuBbApf9yBxPwINTfMtH llmOzukxjy4JMvIXqLh8UyVK3/NAG/EEoUVYJBdjH1Oku+LXff3KV5H6pf2hX066 hc9Y0c5oouAxfSMDGohuMWls2bUttxnRfY1tbGkhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5CdhRcKOeB2JhqF7nMz0YV76RXswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhNmU0OTNmLTI3NWYtNGE4NC1iNzUxLWEzMDUxZjg4ZGIyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+gIDANBgkqhkiG9w0BAQsFAAOCAQEAYPu3KoI0nsdUQbIZ6kuuOVSV Wj9q8FX7LG6GomH66UCa9+qTIWntpWLIzIx1p0WXYivZGEYdfM6vcXzx33u+o+IZ C0uRvRdIoJQw8sKz5HM5iu1+xdqIDYeNVVm4+MFX3J+Oqmyw9wj++sH29UZZg583 7Lf7wQUa3c1Rfuhsf76ih3Bcy85MUs1SuPH5TSq29kIcq3WDRRoLzLW1j5r0xtd6 2wtcIXk7HvRUBI4CABIZtUm7H4a98cRMSdS0M95cmSCuZ3DbjikWim5cEi8gqkVW tmGVAKbzxzVZ7Rg+48gChG/CccaUNIULUU9XVGMEhVpgo0rgSa/CVO+spi3dKg== -----END CERTIFICATE-----Generated at Sun May 3 14:46:49 2026 by rpki-client