$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f0a23c-288c-4b85-bfd7-d011cd296d33.roa File: 25f0a23c-288c-4b85-bfd7-d011cd296d33.roa (raw, json) Hash identifier: QjgXOXE5WBZiJUKgD9kUXEnN19uNYVDdqAKDgeNci38= Subject key identifier: 21:E3:19:75:0F:C5:D1:7C:33:38:26:30:10:0F:4B:DD:C3:36:29:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D78B5C11CA1F461936DDE78F17652492BBFC23A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f0a23c-288c-4b85-bfd7-d011cd296d33.roa Signing time: Sun 31 May 2026 00:50:44 +0000 ROA not before: Sun 31 May 2026 00:50:44 +0000 ROA not after: Sat 29 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fba:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:78:b5:c1:1c:a1:f4:61:93:6d:de:78:f1:76:52:49:2b:bf:c2:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 31 00:50:44 2026 GMT Not After : Aug 29 23:59:59 2026 GMT Subject: serialNumber=28f1d68acc1a7abd00f6132201ee1975965195a1323c34985faf9f988b29ced3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a6:b9:88:14:d6:e5:04:83:cd:79:b2:34:13: e8:cf:16:11:0e:e9:c8:48:62:81:5a:0c:e8:04:9a: f0:d2:06:ed:6b:0c:fa:81:58:e5:16:0b:c5:d6:59: 2e:41:95:30:55:d4:04:fa:30:b7:83:da:ae:3f:c9: 8f:df:e2:26:0a:78:5e:83:db:73:e1:96:82:3d:ee: 47:51:33:30:13:85:cd:00:44:af:f4:62:6f:34:22: 16:dd:3b:14:b5:50:af:45:ce:c9:c9:ce:e8:b4:35: 32:59:1a:51:75:38:d1:b2:d0:14:87:2f:86:7b:ea: a9:06:c9:b2:52:16:c9:cc:23:49:25:53:ee:fe:f7: fb:c4:d4:92:e0:77:c4:c1:fe:b9:43:44:17:ea:f2: 5b:ea:8c:e6:c1:cf:80:b9:4f:8d:f7:59:2b:49:dc: c7:51:62:05:ce:bf:14:ff:72:c3:bc:5f:72:7b:95: 92:5c:ad:24:04:79:2a:55:d0:df:12:54:2d:d5:6c: 05:a9:81:ec:a3:1f:2a:fb:fb:ed:9c:0d:a7:40:b8: bb:9f:61:2e:cb:29:30:73:38:80:5e:47:9b:99:cc: 4f:b3:77:f8:58:be:65:ed:c2:cd:52:5c:9f:3c:05: 12:3f:43:49:7d:42:83:a9:bb:06:6d:f1:b8:8a:0f: 65:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E3:19:75:0F:C5:D1:7C:33:38:26:30:10:0F:4B:DD:C3:36:29:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f0a23c-288c-4b85-bfd7-d011cd296d33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fba:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 9a:49:3d:bf:e9:61:4c:ff:bb:88:5c:36:9a:ea:9a:db:62:46: c0:69:7a:9c:23:82:ab:76:c5:76:47:80:e0:8b:68:4a:81:f5: aa:eb:a9:8f:71:ba:a7:89:cf:34:ad:76:bd:48:e3:a2:0e:c3: 12:33:1c:ff:48:8f:0d:48:0b:50:5e:24:38:6f:15:d4:41:4b: c3:96:90:0e:f2:1c:d9:a9:f6:e4:fb:02:9f:21:78:d5:5a:20: 63:96:66:aa:f1:6a:c3:be:69:bd:67:f7:a0:6b:c3:44:c8:a3: 42:18:8d:2b:4f:48:a6:2a:68:53:68:67:8d:17:df:0c:98:96: 1a:06:1d:64:9b:b1:5f:43:92:9b:11:7e:3a:60:f9:aa:f1:11: c1:31:69:6a:6e:05:e6:1c:33:44:d6:e0:81:78:05:d3:92:e7: b4:36:52:c4:da:27:38:10:3c:b6:e5:32:7c:99:75:11:f8:3c: 70:41:df:d9:e7:94:47:35:91:1f:f9:05:f5:03:0a:9a:48:82: 56:5b:70:b6:ce:8a:f1:fc:3d:72:5a:a4:16:ec:52:57:81:bf: 0f:30:5b:fc:0f:fb:9b:38:4a:a2:92:79:bf:82:c0:fe:30:ab: 0c:33:d6:0d:bf:ef:e2:f0:ec:d6:ce:92:3d:30:41:43:b7:b1: 7b:6a:c3:c3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHXi1wRyh9GGTbd548XZSSSu/wjowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTMxMDA1MDQ0WhcNMjYwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGYxZDY4YWNjMWE3YWJkMDBmNjEzMjIwMWVlMTk3NTk2 NTE5NWExMzIzYzM0OTg1ZmFmOWY5ODhiMjljZWQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcprmIFNblBIPNebI0E+jPFhEO6chIYoFaDOgEmvDSBu1r DPqBWOUWC8XWWS5BlTBV1AT6MLeD2q4/yY/f4iYKeF6D23PhloI97kdRMzAThc0A RK/0Ym80IhbdOxS1UK9FzsnJzui0NTJZGlF1ONGy0BSHL4Z76qkGybJSFsnMI0kl U+7+9/vE1JLgd8TB/rlDRBfq8lvqjObBz4C5T433WStJ3MdRYgXOvxT/csO8X3J7 lZJcrSQEeSpV0N8SVC3VbAWpgeyjHyr7++2cDadAuLufYS7LKTBzOIBeR5uZzE+z d/hYvmXtws1SXJ88BRI/Q0l9QoOpuwZt8biKD2XhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIeMZdQ/F0XwzOCYwEA9L3cM2KXEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1ZjBhMjNjLTI4OGMtNGI4NS1iZmQ3LWQwMTFjZDI5NmQzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB+6QMAwDQYJKoZIhvcNAQELBQADggEBAJpJPb/pYUz/u4hcNprqmtti RsBpepwjgqt2xXZHgOCLaEqB9arrqY9xuqeJzzStdr1I46IOwxIzHP9Ijw1IC1Be JDhvFdRBS8OWkA7yHNmp9uT7Ap8heNVaIGOWZqrxasO+ab1n96Brw0TIo0IYjStP SKYqaFNoZ40X3wyYlhoGHWSbsV9DkpsRfjpg+arxEcExaWpuBeYcM0TW4IF4BdOS 57Q2UsTaJzgQPLblMnyZdRH4PHBB39nnlEc1kR/5BfUDCppIglZbcLbOivH8PXJa pBbsUleBvw8wW/wP+5s4SqKSeb+CwP4wqwwz1g2/7+Lw7NbOkj0wQUO3sXtqw8M= -----END CERTIFICATE-----Generated at Sat Jun 13 07:11:00 2026 by rpki-client