$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a06ef9a-306c-48a7-a898-08249a2104fa.roa File: 2a06ef9a-306c-48a7-a898-08249a2104fa.roa (raw, json) Hash identifier: tCuw9a7QxjWzZNk9EOGweE2A76B0hVJJZTBud2xpxOw= Subject key identifier: 61:C9:89:EF:F7:96:BB:E5:1A:44:F1:96:97:87:24:B8:DF:42:25:A4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 287FBFD912C30E71736FEEE3987B42042FE3C3B5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a06ef9a-306c-48a7-a898-08249a2104fa.roa Signing time: Tue 19 May 2026 00:30:54 +0000 ROA not before: Tue 19 May 2026 00:30:54 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:7f:bf:d9:12:c3:0e:71:73:6f:ee:e3:98:7b:42:04:2f:e3:c3:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:30:54 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=9050db8951e046ef022e1f2bf9d7eb6c3bcdccdc62336e07d1b87602b4da7d41, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:93:c5:8e:a1:76:4a:31:23:54:0c:fd:69:4d: ea:4c:13:77:43:5d:22:d3:7e:31:14:f5:f6:8d:a5: d8:de:99:20:6b:b0:f5:f1:bf:a8:98:8e:d4:c2:3f: f8:f5:db:47:2d:fa:9d:63:18:97:86:af:46:52:3b: b3:c7:9b:9b:de:d3:c3:ae:3d:10:3b:39:78:93:02: de:2e:42:f1:d6:2a:93:f9:c2:bd:5d:86:c8:62:30: bb:e3:0c:de:94:56:26:3c:8b:1e:d5:7b:b2:97:ca: 62:aa:22:d5:37:9c:9f:dd:00:0f:27:ac:2e:49:3d: e5:70:2b:36:e2:8f:da:e6:8d:23:a5:a6:5b:03:93: 34:cf:3a:4f:66:d5:0a:3b:af:82:c8:91:5e:95:7e: 77:ff:77:f5:88:0d:50:7e:1c:db:bf:8b:6a:80:86: 80:ac:71:25:6c:7e:9c:f3:6c:7f:40:d7:fa:f5:31: 41:37:6d:d0:ad:6b:ff:dd:24:02:08:89:7c:7a:39: fc:c7:ab:22:8e:de:73:50:1c:3b:b3:3c:d5:8e:27: b3:8f:98:6b:c5:3f:b7:8a:85:d0:89:61:39:20:0b: 7b:8d:7f:82:07:64:a1:23:81:45:eb:e3:d3:43:c8: 0c:91:89:b0:1d:e0:cc:40:f3:84:14:f6:b1:16:dd: b4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C9:89:EF:F7:96:BB:E5:1A:44:F1:96:97:87:24:B8:DF:42:25:A4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a06ef9a-306c-48a7-a898-08249a2104fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:2000::/40 Signature Algorithm: sha256WithRSAEncryption a4:b6:ed:f7:59:95:af:30:23:6c:b3:34:59:a2:a7:73:1e:75: 4c:9f:9d:00:f6:c8:38:a0:9a:43:ee:cf:63:51:75:c9:a7:da: 29:4c:a1:25:1f:86:67:fc:0c:66:a2:5b:e9:78:d0:c5:e2:c8: 1d:f3:43:9a:09:01:01:37:c4:eb:2d:47:a9:93:59:1b:b4:dd: 02:61:eb:41:e7:7b:c0:a2:0e:d2:0a:3a:02:94:ab:64:95:db: 57:af:fe:b2:fc:a1:de:b0:32:b6:2b:6c:54:6c:6e:3a:94:33: 6d:71:00:1d:95:23:63:25:9c:3c:7c:4f:a2:4a:f5:61:0c:14: 6b:28:32:cf:8d:3b:05:ad:a8:1a:87:8f:cd:a5:f8:f2:d4:43: 37:00:73:4b:e1:e0:e6:ba:26:62:93:aa:5c:78:61:a1:2f:3c: 2a:1f:66:01:ee:98:53:8e:f7:50:fc:30:63:f1:31:c8:ab:21: fa:0a:89:2a:a2:ab:24:94:92:df:6b:6a:f8:48:a6:3e:08:0a: 57:45:13:04:7a:e9:2d:0c:06:72:c2:88:d3:1a:68:d6:b9:a8: 78:36:07:ac:3c:13:0a:3e:47:e8:06:37:07:a6:af:4a:bd:4a: f6:0b:d2:2f:f1:be:a2:c3:93:2d:c8:b9:32:f0:75:d4:02:fb: d1:4e:3d:7f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKH+/2RLDDnFzb+7jmHtCBC/jw7UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDAzMDU0WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDUwZGI4OTUxZTA0NmVmMDIyZTFmMmJmOWQ3ZWI2YzNi Y2RjY2RjNjIzMzZlMDdkMWI4NzYwMmI0ZGE3ZDQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTk8WOoXZKMSNUDP1pTepME3dDXSLTfjEU9faNpdjemSBr sPXxv6iYjtTCP/j120ct+p1jGJeGr0ZSO7PHm5ve08OuPRA7OXiTAt4uQvHWKpP5 wr1dhshiMLvjDN6UViY8ix7Ve7KXymKqItU3nJ/dAA8nrC5JPeVwKzbij9rmjSOl plsDkzTPOk9m1Qo7r4LIkV6Vfnf/d/WIDVB+HNu/i2qAhoCscSVsfpzzbH9A1/r1 MUE3bdCta//dJAIIiXx6OfzHqyKO3nNQHDuzPNWOJ7OPmGvFP7eKhdCJYTkgC3uN f4IHZKEjgUXr49NDyAyRibAd4MxA84QU9rEW3bRfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUYcmJ7/eWu+UaRPGWl4ckuN9CJaQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhMDZlZjlhLTMwNmMtNDhhNy1hODk4LTA4MjQ5YTIxMDRmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gIDANBgkqhkiG9w0BAQsFAAOCAQEApLbt91mVrzAjbLM0WaKncx51 TJ+dAPbIOKCaQ+7PY1F1yafaKUyhJR+GZ/wMZqJb6XjQxeLIHfNDmgkBATfE6y1H qZNZG7TdAmHrQed7wKIO0go6ApSrZJXbV6/+svyh3rAytitsVGxuOpQzbXEAHZUj YyWcPHxPokr1YQwUaygyz407Ba2oGoePzaX48tRDNwBzS+Hg5romYpOqXHhhoS88 Kh9mAe6YU473UPwwY/ExyKsh+gqJKqKrJJSS32tq+EimPggKV0UTBHrpLQwGcsKI 0xpo1rmoeDYHrDwTCj5H6AY3B6avSr1K9gvSL/G+osOTLci5MvB11AL70U49fw== -----END CERTIFICATE-----Generated at Sat Jun 13 08:19:33 2026 by rpki-client