$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a23495d-0d6b-499b-9424-b8406aeda85a.roa File: 8a23495d-0d6b-499b-9424-b8406aeda85a.roa (raw, json) Hash identifier: Oz05hh4v4U4cF3ZZDUEdga7nw4/7pXVpfA47N8j1OLA= Subject key identifier: 5D:A7:10:44:52:84:2D:12:2C:BC:5A:32:45:28:78:C1:8D:67:FF:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50C009CA77BB2D4CB341A5A59A84659002A3507E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a23495d-0d6b-499b-9424-b8406aeda85a.roa Signing time: Fri 15 May 2026 00:20:11 +0000 ROA not before: Fri 15 May 2026 00:20:11 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:8070::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:c0:09:ca:77:bb:2d:4c:b3:41:a5:a5:9a:84:65:90:02:a3:50:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 00:20:11 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=7f349f19ccfb5779368375ccdd5d0c081dd0da1c243db086a723d68787da5544, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:15:8b:3f:f9:03:bb:fe:0b:8c:c9:21:7c:e0: 1c:e9:77:20:fe:a7:6a:ba:09:84:36:d2:d0:0a:b8: 61:f4:32:95:6e:de:5c:f4:18:8b:ce:fd:db:ba:cf: ed:c8:80:07:eb:48:04:2f:b9:0c:e3:70:64:47:2f: 34:3f:65:76:f1:0c:da:21:15:b1:7c:d9:6b:58:4b: 8a:f0:b8:68:9a:30:a7:1e:aa:62:9d:34:bc:68:ac: 65:20:76:de:e7:c1:82:20:01:88:f3:08:80:88:bb: 21:b7:67:bc:f9:c5:3a:71:da:d3:82:99:60:3a:63: 6a:3f:97:c0:38:b7:d2:e3:a4:a0:6e:9f:50:9d:31: bc:3c:38:a6:92:bb:7b:b0:d8:4b:2f:51:1c:69:6e: b0:7d:ab:4e:91:bd:b0:ad:50:75:ad:97:a7:53:e0: 84:47:59:ee:87:d9:7f:56:f1:e2:2a:f9:96:b6:9f: ab:09:c2:05:a2:0c:c7:06:3d:62:0a:4b:13:b4:12: 8b:0b:9d:2a:3d:d9:d7:ea:4e:02:15:6a:88:f4:30: 5f:a0:9f:08:68:72:cc:c3:7d:e5:f9:ba:7b:b9:05: 46:c8:1f:a0:d0:93:c1:aa:c7:51:1a:58:2a:51:78: 37:7d:0f:0b:e6:0a:2b:9d:18:4c:4a:8b:5e:f9:62: d1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A7:10:44:52:84:2D:12:2C:BC:5A:32:45:28:78:C1:8D:67:FF:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a23495d-0d6b-499b-9424-b8406aeda85a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8070::/48 Signature Algorithm: sha256WithRSAEncryption 22:09:b8:dc:06:1b:74:0c:47:67:b9:bc:86:f5:bb:e8:49:17: 8b:0d:36:14:f9:35:5c:0f:96:91:0f:98:75:3a:63:24:00:ef: 8d:3d:d7:e5:9b:23:89:90:2b:7f:16:a4:5e:ec:bd:1f:33:cb: c5:1a:66:bd:e8:39:4f:2a:e6:07:1e:9a:20:32:ed:95:f3:2e: 92:d7:90:63:52:1e:a6:86:61:5b:e0:77:41:22:e4:cd:8c:53: 3b:5a:a5:0b:29:53:a4:7c:30:ea:9c:26:b8:41:3c:0d:60:31: e3:6d:20:3c:db:61:41:29:4c:88:a1:03:53:d5:e3:74:87:ac: d9:7c:47:17:f9:f3:f6:01:13:bb:4c:07:ae:ee:85:11:26:94: 2e:45:7c:aa:c3:4c:d4:30:d2:1f:b7:4e:fb:89:a8:72:6a:28: f6:f7:fd:04:26:16:e9:fa:42:82:9e:b3:64:3d:04:4d:a9:ce: 64:25:b0:76:ed:88:cf:37:53:94:af:c6:47:b7:cb:e5:cc:89: 4d:c4:65:71:f0:28:a3:cf:48:b1:c1:a3:e7:56:1b:73:10:e0: be:dc:bb:f3:fe:cb:39:9e:8b:6f:5a:f1:57:13:80:33:9d:dd: 11:ec:5f:9d:5c:5a:75:fe:ca:48:88:6e:f1:e3:64:d9:c5:f9: 25:0d:d5:37 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUMAJyne7LUyzQaWlmoRlkAKjUH4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDAyMDExWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjM0OWYxOWNjZmI1Nzc5MzY4Mzc1Y2NkZDVkMGMwODFk ZDBkYTFjMjQzZGIwODZhNzIzZDY4Nzg3ZGE1NTQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdFYs/+QO7/guMySF84BzpdyD+p2q6CYQ20tAKuGH0MpVu 3lz0GIvO/du6z+3IgAfrSAQvuQzjcGRHLzQ/ZXbxDNohFbF82WtYS4rwuGiaMKce qmKdNLxorGUgdt7nwYIgAYjzCICIuyG3Z7z5xTpx2tOCmWA6Y2o/l8A4t9LjpKBu n1CdMbw8OKaSu3uw2EsvURxpbrB9q06RvbCtUHWtl6dT4IRHWe6H2X9W8eIq+Za2 n6sJwgWiDMcGPWIKSxO0EosLnSo92dfqTgIVaoj0MF+gnwhocszDfeX5unu5BUbI H6DQk8Gqx1EaWCpReDd9DwvmCiudGExKi175YtHdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXacQRFKELRIsvFoyRSh4wY1n/7EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhMjM0OTVkLTBkNmItNDk5Yi05NDI0LWI4NDA2YWVkYTg1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgHAwDQYJKoZIhvcNAQELBQADggEBACIJuNwGG3QMR2e5vIb1u+hJ F4sNNhT5NVwPlpEPmHU6YyQA74091+WbI4mQK38WpF7svR8zy8UaZr3oOU8q5gce miAy7ZXzLpLXkGNSHqaGYVvgd0Ei5M2MUztapQspU6R8MOqcJrhBPA1gMeNtIDzb YUEpTIihA1PV43SHrNl8Rxf58/YBE7tMB67uhREmlC5FfKrDTNQw0h+3TvuJqHJq KPb3/QQmFun6QoKes2Q9BE2pzmQlsHbtiM83U5Svxke3y+XMiU3EZXHwKKPPSLHB o+dWG3MQ4L7cu/P+yzmei29a8VcTgDOd3RHsX51cWnX+ykiIbvHjZNnF+SUN1Tc= -----END CERTIFICATE-----Generated at Sat Jun 13 05:52:05 2026 by rpki-client