$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3885190c-0e7d-4bef-85f4-9bad51bf98ab.roa File: 3885190c-0e7d-4bef-85f4-9bad51bf98ab.roa (raw, json) Hash identifier: PGFKZfpiKWt3HrFn9CJv0Skz8dgQnhlElduZdG4BFEo= Subject key identifier: EB:3D:92:8B:DD:2B:63:C8:F5:76:E2:22:88:41:76:33:D1:5D:64:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7957EA2FB938C6D31E98173318A93C9EB9887253 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3885190c-0e7d-4bef-85f4-9bad51bf98ab.roa Signing time: Tue 19 May 2026 00:41:05 +0000 ROA not before: Tue 19 May 2026 00:41:05 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1a:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:57:ea:2f:b9:38:c6:d3:1e:98:17:33:18:a9:3c:9e:b9:88:72:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:41:05 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=3e9fad72cf5ba9851398f2620560883f346a5d5395c892058b58dc3e5ef281cb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1d:01:26:5c:66:08:ce:da:02:12:c8:07:17: 84:de:88:e7:36:1a:ef:4f:d5:5c:eb:48:f6:58:0a: ee:d2:64:c1:03:a4:7e:42:c6:af:b3:6d:c8:91:5c: ab:72:85:25:23:7d:ac:e9:c2:6a:00:5c:73:fb:6e: 53:a1:af:a3:c6:a5:bf:26:56:ed:4a:42:13:1e:97: f2:14:52:e0:df:c8:00:42:57:01:5f:86:53:d4:69: 19:8b:38:c2:7f:82:24:27:d1:aa:94:11:bc:15:82: 31:9d:33:92:ad:00:0b:23:04:67:c5:72:f5:56:99: f3:bd:40:b5:a5:55:ff:f7:e3:db:7b:7b:87:f1:a9: 5e:24:e3:41:de:db:ba:f3:25:6f:06:40:88:3a:22: 66:8d:bb:cc:10:8c:fd:78:2f:89:6e:e9:48:fc:aa: bf:6b:9f:3a:f3:e8:e5:31:10:ca:11:b5:e2:38:48: cc:12:14:d6:21:95:35:dc:c3:ef:c1:c6:b8:15:b0: 67:39:ce:16:3d:16:94:36:d7:8d:42:70:2c:87:c7: 9d:b4:bc:5a:43:98:73:c8:55:e4:82:5a:e2:91:1e: 5c:58:c1:6c:cd:4b:b9:ea:98:3d:c5:f1:e7:11:9b: ae:f1:85:2c:63:30:fc:a7:44:02:44:88:0e:44:50: 39:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:3D:92:8B:DD:2B:63:C8:F5:76:E2:22:88:41:76:33:D1:5D:64:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3885190c-0e7d-4bef-85f4-9bad51bf98ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1a:c800::/37 Signature Algorithm: sha256WithRSAEncryption 18:ca:1d:77:89:79:a7:4b:53:36:cc:c0:b1:61:b1:12:48:58: af:d0:5c:37:c2:0e:5c:2a:d4:99:09:eb:23:ba:41:42:e1:00: c6:b6:2e:9e:37:02:96:39:c4:84:94:2b:4b:28:b9:e4:d6:f4: a1:4f:eb:15:d8:63:74:c5:42:20:c9:38:94:46:7d:9e:bd:45: 7b:84:08:8c:12:24:21:54:40:1c:e0:a3:4b:00:c9:6b:8e:32: d8:da:b8:2d:5b:2d:2f:5e:09:9e:06:ce:f7:6d:81:cb:f9:b1: 81:58:30:fc:de:74:7e:be:30:9c:ae:17:98:35:f2:1b:39:65: 2e:56:59:1b:b4:42:a7:a7:cc:d9:3d:85:e9:36:06:c6:0a:bf: 2c:80:15:d1:a2:c6:b7:dc:26:a2:71:b7:89:36:1d:53:01:9f: 9e:b4:92:bd:09:c3:18:57:d7:ac:a4:fa:e4:f2:73:f1:52:f6: 5d:5c:86:3c:66:89:12:ac:e2:32:28:80:35:aa:31:94:13:01: 93:0c:b9:3f:3b:81:55:1b:ff:5e:6e:64:7f:6d:a9:ca:ad:c4: ca:45:01:18:9b:d1:18:8c:7a:fa:07:ec:38:df:47:16:26:70: ab:d3:32:90:ce:c3:ee:2f:2a:a9:05:ef:6c:b0:36:d8:6e:67: ea:df:69:3d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUeVfqL7k4xtMemBczGKk8nrmIclMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDA0MTA1WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTlmYWQ3MmNmNWJhOTg1MTM5OGYyNjIwNTYwODgzZjM0 NmE1ZDUzOTVjODkyMDU4YjU4ZGMzZTVlZjI4MWNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfHQEmXGYIztoCEsgHF4TeiOc2Gu9P1VzrSPZYCu7SZMED pH5Cxq+zbciRXKtyhSUjfazpwmoAXHP7blOhr6PGpb8mVu1KQhMel/IUUuDfyABC VwFfhlPUaRmLOMJ/giQn0aqUEbwVgjGdM5KtAAsjBGfFcvVWmfO9QLWlVf/349t7 e4fxqV4k40He27rzJW8GQIg6ImaNu8wQjP14L4lu6Uj8qr9rnzrz6OUxEMoRteI4 SMwSFNYhlTXcw+/BxrgVsGc5zhY9FpQ2141CcCyHx520vFpDmHPIVeSCWuKRHlxY wWzNS7nqmD3F8ecRm67xhSxjMPynRAJEiA5EUDnRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU6z2Si90rY8j1duIiiEF2M9FdZJ4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4ODUxOTBjLTBlN2QtNGJlZi04NWY0LTliYWQ1MWJmOThhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8ayDANBgkqhkiG9w0BAQsFAAOCAQEAGModd4l5p0tTNszAsWGxEkhY r9BcN8IOXCrUmQnrI7pBQuEAxrYunjcCljnEhJQrSyi55Nb0oU/rFdhjdMVCIMk4 lEZ9nr1Fe4QIjBIkIVRAHOCjSwDJa44y2Nq4LVstL14JngbO922By/mxgVgw/N50 fr4wnK4XmDXyGzllLlZZG7RCp6fM2T2F6TYGxgq/LIAV0aLGt9wmonG3iTYdUwGf nrSSvQnDGFfXrKT65PJz8VL2XVyGPGaJEqziMiiANaoxlBMBkwy5PzuBVRv/Xm5k f22pyq3EykUBGJvRGIx6+gfsON9HFiZwq9MykM7D7i8qqQXvbLA22G5n6t9pPQ== -----END CERTIFICATE-----Generated at Sat Jun 13 08:19:32 2026 by rpki-client