$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7fac1823-b328-4f8c-8379-f7180469d48a.roa File: 7fac1823-b328-4f8c-8379-f7180469d48a.roa (raw, json) Hash identifier: ChXND2dSgPaphJ1CZ2/Lfd/vzPQTD5+Nnr3E8eMq4B0= Subject key identifier: 68:AE:53:F2:75:34:EA:84:DF:8B:91:39:D1:C8:C7:42:56:FF:34:3E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43F921BAD83F018DDA8F1F60A7E9E83C5B4758E3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7fac1823-b328-4f8c-8379-f7180469d48a.roa Signing time: Fri 01 May 2026 00:30:08 +0000 ROA not before: Fri 01 May 2026 00:30:08 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f2d:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:f9:21:ba:d8:3f:01:8d:da:8f:1f:60:a7:e9:e8:3c:5b:47:58:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:30:08 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=8a73a48dbb78ec52eda64693b37544c26757d775e355c2bc5d9a9965ad263df0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:31:97:f8:ae:df:21:a5:3d:e1:67:df:ca:b3: 89:91:61:03:2a:66:7b:bb:f8:c8:24:27:48:5e:1c: 09:41:fc:e8:c8:b9:64:47:1a:4a:a0:6b:d7:2f:02: 72:a1:a6:d9:6c:42:60:86:75:da:3e:0b:a3:a6:ff: a1:97:92:34:de:74:3d:b7:74:1f:e5:ee:e4:97:72: 05:ff:25:d9:dc:fc:ff:80:05:2e:9c:88:a9:be:ef: 4c:9b:81:fb:59:ee:38:88:c7:6a:dd:28:29:05:62: b6:06:fc:53:78:b1:55:5d:1c:85:cf:8a:81:75:4d: fe:38:9d:51:cc:79:86:d7:a8:cf:39:bc:e9:9f:ad: 83:ce:0f:4a:4c:92:d7:a3:25:ce:76:2e:a5:f9:9e: b8:97:cb:06:1d:60:54:fd:7a:93:ef:43:f4:3e:03: 23:c3:b1:79:b4:6c:7d:ff:35:78:d6:5d:99:42:5f: e6:8e:f9:6f:f1:a7:ac:f8:fc:0c:b5:91:99:52:29: e9:90:18:c7:8e:55:d2:20:f9:b4:14:52:06:44:ff: 39:88:f3:2d:6f:63:f8:63:70:a1:3a:78:b1:db:93: 6a:df:c7:fe:01:d2:ca:f4:2d:d1:01:61:bd:5e:fe: b6:41:f0:85:dc:f2:ab:08:5e:11:83:f0:a4:23:99: 11:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:AE:53:F2:75:34:EA:84:DF:8B:91:39:D1:C8:C7:42:56:FF:34:3E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7fac1823-b328-4f8c-8379-f7180469d48a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2d:8000::/36 Signature Algorithm: sha256WithRSAEncryption c0:0a:65:44:02:e4:70:a9:39:ec:df:70:8e:7e:79:55:2c:13: 0f:12:49:9a:2b:54:8d:8b:0b:ae:5e:31:43:a2:d6:80:c1:d1: 01:55:51:5c:39:c0:60:7b:f1:cd:a6:4f:2d:d4:d7:42:60:df: 77:93:ff:f5:72:21:54:92:2e:da:5a:4d:7e:8b:4b:bc:f1:73: 6d:53:3c:c4:b1:28:f1:58:c8:f4:7f:f1:4f:f0:c5:26:e6:ba: c0:58:e7:1d:fb:dc:be:6c:d4:d8:63:c0:76:10:fb:05:7c:f9: b6:d0:6c:e3:22:f2:1c:88:90:b6:23:1b:18:55:83:27:aa:c7: e9:81:a4:8d:b1:f8:60:35:a3:08:a4:98:c8:17:db:db:f5:80: 5f:44:1f:f8:fd:d8:0c:01:4c:9d:1b:f4:c3:3e:5b:bc:84:bf: 37:fa:c7:d0:2e:c2:96:4c:56:1f:9d:42:be:1f:b5:d0:0e:b4: bc:93:df:0a:b5:f1:db:4f:01:a6:22:fe:b4:3f:8b:ad:65:04: 51:13:e8:f4:9f:2e:98:35:e0:7d:4c:95:8f:30:27:2f:e6:55: 4a:c2:40:54:c3:bf:82:96:4b:32:48:c6:08:94:3a:c7:d1:27: c7:5f:1f:0b:b8:58:c4:64:0f:f7:b8:68:2f:85:0d:e3:d3:7e: 02:f4:3b:63 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQ/khutg/AY3ajx9gp+noPFtHWOMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAzMDA4WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTczYTQ4ZGJiNzhlYzUyZWRhNjQ2OTNiMzc1NDRjMjY3 NTdkNzc1ZTM1NWMyYmM1ZDlhOTk2NWFkMjYzZGYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGMZf4rt8hpT3hZ9/Ks4mRYQMqZnu7+MgkJ0heHAlB/OjI uWRHGkqga9cvAnKhptlsQmCGddo+C6Om/6GXkjTedD23dB/l7uSXcgX/Jdnc/P+A BS6ciKm+70ybgftZ7jiIx2rdKCkFYrYG/FN4sVVdHIXPioF1Tf44nVHMeYbXqM85 vOmfrYPOD0pMktejJc52LqX5nriXywYdYFT9epPvQ/Q+AyPDsXm0bH3/NXjWXZlC X+aO+W/xp6z4/Ay1kZlSKemQGMeOVdIg+bQUUgZE/zmI8y1vY/hjcKE6eLHbk2rf x/4B0sr0LdEBYb1e/rZB8IXc8qsIXhGD8KQjmREFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUaK5T8nU06oTfi5E50cjHQlb/ND4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdmYWMxODIzLWIzMjgtNGY4Yy04Mzc5LWY3MTgwNDY5ZDQ4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8tgDANBgkqhkiG9w0BAQsFAAOCAQEAwAplRALkcKk57N9wjn55VSwT DxJJmitUjYsLrl4xQ6LWgMHRAVVRXDnAYHvxzaZPLdTXQmDfd5P/9XIhVJIu2lpN fotLvPFzbVM8xLEo8VjI9H/xT/DFJua6wFjnHfvcvmzU2GPAdhD7BXz5ttBs4yLy HIiQtiMbGFWDJ6rH6YGkjbH4YDWjCKSYyBfb2/WAX0Qf+P3YDAFMnRv0wz5bvIS/ N/rH0C7ClkxWH51Cvh+10A60vJPfCrXx208BpiL+tD+LrWUEURPo9J8umDXgfUyV jzAnL+ZVSsJAVMO/gpZLMkjGCJQ6x9Enx18fC7hYxGQP97hoL4UN49N+AvQ7Yw== -----END CERTIFICATE-----Generated at Sun May 3 14:47:39 2026 by rpki-client