$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a152fc40-a444-4cdd-97b2-9a2e70a778e9.roa File: a152fc40-a444-4cdd-97b2-9a2e70a778e9.roa (raw, json) Hash identifier: xn3mBjbVAxO2u1799ugRO9e3sgMOorlH0hOrUwT+3oI= Subject key identifier: EA:D7:A7:D4:8E:27:E7:20:0A:DC:2D:2D:DE:F3:EE:37:8F:AD:A2:59 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 043A360702BF2D8CC5B0F79CFB14FE8BB4B35887 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a152fc40-a444-4cdd-97b2-9a2e70a778e9.roa Signing time: Sat 16 May 2026 00:30:47 +0000 ROA not before: Sat 16 May 2026 00:30:47 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f2c:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:3a:36:07:02:bf:2d:8c:c5:b0:f7:9c:fb:14:fe:8b:b4:b3:58:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 00:30:47 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=d87baa9b9e2b5b929b61f543aafad226dae21b07d9a663bdd9330f90c9e93028, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3f:e7:45:4e:66:84:f5:c4:bb:f0:0c:88:ed: 23:a9:be:9d:20:36:23:4d:26:75:f0:8c:5d:1c:a2: 7b:d3:42:01:6f:26:ae:ac:31:0b:57:4d:4b:3e:c5: 18:01:54:b9:06:63:0d:f9:21:99:1e:f5:1c:45:9b: 19:07:dd:d0:67:2e:86:b5:1b:50:c4:15:68:a6:30: a8:5a:c2:97:76:4c:09:c9:0e:d8:0b:4d:6c:d0:b3: 31:69:3d:da:2b:12:e6:0f:b3:9f:ec:a9:fa:38:03: ee:18:db:fb:fe:0c:85:c5:82:c6:19:08:4a:eb:d6: dc:3b:91:e2:5a:87:6a:1b:29:19:59:07:8b:e7:70: 56:fc:f9:d2:1a:ee:68:ab:44:d2:11:06:8d:f8:ab: a2:03:66:6b:d1:c1:36:98:57:0c:65:16:fe:f9:54: 9b:7d:52:39:84:7e:85:15:ea:c7:8f:aa:9f:20:ad: f0:3e:f8:d1:47:87:59:74:51:51:99:96:8a:0f:69: a7:95:62:98:14:fa:89:d8:53:97:ae:52:fa:ef:e3: 0f:17:c8:68:af:f3:4f:c3:0d:5d:4f:7c:70:9c:a4: 26:d7:71:7f:ee:5d:c9:74:13:c9:b4:df:76:5e:fd: e3:05:7f:a5:6b:d8:ac:13:54:57:00:c8:ab:b8:1d: b5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:D7:A7:D4:8E:27:E7:20:0A:DC:2D:2D:DE:F3:EE:37:8F:AD:A2:59 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a152fc40-a444-4cdd-97b2-9a2e70a778e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2c:c800::/37 Signature Algorithm: sha256WithRSAEncryption 9a:ae:b6:2f:eb:c9:c6:59:08:61:3e:ee:5b:57:1b:f7:c9:34: 95:6a:28:ac:9e:25:1f:96:a3:2b:53:44:28:2a:74:db:08:7d: 7a:2f:a6:a2:45:f9:f2:90:c6:10:01:39:40:c1:91:d8:f9:b2: 6c:a0:51:6c:ee:7b:5f:78:ad:df:fb:57:92:0c:b7:a5:ba:32: 0a:1d:3c:4f:7d:22:61:da:68:02:78:25:ba:45:ba:8a:d5:9a: fe:54:20:b2:4e:3e:b7:76:6f:80:c8:b9:67:0d:ed:1f:49:da: 3c:89:a3:f4:92:8b:6b:b3:9a:58:6c:ae:8f:55:37:a1:51:fa: d9:ec:12:04:12:cc:b9:68:45:f2:97:2c:cf:71:00:e0:24:8b: f6:24:54:73:f6:5e:60:e7:6a:42:30:b1:9f:72:12:e5:f6:92: 8c:44:b8:99:ae:b2:bf:75:87:0a:b1:4a:cc:c8:b9:fb:d2:41: 82:05:16:1e:3b:5a:a1:8d:88:5e:b1:32:fa:33:8f:2b:70:f7: f8:ba:f5:3c:d3:04:17:da:8c:e6:b9:c6:6b:07:7d:9c:82:40: 7c:07:2c:96:45:0f:6a:86:63:12:bc:68:41:4e:d1:0f:6a:34: 6a:47:5d:a9:7a:39:4f:13:e1:c8:10:96:6e:b9:87:b2:18:33: e2:8a:0b:c9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBDo2BwK/LYzFsPec+xT+i7SzWIcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDAzMDQ3WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkODdiYWE5YjllMmI1YjkyOWI2MWY1NDNhYWZhZDIyNmRh ZTIxYjA3ZDlhNjYzYmRkOTMzMGY5MGM5ZTkzMDI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtP+dFTmaE9cS78AyI7SOpvp0gNiNNJnXwjF0convTQgFv Jq6sMQtXTUs+xRgBVLkGYw35IZke9RxFmxkH3dBnLoa1G1DEFWimMKhawpd2TAnJ DtgLTWzQszFpPdorEuYPs5/sqfo4A+4Y2/v+DIXFgsYZCErr1tw7keJah2obKRlZ B4vncFb8+dIa7mirRNIRBo34q6IDZmvRwTaYVwxlFv75VJt9UjmEfoUV6sePqp8g rfA++NFHh1l0UVGZlooPaaeVYpgU+onYU5euUvrv4w8XyGiv80/DDV1PfHCcpCbX cX/uXcl0E8m033Ze/eMFf6Vr2KwTVFcAyKu4HbU/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU6ten1I4n5yAK3C0t3vPuN4+tolkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ExNTJmYzQwLWE0NDQtNGNkZC05N2IyLTlhMmU3MGE3NzhlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8syDANBgkqhkiG9w0BAQsFAAOCAQEAmq62L+vJxlkIYT7uW1cb98k0 lWoorJ4lH5ajK1NEKCp02wh9ei+mokX58pDGEAE5QMGR2PmybKBRbO57X3it3/tX kgy3pboyCh08T30iYdpoAnglukW6itWa/lQgsk4+t3ZvgMi5Zw3tH0naPImj9JKL a7OaWGyuj1U3oVH62ewSBBLMuWhF8pcsz3EA4CSL9iRUc/ZeYOdqQjCxn3IS5faS jES4ma6yv3WHCrFKzMi5+9JBggUWHjtaoY2IXrEy+jOPK3D3+Lr1PNMEF9qM5rnG awd9nIJAfAcslkUPaoZjErxoQU7RD2o0akddqXo5TxPhyBCWbrmHshgz4ooLyQ== -----END CERTIFICATE-----Generated at Sat Jun 13 10:58:11 2026 by rpki-client