$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b865293d-a4bf-42fc-ba47-1d29c7deb443.roa File: b865293d-a4bf-42fc-ba47-1d29c7deb443.roa (raw, json) Hash identifier: qNcveiru6clZz6VVZuTT4SxA5so77qJZctRe1KPasdg= Subject key identifier: ED:A4:1C:84:59:81:28:A1:01:58:70:B4:3D:63:81:04:5C:18:8B:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 658F2FC25867F15B9AC0C27A93E28CE67470E55A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b865293d-a4bf-42fc-ba47-1d29c7deb443.roa Signing time: Sat 02 May 2026 00:40:09 +0000 ROA not before: Sat 02 May 2026 00:40:09 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff3:6040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:8f:2f:c2:58:67:f1:5b:9a:c0:c2:7a:93:e2:8c:e6:74:70:e5:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:40:09 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=9f0b422a9cbd29c8e54e4732c2b683047b0550b25cee21efc22d3255f79cd570, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ac:6c:df:6a:14:ac:6f:b7:5d:26:d6:27:c4: 74:60:b6:9e:58:98:1d:a8:44:db:65:46:66:07:02: 6e:df:82:63:fd:5f:10:5e:28:3e:ee:47:dd:2f:cd: 3e:54:6a:10:20:fb:69:6f:e2:b2:f5:b2:0f:af:70: b6:ff:8a:bc:b6:1f:e9:84:70:1c:75:3e:7d:42:a1: 3a:2d:ae:62:89:4b:94:2d:10:29:57:fc:5a:86:bb: 3d:d0:a6:b1:c1:d6:42:44:cf:77:aa:d3:5d:14:e2: 1c:9a:4f:e6:68:66:41:43:86:f9:a4:c7:30:31:5e: 12:9b:1f:bc:e5:20:bd:ac:28:49:4e:c4:aa:5e:a6: ce:9b:e1:7c:fa:52:f8:28:85:50:09:bb:0c:0a:3a: ff:aa:5e:d2:92:5f:c4:b3:7b:8c:58:db:98:20:ea: 23:9c:ad:c9:7b:75:de:e1:3c:d3:db:50:d8:d5:ea: 02:2e:08:6e:9e:e3:8a:97:d6:60:5f:01:dc:23:fe: 95:be:52:73:c2:71:e3:a0:de:3f:4c:05:9f:f6:a9: af:ab:03:99:27:50:fc:0c:f0:0f:09:85:97:0b:45: 19:bb:44:a3:6f:a2:3e:b2:98:73:85:92:1a:c4:42: 9c:0f:fa:90:12:7a:8c:29:37:17:f7:20:88:82:56: c5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A4:1C:84:59:81:28:A1:01:58:70:B4:3D:63:81:04:5C:18:8B:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b865293d-a4bf-42fc-ba47-1d29c7deb443.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff3:6040::/46 Signature Algorithm: sha256WithRSAEncryption 1a:15:a0:1f:4d:12:d6:58:06:7b:0d:69:84:0d:35:dd:c2:3e: 26:95:08:1c:bb:73:a5:e2:66:fd:0f:19:34:fe:0a:62:3e:37: 31:a9:a1:a0:33:fd:6f:37:41:5d:25:08:53:fc:45:b2:fd:f1: 92:fa:16:b1:5e:4f:2a:b5:3d:77:7a:7b:ae:f9:1e:c6:23:f2: 60:ba:9f:1a:a3:7f:b0:8a:0b:13:32:19:39:8c:27:20:e2:96: 71:b0:b8:89:d2:c7:ee:5b:cd:2b:26:f1:9e:5c:c7:0a:ea:39: fd:fd:58:52:28:37:b6:39:46:c6:d1:20:02:50:c6:e9:51:5d: c2:67:8c:15:3a:ad:42:2e:da:77:bd:0a:cd:d7:82:8c:43:b7: 4c:a9:c1:11:92:1e:20:81:3c:4b:ab:1e:e4:7b:2f:aa:9d:b0: f4:16:f2:82:53:0f:e7:fa:eb:62:f6:fc:ef:0e:62:73:f4:9a: a4:43:89:60:fd:87:ab:30:48:f7:3f:4d:6b:07:5c:51:d4:e2: e3:bf:60:62:d0:13:bd:f7:f2:ef:e2:8e:78:c3:58:6e:f2:7e: 14:f7:93:e2:74:6e:18:0a:54:2f:f4:cd:23:78:f0:5f:e2:27: 39:e4:8a:0b:43:2a:3a:47:68:0c:36:dd:42:94:da:ee:69:6f: 3c:ce:1d:42 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZY8vwlhn8VuawMJ6k+KM5nRw5VowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAyMDA0MDA5WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjBiNDIyYTljYmQyOWM4ZTU0ZTQ3MzJjMmI2ODMwNDdi MDU1MGIyNWNlZTIxZWZjMjJkMzI1NWY3OWNkNTcwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDorGzfahSsb7ddJtYnxHRgtp5YmB2oRNtlRmYHAm7fgmP9 XxBeKD7uR90vzT5UahAg+2lv4rL1sg+vcLb/iry2H+mEcBx1Pn1CoTotrmKJS5Qt EClX/FqGuz3QprHB1kJEz3eq010U4hyaT+ZoZkFDhvmkxzAxXhKbH7zlIL2sKElO xKpeps6b4Xz6UvgohVAJuwwKOv+qXtKSX8Sze4xY25gg6iOcrcl7dd7hPNPbUNjV 6gIuCG6e44qX1mBfAdwj/pW+UnPCceOg3j9MBZ/2qa+rA5knUPwM8A8JhZcLRRm7 RKNvoj6ymHOFkhrEQpwP+pASeowpNxf3IIiCVsWdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7aQchFmBKKEBWHC0PWOBBFwYiwYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4NjUyOTNkLWE0YmYtNDJmYy1iYTQ3LTFkMjljN2RlYjQ0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/zYEAwDQYJKoZIhvcNAQELBQADggEBABoVoB9NEtZYBnsNaYQNNd3C PiaVCBy7c6XiZv0PGTT+CmI+NzGpoaAz/W83QV0lCFP8RbL98ZL6FrFeTyq1PXd6 e675HsYj8mC6nxqjf7CKCxMyGTmMJyDilnGwuInSx+5bzSsm8Z5cxwrqOf39WFIo N7Y5RsbRIAJQxulRXcJnjBU6rUIu2ne9Cs3XgoxDt0ypwRGSHiCBPEurHuR7L6qd sPQW8oJTD+f662L2/O8OYnP0mqRDiWD9h6swSPc/TWsHXFHU4uO/YGLQE7338u/i jnjDWG7yfhT3k+J0bhgKVC/0zSN48F/iJznkigtDKjpHaAw23UKU2u5pbzzOHUI= -----END CERTIFICATE-----Generated at Mon May 4 21:38:28 2026 by rpki-client