$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa File: 3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa (raw, json) Hash identifier: tZuPXs7miv9apfSv54ebpE9wzyfi0YP1A+ndxf/MAlE= Subject key identifier: EE:04:A5:82:A7:71:BC:95:33:38:27:0E:1C:95:71:20:D9:7B:57:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19A456A39B82A61721E0A19DC2F384E7E97A5974 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa Signing time: Sat 16 May 2026 00:20:44 +0000 ROA not before: Sat 16 May 2026 00:20:44 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a4:56:a3:9b:82:a6:17:21:e0:a1:9d:c2:f3:84:e7:e9:7a:59:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 00:20:44 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=a08c1eac88cb113386f711267d7e044bfbe21811c57f8fc2cc3b537fae7dccc4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:12:34:4c:86:ce:7a:84:e3:db:1c:e1:12:0f: e6:8b:e1:5d:b0:c3:14:4f:30:b0:ed:8d:ef:9a:de: 2c:72:b6:c2:51:9a:55:a2:b4:b3:6d:51:65:c3:15: c4:9f:05:b0:d8:dd:77:af:9d:30:b8:8a:ac:70:17: aa:1a:d6:c8:5b:da:ec:4f:50:15:c5:26:0b:3a:13: 5a:ef:43:3b:29:e0:47:8d:fc:6d:51:ff:3b:1b:0a: ee:bb:31:f7:d6:2c:5b:d6:ad:ab:fe:fa:cb:37:3b: fa:84:1e:5c:9e:5f:9e:2f:58:d0:3c:02:05:bf:0e: e1:6f:28:80:ef:4f:d9:39:74:68:c2:9e:26:3a:78: d6:68:03:00:1a:a7:bd:92:24:66:10:32:df:6f:4c: 27:75:ca:68:b0:bc:0f:bd:0e:85:81:73:54:81:21: 42:60:fc:c8:e8:e5:cc:44:9a:82:dd:c1:e7:8d:f2: ed:77:68:04:05:7a:9d:f8:21:9f:ac:ec:39:b5:9f: 76:bd:21:f5:a4:cd:f1:1f:eb:f0:35:a3:c1:7c:cc: 86:df:50:60:d2:1d:34:f2:82:20:35:5d:c4:66:f0: e4:f4:f9:cc:ff:00:20:e8:8b:16:c2:65:41:41:dc: 06:0e:c2:f5:4f:fc:d8:a6:62:cc:41:54:38:d2:ce: 02:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:04:A5:82:A7:71:BC:95:33:38:27:0E:1C:95:71:20:D9:7B:57:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:e000::/40 Signature Algorithm: sha256WithRSAEncryption 54:e6:55:1f:80:47:4d:a6:6a:d5:75:5d:df:2e:af:f4:14:33: fe:6a:a2:2c:61:16:e9:9c:4f:00:9b:cf:9a:32:fe:1c:f4:c9: 3e:b4:66:ed:e3:a1:59:40:56:a1:af:04:17:45:98:00:40:86: 7c:da:5d:b5:4f:d8:79:52:10:9c:2f:92:64:ec:f3:70:a1:b8: 63:d8:b7:ff:3e:58:e4:f8:5e:08:84:2d:d4:94:35:8d:57:35: e1:c4:79:39:b0:bb:9a:f2:f8:c0:a5:73:4c:6e:60:2d:d6:aa: c1:94:dc:4c:3e:a7:7e:ff:a2:9c:7b:cc:43:28:49:e6:a6:22: b1:0f:80:39:f2:64:ef:6a:b9:5a:4c:a8:ae:08:79:c5:86:f6: 7f:8d:53:02:79:01:ff:39:53:67:42:1d:2d:81:e8:df:17:45: 5b:3e:b6:3c:74:21:79:23:b2:38:c7:86:10:32:53:b5:e1:3b: ad:2a:40:32:88:79:d2:e9:d2:c0:55:9d:79:b8:89:47:b3:ab: eb:00:85:03:8f:5b:ba:86:22:85:f7:8f:b4:d6:0c:86:be:32: 42:35:38:76:a0:e1:33:cd:c1:1c:0d:e2:34:e6:9b:1b:ec:bd: 3b:3a:a3:e8:6b:2a:c7:18:30:c2:1a:8b:95:de:15:74:f5:d1: 5e:38:ee:6c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGaRWo5uCphch4KGdwvOE5+l6WXQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDAyMDQ0WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDhjMWVhYzg4Y2IxMTMzODZmNzExMjY3ZDdlMDQ0YmZi ZTIxODExYzU3ZjhmYzJjYzNiNTM3ZmFlN2RjY2M0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpEjRMhs56hOPbHOESD+aL4V2wwxRPMLDtje+a3ixytsJR mlWitLNtUWXDFcSfBbDY3XevnTC4iqxwF6oa1shb2uxPUBXFJgs6E1rvQzsp4EeN /G1R/zsbCu67MffWLFvWrav++ss3O/qEHlyeX54vWNA8AgW/DuFvKIDvT9k5dGjC niY6eNZoAwAap72SJGYQMt9vTCd1ymiwvA+9DoWBc1SBIUJg/Mjo5cxEmoLdweeN 8u13aAQFep34IZ+s7Dm1n3a9IfWkzfEf6/A1o8F8zIbfUGDSHTTygiA1XcRm8OT0 +cz/ACDoixbCZUFB3AYOwvVP/NimYsxBVDjSzgLXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU7gSlgqdxvJUzOCcOHJVxINl7V2QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiM2JkZWFiLTZiMTMtNGEyOC04MGVkLTBmZTJhNWZhNGRmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//4DANBgkqhkiG9w0BAQsFAAOCAQEAVOZVH4BHTaZq1XVd3y6v9BQz /mqiLGEW6ZxPAJvPmjL+HPTJPrRm7eOhWUBWoa8EF0WYAECGfNpdtU/YeVIQnC+S ZOzzcKG4Y9i3/z5Y5PheCIQt1JQ1jVc14cR5ObC7mvL4wKVzTG5gLdaqwZTcTD6n fv+inHvMQyhJ5qYisQ+AOfJk72q5Wkyorgh5xYb2f41TAnkB/zlTZ0IdLYHo3xdF Wz62PHQheSOyOMeGEDJTteE7rSpAMoh50unSwFWdebiJR7Or6wCFA49buoYihfeP tNYMhr4yQjU4dqDhM83BHA3iNOabG+y9Ozqj6GsqxxgwwhqLld4VdPXRXjjubA== -----END CERTIFICATE-----Generated at Sat Jun 13 08:04:06 2026 by rpki-client