$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a9d3913c-5164-4b16-9e32-510651104a61.roa File: a9d3913c-5164-4b16-9e32-510651104a61.roa (raw, json) Hash identifier: ckWe2eKKWLqFZiSRuN4l/xFxG0R0aOAnwT2DEEU3qVQ= Subject key identifier: 46:83:2D:23:E4:92:D4:23:E5:90:34:7B:1D:0C:43:03:0B:1C:85:AA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 487ECFCFC81D33D024083FA390F8A6762F33C40D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a9d3913c-5164-4b16-9e32-510651104a61.roa Signing time: Sat 02 May 2026 01:10:11 +0000 ROA not before: Sat 02 May 2026 01:10:11 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f38:8010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:7e:cf:cf:c8:1d:33:d0:24:08:3f:a3:90:f8:a6:76:2f:33:c4:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 01:10:11 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=c13c2675a3f63f2ddf164302927d6d79cf35a2da381b1f50803e9d045f9a7d29, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:dd:88:1a:23:5d:66:bf:69:fc:08:ae:f6:b0: e2:a1:93:fd:25:16:31:df:12:ff:7a:45:5e:95:e3: fc:59:42:f9:5c:2e:85:5a:00:fc:a5:af:93:3a:cf: 77:54:02:93:d0:ff:51:05:89:58:d9:12:f5:d7:d4: e6:b9:a9:18:d5:b7:f1:b2:df:2a:8e:cb:d0:63:96: 24:b3:01:4c:c1:e0:db:47:cd:f0:28:f3:02:5c:39: 6f:e3:d0:66:87:d8:58:5a:81:36:8f:3c:41:a2:37: 40:61:fe:19:24:df:1d:7c:b7:96:ab:3a:30:19:7b: 4a:f0:8f:46:91:85:87:73:78:87:27:f1:25:e6:85: 96:4c:cf:d9:be:60:c4:d4:fe:4f:83:aa:b3:21:42: d7:f7:0c:e0:01:24:b1:ad:46:e9:e6:94:7b:9c:b6: 94:ae:40:18:1f:e6:9a:38:cb:67:b4:a8:0a:66:42: 05:e6:d2:66:eb:35:81:b7:1d:e4:87:84:76:b6:18: f7:07:cd:71:0d:a6:b6:3c:67:a5:2e:d6:af:49:66: 70:4e:26:43:59:ef:49:62:72:a4:ba:23:64:76:03: 02:e8:a9:f4:c6:c3:7a:d2:09:d5:2e:06:d1:c8:ef: d6:48:23:77:63:ed:2b:a7:11:69:aa:14:f9:81:d4: 08:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:83:2D:23:E4:92:D4:23:E5:90:34:7B:1D:0C:43:03:0B:1C:85:AA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a9d3913c-5164-4b16-9e32-510651104a61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:8010::/48 Signature Algorithm: sha256WithRSAEncryption 12:2f:fe:67:38:ea:b8:e3:72:06:68:b6:8f:bb:1d:d1:8f:e8: 3b:60:4f:a1:44:94:5e:8d:07:f8:30:19:e2:08:e8:68:15:be: 69:75:b3:bc:f3:5c:7e:dc:79:82:55:2b:af:df:5a:0f:1c:6f: ae:eb:0d:29:89:61:d4:ff:d3:50:c3:7f:05:7a:61:4a:80:f6: 50:27:a4:a7:37:24:7f:08:6b:97:76:30:b9:37:eb:a2:49:55: aa:73:65:e0:bf:2f:6d:d3:b4:af:e1:09:df:1b:de:ec:94:21: 57:8f:ec:fc:87:a5:26:ec:27:33:6e:21:a3:d7:dc:fd:a6:2f: 0c:c2:32:bc:63:89:1f:b8:4f:9d:34:31:9a:42:54:a3:6e:29: 28:d7:e5:a5:4c:7e:f0:54:6e:97:24:ff:b6:2c:63:6c:fb:8a: 01:c6:a2:c0:5f:5b:3d:e4:d5:3b:42:b8:df:7a:50:26:8f:90: f1:45:c3:33:d2:8f:37:e6:f3:61:30:d7:f2:54:4d:af:62:34: c5:eb:3e:90:be:73:80:81:f3:ac:b8:7b:18:f2:cd:3b:ce:52: 76:63:8b:14:87:3c:eb:81:da:88:4e:83:7f:aa:db:b5:78:45: 29:b7:72:93:59:12:07:14:f1:d5:6b:17:b4:8a:91:a6:f2:4b: 57:0b:f2:71 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSH7Pz8gdM9AkCD+jkPimdi8zxA0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAyMDExMDExWhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTNjMjY3NWEzZjYzZjJkZGYxNjQzMDI5MjdkNmQ3OWNm MzVhMmRhMzgxYjFmNTA4MDNlOWQwNDVmOWE3ZDI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa3YgaI11mv2n8CK72sOKhk/0lFjHfEv96RV6V4/xZQvlc LoVaAPylr5M6z3dUApPQ/1EFiVjZEvXX1Oa5qRjVt/Gy3yqOy9BjliSzAUzB4NtH zfAo8wJcOW/j0GaH2FhagTaPPEGiN0Bh/hkk3x18t5arOjAZe0rwj0aRhYdzeIcn 8SXmhZZMz9m+YMTU/k+DqrMhQtf3DOABJLGtRunmlHuctpSuQBgf5po4y2e0qApm QgXm0mbrNYG3HeSHhHa2GPcHzXENprY8Z6Uu1q9JZnBOJkNZ70licqS6I2R2AwLo qfTGw3rSCdUuBtHI79ZII3dj7SunEWmqFPmB1Ai7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURoMtI+SS1CPlkDR7HQxDAwschaowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5ZDM5MTNjLTUxNjQtNGIxNi05ZTMyLTUxMDY1MTEwNGE2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84gBAwDQYJKoZIhvcNAQELBQADggEBABIv/mc46rjjcgZoto+7HdGP 6DtgT6FElF6NB/gwGeII6GgVvml1s7zzXH7ceYJVK6/fWg8cb67rDSmJYdT/01DD fwV6YUqA9lAnpKc3JH8Ia5d2MLk366JJVapzZeC/L23TtK/hCd8b3uyUIVeP7PyH pSbsJzNuIaPX3P2mLwzCMrxjiR+4T500MZpCVKNuKSjX5aVMfvBUbpck/7YsY2z7 igHGosBfWz3k1TtCuN96UCaPkPFFwzPSjzfm82Ew1/JUTa9iNMXrPpC+c4CB86y4 exjyzTvOUnZjixSHPOuB2ohOg3+q27V4RSm3cpNZEgcU8dVrF7SKkabyS1cL8nE= -----END CERTIFICATE-----Generated at Mon May 4 21:39:49 2026 by rpki-client