$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a9c8a5b-1079-49bc-993b-528e05bd4a24.roa File: 4a9c8a5b-1079-49bc-993b-528e05bd4a24.roa (raw, json) Hash identifier: 2Q8B7Yl9fTFpgu7B7f3zg6w6V6pW2ePvcsx6qHkfVXk= Subject key identifier: 25:58:02:56:E0:48:83:F9:8F:EE:07:27:E3:1F:07:C0:05:74:85:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25179358D20EBD95B535294F0B6D6FB34B5F7567 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a9c8a5b-1079-49bc-993b-528e05bd4a24.roa Signing time: Sat 02 May 2026 00:50:46 +0000 ROA not before: Sat 02 May 2026 00:50:46 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:17:93:58:d2:0e:bd:95:b5:35:29:4f:0b:6d:6f:b3:4b:5f:75:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:50:46 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=d3682a6a24118ab1dd5ae9c7423ac461b756ee4c8f3489636e9f6112b84e2461, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6d:a4:ef:98:11:a8:40:26:bf:64:9d:50:5f: fd:9b:67:42:26:6e:68:24:c5:69:24:67:d5:5a:a1: 3b:2e:e3:5b:0f:f9:e2:16:bd:b3:10:b6:70:91:9a: e5:19:ae:da:c1:a4:ae:d2:10:19:d7:89:09:85:4e: 37:51:28:ff:08:9b:41:99:62:fd:05:27:c8:52:53: 7d:b2:bf:e8:2b:b6:ed:fd:55:d2:ee:12:bd:ff:d2: a1:f2:9d:54:eb:75:aa:89:15:f2:9d:cd:71:f3:8d: cd:42:7e:b2:d3:e9:0d:11:ea:c6:54:6f:7f:00:f2: 9f:f1:64:bb:9c:95:a2:32:93:76:cb:10:8a:da:a1: e2:80:cc:d9:e6:8d:88:51:a6:d4:98:74:b1:9d:a6: 70:a5:b2:e7:d8:0a:ae:23:67:d5:e0:40:98:1e:5e: 04:ca:05:b7:30:d5:41:06:cb:39:4c:cc:ee:5b:05: bf:36:c5:b0:2a:be:f3:60:37:74:78:44:df:88:32: 52:f3:32:d5:14:78:6c:e2:96:4e:8f:d4:0c:ae:91: 49:47:95:16:df:ff:2c:e5:b2:a2:1f:4f:26:21:aa: 88:bd:c6:4a:8c:f4:ca:5f:85:1b:f0:30:f2:95:75: 83:69:ac:60:6b:cd:26:be:47:35:17:f3:4f:a7:ca: 84:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:58:02:56:E0:48:83:F9:8F:EE:07:27:E3:1F:07:C0:05:74:85:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a9c8a5b-1079-49bc-993b-528e05bd4a24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:8000::/39 Signature Algorithm: sha256WithRSAEncryption 67:77:38:1c:a4:42:ac:c7:49:48:bf:8b:6b:b0:89:ba:0c:1b: 52:f4:a1:8e:62:af:ba:6b:31:05:8f:1b:d0:d8:de:7a:25:69: f5:73:64:06:5e:04:6d:71:97:dc:13:17:00:7d:5d:0d:d2:bc: db:55:af:3e:35:e2:3e:0e:9d:df:62:c9:5e:a7:af:67:fe:61: 02:81:65:60:b2:e0:43:9d:16:80:f4:c9:6d:8c:37:be:ba:a7: d9:c2:b0:2f:de:bd:8e:75:8b:db:e3:3f:cc:09:4b:a3:f7:d4: 96:02:c9:72:26:ea:7b:45:6e:c5:5c:56:e5:f4:e4:91:1e:ac: b7:f2:c5:d4:03:47:ac:a0:01:b7:7d:54:87:74:32:96:72:e6: 18:f5:03:fa:16:b3:02:73:52:d2:03:77:27:9c:78:12:55:13: f6:af:5a:5e:74:8a:8b:52:85:cf:68:ef:c2:ee:10:46:e4:25: 50:79:23:d6:1c:48:f9:ca:c3:52:fc:fc:ac:c7:07:9f:c2:b2: 82:39:e5:df:08:18:1a:cc:bd:52:d1:9e:39:b8:43:cf:b6:56: 55:8f:6e:0d:6d:dd:93:17:87:02:9e:0b:30:8a:39:1a:99:25: 45:4d:32:dc:07:74:68:9c:bc:98:2e:bb:9f:ba:16:c3:be:5e: 96:70:dd:38 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJReTWNIOvZW1NSlPC21vs0tfdWcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAyMDA1MDQ2WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzY4MmE2YTI0MTE4YWIxZGQ1YWU5Yzc0MjNhYzQ2MWI3 NTZlZTRjOGYzNDg5NjM2ZTlmNjExMmI4NGUyNDYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1baTvmBGoQCa/ZJ1QX/2bZ0ImbmgkxWkkZ9VaoTsu41sP +eIWvbMQtnCRmuUZrtrBpK7SEBnXiQmFTjdRKP8Im0GZYv0FJ8hSU32yv+grtu39 VdLuEr3/0qHynVTrdaqJFfKdzXHzjc1CfrLT6Q0R6sZUb38A8p/xZLuclaIyk3bL EIraoeKAzNnmjYhRptSYdLGdpnClsufYCq4jZ9XgQJgeXgTKBbcw1UEGyzlMzO5b Bb82xbAqvvNgN3R4RN+IMlLzMtUUeGzilk6P1AyukUlHlRbf/yzlsqIfTyYhqoi9 xkqM9MpfhRvwMPKVdYNprGBrzSa+RzUX80+nyoQtAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUJVgCVuBIg/mP7gcn4x8HwAV0hTEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhOWM4YTViLTEwNzktNDliYy05OTNiLTUyOGUwNWJkNGEyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/ygDANBgkqhkiG9w0BAQsFAAOCAQEAZ3c4HKRCrMdJSL+La7CJugwb UvShjmKvumsxBY8b0NjeeiVp9XNkBl4EbXGX3BMXAH1dDdK821WvPjXiPg6d32LJ XqevZ/5hAoFlYLLgQ50WgPTJbYw3vrqn2cKwL969jnWL2+M/zAlLo/fUlgLJcibq e0VuxVxW5fTkkR6st/LF1ANHrKABt31Uh3QylnLmGPUD+hazAnNS0gN3J5x4ElUT 9q9aXnSKi1KFz2jvwu4QRuQlUHkj1hxI+crDUvz8rMcHn8Kygjnl3wgYGsy9UtGe ObhDz7ZWVY9uDW3dkxeHAp4LMIo5GpklRU0y3Ad0aJy8mC67n7oWw75elnDdOA== -----END CERTIFICATE-----Generated at Sun May 3 14:47:01 2026 by rpki-client