$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46c0be03-cc42-4491-b0cc-ccb850c58c62.roa File: 46c0be03-cc42-4491-b0cc-ccb850c58c62.roa (raw, json) Hash identifier: ouVWCjPSAHNgldIPbGC7eJVvI2xodRtZ+0HK38c1Ios= Subject key identifier: 2F:30:84:F4:B7:3A:CE:10:3C:5D:F3:09:6B:0E:08:19:D4:F8:A2:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57B8F19500ACB74C28403DEE2BB31708C8877B7A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46c0be03-cc42-4491-b0cc-ccb850c58c62.roa Signing time: Fri 01 May 2026 01:00:58 +0000 ROA not before: Fri 01 May 2026 01:00:58 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8285::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b8:f1:95:00:ac:b7:4c:28:40:3d:ee:2b:b3:17:08:c8:87:7b:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 01:00:58 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=e8bcc50af7545f93a2c0c2eedf1f98654e6484e33d18883d3722d95598124b63, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:3c:f4:85:4e:fd:57:04:6d:38:80:04:be:3e: bd:2b:db:38:25:dd:07:bd:e2:46:a5:de:62:05:f1: 0b:15:e5:d6:2b:ee:19:af:81:39:7f:79:89:d7:aa: 56:c0:7b:8b:0a:4b:ab:c1:9d:eb:6c:19:5b:9a:94: bf:20:27:57:0b:b8:33:24:a7:eb:2d:dd:e6:b0:d8: b8:4c:0a:5a:47:49:60:ba:b6:91:70:ee:00:c2:30: de:50:b2:73:70:df:cb:6c:07:1a:7e:df:3e:cd:06: 10:6f:02:cf:87:56:23:53:75:6c:2a:1a:ea:b0:93: 46:a8:39:84:b6:5c:57:4c:ea:ee:24:fe:ca:85:c5: b9:81:fc:d4:91:2e:d3:8d:4d:0f:72:0f:74:0c:78: 9a:04:af:da:d4:e0:be:e9:d9:7c:59:af:fc:98:89: 1e:b7:71:3f:20:80:3f:b9:94:b2:13:4a:49:f1:c4: 6b:79:cd:fd:51:e5:86:e6:96:c2:b8:21:d6:2b:55: 62:26:6a:75:1b:a5:ff:56:73:9f:30:ad:1b:08:73: f3:9e:dc:e0:d3:fe:fe:d5:d4:65:49:ae:85:fc:94: 0d:95:61:74:71:2d:d6:92:6c:23:61:e9:fa:44:00: 51:ef:6e:ea:00:af:2f:25:42:72:d7:c5:ba:6e:2e: 16:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:30:84:F4:B7:3A:CE:10:3C:5D:F3:09:6B:0E:08:19:D4:F8:A2:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46c0be03-cc42-4491-b0cc-ccb850c58c62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8285::/48 Signature Algorithm: sha256WithRSAEncryption 1c:27:07:d4:ed:31:54:02:83:38:35:be:69:13:d1:8e:91:8a: bb:61:f6:2f:3e:69:3a:89:a8:7a:31:23:47:cd:a2:2c:2d:c4: 69:d2:a2:ff:38:b3:7d:18:2c:1c:0c:1d:7b:57:3e:b3:14:9d: 19:b7:0f:ef:18:a0:40:33:bd:15:ee:c7:05:46:1a:0a:60:78: bb:11:8d:fb:90:09:16:75:4b:59:80:b6:44:3c:39:44:43:92: 3c:f7:8b:2d:a1:d7:1e:54:ec:5c:36:97:d6:25:2b:78:d5:f9: 65:43:92:86:90:dc:ee:11:60:ca:c1:2c:79:e0:46:30:e9:37: 3a:72:6b:1a:db:b3:75:45:c9:3a:49:fe:2c:51:2f:e5:e8:f3: 08:ab:ea:66:1f:52:a1:7f:92:2e:05:15:05:f1:da:99:fb:4d: fe:80:46:12:20:ca:3f:a4:8a:6f:df:53:99:36:be:28:d9:fd: ec:34:6c:e9:d1:ee:3c:97:50:b2:72:6f:82:1c:e4:fb:86:52: 2d:bd:24:ac:30:33:13:43:3c:52:73:81:01:fe:61:e7:4a:f9: d8:3b:87:34:d6:63:ce:66:69:a8:31:4b:7b:be:de:58:9d:72: d9:15:e4:f1:4d:61:ff:fd:c0:14:c8:e7:27:b0:07:b3:2f:92: d9:ec:82:50 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUV7jxlQCst0woQD3uK7MXCMiHe3owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDEwMDU4WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOGJjYzUwYWY3NTQ1ZjkzYTJjMGMyZWVkZjFmOTg2NTRl NjQ4NGUzM2QxODg4M2QzNzIyZDk1NTk4MTI0YjYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYPPSFTv1XBG04gAS+Pr0r2zgl3Qe94kal3mIF8QsV5dYr 7hmvgTl/eYnXqlbAe4sKS6vBnetsGVualL8gJ1cLuDMkp+st3eaw2LhMClpHSWC6 tpFw7gDCMN5QsnNw38tsBxp+3z7NBhBvAs+HViNTdWwqGuqwk0aoOYS2XFdM6u4k /sqFxbmB/NSRLtONTQ9yD3QMeJoEr9rU4L7p2XxZr/yYiR63cT8ggD+5lLITSknx xGt5zf1R5YbmlsK4IdYrVWImanUbpf9Wc58wrRsIc/Oe3ODT/v7V1GVJroX8lA2V YXRxLdaSbCNh6fpEAFHvbuoAry8lQnLXxbpuLhbZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULzCE9Lc6zhA8XfMJaw4IGdT4ojYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ2YzBiZTAzLWNjNDItNDQ5MS1iMGNjLWNjYjg1MGM1OGM2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9goUwDQYJKoZIhvcNAQELBQADggEBABwnB9TtMVQCgzg1vmkT0Y6R irth9i8+aTqJqHoxI0fNoiwtxGnSov84s30YLBwMHXtXPrMUnRm3D+8YoEAzvRXu xwVGGgpgeLsRjfuQCRZ1S1mAtkQ8OURDkjz3iy2h1x5U7Fw2l9YlK3jV+WVDkoaQ 3O4RYMrBLHngRjDpNzpyaxrbs3VFyTpJ/ixRL+Xo8wir6mYfUqF/ki4FFQXx2pn7 Tf6ARhIgyj+kim/fU5k2vijZ/ew0bOnR7jyXULJyb4Ic5PuGUi29JKwwMxNDPFJz gQH+YedK+dg7hzTWY85maagxS3u+3lidctkV5PFNYf/9wBTI5yewB7MvktnsglA= -----END CERTIFICATE-----Generated at Sun May 3 14:47:20 2026 by rpki-client