$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a404ce5-af18-4099-a73f-7d7469d0fbec.roa File: 3a404ce5-af18-4099-a73f-7d7469d0fbec.roa (raw, json) Hash identifier: WHDi7wSfpUPjKQZ9e+lz4Y+A1PZvmgUN6dx3X6XzW7M= Subject key identifier: 6D:E0:8C:E6:C3:98:42:06:B0:1E:40:94:5D:87:EC:BF:4C:8A:F8:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43DB62E9506C6B5043265F63691764A45C460272 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a404ce5-af18-4099-a73f-7d7469d0fbec.roa Signing time: Fri 22 May 2026 16:50:20 +0000 ROA not before: Fri 22 May 2026 16:50:20 +0000 ROA not after: Thu 20 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f36:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:db:62:e9:50:6c:6b:50:43:26:5f:63:69:17:64:a4:5c:46:02:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 22 16:50:20 2026 GMT Not After : Aug 20 23:59:59 2026 GMT Subject: serialNumber=62c1ee66d8902dbb45ab1f9537e82a9188ddacbf7c237e86247d69dac0b27609, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a4:9b:1c:0b:9b:e1:63:a2:5b:12:14:be:48: 33:b9:79:33:dd:98:51:84:2d:2a:5a:61:b1:99:72: b4:fa:16:ab:22:0d:ac:41:54:c0:2d:0c:b4:d1:e8: 7b:76:1f:0b:da:8c:91:16:b3:41:83:cc:ad:b9:e2: ee:5f:f9:32:56:56:00:56:99:e1:d9:42:85:0c:8d: 2b:d0:b7:8b:86:cd:0b:00:f0:a4:e2:00:70:b5:d6: 0d:0b:b5:82:94:d9:e6:ba:f8:0a:d7:5c:ac:3f:ea: 05:4c:52:d7:1b:03:a1:71:3c:b3:e8:dd:3d:0e:a3: f7:34:0b:e6:85:85:33:c4:fe:3a:30:cf:46:b6:3f: 2a:dd:fa:ef:18:56:26:9b:3c:8f:26:54:d1:6d:9f: 9f:f3:d3:a6:e7:91:27:cd:08:69:ee:ad:56:2a:e0: c4:05:95:7e:b7:e0:78:d5:24:e7:40:c2:3c:32:3c: fa:5e:99:f2:88:a1:36:aa:b5:a5:01:ac:21:61:4e: 31:cc:ce:8c:e9:f3:96:95:1d:8e:37:12:e6:4b:e7: 1e:cb:d7:68:13:2d:ad:6d:e0:db:3e:04:d6:f7:00: c5:f7:57:f8:05:02:02:68:16:01:ef:6d:d0:44:05: c7:32:51:04:23:84:24:35:a4:05:81:f2:5e:4c:ed: e8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:E0:8C:E6:C3:98:42:06:B0:1E:40:94:5D:87:EC:BF:4C:8A:F8:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a404ce5-af18-4099-a73f-7d7469d0fbec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f36:800::/40 Signature Algorithm: sha256WithRSAEncryption b5:c8:2a:27:c2:71:0e:97:ab:1d:c5:db:58:0e:d7:c4:78:c3: bf:3c:77:6f:a3:74:f3:cb:f5:62:ef:7c:12:e5:38:a2:f3:e3: e2:c1:0d:af:a1:4a:78:f0:0c:b0:53:89:4e:e6:05:d7:7a:7e: d1:02:c2:88:6b:26:1b:d6:70:7e:8e:7e:15:8a:ec:b9:15:f5: c9:0c:2c:6e:1e:41:2e:1e:4f:2f:53:34:9b:b1:96:ad:9a:90: 53:45:11:88:ee:89:8d:f2:60:40:dd:5e:b6:65:95:95:be:d6: a3:b0:e1:19:ed:70:99:f0:19:19:ab:0b:52:98:ce:58:e3:95: e5:c5:ee:f8:50:c8:f8:b0:2f:db:db:5c:15:f3:6b:f8:83:c4: c6:5c:ad:a0:89:aa:69:d8:78:72:ba:d2:7e:f3:92:ac:cf:e1: d2:1a:07:be:f7:f8:b3:75:f8:89:7b:4e:96:ec:23:0e:22:b6: 77:e7:0d:6c:dd:68:8f:ae:90:ea:fd:e9:02:93:55:a8:50:ed: b3:0e:f5:9b:9d:36:44:2f:f5:c6:95:f4:48:49:41:1b:d5:8c: e5:72:12:86:07:1d:b7:f5:77:45:d6:50:ac:64:3f:9d:82:db: 3e:31:9e:7a:06:ef:c6:b6:11:9b:76:f0:e7:89:ae:41:9e:c0: c2:40:a6:7e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQ9ti6VBsa1BDJl9jaRdkpFxGAnIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIyMTY1MDIwWhcNMjYwODIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MmMxZWU2NmQ4OTAyZGJiNDVhYjFmOTUzN2U4MmE5MTg4 ZGRhY2JmN2MyMzdlODYyNDdkNjlkYWMwYjI3NjA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLpJscC5vhY6JbEhS+SDO5eTPdmFGELSpaYbGZcrT6Fqsi DaxBVMAtDLTR6Ht2HwvajJEWs0GDzK254u5f+TJWVgBWmeHZQoUMjSvQt4uGzQsA 8KTiAHC11g0LtYKU2ea6+ArXXKw/6gVMUtcbA6FxPLPo3T0Oo/c0C+aFhTPE/jow z0a2Pyrd+u8YViabPI8mVNFtn5/z06bnkSfNCGnurVYq4MQFlX634HjVJOdAwjwy PPpemfKIoTaqtaUBrCFhTjHMzozp85aVHY43EuZL5x7L12gTLa1t4Ns+BNb3AMX3 V/gFAgJoFgHvbdBEBccyUQQjhCQ1pAWB8l5M7egXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUbeCM5sOYQgawHkCUXYfsv0yK+FcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNhNDA0Y2U1LWFmMTgtNDA5OS1hNzNmLTdkNzQ2OWQwZmJlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB82CDANBgkqhkiG9w0BAQsFAAOCAQEAtcgqJ8JxDperHcXbWA7XxHjD vzx3b6N088v1Yu98EuU4ovPj4sENr6FKePAMsFOJTuYF13p+0QLCiGsmG9Zwfo5+ FYrsuRX1yQwsbh5BLh5PL1M0m7GWrZqQU0URiO6JjfJgQN1etmWVlb7Wo7DhGe1w mfAZGasLUpjOWOOV5cXu+FDI+LAv29tcFfNr+IPExlytoImqadh4crrSfvOSrM/h 0hoHvvf4s3X4iXtOluwjDiK2d+cNbN1oj66Q6v3pApNVqFDtsw71m502RC/1xpX0 SElBG9WM5XIShgcdt/V3RdZQrGQ/nYLbPjGeegbvxrYRm3bw54muQZ7AwkCmfg== -----END CERTIFICATE-----Generated at Sat Jun 13 06:38:31 2026 by rpki-client