$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4fd009-c1bd-4df9-a85f-7c903e47ddcf.roa File: 6f4fd009-c1bd-4df9-a85f-7c903e47ddcf.roa (raw, json) Hash identifier: TQmdinnq6d4PyXi94ydD99wOdMIQnDjCv6ma/MeTQU8= Subject key identifier: 03:58:FD:71:80:37:18:53:00:A3:78:91:C2:28:B2:FA:09:C7:76:A8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 37B892DF7E3FEF3E21B198773FB0BFC33D040989 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4fd009-c1bd-4df9-a85f-7c903e47ddcf.roa Signing time: Wed 29 Apr 2026 00:31:27 +0000 ROA not before: Wed 29 Apr 2026 00:31:27 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff9:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:b8:92:df:7e:3f:ef:3e:21:b1:98:77:3f:b0:bf:c3:3d:04:09:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:31:27 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=5dcbf41b5c7f51138709d9d510b764829a1a1dad52640beb3f6ce01075ec82f8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c4:30:bb:ae:0c:3c:33:9f:a8:a3:fa:6a:8b: 8d:d2:95:63:2f:24:ef:ab:03:9e:4e:3b:63:83:93: 99:f8:c5:1d:f0:47:50:3f:a4:0f:26:27:43:24:37: ab:e4:c0:71:82:1b:3c:9e:7c:ec:80:3f:3b:27:3a: 73:0f:4d:0c:ea:96:4c:45:e1:73:13:db:bb:1e:c5: ae:0e:d9:d3:09:65:92:4a:e5:49:16:30:d8:25:54: 3a:d2:de:94:a9:23:6d:6b:04:84:7c:8d:d7:b9:98: 7a:d4:ce:ed:e6:d9:b9:e8:fe:5b:a3:46:32:35:8c: fb:51:bf:b8:44:2f:56:c9:72:62:52:9d:37:b9:f5: 7f:12:3e:63:29:b8:21:0e:e6:4b:b8:17:76:b1:f0: d0:ae:cd:0d:d3:4b:be:25:91:2e:a5:f2:5a:da:a9: 0c:03:51:ed:ae:bf:b1:11:c6:6f:7e:70:16:67:ef: 02:52:a0:cb:73:09:d1:13:61:bf:93:ff:83:ef:e0: 27:22:7b:d4:95:67:92:2f:c6:86:cb:3d:00:d8:ea: 43:82:c8:70:0e:33:de:c5:db:3d:b1:e4:e3:94:d9: 3e:cc:66:a2:09:35:c4:7f:89:dd:7c:fc:09:f6:73: f4:be:8f:d7:00:80:f7:0c:a0:8a:15:64:c4:6e:16: e5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:58:FD:71:80:37:18:53:00:A3:78:91:C2:28:B2:FA:09:C7:76:A8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4fd009-c1bd-4df9-a85f-7c903e47ddcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff9:8000::/39 Signature Algorithm: sha256WithRSAEncryption a7:d1:e8:11:69:28:af:81:80:2a:95:2a:15:c7:31:d8:b5:52: 4a:2f:bb:4b:57:b7:3e:5a:3d:2b:92:60:b9:74:3a:9c:42:30: d6:2d:c2:1b:bc:cf:c6:73:41:34:bc:82:ad:50:cf:6b:18:a9: 81:61:05:11:a7:78:8e:92:52:59:60:13:ca:c6:6c:e9:b7:20: 30:0c:f1:6d:76:cc:b3:61:4d:84:f7:7b:e0:2f:4f:33:14:b8: 4a:3b:b7:6c:2a:78:fa:7c:a6:e5:0b:34:5c:f0:2f:6c:c1:cb: 52:6e:c5:09:a9:9f:53:34:7e:24:a3:6e:69:c6:fd:f8:b4:6e: 6f:ab:43:b8:37:86:be:41:58:46:3b:a8:d9:1c:10:18:b2:c5: 7c:36:7e:65:c4:11:55:94:13:ff:7d:1b:88:b6:af:af:4b:da: 08:c2:69:1f:c9:3c:d5:6a:fb:86:5a:c7:8c:f4:d3:2f:35:bc: d1:bb:30:f0:5a:ff:38:e9:0b:65:58:6f:eb:6a:e8:21:e9:3c: e2:b8:ec:46:5f:ad:23:b1:33:eb:c0:b8:14:49:a1:81:c4:cc: b8:90:d9:79:da:88:71:34:c8:81:46:e7:6e:8c:40:67:74:75: e1:53:c2:c5:eb:3c:fb:53:72:8f:ed:23:1d:4b:ad:a7:96:b1: e4:6f:fa:82 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUN7iS334/7z4hsZh3P7C/wz0ECYkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAzMTI3WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZGNiZjQxYjVjN2Y1MTEzODcwOWQ5ZDUxMGI3NjQ4Mjlh MWExZGFkNTI2NDBiZWIzZjZjZTAxMDc1ZWM4MmY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVxDC7rgw8M5+oo/pqi43SlWMvJO+rA55OO2ODk5n4xR3w R1A/pA8mJ0MkN6vkwHGCGzyefOyAPzsnOnMPTQzqlkxF4XMT27sexa4O2dMJZZJK 5UkWMNglVDrS3pSpI21rBIR8jde5mHrUzu3m2bno/lujRjI1jPtRv7hEL1bJcmJS nTe59X8SPmMpuCEO5ku4F3ax8NCuzQ3TS74lkS6l8lraqQwDUe2uv7ERxm9+cBZn 7wJSoMtzCdETYb+T/4Pv4Ccie9SVZ5IvxobLPQDY6kOCyHAOM97F2z2x5OOU2T7M ZqIJNcR/id18/An2c/S+j9cAgPcMoIoVZMRuFuV/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUA1j9cYA3GFMAo3iRwiiy+gnHdqgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmNGZkMDA5LWMxYmQtNGRmOS1hODVmLTdjOTAzZTQ3ZGRjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/5gDANBgkqhkiG9w0BAQsFAAOCAQEAp9HoEWkor4GAKpUqFccx2LVS Si+7S1e3Plo9K5JguXQ6nEIw1i3CG7zPxnNBNLyCrVDPaxipgWEFEad4jpJSWWAT ysZs6bcgMAzxbXbMs2FNhPd74C9PMxS4Sju3bCp4+nym5Qs0XPAvbMHLUm7FCamf UzR+JKNuacb9+LRub6tDuDeGvkFYRjuo2RwQGLLFfDZ+ZcQRVZQT/30biLavr0va CMJpH8k81Wr7hlrHjPTTLzW80bsw8Fr/OOkLZVhv62roIek84rjsRl+tI7Ez68C4 FEmhgcTMuJDZedqIcTTIgUbnboxAZ3R14VPCxes8+1Nyj+0jHUutp5ax5G/6gg== -----END CERTIFICATE-----Generated at Sun May 3 14:45:04 2026 by rpki-client