$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c4b3cc1-2758-4f84-93c3-9706e2d1a0b4.roa File: 0c4b3cc1-2758-4f84-93c3-9706e2d1a0b4.roa (raw, json) Hash identifier: bYRhUtSlZ575YQKyM8aNu8XXRjCO8O31B/6Hfj95Abs= Subject key identifier: 8E:65:77:4E:B1:47:E3:F0:51:76:C5:91:82:0F:21:41:CB:D8:A8:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CAAD7CD3EB3F024868B7CC1EA57E5E8D1AB8151 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c4b3cc1-2758-4f84-93c3-9706e2d1a0b4.roa Signing time: Fri 15 May 2026 02:10:11 +0000 ROA not before: Fri 15 May 2026 02:10:11 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:aa:d7:cd:3e:b3:f0:24:86:8b:7c:c1:ea:57:e5:e8:d1:ab:81:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 02:10:11 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=621db9e13b90028027ababc3d86d053316a634c04a113f5de0b3d76c6380fffa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:09:ab:8a:c8:2e:4d:a3:38:55:bf:9a:5d:12: 84:11:06:be:1e:c7:57:11:51:f7:f7:e6:7f:86:5d: 6f:bd:32:60:1a:4a:f6:96:f8:47:9c:a0:87:9c:2c: 88:cd:c0:24:b0:47:9c:c9:cb:99:2c:eb:a9:28:35: de:44:e4:48:27:e3:b6:f4:09:bc:f8:01:57:c5:f6: f5:59:8c:70:88:1c:2e:33:64:ab:af:42:35:99:37: 4c:1d:3c:4e:eb:2a:86:b1:59:d0:53:74:35:59:ba: 7d:cd:a2:91:51:3d:30:1b:06:0c:ac:3f:2e:a0:79: 53:ef:47:e9:0c:42:b6:f5:c1:7d:0e:b2:37:6b:c1: 27:7b:d2:07:ca:87:e0:79:36:c4:57:76:bd:8f:2d: bf:f8:51:19:d4:da:80:b6:b7:bb:99:9e:1a:5a:93: f8:d2:57:9d:ff:08:21:5d:e0:2b:11:05:3a:f1:8a: fe:2d:ef:5e:29:f0:33:00:41:c2:60:54:31:87:7d: 40:4f:e0:d8:5c:6a:a5:71:07:a2:8c:01:7d:86:4c: c4:92:76:c1:26:bc:a3:f3:09:40:90:f3:1f:f9:66: a4:e3:30:7c:0b:49:8c:83:9f:70:fb:99:48:52:cc: 05:84:96:a4:a2:2b:d7:b9:25:55:8c:08:75:ed:e2: c1:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:65:77:4E:B1:47:E3:F0:51:76:C5:91:82:0F:21:41:CB:D8:A8:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c4b3cc1-2758-4f84-93c3-9706e2d1a0b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:8000::/48 Signature Algorithm: sha256WithRSAEncryption 3d:29:0f:86:38:dc:5b:9f:40:81:94:41:b2:f1:56:a4:ca:b5: f2:2a:57:05:89:79:50:c1:9b:1e:09:d4:39:50:c4:a0:38:1e: 94:5c:c8:b9:5c:a6:94:3c:a0:9d:d5:18:89:2b:4b:26:11:17: a3:0f:c8:88:a0:14:c8:0a:66:9f:11:40:88:cb:3c:ae:72:0e: b9:cb:1c:fa:95:d4:2a:7b:d7:7d:5b:1a:1a:b3:cd:55:40:4f: bc:03:aa:0a:b6:cc:2b:ee:6e:5e:b9:36:1d:74:fe:52:88:47: 13:8d:55:a0:ab:db:40:09:59:69:de:c8:a8:91:65:88:80:9e: 37:cb:ad:02:59:cb:3b:30:b2:6a:a6:b3:1e:14:90:a9:16:98: 52:a0:30:b6:c7:2e:be:49:f6:c0:4e:3e:fc:12:4a:fc:76:35: 8e:c3:23:3e:05:c8:5c:12:c5:08:e8:cb:bb:6a:28:8a:13:8c: d9:f5:18:6f:95:ba:bf:6c:71:ae:4c:fc:9c:3e:2f:a9:e8:66: e0:17:5c:2d:12:49:ec:4d:60:f5:57:40:e6:13:2c:34:49:d7: 6c:2e:31:92:9b:9e:b6:07:f1:0b:ae:c9:ef:4c:d3:b7:8b:8c: ad:8b:b4:f1:54:d5:64:da:8e:fd:f0:64:d6:01:69:08:75:26: 2a:8b:0d:78 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULKrXzT6z8CSGi3zB6lfl6NGrgVEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDIxMDExWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjFkYjllMTNiOTAwMjgwMjdhYmFiYzNkODZkMDUzMzE2 YTYzNGMwNGExMTNmNWRlMGIzZDc2YzYzODBmZmZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkCauKyC5NozhVv5pdEoQRBr4ex1cRUff35n+GXW+9MmAa SvaW+EecoIecLIjNwCSwR5zJy5ks66koNd5E5Egn47b0Cbz4AVfF9vVZjHCIHC4z ZKuvQjWZN0wdPE7rKoaxWdBTdDVZun3NopFRPTAbBgysPy6geVPvR+kMQrb1wX0O sjdrwSd70gfKh+B5NsRXdr2PLb/4URnU2oC2t7uZnhpak/jSV53/CCFd4CsRBTrx iv4t714p8DMAQcJgVDGHfUBP4NhcaqVxB6KMAX2GTMSSdsEmvKPzCUCQ8x/5ZqTj MHwLSYyDn3D7mUhSzAWElqSiK9e5JVWMCHXt4sE/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjmV3TrFH4/BRdsWRgg8hQcvYqAgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjNGIzY2MxLTI3NTgtNGY4NC05M2MzLTk3MDZlMmQxYTBiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/2gAAwDQYJKoZIhvcNAQELBQADggEBAD0pD4Y43FufQIGUQbLxVqTK tfIqVwWJeVDBmx4J1DlQxKA4HpRcyLlcppQ8oJ3VGIkrSyYRF6MPyIigFMgKZp8R QIjLPK5yDrnLHPqV1Cp7131bGhqzzVVAT7wDqgq2zCvubl65Nh10/lKIRxONVaCr 20AJWWneyKiRZYiAnjfLrQJZyzswsmqmsx4UkKkWmFKgMLbHLr5J9sBOPvwSSvx2 NY7DIz4FyFwSxQjoy7tqKIoTjNn1GG+Vur9sca5M/Jw+L6noZuAXXC0SSexNYPVX QOYTLDRJ12wuMZKbnrYH8Quuye9M07eLjK2LtPFU1WTajv3wZNYBaQh1JiqLDXg= -----END CERTIFICATE-----Generated at Sat Jun 13 08:19:21 2026 by rpki-client