$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0e34974-8c10-424f-b908-fd4ff152e924.roa File: d0e34974-8c10-424f-b908-fd4ff152e924.roa (raw, json) Hash identifier: 9sJG64kpUX+Ot5k8cWE2WGf0gZ8fw2+fw0ddmP29YC4= Subject key identifier: 17:9F:62:91:FC:8A:8E:43:F6:4B:01:FD:E7:16:41:E3:FD:67:8C:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D873D7CD85FBB6CAAE612C8D43BA6AF52CB8311 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0e34974-8c10-424f-b908-fd4ff152e924.roa Signing time: Wed 29 Apr 2026 00:11:38 +0000 ROA not before: Wed 29 Apr 2026 00:11:38 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:87:3d:7c:d8:5f:bb:6c:aa:e6:12:c8:d4:3b:a6:af:52:cb:83:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:11:38 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=af4b0e0f0a5c177e03a64be9548ea2764717d27991d47983f5d714faf84d81ac, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:79:e9:d3:04:18:be:c9:1e:9a:23:d3:ed:36: 2b:c3:ec:b5:da:7e:85:14:4a:db:1f:da:8e:0d:b7: 23:77:b7:7e:1d:35:69:f8:42:69:80:2d:01:11:2f: fd:8d:90:51:9a:ea:0a:4e:69:5d:a1:3f:5e:14:fe: c6:a3:51:af:9a:98:ab:96:b6:e8:ef:b8:c3:8c:af: 58:6f:e2:bd:2b:38:9a:89:ae:e7:b5:bc:51:24:18: e6:f8:66:79:f4:00:5a:c1:91:96:e0:32:3a:ca:c4: 39:0a:30:f3:64:81:9a:f6:37:50:8e:a4:47:eb:22: 29:8a:99:b8:21:aa:e2:65:2e:bc:98:89:22:b9:6a: 37:d9:06:bb:fa:2f:58:58:c0:41:5f:7f:f5:c9:7e: 17:b6:8e:95:ed:77:d4:27:54:38:15:b5:14:44:03: d9:da:96:34:c5:54:46:c1:2e:c1:a1:4d:d5:99:ae: 65:51:ec:6c:ae:a4:31:76:f6:51:b0:f5:fa:11:79: f6:80:5b:10:e5:68:c9:a9:4f:ed:04:ce:1a:68:19: 26:2d:09:33:2a:24:9c:39:24:1b:b8:8b:7f:b8:25: 2a:d0:e1:01:0c:97:1a:d2:42:2b:e5:11:3e:11:4d: ec:86:28:94:db:0f:12:58:c2:a4:7b:52:79:c8:4d: 6f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:9F:62:91:FC:8A:8E:43:F6:4B:01:FD:E7:16:41:E3:FD:67:8C:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0e34974-8c10-424f-b908-fd4ff152e924.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:1000::/40 Signature Algorithm: sha256WithRSAEncryption 38:ea:b3:bd:c7:79:0d:bc:33:e8:e7:d2:7f:10:a9:d5:ad:f9: 2c:7d:4d:52:56:d2:e2:52:ea:03:12:41:b4:c1:c7:a4:79:c1: 48:c9:81:6e:43:4a:4d:cf:fc:cb:5f:5c:a4:4d:6f:98:9c:d1: 44:47:33:7a:f0:01:2c:66:d5:a2:99:90:f2:f8:a4:e2:c8:76: 83:7b:8b:4c:ae:38:3e:5d:67:42:1c:8e:9f:27:06:9a:8d:72: fe:fc:c3:45:72:ce:ad:52:13:3a:57:e9:6d:50:99:88:8e:72: d5:c9:97:0f:31:75:8d:cf:a8:70:84:26:32:8d:91:66:a1:91: 2f:42:4a:cb:50:da:7c:76:14:2b:15:09:88:c4:b1:53:d7:f1: c1:64:52:f2:3c:14:de:47:ad:e8:64:f4:6a:94:ac:65:f0:b3: 30:d1:86:88:35:a3:ff:d3:be:ec:e8:c8:67:b9:cf:fc:ec:1e: 0a:16:cf:c4:60:30:9e:63:61:99:6e:78:27:5e:16:53:53:53: f6:f6:ea:2e:6c:87:14:a5:a7:cd:97:15:7a:bf:ec:73:14:1e: c5:1c:61:0b:38:05:73:7b:13:41:a6:86:f0:b3:ef:21:55:e3: fe:33:28:08:c0:b1:67:7d:00:60:2b:91:2c:f9:c0:cb:48:95: 42:b8:9e:8c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfYc9fNhfu2yq5hLI1Dumr1LLgxEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAxMTM4WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjRiMGUwZjBhNWMxNzdlMDNhNjRiZTk1NDhlYTI3NjQ3 MTdkMjc5OTFkNDc5ODNmNWQ3MTRmYWY4NGQ4MWFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfeenTBBi+yR6aI9PtNivD7LXafoUUStsf2o4NtyN3t34d NWn4QmmALQERL/2NkFGa6gpOaV2hP14U/sajUa+amKuWtujvuMOMr1hv4r0rOJqJ rue1vFEkGOb4Znn0AFrBkZbgMjrKxDkKMPNkgZr2N1COpEfrIimKmbghquJlLryY iSK5ajfZBrv6L1hYwEFff/XJfhe2jpXtd9QnVDgVtRREA9naljTFVEbBLsGhTdWZ rmVR7GyupDF29lGw9foRefaAWxDlaMmpT+0EzhpoGSYtCTMqJJw5JBu4i3+4JSrQ 4QEMlxrSQivlET4RTeyGKJTbDxJYwqR7UnnITW8bAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUF59ikfyKjkP2SwH95xZB4/1njE8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwZTM0OTc0LThjMTAtNDI0Zi1iOTA4LWZkNGZmMTUyZTkyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/4EDANBgkqhkiG9w0BAQsFAAOCAQEAOOqzvcd5Dbwz6OfSfxCp1a35 LH1NUlbS4lLqAxJBtMHHpHnBSMmBbkNKTc/8y19cpE1vmJzRREczevABLGbVopmQ 8vik4sh2g3uLTK44Pl1nQhyOnycGmo1y/vzDRXLOrVITOlfpbVCZiI5y1cmXDzF1 jc+ocIQmMo2RZqGRL0JKy1DafHYUKxUJiMSxU9fxwWRS8jwU3ket6GT0apSsZfCz MNGGiDWj/9O+7OjIZ7nP/OweChbPxGAwnmNhmW54J14WU1NT9vbqLmyHFKWnzZcV er/scxQexRxhCzgFc3sTQaaG8LPvIVXj/jMoCMCxZ30AYCuRLPnAy0iVQriejA== -----END CERTIFICATE-----Generated at Sun May 3 14:50:12 2026 by rpki-client