$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60fa1316-489c-4c2e-9ecb-e5a60a70777e.roa File: 60fa1316-489c-4c2e-9ecb-e5a60a70777e.roa (raw, json) Hash identifier: zR6lGU2EB1RB88OuEuOUWQEAagxDBusKNKdWawYURu4= Subject key identifier: A1:67:9D:63:48:0B:DF:30:48:49:97:D0:53:1A:70:15:C3:0C:A7:79 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 348A6B326205BA88DCE339139BCAC2423B8B6154 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60fa1316-489c-4c2e-9ecb-e5a60a70777e.roa Signing time: Wed 29 Apr 2026 00:30:45 +0000 ROA not before: Wed 29 Apr 2026 00:30:45 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:80a7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:8a:6b:32:62:05:ba:88:dc:e3:39:13:9b:ca:c2:42:3b:8b:61:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:30:45 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=5e57cf4a16085598c76898953c9c45c5338352e2dcdd838b2a3f97c3d4ad5501, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e8:cd:70:03:26:6b:04:5c:9b:4f:7d:a7:c6: 70:af:00:cc:f2:a2:ba:a7:e3:2d:dc:8c:d8:3f:69: 94:da:4e:ad:6f:a7:5a:31:02:3b:7e:7e:a0:41:e3: ae:f1:8b:16:b2:16:2b:7d:53:10:09:1c:20:18:9e: 84:58:9b:84:44:cd:d1:a9:21:ad:19:ec:70:31:61: 62:f2:68:69:7f:28:d9:60:89:39:e7:b2:9b:46:d4: c4:0e:e3:f4:6a:37:23:9a:0f:4a:34:44:fa:d2:8b: f0:9d:c3:17:21:b5:c9:15:ef:08:a3:79:c1:47:f8: 8b:cc:f2:d1:0d:33:5a:ea:c7:ed:6b:06:72:31:72: 83:69:77:e0:f6:4f:40:21:c9:79:8a:0e:e6:8a:a8: 2c:57:ff:8f:b7:f0:67:f1:45:82:b0:46:5f:ad:32: 8a:b6:24:2e:db:96:35:48:07:6e:dd:61:b4:d3:04: a1:36:db:c8:b4:88:fc:5d:da:b9:79:e1:d0:a1:7d: 2e:62:ef:a1:b2:3d:7e:04:8a:79:90:d8:0a:92:ef: 3b:b6:dd:11:75:69:37:ea:19:82:63:05:d4:98:56: dc:15:15:25:3c:9e:5a:05:1c:70:5d:58:59:d5:3d: a7:3d:ee:10:9a:ad:40:a7:77:eb:e5:c3:c7:4b:c8: 33:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:67:9D:63:48:0B:DF:30:48:49:97:D0:53:1A:70:15:C3:0C:A7:79 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60fa1316-489c-4c2e-9ecb-e5a60a70777e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:80a7::/48 Signature Algorithm: sha256WithRSAEncryption 26:17:f1:c6:4c:07:b1:7d:eb:fa:0f:58:bc:c0:55:87:95:69: 75:59:8a:19:ef:d1:c0:b8:b1:f6:95:6d:2f:e5:1a:72:97:5b: 17:a3:8a:58:e2:3c:9f:74:69:72:48:35:23:ba:fa:cc:4a:11: c7:f0:c0:47:f2:08:3b:27:9c:7c:e8:b3:2a:c7:e9:2e:fc:01: fd:d6:42:61:48:ac:27:2a:8b:01:09:f9:d5:a7:c7:d9:76:e3: 68:18:a3:48:8a:d4:96:89:8a:b1:d5:38:64:ab:29:c4:32:a5: d3:46:04:50:80:da:33:57:db:60:6a:7a:1d:b8:8b:bc:07:4f: 5d:ca:45:6a:44:36:9e:90:54:0f:9d:eb:9b:f1:57:5f:06:18: 6d:4a:e0:d8:48:4a:1f:a1:92:42:5e:b9:45:3f:04:47:98:00: e1:ae:9d:a0:00:83:21:4f:6f:09:81:a0:0f:95:54:52:d2:0b: 10:ee:cc:13:e2:3e:64:88:de:a0:40:ff:9c:1a:9d:75:f3:3f: 08:10:a2:90:52:28:77:c1:f1:4e:a7:af:d4:fc:da:16:a6:b9: be:56:f1:5d:c1:d2:46:26:3a:ec:68:1a:ca:45:8c:fd:b6:a5: c4:75:01:3b:e8:8b:f3:24:3f:c6:13:68:5f:35:a8:43:71:7c: 99:a2:b8:5c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNIprMmIFuojc4zkTm8rCQjuLYVQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAzMDQ1WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTU3Y2Y0YTE2MDg1NTk4Yzc2ODk4OTUzYzljNDVjNTMz ODM1MmUyZGNkZDgzOGIyYTNmOTdjM2Q0YWQ1NTAxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI6M1wAyZrBFybT32nxnCvAMzyorqn4y3cjNg/aZTaTq1v p1oxAjt+fqBB467xixayFit9UxAJHCAYnoRYm4REzdGpIa0Z7HAxYWLyaGl/KNlg iTnnsptG1MQO4/RqNyOaD0o0RPrSi/CdwxchtckV7wijecFH+IvM8tENM1rqx+1r BnIxcoNpd+D2T0AhyXmKDuaKqCxX/4+38GfxRYKwRl+tMoq2JC7bljVIB27dYbTT BKE228i0iPxd2rl54dChfS5i76GyPX4EinmQ2AqS7zu23RF1aTfqGYJjBdSYVtwV FSU8nloFHHBdWFnVPac97hCarUCnd+vlw8dLyDNRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoWedY0gL3zBISZfQUxpwFcMMp3kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwZmExMzE2LTQ4OWMtNGMyZS05ZWNiLWU1YTYwYTcwNzc3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gKcwDQYJKoZIhvcNAQELBQADggEBACYX8cZMB7F96/oPWLzAVYeV aXVZihnv0cC4sfaVbS/lGnKXWxejiljiPJ90aXJINSO6+sxKEcfwwEfyCDsnnHzo syrH6S78Af3WQmFIrCcqiwEJ+dWnx9l242gYo0iK1JaJirHVOGSrKcQypdNGBFCA 2jNX22Bqeh24i7wHT13KRWpENp6QVA+d65vxV18GGG1K4NhISh+hkkJeuUU/BEeY AOGunaAAgyFPbwmBoA+VVFLSCxDuzBPiPmSI3qBA/5wanXXzPwgQopBSKHfB8U6n r9T82hamub5W8V3B0kYmOuxoGspFjP22pcR1ATvoi/MkP8YTaF81qENxfJmiuFw= -----END CERTIFICATE-----Generated at Sun May 3 14:45:03 2026 by rpki-client