$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5752ffaa-9565-4fe4-90d6-617594e92fe1.roa File: 5752ffaa-9565-4fe4-90d6-617594e92fe1.roa (raw, json) Hash identifier: yrOUYReTZyg1els4ECKhfRBnrMho8w1vUBw45fqa/AE= Subject key identifier: B4:9F:A9:E9:D6:FE:D7:2A:43:6F:C5:DA:1E:C2:7D:04:78:8B:7E:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29F283CCED800BF04100C16195BE3B444DF6C233 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5752ffaa-9565-4fe4-90d6-617594e92fe1.roa Signing time: Fri 01 May 2026 01:00:33 +0000 ROA not before: Fri 01 May 2026 01:00:33 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:f2:83:cc:ed:80:0b:f0:41:00:c1:61:95:be:3b:44:4d:f6:c2:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 01:00:33 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=2fbae708664bc6eb27c9fda2b58eaa1cae1e77e5eb3f6b9c7b147d44c1985619, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c7:e4:9a:9a:8a:40:49:94:a8:ef:94:62:20: 9b:16:fb:91:a1:a4:8c:2e:b8:59:70:bf:e6:7a:92: fd:a6:74:ca:8d:61:8f:bf:88:e8:77:08:04:57:ca: 43:5a:26:b8:f7:96:0b:9c:4f:70:c6:06:23:72:34: c1:34:be:cd:78:d9:98:f0:45:90:2c:ff:6f:32:e4: 41:4b:48:65:59:3a:e0:81:98:11:9b:84:17:6c:7f: f9:c8:ef:93:93:97:f6:30:f9:cd:14:59:8b:f7:e7: a0:5d:dd:36:0e:7e:dd:72:c5:48:8d:9b:5d:1b:8c: 01:4f:20:03:64:a3:7e:b5:4a:d1:c1:11:be:a6:a1: a3:83:a7:d3:17:6a:fc:45:5c:69:a2:6d:aa:d9:dd: dc:12:a6:c5:ea:3e:a6:79:1c:5b:67:91:ee:b0:a1: 5e:9c:eb:ca:e2:7d:5c:77:d1:11:61:2b:d7:ed:2e: 38:fc:41:61:21:89:45:0d:3d:86:71:1a:f6:32:b0: 2c:db:51:fd:ef:36:2e:73:e8:b0:83:82:bf:8a:d6: 3a:ba:b9:8c:98:7e:47:52:90:db:b3:0b:29:4f:69: 26:94:df:97:a7:64:7e:64:47:6e:e5:e1:bb:25:0f: 2c:b2:07:f6:23:52:5b:eb:af:53:b8:7e:2b:3a:9d: ee:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:9F:A9:E9:D6:FE:D7:2A:43:6F:C5:DA:1E:C2:7D:04:78:8B:7E:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5752ffaa-9565-4fe4-90d6-617594e92fe1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:c000::/40 Signature Algorithm: sha256WithRSAEncryption 1f:a0:d3:f6:7a:b1:d8:71:cd:9d:fa:ad:5d:ce:ac:21:bf:a6: ad:8d:0c:76:aa:6f:0f:6f:66:e4:80:bc:ee:1c:e6:3c:c5:34: df:9a:93:ea:54:3f:65:96:e9:52:3f:45:af:53:13:6d:09:67: 40:28:05:0c:f7:00:fd:f3:0c:14:bd:25:91:4f:92:6c:26:f6: 66:a7:00:87:2c:25:51:a5:cf:7b:98:13:9c:b9:30:d3:2d:fe: bb:da:e2:48:4f:5a:51:43:43:33:fc:37:03:e3:ee:96:db:e0: 2a:59:75:f2:30:68:9b:c0:9e:68:61:4e:f9:9f:56:62:98:40: c1:13:59:81:d0:c5:11:fb:14:10:c5:27:f4:b5:86:c6:8e:06: 5f:52:f1:27:fe:0a:61:e2:a2:ef:dd:32:26:28:86:01:11:9a: 70:92:14:dd:17:00:40:62:a9:b4:d0:50:43:71:d6:56:dc:8d: 2a:9d:f9:0c:48:cb:9f:7a:f6:a3:b8:cf:95:b6:0a:03:b0:0f: d8:5f:79:7c:a2:b3:df:c4:af:26:99:08:4d:8a:e2:65:30:11: 8e:7c:9d:ad:1a:14:57:16:a9:1d:cb:f1:bf:0b:63:08:29:6d: 54:ab:95:59:2b:9f:dc:aa:a7:bb:fb:98:21:c1:7a:dc:82:ea: 8b:ed:e4:64 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKfKDzO2AC/BBAMFhlb47RE32wjMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDEwMDMzWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZmJhZTcwODY2NGJjNmViMjdjOWZkYTJiNThlYWExY2Fl MWU3N2U1ZWIzZjZiOWM3YjE0N2Q0NGMxOTg1NjE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmx+SamopASZSo75RiIJsW+5GhpIwuuFlwv+Z6kv2mdMqN YY+/iOh3CARXykNaJrj3lgucT3DGBiNyNME0vs142ZjwRZAs/28y5EFLSGVZOuCB mBGbhBdsf/nI75OTl/Yw+c0UWYv356Bd3TYOft1yxUiNm10bjAFPIANko361StHB Eb6moaODp9MXavxFXGmibarZ3dwSpsXqPqZ5HFtnke6woV6c68rifVx30RFhK9ft Ljj8QWEhiUUNPYZxGvYysCzbUf3vNi5z6LCDgr+K1jq6uYyYfkdSkNuzCylPaSaU 35enZH5kR27l4bslDyyyB/YjUlvrr1O4fis6ne61AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUtJ+p6db+1ypDb8XaHsJ9BHiLfrAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3NTJmZmFhLTk1NjUtNGZlNC05MGQ2LTYxNzU5NGU5MmZlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/4wDANBgkqhkiG9w0BAQsFAAOCAQEAH6DT9nqx2HHNnfqtXc6sIb+m rY0MdqpvD29m5IC87hzmPMU035qT6lQ/ZZbpUj9Fr1MTbQlnQCgFDPcA/fMMFL0l kU+SbCb2ZqcAhywlUaXPe5gTnLkw0y3+u9riSE9aUUNDM/w3A+PultvgKll18jBo m8CeaGFO+Z9WYphAwRNZgdDFEfsUEMUn9LWGxo4GX1LxJ/4KYeKi790yJiiGARGa cJIU3RcAQGKptNBQQ3HWVtyNKp35DEjLn3r2o7jPlbYKA7AP2F95fKKz38SvJpkI TYriZTARjnydrRoUVxapHcvxvwtjCCltVKuVWSuf3Kqnu/uYIcF63ILqi+3kZA== -----END CERTIFICATE-----Generated at Sun May 3 15:28:18 2026 by rpki-client