$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2449603-a2b3-44df-ae94-c2ddb5ea8f63.roa File: a2449603-a2b3-44df-ae94-c2ddb5ea8f63.roa (raw, json) Hash identifier: lcE1D+XjCvwpJQPWlK4CsF7goPxWAJkcpKeDP6k2/K8= Subject key identifier: 21:62:B3:E6:0B:30:CB:9F:FC:E3:1D:01:DD:0C:AF:A4:AE:70:6F:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B8E1076D8562B196325CB308ECCFA67392F31CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2449603-a2b3-44df-ae94-c2ddb5ea8f63.roa Signing time: Sun 17 May 2026 00:00:41 +0000 ROA not before: Sun 17 May 2026 00:00:41 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fed:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:8e:10:76:d8:56:2b:19:63:25:cb:30:8e:cc:fa:67:39:2f:31:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:00:41 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=541b2bc127e972cdd77023f728be9225ae41761fdf8d45436aa11d8c79bffb64, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:3a:25:68:02:06:09:93:22:9e:46:29:17:4e: f1:b2:96:03:7e:7e:5a:67:b3:83:43:14:db:01:59: ce:03:41:7c:84:b3:f9:8f:38:06:59:f1:9d:50:81: 6f:2d:02:07:68:00:ef:02:ef:67:bf:cf:73:68:c6: 31:11:f7:a1:4e:89:60:54:76:ca:04:b7:c8:fd:81: 43:a3:b2:a3:b2:e5:4b:24:a3:b7:6b:e3:c1:db:9e: 01:36:8c:de:8e:45:d2:b8:2f:4b:86:d2:38:b1:26: 0d:42:ea:9d:69:eb:9b:a0:a1:23:a7:b0:72:cf:b3: 59:b8:76:78:69:a2:4b:47:8a:9d:54:7a:ab:fd:8e: 43:22:14:ac:c4:a9:1f:8d:09:00:c5:c5:93:0b:40: 79:4d:87:f2:fe:4e:c6:03:de:35:c2:42:29:eb:0f: 31:22:b4:54:26:ab:6f:05:06:e5:37:1d:ad:cc:c1: 24:b5:17:e3:48:d8:cb:da:8e:7e:92:fc:c2:87:1a: 9d:b2:7b:a0:5e:bf:80:f3:a8:9c:98:fb:25:91:26: 7f:28:3a:49:16:13:38:eb:de:f8:48:90:fa:90:0c: 8c:76:33:b5:b5:94:4e:72:69:b2:ef:54:f3:20:90: c0:ab:86:6e:62:82:50:4a:b7:fa:e6:97:0d:ee:61: e2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:62:B3:E6:0B:30:CB:9F:FC:E3:1D:01:DD:0C:AF:A4:AE:70:6F:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2449603-a2b3-44df-ae94-c2ddb5ea8f63.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fed:2000::/40 Signature Algorithm: sha256WithRSAEncryption cb:ab:af:df:2b:e8:70:80:16:40:a5:e8:81:5b:5d:09:5e:53: 97:08:d9:53:d4:17:08:9b:10:af:45:9b:d6:76:b9:58:4a:94: 42:3c:56:cd:d2:93:6b:07:6b:63:f0:6e:eb:78:20:50:1d:ca: d9:ec:50:36:41:d2:88:5a:a4:90:12:bf:c1:6c:62:a1:ea:ca: 73:68:cb:70:33:32:1a:6c:c1:50:ed:88:7d:4d:8e:12:fa:93: 99:ae:53:7e:1f:49:1a:30:41:2c:2e:7d:6e:77:71:6a:d0:67: 37:25:23:a1:d6:ae:a6:79:9f:eb:51:7c:de:25:18:52:f0:48: 87:45:9f:bb:09:d3:21:ed:5e:38:83:54:5b:d4:e4:a8:68:e8: 3f:be:85:0e:de:a2:8c:7c:37:15:3d:0c:f5:d4:4b:e8:4c:de: cf:fb:b9:46:e9:d5:e6:17:ef:6f:a6:80:5d:80:75:86:a8:6a: f2:9e:d3:97:69:ff:10:ae:d8:e7:c3:0b:39:00:df:2b:37:bd: 6f:36:0a:2e:9d:38:35:a5:2f:ef:0d:48:4e:1b:55:e1:f8:aa: 53:5a:3b:15:db:15:56:cb:75:8c:c7:11:07:4d:6a:4d:2f:a8: e1:1b:13:99:35:c4:5c:0e:bd:cf:cc:95:d3:0f:5c:39:aa:40: 6f:78:7f:c0 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUK44QdthWKxljJcswjsz6ZzkvMcwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDAwMDQxWhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDFiMmJjMTI3ZTk3MmNkZDc3MDIzZjcyOGJlOTIyNWFl NDE3NjFmZGY4ZDQ1NDM2YWExMWQ4Yzc5YmZmYjY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQOiVoAgYJkyKeRikXTvGylgN+flpns4NDFNsBWc4DQXyE s/mPOAZZ8Z1QgW8tAgdoAO8C72e/z3NoxjER96FOiWBUdsoEt8j9gUOjsqOy5Usk o7dr48HbngE2jN6ORdK4L0uG0jixJg1C6p1p65ugoSOnsHLPs1m4dnhpoktHip1U eqv9jkMiFKzEqR+NCQDFxZMLQHlNh/L+TsYD3jXCQinrDzEitFQmq28FBuU3Ha3M wSS1F+NI2Mvajn6S/MKHGp2ye6Bev4DzqJyY+yWRJn8oOkkWEzjr3vhIkPqQDIx2 M7W1lE5yabLvVPMgkMCrhm5iglBKt/rmlw3uYeL5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUIWKz5gswy5/84x0B3QyvpK5wb4IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyNDQ5NjAzLWEyYjMtNDRkZi1hZTk0LWMyZGRiNWVhOGY2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/tIDANBgkqhkiG9w0BAQsFAAOCAQEAy6uv3yvocIAWQKXogVtdCV5T lwjZU9QXCJsQr0Wb1na5WEqUQjxWzdKTawdrY/Bu63ggUB3K2exQNkHSiFqkkBK/ wWxioerKc2jLcDMyGmzBUO2IfU2OEvqTma5Tfh9JGjBBLC59bndxatBnNyUjodau pnmf61F83iUYUvBIh0WfuwnTIe1eOINUW9TkqGjoP76FDt6ijHw3FT0M9dRL6Eze z/u5RunV5hfvb6aAXYB1hqhq8p7Tl2n/EK7Y58MLOQDfKze9bzYKLp04NaUv7w1I ThtV4fiqU1o7FdsVVst1jMcRB01qTS+o4RsTmTXEXA69z8yV0w9cOapAb3h/wA== -----END CERTIFICATE-----Generated at Sat Jun 13 09:29:45 2026 by rpki-client