$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21c12458-40e0-4368-b79a-97b69e7070f9.roa File: 21c12458-40e0-4368-b79a-97b69e7070f9.roa (raw, json) Hash identifier: ViwhV6RG1ww8ta1B5eoEU8L1Z8HQ4AKiKMukA9DizfE= Subject key identifier: 08:02:3B:98:E6:7F:D1:D5:6A:6D:F0:3E:9F:94:EE:9B:CE:AC:53:59 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32AE27FC7A4EE9AA430607851B6BB448C4224883 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21c12458-40e0-4368-b79a-97b69e7070f9.roa Signing time: Sat 16 May 2026 01:10:08 +0000 ROA not before: Sat 16 May 2026 01:10:08 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f11::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ae:27:fc:7a:4e:e9:aa:43:06:07:85:1b:6b:b4:48:c4:22:48:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:10:08 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=c3b72d75e99c098740ed2e7854daf0f8b92093d22a6dca9c6c0f96f41e773824, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a6:bb:7e:5f:d0:58:59:64:d3:0c:73:54:00: 72:97:68:35:fb:27:a2:a8:32:6b:d9:c8:aa:e3:20: 76:2d:d3:19:a6:ed:e0:92:03:c6:a5:ff:34:d3:d3: 16:e8:8e:59:3c:12:e2:75:65:57:21:09:82:2f:10: 66:72:26:2e:40:59:00:1d:bd:15:68:39:2e:94:66: 4c:37:c7:a1:0a:4c:2f:ff:d0:83:6a:3c:82:21:e1: db:b9:a5:8c:35:2e:dd:fc:54:b8:99:c5:af:0f:21: bc:2b:c6:5c:9f:c7:81:d7:5d:ff:09:10:16:59:0a: 53:b6:2f:49:97:d8:2b:f0:59:72:42:8c:c7:ad:84: ca:0c:fa:f6:91:7d:a5:96:b5:01:23:17:88:30:6d: ac:37:8d:a0:d2:6e:3e:9e:41:eb:d4:e6:37:c8:67: 2d:21:ff:ed:c4:9f:da:6c:9c:6a:66:dd:f1:59:6f: 1d:7d:2c:68:cd:df:57:03:79:3d:09:b0:17:9a:75: 41:09:4b:35:bd:af:af:ec:27:be:75:da:29:f4:62: 49:1a:2d:bb:1a:35:0c:c2:43:8a:5a:16:a2:ba:8b: c7:36:28:35:0a:a7:96:a2:d0:8e:98:83:49:c8:58: 09:9d:8e:43:6e:10:a6:6d:95:f6:1b:4e:10:d8:48: ae:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:02:3B:98:E6:7F:D1:D5:6A:6D:F0:3E:9F:94:EE:9B:CE:AC:53:59 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21c12458-40e0-4368-b79a-97b69e7070f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f11::/36 Signature Algorithm: sha256WithRSAEncryption 89:78:fa:21:62:60:d4:f0:a2:f0:55:54:c0:33:8d:46:21:78: 93:b4:89:bc:65:9e:f0:44:23:cd:40:e9:29:e9:01:96:41:69: ac:32:17:42:2a:9f:b8:6c:04:64:d4:8f:ce:78:4a:9c:55:9f: f5:38:a6:2b:72:d3:c1:0f:2f:ca:d1:f1:bb:31:90:f0:b8:c9: 56:1f:ab:fe:ee:23:23:ad:7c:7b:3e:fe:47:f1:91:33:0b:a8: 24:99:82:d4:23:28:6b:75:e5:12:8e:1a:f0:b2:dd:04:41:a5: f1:a7:bd:3b:05:a8:3d:fc:37:63:ee:11:ea:03:35:c4:03:f5: 9b:d1:7d:3a:e2:a9:69:82:1c:d9:f3:11:90:53:21:9a:5a:55: 5f:1f:56:30:62:7d:f9:99:37:6b:bf:22:ef:78:cc:5b:38:d6: 20:65:88:09:5a:0e:f2:82:39:15:b2:d3:01:77:9d:01:18:74: 14:a2:70:c3:ae:fe:27:3f:5d:87:2e:15:ae:a9:2a:c4:f3:c9: da:71:b0:3b:b5:a3:d4:bd:75:de:3c:42:57:60:32:67:7f:f0: 23:bc:60:ca:ac:5b:6a:b2:69:92:31:37:d5:51:68:e5:c4:5a: b9:4f:3a:ad:b7:a8:45:d5:75:50:1c:3b:a9:9b:7b:3c:9b:ad: a9:37:37:e0 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMq4n/HpO6apDBgeFG2u0SMQiSIMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDExMDA4WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjM2I3MmQ3NWU5OWMwOTg3NDBlZDJlNzg1NGRhZjBmOGI5 MjA5M2QyMmE2ZGNhOWM2YzBmOTZmNDFlNzczODI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZprt+X9BYWWTTDHNUAHKXaDX7J6KoMmvZyKrjIHYt0xmm 7eCSA8al/zTT0xbojlk8EuJ1ZVchCYIvEGZyJi5AWQAdvRVoOS6UZkw3x6EKTC// 0INqPIIh4du5pYw1Lt38VLiZxa8PIbwrxlyfx4HXXf8JEBZZClO2L0mX2CvwWXJC jMethMoM+vaRfaWWtQEjF4gwbaw3jaDSbj6eQevU5jfIZy0h/+3En9psnGpm3fFZ bx19LGjN31cDeT0JsBeadUEJSzW9r6/sJ7512in0YkkaLbsaNQzCQ4paFqK6i8c2 KDUKp5ai0I6Yg0nIWAmdjkNuEKZtlfYbThDYSK4dAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUCAI7mOZ/0dVqbfA+n5Tum86sU1kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxYzEyNDU4LTQwZTAtNDM2OC1iNzlhLTk3YjY5ZTcwNzBmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8RADANBgkqhkiG9w0BAQsFAAOCAQEAiXj6IWJg1PCi8FVUwDONRiF4 k7SJvGWe8EQjzUDpKekBlkFprDIXQiqfuGwEZNSPznhKnFWf9TimK3LTwQ8vytHx uzGQ8LjJVh+r/u4jI618ez7+R/GRMwuoJJmC1CMoa3XlEo4a8LLdBEGl8ae9OwWo Pfw3Y+4R6gM1xAP1m9F9OuKpaYIc2fMRkFMhmlpVXx9WMGJ9+Zk3a78i73jMWzjW IGWICVoO8oI5FbLTAXedARh0FKJww67+Jz9dhy4VrqkqxPPJ2nGwO7Wj1L113jxC V2AyZ3/wI7xgyqxbarJpkjE31VFo5cRauU86rbeoRdV1UBw7qZt7PJutqTc34A== -----END CERTIFICATE-----Generated at Sat Jun 13 13:08:48 2026 by rpki-client