$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d135eb9-4879-4568-98c1-f37c5449cc5a.roa File: 3d135eb9-4879-4568-98c1-f37c5449cc5a.roa (raw, json) Hash identifier: SU3jrGcZs4kv8zH54fLce84ItRBio8mgr3pHLj3zyHw= Subject key identifier: B0:98:A4:8F:BF:04:64:54:86:6E:85:C0:5A:47:30:E1:A2:C3:E7:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 638CD31CDDCCF7AF924C6ABD63E8A91CE73D7E54 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d135eb9-4879-4568-98c1-f37c5449cc5a.roa Signing time: Fri 01 May 2026 00:21:01 +0000 ROA not before: Fri 01 May 2026 00:21:01 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:818f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:8c:d3:1c:dd:cc:f7:af:92:4c:6a:bd:63:e8:a9:1c:e7:3d:7e:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:21:01 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=5668ed7dc1581bbbb520a5689387b759e748b468a8cb49ddd13cde330f1eb51c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e6:de:01:5d:57:ff:a6:9e:e7:99:ec:2f:30: 60:78:26:a3:94:f7:85:8d:4c:9e:47:c4:ef:6a:22: 75:4f:73:db:18:25:5a:a5:6d:ff:5e:16:cf:a5:7b: 41:8b:9a:18:c6:cc:96:4f:c5:9d:96:48:f3:a9:63: 94:cd:62:a4:91:45:73:fb:35:59:af:87:2c:16:bf: 70:c7:08:ef:c7:30:c8:b1:dc:56:54:9d:1c:ed:2d: c4:7f:2b:15:9b:e1:1e:a2:73:d1:0b:77:be:0b:94: 2c:75:db:43:68:b2:f7:5a:65:0d:23:48:52:02:7b: 5b:e8:08:4c:1d:0f:0f:e1:32:b8:95:42:fb:36:a6: 08:ff:17:01:13:41:69:27:bd:37:b2:b6:58:ca:52: 14:d3:87:ff:28:b6:45:b2:3e:a1:20:dc:c8:47:c5: 59:66:31:43:1b:35:8a:10:49:cc:24:7f:8f:30:0f: 0e:c7:da:35:52:53:3a:09:a0:d9:7a:ff:c1:6e:a3: e0:2b:d3:21:c9:74:1c:d0:cc:ed:e1:c2:f1:c0:84: e1:6f:9b:52:0b:d0:5c:6f:52:aa:4b:7b:5e:4e:63: 84:32:f2:6e:77:6e:1a:46:82:0a:04:c4:d4:42:3d: e9:40:c3:2a:cf:d9:50:9a:d6:0e:61:7b:3d:1b:7a: ea:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:98:A4:8F:BF:04:64:54:86:6E:85:C0:5A:47:30:E1:A2:C3:E7:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d135eb9-4879-4568-98c1-f37c5449cc5a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:818f::/48 Signature Algorithm: sha256WithRSAEncryption 06:f9:81:47:a9:45:95:ba:0c:09:19:ee:03:e7:d9:9d:7b:1e: a5:9e:27:fb:eb:f2:17:c4:10:fd:eb:e2:52:af:a9:8a:da:25: 7a:0e:e6:60:71:80:5c:a9:09:b8:df:96:2f:89:c4:ea:2a:0e: db:38:bb:ce:e1:88:85:48:fe:50:99:19:df:3f:a1:9f:f7:40: 0a:a7:e9:c7:16:77:2f:bc:cd:97:a3:84:39:72:0c:9c:df:be: e6:e5:30:b1:d9:8f:8f:b5:65:1e:f2:e6:09:23:90:0c:7a:92: 54:8f:a9:4a:d9:2a:c6:c4:87:df:9f:66:88:47:87:59:23:a4: 3a:64:12:ff:46:d3:dc:69:46:6c:8b:5d:7b:03:fd:d2:9f:a5: 7c:25:18:d0:35:a9:97:c3:6b:c7:17:32:77:2b:4a:95:c1:8f: 4b:c2:cc:47:3e:a1:1a:c7:93:37:b4:ce:ae:ce:52:60:9d:e0: 17:29:06:83:d6:a9:65:0a:d9:0c:f0:7a:f8:c4:85:8c:2b:1c: bb:06:bb:46:88:72:0c:45:bf:27:8c:e1:f7:bb:fd:5d:ce:67: 2e:4b:cb:8f:fa:b6:9c:79:8b:ed:f8:89:29:5b:28:67:b6:43: 3d:41:24:ff:b0:ec:69:4b:d0:32:b0:98:93:50:39:ae:fb:df: ad:cc:2f:49 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUY4zTHN3M96+STGq9Y+ipHOc9flQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAyMTAxWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjY4ZWQ3ZGMxNTgxYmJiYjUyMGE1Njg5Mzg3Yjc1OWU3 NDhiNDY4YThjYjQ5ZGRkMTNjZGUzMzBmMWViNTFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM5t4BXVf/pp7nmewvMGB4JqOU94WNTJ5HxO9qInVPc9sY JVqlbf9eFs+le0GLmhjGzJZPxZ2WSPOpY5TNYqSRRXP7NVmvhywWv3DHCO/HMMix 3FZUnRztLcR/KxWb4R6ic9ELd74LlCx120NosvdaZQ0jSFICe1voCEwdDw/hMriV Qvs2pgj/FwETQWknvTeytljKUhTTh/8otkWyPqEg3MhHxVlmMUMbNYoQScwkf48w Dw7H2jVSUzoJoNl6/8Fuo+Ar0yHJdBzQzO3hwvHAhOFvm1IL0FxvUqpLe15OY4Qy 8m53bhpGggoExNRCPelAwyrP2VCa1g5hez0beurXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsJikj78EZFSGboXAWkcw4aLD5yowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkMTM1ZWI5LTQ4NzktNDU2OC05OGMxLWYzN2M1NDQ5Y2M1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gY8wDQYJKoZIhvcNAQELBQADggEBAAb5gUepRZW6DAkZ7gPn2Z17 HqWeJ/vr8hfEEP3r4lKvqYraJXoO5mBxgFypCbjfli+JxOoqDts4u87hiIVI/lCZ Gd8/oZ/3QAqn6ccWdy+8zZejhDlyDJzfvublMLHZj4+1ZR7y5gkjkAx6klSPqUrZ KsbEh9+fZohHh1kjpDpkEv9G09xpRmyLXXsD/dKfpXwlGNA1qZfDa8cXMncrSpXB j0vCzEc+oRrHkze0zq7OUmCd4BcpBoPWqWUK2QzwevjEhYwrHLsGu0aIcgxFvyeM 4fe7/V3OZy5Ly4/6tpx5i+34iSlbKGe2Qz1BJP+w7GlL0DKwmJNQOa77363ML0k= -----END CERTIFICATE-----Generated at Sun May 3 14:47:44 2026 by rpki-client