$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/067db7a0-98da-4f57-9f73-acefae7c5ebb.roa File: 067db7a0-98da-4f57-9f73-acefae7c5ebb.roa (raw, json) Hash identifier: 4Pji5uQB2MFWQ+2iDMlIalEwejef6YeVhbeTrLIUA2s= Subject key identifier: AC:80:9C:48:89:05:B3:A0:26:86:92:01:6B:33:6C:53:5A:64:78:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0AB2803FD48A408A0FE6A7BA55381C45C6B0CA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/067db7a0-98da-4f57-9f73-acefae7c5ebb.roa Signing time: Sat 16 May 2026 01:01:17 +0000 ROA not before: Sat 16 May 2026 01:01:17 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b2:80:3f:d4:8a:40:8a:0f:e6:a7:ba:55:38:1c:45:c6:b0:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:01:17 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=fadb83678e6c5f096f7dbf9ec89607b3c1a25938ce75ad28fbbfcd7fbb204a68, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1e:85:2a:99:b9:9d:22:69:ec:e9:62:7f:eb: 96:94:13:33:dc:c5:d2:bb:fe:89:97:7d:32:73:36: fd:10:6b:55:a5:d6:d6:cc:58:f7:3b:f7:f7:4e:e8: fc:cc:5a:98:c9:a3:e6:72:09:42:c3:30:df:46:92: 6c:25:f0:ae:d8:96:1a:ca:6f:1c:ce:14:80:8e:b5: a5:88:76:84:ca:fc:14:bc:9f:b3:67:44:89:19:4b: 79:46:01:6b:1f:78:24:55:ae:83:b3:1e:5c:65:04: e8:19:0d:f1:1c:70:89:be:3a:2f:c5:4d:b9:75:d8: ba:e1:04:a8:b7:a3:9c:dc:38:81:fd:4a:3f:6b:13: 40:6b:57:f7:8c:47:a7:3a:ce:35:f8:04:67:52:8d: 36:0e:ae:f7:4b:ce:52:88:10:03:c5:b9:9d:d4:fd: 33:eb:0e:e8:81:f3:2a:d4:be:1d:85:51:8a:ed:fa: a5:91:4a:ce:c8:0b:95:a9:8c:da:be:a7:20:c0:b8: 3d:5f:cb:8d:e5:31:c6:d6:41:6a:38:fd:19:da:30: f9:6a:d9:c1:19:5d:f9:bb:b0:c8:2e:b1:3b:08:ad: 46:06:53:92:6f:ff:cb:fc:6a:32:4d:d9:72:3d:0f: 1d:45:95:c3:63:c3:cb:9b:44:0b:07:cd:30:f3:b7: 7c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:80:9C:48:89:05:B3:A0:26:86:92:01:6B:33:6C:53:5A:64:78:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/067db7a0-98da-4f57-9f73-acefae7c5ebb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:8000::/39 Signature Algorithm: sha256WithRSAEncryption 0e:fe:67:42:8d:c0:96:79:98:bd:02:77:0e:31:9a:95:81:41: 47:d4:0f:29:c9:53:4b:8c:fc:70:e0:c6:c1:96:3f:85:70:96: fd:7a:d4:bb:a5:48:6a:bf:7c:c6:37:ad:00:51:f0:0a:37:c6: 3f:dd:33:da:37:3c:93:ba:b0:24:a6:bd:9a:ed:df:cd:a1:04: 73:f4:01:be:05:a2:e0:61:cc:72:31:bf:e3:7c:b5:10:19:0c: 50:c9:b4:6a:22:a0:e4:54:b8:b1:25:7d:d6:18:52:d7:99:b5: f7:4d:a4:b7:7d:cd:0c:08:2f:2f:fa:91:0e:33:26:c3:f7:98: 4c:6b:7b:dc:b5:61:0c:de:6d:39:d4:f6:9b:de:bc:3b:1f:db: ba:82:7f:59:38:16:81:6f:b8:e7:b5:4d:da:9f:73:56:d5:b7: a3:1b:ad:1d:71:14:a6:19:7d:65:ef:b9:e3:1b:f0:11:0c:b8: f0:75:ba:b8:71:3a:1d:9c:5f:58:aa:c3:da:ab:3c:f2:ac:30: ec:3a:38:ac:25:83:a8:a1:82:b1:21:56:a3:35:b8:7d:ff:ea: b1:04:c0:c0:8e:45:1b:9a:83:0c:f4:58:e5:68:71:f7:c6:b7: 56:97:13:3b:a8:2a:90:a2:0d:68:40:3b:9a:1d:9b:92:92:45: 9d:03:6a:e3 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITCrKAP9SKQIoP5qe6VTgcRcawyjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNjA1MTYwMTAxMTdaFw0yNjA4MTQyMzU5NTla MHoxSTBHBgNVBAUTQGZhZGI4MzY3OGU2YzVmMDk2ZjdkYmY5ZWM4OTYwN2IzYzFh MjU5MzhjZTc1YWQyOGZiYmZjZDdmYmIyMDRhNjgxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMMehSqZuZ0iaezpYn/rlpQTM9zF0rv+iZd9MnM2/RBrVaXW 1sxY9zv3907o/MxamMmj5nIJQsMw30aSbCXwrtiWGspvHM4UgI61pYh2hMr8FLyf s2dEiRlLeUYBax94JFWug7MeXGUE6BkN8Rxwib46L8VNuXXYuuEEqLejnNw4gf1K P2sTQGtX94xHpzrONfgEZ1KNNg6u90vOUogQA8W5ndT9M+sO6IHzKtS+HYVRiu36 pZFKzsgLlamM2r6nIMC4PV/LjeUxxtZBajj9Gdow+WrZwRld+buwyC6xOwitRgZT km//y/xqMk3Zcj0PHUWVw2PDy5tECwfNMPO3fFcCAwEAAaOCArMwggKvMB0GA1Ud DgQWBBSsgJxIiQWzoCaGkgFrM2xTWmR4/zAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMDY3ZGI3YTAtOThkYS00ZjU3LTlmNzMtYWNlZmFlN2M1ZWJiLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGASYAH/aAMA0GCSqGSIb3DQEBCwUAA4IBAQAO/mdCjcCWeZi9AncOMZqVgUFH 1A8pyVNLjPxw4MbBlj+FcJb9etS7pUhqv3zGN60AUfAKN8Y/3TPaNzyTurAkpr2a 7d/NoQRz9AG+BaLgYcxyMb/jfLUQGQxQybRqIqDkVLixJX3WGFLXmbX3TaS3fc0M CC8v+pEOMybD95hMa3vctWEM3m051Pab3rw7H9u6gn9ZOBaBb7jntU3an3NW1bej G60dcRSmGX1l77njG/ARDLjwdbq4cTodnF9YqsPaqzzyrDDsOjisJYOooYKxIVaj Nbh9/+qxBMDAjkUbmoMM9FjlaHH3xrdWlxM7qCqQog1oQDuaHZuSkkWdA2rj -----END CERTIFICATE-----Generated at Sat Jun 13 05:47:43 2026 by rpki-client