$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa File: a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa (raw, json) Hash identifier: jnTBlIA+9K3kC2whaKK5JdJmORbku+XspPxdA1jOMDM= Subject key identifier: DC:04:9B:98:9A:89:17:D8:BC:E3:A2:57:49:6E:FE:2D:86:79:EB:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29D907FD5DB91E959FF02DB320650DFAB7633B74 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa Signing time: Fri 01 May 2026 00:30:33 +0000 ROA not before: Fri 01 May 2026 00:30:33 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8188::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 03 May 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:d9:07:fd:5d:b9:1e:95:9f:f0:2d:b3:20:65:0d:fa:b7:63:3b:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:30:33 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=d86dd63de4b4d1b37a534399ef62797f7a315afa0a85926a6dd5bef629422b9b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:9f:da:3f:7a:ef:ee:4b:b2:0c:05:f4:72:12: 4a:e5:ba:76:60:64:47:94:ae:a2:d8:03:01:f6:14: 8e:3f:39:1a:41:98:cb:2c:03:d1:d3:dc:ec:3f:bc: 5d:7c:f0:85:c5:6d:87:b4:42:3b:02:87:b5:a9:39: 0c:31:f7:04:ad:86:25:28:0b:90:56:30:6a:16:2e: cb:2f:81:a9:86:12:6f:1c:72:85:8b:c7:bb:4f:b1: d1:b0:5f:1c:58:27:a0:d8:06:66:b5:33:0f:2a:15: 6f:d5:8b:d8:ce:33:7a:72:ea:8f:13:e9:3a:d1:bd: 92:6d:8a:62:d1:e9:2f:d8:2e:6f:f9:d3:40:f1:fe: 6b:04:30:b9:2e:17:af:24:8f:71:11:84:1f:b2:c9: a1:22:7f:90:ce:fa:59:82:46:fc:f4:dc:e8:f5:03: 0a:48:49:95:7d:3f:9d:64:6f:f7:44:47:99:88:0b: 12:ed:12:21:21:21:99:3b:1e:fb:ec:23:b2:c7:4b: 95:dd:b8:b5:73:b2:cb:d4:1d:f4:e8:ee:d9:95:df: 0d:1b:c7:fa:b6:2f:fc:fb:71:12:85:90:82:e6:e5: 00:5d:e7:46:50:0a:cc:26:62:bc:74:a3:1a:13:51: 2d:e7:72:d4:94:e4:11:50:e1:69:59:a6:29:02:eb: 48:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:04:9B:98:9A:89:17:D8:BC:E3:A2:57:49:6E:FE:2D:86:79:EB:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8188::/48 Signature Algorithm: sha256WithRSAEncryption 10:72:19:27:e6:57:28:c6:45:b5:1d:47:f9:bc:bd:c2:db:53: d2:dc:ba:82:44:a9:03:ab:81:c5:bb:bb:4c:f1:82:72:80:e7: aa:06:d0:dc:f4:0b:ed:c5:bf:8d:53:40:4d:64:9f:64:6c:d3: 73:46:05:68:98:f8:7e:c7:3b:78:d4:4e:79:20:12:74:da:78: 50:d3:cb:11:59:d9:e0:d2:ee:cc:a2:21:61:e7:e7:1b:3f:50: d5:b5:eb:3d:73:c9:0a:7c:8e:60:54:5f:fb:ea:2e:06:52:36: 78:6a:3c:d0:7a:b8:24:31:7a:74:6a:a5:4f:c4:d2:41:c1:89: c9:0c:42:da:18:d4:80:27:f9:88:2f:8f:5a:f1:ed:0f:2c:b7: 97:ed:1e:3e:47:61:b2:55:2a:7d:fe:85:5b:3e:6c:13:dd:d6: cd:05:8c:88:a2:e7:51:7b:0a:a2:30:96:8a:02:a1:06:40:15: a8:c8:71:da:d0:93:96:a5:c6:23:9a:11:b8:ce:e1:b9:56:24: 1d:59:31:2d:89:87:46:43:25:68:15:9f:e1:90:03:e9:19:e2: 3d:26:b7:78:11:ce:78:62:a0:b2:24:08:60:73:09:28:84:f7: 47:09:54:69:f4:57:ba:02:5d:dd:56:8c:0f:7b:08:8d:6b:80: 9f:a9:9f:48 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKdkH/V25HpWf8C2zIGUN+rdjO3QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAzMDMzWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkODZkZDYzZGU0YjRkMWIzN2E1MzQzOTllZjYyNzk3Zjdh MzE1YWZhMGE4NTkyNmE2ZGQ1YmVmNjI5NDIyYjliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXn9o/eu/uS7IMBfRyEkrlunZgZEeUrqLYAwH2FI4/ORpB mMssA9HT3Ow/vF188IXFbYe0QjsCh7WpOQwx9wSthiUoC5BWMGoWLssvgamGEm8c coWLx7tPsdGwXxxYJ6DYBma1Mw8qFW/Vi9jOM3py6o8T6TrRvZJtimLR6S/YLm/5 00Dx/msEMLkuF68kj3ERhB+yyaEif5DO+lmCRvz03Oj1AwpISZV9P51kb/dER5mI CxLtEiEhIZk7HvvsI7LHS5XduLVzssvUHfTo7tmV3w0bx/q2L/z7cRKFkILm5QBd 50ZQCswmYrx0oxoTUS3nctSU5BFQ4WlZpikC60j7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3ASbmJqJF9i846JXSW7+LYZ566kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyNDBkYzY0LTY1ZjAtNDYxYS1hZDZhLThjMTM3YjlkOGFiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gYgwDQYJKoZIhvcNAQELBQADggEBABByGSfmVyjGRbUdR/m8vcLb U9LcuoJEqQOrgcW7u0zxgnKA56oG0Nz0C+3Fv41TQE1kn2Rs03NGBWiY+H7HO3jU TnkgEnTaeFDTyxFZ2eDS7syiIWHn5xs/UNW16z1zyQp8jmBUX/vqLgZSNnhqPNB6 uCQxenRqpU/E0kHBickMQtoY1IAn+Ygvj1rx7Q8st5ftHj5HYbJVKn3+hVs+bBPd 1s0FjIii51F7CqIwlooCoQZAFajIcdrQk5alxiOaEbjO4blWJB1ZMS2Jh0ZDJWgV n+GQA+kZ4j0mt3gRznhioLIkCGBzCSiE90cJVGn0V7oCXd1WjA97CI1rgJ+pn0g= -----END CERTIFICATE-----Generated at Sat May 2 00:58:39 2026 by rpki-client