$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa File: 3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa (raw, json) Hash identifier: wpTH5zwiTM5L/H6s5J3lH/+VuV3E80ZxAdYN34lQPb4= Subject key identifier: F0:0F:2C:8E:E9:32:CB:7C:74:1A:D9:7F:1D:06:97:DB:46:8C:A7:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 527BCB918BE3AC2DB42ECF883B99CC0E7936ED3F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa Signing time: Sat 16 May 2026 01:51:01 +0000 ROA not before: Sat 16 May 2026 01:51:01 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:c040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:7b:cb:91:8b:e3:ac:2d:b4:2e:cf:88:3b:99:cc:0e:79:36:ed:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:51:01 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=bd37d5b2ca799f75683b282a564e667e4d53237e27b461e05d4b55fca3caa393, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:97:08:02:6c:d2:25:ad:35:2d:9c:28:5c:c5: 44:96:0e:4f:da:5f:54:6d:8e:72:43:a8:e4:09:9d: f2:30:da:72:39:46:2c:56:23:04:73:42:b4:3e:39: d0:a9:d6:46:f9:d9:11:de:82:bf:a7:bd:58:58:07: 07:f5:db:aa:9d:b4:a0:55:b8:cb:d1:e7:a7:37:55: a0:16:a1:1b:6a:c0:98:82:e5:1f:3f:1e:c3:3e:94: 63:9b:a3:60:1f:64:84:a3:65:3f:d7:29:a9:32:b1: 4b:10:51:b0:d8:f1:72:1f:af:8b:e6:d9:7b:10:cd: c1:4c:0f:07:c5:04:98:5a:1c:e0:e7:5a:a5:c3:f5: 7c:1b:3a:ee:d8:b0:5c:95:1f:64:fd:ce:b5:4b:28: e7:6b:43:25:ff:74:e1:b3:99:24:2f:3a:c5:df:73: 32:7c:d0:28:49:47:16:d3:f7:32:d1:0e:b5:89:e8: 6d:e8:8c:ba:be:3d:f8:f1:dd:5a:c5:f9:73:80:b5: 8b:13:55:85:08:c9:ab:d3:5a:69:5f:28:5d:e8:ba: ca:3a:24:35:05:27:47:c2:ad:72:af:4d:06:81:0c: 94:92:79:4d:e0:f9:85:9c:62:9b:fc:27:69:f0:5f: b5:95:6b:ad:8a:f3:bf:ca:a0:77:29:66:27:f0:f2: bc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:0F:2C:8E:E9:32:CB:7C:74:1A:D9:7F:1D:06:97:DB:46:8C:A7:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:c040::/48 Signature Algorithm: sha256WithRSAEncryption 37:bd:11:a6:ff:fe:97:1c:61:92:32:b1:1f:5c:ef:b9:0b:76: 88:49:6a:95:8c:39:a9:ba:0e:2a:10:42:1e:31:78:bd:ee:13: 1c:0f:b7:30:5b:70:84:12:7d:88:9c:19:a7:5b:52:cb:82:6a: e1:b5:49:c8:9e:21:80:49:2b:6a:d5:ab:02:45:9e:bc:51:7a: 2b:90:ab:42:56:14:19:21:04:e1:b9:1f:df:84:3f:af:22:3e: fc:64:f3:3b:dd:9f:22:d9:88:ea:97:d0:d5:dc:ce:4a:69:8d: 9a:38:d4:97:0e:84:b3:7a:46:29:39:1e:19:04:af:07:a2:0c: 1b:fb:3f:b9:59:cd:34:96:0f:5b:30:ee:3f:3e:f4:5e:a8:89: 1a:a2:91:0b:dd:c7:e4:04:c3:55:3e:ac:59:5c:6c:dd:ab:2e: 8e:d5:40:9e:72:14:34:c7:5d:7e:c6:9f:2f:23:e1:51:ad:88: 5a:69:a5:d5:b4:47:94:15:d6:f2:51:5d:c1:b4:dc:6a:e9:06: 20:7c:98:70:ce:4f:71:c5:81:14:8b:ef:c4:b5:a7:da:e8:6c: b9:e4:a2:e5:03:0a:c7:77:2e:22:d8:64:91:11:87:27:69:5a: 3a:6e:a1:fd:12:fb:ae:5c:12:1f:98:21:28:7f:fa:13:59:ec: fc:e8:84:d2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUnvLkYvjrC20Ls+IO5nMDnk27T8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDE1MTAxWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDM3ZDViMmNhNzk5Zjc1NjgzYjI4MmE1NjRlNjY3ZTRk NTMyMzdlMjdiNDYxZTA1ZDRiNTVmY2EzY2FhMzkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8lwgCbNIlrTUtnChcxUSWDk/aX1RtjnJDqOQJnfIw2nI5 RixWIwRzQrQ+OdCp1kb52RHegr+nvVhYBwf126qdtKBVuMvR56c3VaAWoRtqwJiC 5R8/HsM+lGObo2AfZISjZT/XKakysUsQUbDY8XIfr4vm2XsQzcFMDwfFBJhaHODn WqXD9XwbOu7YsFyVH2T9zrVLKOdrQyX/dOGzmSQvOsXfczJ80ChJRxbT9zLRDrWJ 6G3ojLq+Pfjx3VrF+XOAtYsTVYUIyavTWmlfKF3ouso6JDUFJ0fCrXKvTQaBDJSS eU3g+YWcYpv8J2nwX7WVa62K87/KoHcpZifw8rwPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8A8sjukyy3x0Gtl/HQaX20aMp14wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3MzRlN2RiLThmMjItNDBlMC1iMmNjLTQ4OWYyZDYzNjVmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//wEAwDQYJKoZIhvcNAQELBQADggEBADe9Eab//pccYZIysR9c77kL dohJapWMOam6DioQQh4xeL3uExwPtzBbcIQSfYicGadbUsuCauG1ScieIYBJK2rV qwJFnrxReiuQq0JWFBkhBOG5H9+EP68iPvxk8zvdnyLZiOqX0NXczkppjZo41JcO hLN6Rik5HhkErweiDBv7P7lZzTSWD1sw7j8+9F6oiRqikQvdx+QEw1U+rFlcbN2r Lo7VQJ5yFDTHXX7Gny8j4VGtiFpppdW0R5QV1vJRXcG03GrpBiB8mHDOT3HFgRSL 78S1p9robLnkouUDCsd3LiLYZJERhydpWjpuof0S+65cEh+YISh/+hNZ7PzohNI= -----END CERTIFICATE-----Generated at Sat Jun 13 08:18:17 2026 by rpki-client