$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ba91d72-a5b1-4908-a961-369fc80afb97.roa File: 5ba91d72-a5b1-4908-a961-369fc80afb97.roa (raw, json) Hash identifier: x5GDqsshSq3BjlbvtPzTze19VqZ6LUAg0NHRO/mQxIs= Subject key identifier: A7:6A:A8:57:C0:3D:3F:7C:07:78:F2:84:ED:56:1B:A9:9C:5C:15:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C028DED5732FC8D07B5AC20889B5620745D60BE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ba91d72-a5b1-4908-a961-369fc80afb97.roa Signing time: Sat 16 May 2026 00:40:04 +0000 ROA not before: Sat 16 May 2026 00:40:04 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1c:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:02:8d:ed:57:32:fc:8d:07:b5:ac:20:88:9b:56:20:74:5d:60:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 00:40:04 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=a4366605ae4e640b89a42230bc49e1ee558e87ebd145d24a1fd4565ae25f567c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:15:a6:7f:cb:22:af:00:d8:57:4c:90:32:60: d5:43:9a:15:e7:a6:1a:78:c4:e2:4d:a7:4e:71:ab: 87:21:56:9a:cb:49:12:c9:a5:41:25:90:00:e6:2c: d9:ef:0a:5a:ac:03:d2:17:c5:84:a3:23:a8:b6:f6: 2f:99:bb:5b:4a:37:02:97:21:1b:77:75:d7:33:91: 76:58:65:47:16:63:2b:bc:f5:da:4a:23:9c:99:87: 8e:5d:8e:41:7b:b9:e9:cd:81:ac:8f:17:ac:76:d8: 75:26:43:8f:3b:83:29:d5:f4:50:58:02:6a:f6:3e: 19:1e:76:56:1c:00:cc:8d:d5:77:b6:b6:c2:76:f5: 08:a5:f0:a9:11:bb:88:12:1e:4b:62:db:ae:c8:6b: 14:d1:c8:ad:16:4f:47:1e:f0:40:6d:34:ff:4d:bc: d3:4f:33:09:e0:03:31:50:d6:b9:ba:da:ec:fa:3e: aa:40:d9:df:c2:df:bf:eb:bb:66:04:16:34:b1:66: 82:38:5f:b0:17:51:5c:33:2c:1f:05:7e:10:0c:8c: 8c:54:4b:71:51:b7:de:3c:06:98:c3:3c:5e:10:b1: c2:7d:1f:f9:d9:b7:11:9b:54:01:2c:9d:63:e9:01: 46:56:b4:4c:24:36:b3:88:ce:8a:d2:0f:08:4e:53: 0c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:6A:A8:57:C0:3D:3F:7C:07:78:F2:84:ED:56:1B:A9:9C:5C:15:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ba91d72-a5b1-4908-a961-369fc80afb97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1c:c800::/37 Signature Algorithm: sha256WithRSAEncryption 36:ac:0e:c3:38:9c:1d:ec:4c:39:60:3a:61:3d:3f:8a:4b:df: 7f:99:e5:a9:42:3c:b6:c7:8f:cf:78:9c:24:ca:ae:46:f9:90: 00:74:53:2e:cb:ba:ac:fd:c7:80:86:73:ff:37:48:7a:d7:08: b3:7e:79:cf:f2:7c:43:76:7e:1f:c9:92:99:b3:7c:a2:03:a0: d7:3b:b7:4c:18:dd:13:9d:1a:68:51:93:ea:3a:8d:d4:60:d5: 7a:52:ce:c2:62:ea:fd:59:3a:11:39:fd:1f:2a:06:57:11:55: e7:20:1b:4a:ab:7a:10:51:dc:58:00:fd:c4:83:0a:59:ef:5e: 99:bb:71:6d:f2:6d:aa:92:b0:fc:db:97:4b:0f:61:ee:b5:d8: e6:d9:ab:48:90:07:98:5f:ac:a6:70:0a:f5:f3:aa:48:b8:16: 78:6f:74:7c:de:2f:83:e2:38:83:20:ab:7d:6a:ad:4e:b4:48: 52:62:6e:43:2a:05:40:c1:55:40:d4:6c:ed:b7:9a:b2:80:15: a7:94:d7:2b:5e:1b:7d:f9:8f:97:d0:3e:70:9a:dd:52:69:31: 54:1c:13:3a:af:36:e1:b7:24:a3:d0:a5:aa:32:c3:50:d4:c0: fa:81:df:34:ea:83:86:3b:c3:1b:3a:2e:8e:a5:11:70:f5:ab: 25:a7:29:52 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbAKN7Vcy/I0HtawgiJtWIHRdYL4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDA0MDA0WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDM2NjYwNWFlNGU2NDBiODlhNDIyMzBiYzQ5ZTFlZTU1 OGU4N2ViZDE0NWQyNGExZmQ0NTY1YWUyNWY1NjdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7FaZ/yyKvANhXTJAyYNVDmhXnphp4xOJNp05xq4chVprL SRLJpUElkADmLNnvClqsA9IXxYSjI6i29i+Zu1tKNwKXIRt3ddczkXZYZUcWYyu8 9dpKI5yZh45djkF7uenNgayPF6x22HUmQ487gynV9FBYAmr2PhkedlYcAMyN1Xe2 tsJ29Qil8KkRu4gSHkti267IaxTRyK0WT0ce8EBtNP9NvNNPMwngAzFQ1rm62uz6 PqpA2d/C37/ru2YEFjSxZoI4X7AXUVwzLB8FfhAMjIxUS3FRt948BpjDPF4QscJ9 H/nZtxGbVAEsnWPpAUZWtEwkNrOIzorSDwhOUwyvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUp2qoV8A9P3wHePKE7VYbqZxcFU4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzViYTkxZDcyLWE1YjEtNDkwOC1hOTYxLTM2OWZjODBhZmI5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8cyDANBgkqhkiG9w0BAQsFAAOCAQEANqwOwzicHexMOWA6YT0/ikvf f5nlqUI8tsePz3icJMquRvmQAHRTLsu6rP3HgIZz/zdIetcIs355z/J8Q3Z+H8mS mbN8ogOg1zu3TBjdE50aaFGT6jqN1GDVelLOwmLq/Vk6ETn9HyoGVxFV5yAbSqt6 EFHcWAD9xIMKWe9embtxbfJtqpKw/NuXSw9h7rXY5tmrSJAHmF+spnAK9fOqSLgW eG90fN4vg+I4gyCrfWqtTrRIUmJuQyoFQMFVQNRs7beasoAVp5TXK14bffmPl9A+ cJrdUmkxVBwTOq824bcko9ClqjLDUNTA+oHfNOqDhjvDGzoujqURcPWrJacpUg== -----END CERTIFICATE-----Generated at Sat Jun 13 09:36:05 2026 by rpki-client