$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55dd29a8-e973-42c1-97d9-99f3299105aa.roa File: 55dd29a8-e973-42c1-97d9-99f3299105aa.roa (raw, json) Hash identifier: xjpYyOmKOnxhn4UmmP0WUkQfoWXhEEKXBYx9/f7s4uM= Subject key identifier: DE:96:55:AE:09:17:34:DD:D4:82:B1:38:DF:C7:2B:6E:1C:96:36:CF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72BA29B0A1A5EF7855022CC55B7C4D3108EA95B5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55dd29a8-e973-42c1-97d9-99f3299105aa.roa Signing time: Fri 03 Apr 2026 00:20:46 +0000 ROA not before: Fri 03 Apr 2026 00:20:46 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fec:dc00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Apr 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ba:29:b0:a1:a5:ef:78:55:02:2c:c5:5b:7c:4d:31:08:ea:95:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 3 00:20:46 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=0cd9795140b91956bd4ec48847adb7f6dcf945c2dd1bfb55933db5a36a94bb47, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e6:43:b5:ce:f3:00:7f:ea:3b:61:2e:4d:ac: ae:11:3e:0e:36:47:58:b2:b1:19:6e:45:6c:88:43: 4b:a0:83:6b:d9:3d:54:3e:f1:87:a8:8b:d2:68:92: 0b:12:53:e1:39:40:b6:f9:da:80:d7:58:9f:61:17: 88:a2:56:38:b2:66:b7:ba:60:ef:54:85:02:d7:39: ce:58:3b:be:e2:7d:ac:ad:9d:3e:bc:88:df:37:7a: 47:7e:99:74:56:e0:7d:88:c6:99:b1:a5:cf:42:5c: 55:9f:1e:06:11:f5:39:22:f1:8b:87:c1:87:28:2a: 16:3c:0b:a1:c4:9f:e2:59:89:03:f5:4f:00:72:9c: 36:cd:5e:c4:a1:6f:f8:9b:82:02:06:0d:09:18:76: 5d:40:fd:8d:2c:db:64:1e:dd:4e:0b:e4:6f:ec:5d: 9e:89:54:60:d2:6b:bb:e0:ca:f8:fa:ca:40:34:69: f9:a9:b9:e4:86:bb:98:2a:29:60:d9:2d:cd:f5:5a: 94:c3:84:91:f8:71:00:72:1d:a7:f0:02:a8:22:f5: c8:6a:9e:7d:23:86:8e:16:95:63:69:8d:89:8c:c2: 6b:87:73:68:b8:c1:bd:67:27:53:7a:8a:28:20:f9: b3:de:d5:73:7a:92:8c:ad:fc:ed:19:fb:82:ab:7f: c5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:96:55:AE:09:17:34:DD:D4:82:B1:38:DF:C7:2B:6E:1C:96:36:CF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55dd29a8-e973-42c1-97d9-99f3299105aa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fec:dc00::/48 Signature Algorithm: sha256WithRSAEncryption 61:8d:23:d8:b1:17:6c:25:5f:b7:2f:a1:ef:95:e9:12:94:5f: 20:96:e3:49:22:4d:77:89:30:8a:3d:a5:6b:4c:0a:02:6f:20: 34:65:b2:ed:cc:2c:8c:9f:9d:7e:2e:9a:4c:ee:b0:75:e8:b0: d2:0a:d8:2c:50:b7:cc:f1:67:f3:fd:45:36:06:12:37:a4:86: 93:dc:95:ad:a7:54:9f:06:57:21:95:57:59:76:8c:71:df:cb: a5:28:bd:63:8f:1d:74:8a:e4:68:b3:38:0e:92:1e:31:91:9d: ad:3a:17:c1:26:00:15:34:a5:72:e1:c5:19:c6:1c:7a:27:ce: b0:07:d5:2b:9a:f0:5e:bd:7d:1f:df:b3:b1:40:c5:0c:87:cb: 7c:d5:6b:04:da:94:a5:3b:85:b3:14:06:88:c5:8c:70:76:06: 3d:54:a3:b4:08:39:6b:00:c2:cf:5b:25:b8:bb:6d:d1:3c:50: 7a:01:06:86:c7:59:da:ad:83:60:55:dd:2e:02:c9:70:66:ad: de:59:83:70:a6:5b:ef:f1:77:10:d2:54:c1:70:9e:15:aa:ad: 43:6e:06:33:88:fb:36:02:2f:6e:1e:15:7b:20:a3:0c:45:29: 24:e2:0f:af:b8:36:97:9b:cc:17:c2:ff:c3:9e:dd:9f:02:ab: e1:2f:a5:4e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcropsKGl73hVAizFW3xNMQjqlbUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDAzMDAyMDQ2WhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2Q5Nzk1MTQwYjkxOTU2YmQ0ZWM0ODg0N2FkYjdmNmRj Zjk0NWMyZGQxYmZiNTU5MzNkYjVhMzZhOTRiYjQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU5kO1zvMAf+o7YS5NrK4RPg42R1iysRluRWyIQ0ugg2vZ PVQ+8Yeoi9JokgsSU+E5QLb52oDXWJ9hF4iiVjiyZre6YO9UhQLXOc5YO77ifayt nT68iN83ekd+mXRW4H2Ixpmxpc9CXFWfHgYR9Tki8YuHwYcoKhY8C6HEn+JZiQP1 TwBynDbNXsShb/ibggIGDQkYdl1A/Y0s22Qe3U4L5G/sXZ6JVGDSa7vgyvj6ykA0 afmpueSGu5gqKWDZLc31WpTDhJH4cQByHafwAqgi9chqnn0jho4WlWNpjYmMwmuH c2i4wb1nJ1N6iigg+bPe1XN6koyt/O0Z+4Krf8WLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3pZVrgkXNN3UgrE438crbhyWNs8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1ZGQyOWE4LWU5NzMtNDJjMS05N2Q5LTk5ZjMyOTkxMDVhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/s3AAwDQYJKoZIhvcNAQELBQADggEBAGGNI9ixF2wlX7cvoe+V6RKU XyCW40kiTXeJMIo9pWtMCgJvIDRlsu3MLIyfnX4umkzusHXosNIK2CxQt8zxZ/P9 RTYGEjekhpPcla2nVJ8GVyGVV1l2jHHfy6UovWOPHXSK5GizOA6SHjGRna06F8Em ABU0pXLhxRnGHHonzrAH1Sua8F69fR/fs7FAxQyHy3zVawTalKU7hbMUBojFjHB2 Bj1Uo7QIOWsAws9bJbi7bdE8UHoBBobHWdqtg2BV3S4CyXBmrd5Zg3CmW+/xdxDS VMFwnhWqrUNuBjOI+zYCL24eFXsgowxFKSTiD6+4NpebzBfC/8Oe3Z8Cq+EvpU4= -----END CERTIFICATE-----Generated at Sun Apr 19 09:42:23 2026 by rpki-client