$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa File: c8f71b7e-9974-4779-8c24-e352d24c707e.roa (raw, json) Hash identifier: Jk7CY4ujpx0arknactx+K7L0Q1G2Rkt518L+vLNJ7Xo= Subject key identifier: 02:FE:7C:62:6A:18:96:18:0C:E7:A7:29:8C:7C:54:3D:F7:34:E2:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1501D92DE601DA9E55ADB592930DA1C7F55A1025 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa Signing time: Wed 29 Apr 2026 00:20:04 +0000 ROA not before: Wed 29 Apr 2026 00:20:04 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:5000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:01:d9:2d:e6:01:da:9e:55:ad:b5:92:93:0d:a1:c7:f5:5a:10:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:20:04 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=1dca95e1dc16ddb264fc7d1647f4d27be5925c554c5f17a34132de72c8ff1be4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7d:b4:43:a3:88:da:2a:f2:1a:58:04:b2:92: ed:fa:4c:d7:69:bb:ee:d3:24:37:fb:4a:00:d8:0b: 13:07:a4:3a:ba:b1:4a:ec:0c:ee:8f:70:da:0c:5c: 20:00:52:bd:a6:ef:68:f8:ff:fc:b5:b8:86:7a:80: 01:5e:79:d6:fc:15:cc:dc:96:e1:e7:46:03:54:46: 4b:5b:2b:83:0c:17:01:cc:1a:30:d0:f9:d6:b2:9c: fe:03:d3:89:4a:a4:09:1b:ce:2c:fe:55:1d:0a:5b: fb:b9:62:4d:0c:29:90:c7:40:62:82:20:62:1b:7e: 0d:87:59:34:99:c6:81:fa:e9:49:a6:07:18:cc:67: 91:a9:3a:09:4d:a3:8a:13:18:ef:3f:be:2f:e7:6b: e7:88:bd:9a:0d:db:cc:b9:97:11:7e:d4:20:be:9e: 5c:a1:c1:69:32:d5:25:39:ba:76:8f:cc:be:4b:c1: 79:f9:e7:8e:e3:1b:50:fb:90:30:0b:5b:96:35:aa: 86:75:06:54:e1:07:c2:15:80:2e:05:e5:fb:91:f6: 3d:8b:31:49:d0:51:58:4f:67:e5:a0:dd:61:d3:1c: 3d:3d:a2:fe:09:81:18:8f:37:8b:f9:df:3f:53:d8: 70:81:86:ad:ae:e7:1b:06:c5:7e:c0:a7:a3:e1:c0: 19:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FE:7C:62:6A:18:96:18:0C:E7:A7:29:8C:7C:54:3D:F7:34:E2:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:5000::/36 Signature Algorithm: sha256WithRSAEncryption 91:f7:c1:ff:17:c8:e3:13:7d:b4:c5:b7:0a:49:43:63:03:79: e3:e0:7d:dd:a3:bb:bc:43:e4:49:dd:3d:b2:1f:36:84:66:89: 3f:00:7f:e8:5a:ba:1a:97:61:8f:24:ca:63:e4:48:1c:10:c8: 57:de:31:28:a5:d1:08:82:e8:0e:08:0a:da:f7:05:17:dc:0c: 62:13:57:26:70:79:bd:8a:f2:d9:f0:f5:2f:06:43:5d:9d:03: e2:b3:d1:4b:27:16:23:51:06:ca:87:28:46:1d:aa:ff:0e:70: eb:c2:b7:1f:b0:e7:64:36:e2:70:15:1b:97:f1:0d:25:76:d0: 9b:dc:d9:07:92:95:f1:35:15:08:4b:28:8c:2c:57:1b:0d:3e: b0:d0:61:e6:6d:38:ff:43:09:d4:27:59:85:63:52:36:a7:50: 8c:c4:0b:0e:51:34:73:20:25:c6:e6:7d:0b:51:b7:ae:7d:2d: 00:a0:f8:a3:61:51:fc:72:33:d6:71:29:f7:ae:87:29:88:06: 2a:04:36:69:ab:7d:90:b5:9a:bd:ce:6c:2e:26:d5:db:36:24: 7a:d3:35:56:a5:0a:80:50:8b:83:14:d3:16:42:db:db:d7:21: 6d:e0:2f:5d:b1:20:d2:eb:ec:5a:de:36:3c:b1:ff:64:b0:bc: 8f:aa:79:60 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFQHZLeYB2p5VrbWSkw2hx/VaECUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAyMDA0WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZGNhOTVlMWRjMTZkZGIyNjRmYzdkMTY0N2Y0ZDI3YmU1 OTI1YzU1NGM1ZjE3YTM0MTMyZGU3MmM4ZmYxYmU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGfbRDo4jaKvIaWASyku36TNdpu+7TJDf7SgDYCxMHpDq6 sUrsDO6PcNoMXCAAUr2m72j4//y1uIZ6gAFeedb8FczcluHnRgNURktbK4MMFwHM GjDQ+daynP4D04lKpAkbziz+VR0KW/u5Yk0MKZDHQGKCIGIbfg2HWTSZxoH66Umm BxjMZ5GpOglNo4oTGO8/vi/na+eIvZoN28y5lxF+1CC+nlyhwWky1SU5unaPzL5L wXn5547jG1D7kDALW5Y1qoZ1BlThB8IVgC4F5fuR9j2LMUnQUVhPZ+Wg3WHTHD09 ov4JgRiPN4v53z9T2HCBhq2u5xsGxX7Ap6PhwBlNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUAv58YmoYlhgM56cpjHxUPfc04kkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4ZjcxYjdlLTk5NzQtNDc3OS04YzI0LWUzNTJkMjRjNzA3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB/4UDANBgkqhkiG9w0BAQsFAAOCAQEAkffB/xfI4xN9tMW3CklDYwN5 4+B93aO7vEPkSd09sh82hGaJPwB/6Fq6GpdhjyTKY+RIHBDIV94xKKXRCILoDggK 2vcFF9wMYhNXJnB5vYry2fD1LwZDXZ0D4rPRSycWI1EGyocoRh2q/w5w68K3H7Dn ZDbicBUbl/ENJXbQm9zZB5KV8TUVCEsojCxXGw0+sNBh5m04/0MJ1CdZhWNSNqdQ jMQLDlE0cyAlxuZ9C1G3rn0tAKD4o2FR/HIz1nEp966HKYgGKgQ2aat9kLWavc5s LibV2zYketM1VqUKgFCLgxTTFkLb29chbeAvXbEg0uvsWt42PLH/ZLC8j6p5YA== -----END CERTIFICATE-----Generated at Sun May 3 16:12:04 2026 by rpki-client