$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f08968f-7dae-4e98-9a63-6c8a03f3a558.roa File: 6f08968f-7dae-4e98-9a63-6c8a03f3a558.roa (raw, json) Hash identifier: b7fVrk4ogNZXlGJYIX+g5jTL8vpSST79TpIIzoiq0M8= Subject key identifier: 57:B0:15:E9:D7:D2:A6:67:8D:77:38:74:94:41:3B:3C:D8:E0:AC:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7946661ECC5ACEFDB2B677FD86B515BBA65C9F3C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f08968f-7dae-4e98-9a63-6c8a03f3a558.roa Signing time: Fri 15 May 2026 00:50:08 +0000 ROA not before: Fri 15 May 2026 00:50:08 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fff:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 05 Jun 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:46:66:1e:cc:5a:ce:fd:b2:b6:77:fd:86:b5:15:bb:a6:5c:9f:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 00:50:08 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=a15cc7e1959a47fae7c5441bf8f86645366b5d13003b2fe112f2edd2209df30c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a5:2f:0c:c7:e0:e6:bc:eb:ae:10:98:f2:54: 55:07:1e:81:97:dd:47:04:88:f0:b0:18:1b:d5:a8: 87:ef:00:3d:2a:ae:50:a8:9c:14:8a:e4:08:39:8c: 9c:4e:f3:c7:c0:0a:bc:bd:1c:1d:98:60:3d:4a:d7: 5a:76:60:4e:36:f6:c6:9f:16:13:47:0b:3e:ef:44: b0:79:d0:e9:97:60:6f:e0:14:6c:fe:76:92:8b:d6: 63:f8:49:36:d5:ea:c5:7f:ec:93:e3:93:59:a9:87: 95:0b:2b:cb:35:f9:a3:93:ce:c0:7a:1f:c2:84:7e: 7a:cc:79:36:3b:01:77:12:1b:19:52:32:ba:61:e0: c6:fd:96:45:16:7f:29:ad:4c:79:67:b4:00:3c:cd: 4d:d2:32:28:4f:73:1c:4a:22:f6:c5:75:b3:9c:b0: 45:47:6d:78:63:1b:83:ad:1d:54:7d:66:57:72:31: 29:a4:f5:6a:1c:04:b0:de:71:ce:25:dd:c1:02:7d: 89:b0:dc:61:4b:34:91:97:b9:bd:fb:8b:5e:74:f1: a0:3e:8e:e6:67:57:2e:99:84:29:7d:f1:23:c0:44: 17:72:a3:25:a7:1a:20:2d:f1:c6:17:1f:41:f3:29: b8:8d:33:ab:b0:78:db:08:ef:7e:dc:f9:15:d5:11: a7:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:B0:15:E9:D7:D2:A6:67:8D:77:38:74:94:41:3B:3C:D8:E0:AC:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f08968f-7dae-4e98-9a63-6c8a03f3a558.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:5040::/48 Signature Algorithm: sha256WithRSAEncryption c3:cc:94:71:82:1a:2d:0b:85:a2:49:e2:6b:f2:a8:3c:4b:ee: 30:3b:75:0e:38:5b:27:69:f2:fd:86:56:1a:43:09:0c:1a:ae: 69:c1:a5:6f:c3:54:a0:77:95:ed:8b:61:7a:00:ba:00:c1:6d: 28:c4:39:26:52:a3:3c:49:37:35:fe:ee:89:52:0f:48:c0:ec: ad:ba:b9:f8:db:62:27:94:71:73:b0:4d:b9:2a:7e:52:e5:c1: 45:d8:30:2f:56:ef:76:a8:58:ec:eb:10:40:17:21:bc:e4:e8: 48:b7:e9:18:60:70:d9:f5:a5:03:cc:b2:35:b7:6b:0e:4f:ad: 16:61:5d:48:f0:43:74:15:8a:48:94:d0:9e:4b:21:86:e4:ce: 11:bb:83:fd:bc:88:92:3a:9d:d7:12:30:9c:9e:71:a3:6d:25: a9:0b:c1:39:99:6e:4e:04:81:34:45:df:f2:b5:7d:04:6a:e0: a0:ad:16:a9:30:10:d8:d6:77:8c:b3:97:f0:fa:52:bc:4d:b6: 40:29:aa:74:47:26:0a:82:34:4a:2f:00:cc:33:81:c4:af:98: ad:93:24:92:04:49:bb:5d:20:14:00:63:ca:38:ea:c7:71:bc: e3:67:6e:72:a4:08:19:7e:83:a2:3f:06:99:d6:ea:80:5e:e6: 40:27:d2:cc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeUZmHsxazv2ytnf9hrUVu6ZcnzwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDA1MDA4WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTVjYzdlMTk1OWE0N2ZhZTdjNTQ0MWJmOGY4NjY0NTM2 NmI1ZDEzMDAzYjJmZTExMmYyZWRkMjIwOWRmMzBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7pS8Mx+DmvOuuEJjyVFUHHoGX3UcEiPCwGBvVqIfvAD0q rlConBSK5Ag5jJxO88fACry9HB2YYD1K11p2YE429safFhNHCz7vRLB50OmXYG/g FGz+dpKL1mP4STbV6sV/7JPjk1mph5ULK8s1+aOTzsB6H8KEfnrMeTY7AXcSGxlS Mrph4Mb9lkUWfymtTHlntAA8zU3SMihPcxxKIvbFdbOcsEVHbXhjG4OtHVR9Zldy MSmk9WocBLDecc4l3cECfYmw3GFLNJGXub37i1508aA+juZnVy6ZhCl98SPARBdy oyWnGiAt8cYXH0HzKbiNM6uweNsI737c+RXVEacPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUV7AV6dfSpmeNdzh0lEE7PNjgrOUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmMDg5NjhmLTdkYWUtNGU5OC05YTYzLTZjOGEwM2YzYTU1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//UEAwDQYJKoZIhvcNAQELBQADggEBAMPMlHGCGi0LhaJJ4mvyqDxL 7jA7dQ44Wydp8v2GVhpDCQwarmnBpW/DVKB3le2LYXoAugDBbSjEOSZSozxJNzX+ 7olSD0jA7K26ufjbYieUcXOwTbkqflLlwUXYMC9W73aoWOzrEEAXIbzk6Ei36Rhg cNn1pQPMsjW3aw5PrRZhXUjwQ3QVikiU0J5LIYbkzhG7g/28iJI6ndcSMJyecaNt JakLwTmZbk4EgTRF3/K1fQRq4KCtFqkwENjWd4yzl/D6UrxNtkApqnRHJgqCNEov AMwzgcSvmK2TJJIESbtdIBQAY8o46sdxvONnbnKkCBl+g6I/BpnW6oBe5kAn0sw= -----END CERTIFICATE-----Generated at Wed Jun 3 20:36:18 2026 by rpki-client