$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6352e220-cec8-412c-9a38-a2b74750551e.roa File: 6352e220-cec8-412c-9a38-a2b74750551e.roa (raw, json) Hash identifier: 7DAWA3NaHnSrgvyZ9vFkp/SuvxXAEf7Po8EUPF8xu6Y= Subject key identifier: B8:11:AA:8E:CF:69:9A:7C:F3:6A:76:D9:35:A1:CC:9B:C9:E8:A2:EE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7DB833CF4A072A6459FF00EF4741E20265986BC0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6352e220-cec8-412c-9a38-a2b74750551e.roa Signing time: Fri 15 May 2026 00:30:47 +0000 ROA not before: Fri 15 May 2026 00:30:47 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:7440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:b8:33:cf:4a:07:2a:64:59:ff:00:ef:47:41:e2:02:65:98:6b:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 00:30:47 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=76147ba3bf5fc2410411d02680ebb75e828ed5cb495d1ee69621e9ff5c05d58c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a4:83:54:63:df:a5:8c:63:6d:24:cb:9a:fb: 83:78:47:6b:4d:8f:1e:fb:75:ec:f1:05:a4:6b:7e: 9b:ce:b1:94:6f:5f:9c:d9:61:96:31:55:69:76:cc: 89:31:0a:81:d9:a0:5d:87:47:b3:50:c2:6e:fa:60: 80:b5:52:5e:65:a5:2a:02:1f:c7:34:b9:e6:0c:21: f1:f6:42:0f:18:a2:5f:02:57:44:3b:f2:5b:19:d6: 6a:06:31:1e:ba:85:db:89:78:23:65:1e:07:98:c4: 09:3c:e5:2d:b6:9f:9a:16:9b:e0:f9:27:71:70:28: a9:c2:f9:82:cb:eb:01:b9:5e:f1:54:8f:e9:5a:dd: cb:dc:d2:82:28:8c:6f:a8:a0:bf:15:86:47:89:f3: 7e:ff:49:03:c8:70:b1:3d:d1:0d:f4:b5:b2:af:7a: 55:75:88:21:67:32:e0:79:15:de:b7:90:c8:c7:da: f5:73:de:74:3e:c7:27:bc:58:8c:c2:ae:a9:e3:aa: c1:ba:3f:f0:ff:ba:a9:6e:4f:71:93:6a:93:0b:b1: 2c:f9:3b:79:32:7c:b9:15:fd:5c:af:be:99:7f:62: 36:3e:ce:08:ab:b1:5f:5d:ae:b1:7c:01:44:14:d0: c0:ad:d2:64:ab:db:7b:ab:ba:c4:b7:82:85:8f:8f: ef:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:11:AA:8E:CF:69:9A:7C:F3:6A:76:D9:35:A1:CC:9B:C9:E8:A2:EE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6352e220-cec8-412c-9a38-a2b74750551e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:7440::/48 Signature Algorithm: sha256WithRSAEncryption 64:f5:d4:83:71:a6:bd:2c:c9:7f:e3:9a:a0:14:b4:7f:a0:c5: 8e:4e:a9:a0:0c:4a:2f:11:18:e2:6e:9d:e6:bb:f3:e6:c8:e3: 46:9d:29:ef:ca:ab:15:de:ea:3c:73:bd:f8:55:21:57:b1:90: 18:1b:b1:40:bb:ff:0e:9b:79:51:bc:1d:a6:dd:76:2b:7c:cf: bc:72:d3:2d:90:8e:ec:ee:7c:67:e8:9d:e0:63:4b:01:1e:c6: 13:e1:af:76:79:e6:13:6a:c4:a2:3e:29:a3:ae:80:66:04:df: 2d:3a:ca:e7:5e:b6:34:74:44:c0:e0:f9:17:ee:d8:57:5b:d9: 7c:9d:79:52:1a:a0:72:71:39:ee:e6:90:9a:bb:6e:ed:26:aa: 40:45:e7:26:86:24:2e:6d:d6:f4:93:71:36:90:e7:cd:ab:9b: a6:1e:a2:f6:69:18:2e:84:c6:23:e2:44:c1:fb:e1:e6:15:67: ea:88:95:de:05:68:8b:82:dc:1f:cf:c3:74:61:72:88:49:13: 4f:c5:26:a6:e6:ea:1f:68:6e:dd:b3:77:6a:17:6c:c5:cf:2d: 79:a4:42:75:bb:8f:06:9c:2c:74:fa:fb:12:51:7c:14:e7:92: 76:4d:de:63:fe:60:f2:32:59:cc:45:53:99:09:09:01:d6:34: 72:b2:8e:50 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfbgzz0oHKmRZ/wDvR0HiAmWYa8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDAzMDQ3WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjE0N2JhM2JmNWZjMjQxMDQxMWQwMjY4MGViYjc1ZTgy OGVkNWNiNDk1ZDFlZTY5NjIxZTlmZjVjMDVkNThjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCppINUY9+ljGNtJMua+4N4R2tNjx77dezxBaRrfpvOsZRv X5zZYZYxVWl2zIkxCoHZoF2HR7NQwm76YIC1Ul5lpSoCH8c0ueYMIfH2Qg8Yol8C V0Q78lsZ1moGMR66hduJeCNlHgeYxAk85S22n5oWm+D5J3FwKKnC+YLL6wG5XvFU j+la3cvc0oIojG+ooL8VhkeJ837/SQPIcLE90Q30tbKvelV1iCFnMuB5Fd63kMjH 2vVz3nQ+xye8WIzCrqnjqsG6P/D/uqluT3GTapMLsSz5O3kyfLkV/Vyvvpl/YjY+ zgirsV9drrF8AUQU0MCt0mSr23urusS3goWPj+8PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuBGqjs9pmnzzanbZNaHMm8noou4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzNTJlMjIwLWNlYzgtNDEyYy05YTM4LWEyYjc0NzUwNTUxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ydEAwDQYJKoZIhvcNAQELBQADggEBAGT11INxpr0syX/jmqAUtH+g xY5OqaAMSi8RGOJunea78+bI40adKe/KqxXe6jxzvfhVIVexkBgbsUC7/w6beVG8 Habddit8z7xy0y2QjuzufGfoneBjSwEexhPhr3Z55hNqxKI+KaOugGYE3y06yude tjR0RMDg+Rfu2Fdb2XydeVIaoHJxOe7mkJq7bu0mqkBF5yaGJC5t1vSTcTaQ582r m6YeovZpGC6ExiPiRMH74eYVZ+qIld4FaIuC3B/Pw3RhcohJE0/FJqbm6h9obt2z d2oXbMXPLXmkQnW7jwacLHT6+xJRfBTnknZN3mP+YPIyWcxFU5kJCQHWNHKyjlA= -----END CERTIFICATE-----Generated at Sat Jun 13 07:09:30 2026 by rpki-client