$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa File: b3f91ab4-930a-4958-b6c8-811feb211be7.roa (raw, json) Hash identifier: s/ghScgWzDKbiRONIUbgjYtiEut+eUVZDDi9JTBoT5g= Subject key identifier: B5:5C:D3:47:12:07:F8:64:7A:58:30:85:02:F3:36:19:72:E7:D9:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06CD0E9D7CCD8FC99D6DE0D946B7C9122F23B5BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa Signing time: Sat 16 May 2026 01:40:51 +0000 ROA not before: Sat 16 May 2026 01:40:51 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f10:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:cd:0e:9d:7c:cd:8f:c9:9d:6d:e0:d9:46:b7:c9:12:2f:23:b5:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:40:51 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=f051c8a5930a539920d36a17f9765ec77eb0306056f15636c018257632c5553a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c3:15:48:b8:08:25:b8:6f:54:4c:6b:36:f9: 24:a4:5b:72:58:33:25:34:d7:f6:9a:a9:dc:fe:5d: 68:bf:f4:75:5b:e3:d2:5d:24:72:ee:3b:20:c4:ad: 73:44:82:0d:eb:f1:b0:cc:e2:c6:03:dc:83:f5:e1: 0b:99:02:ba:1d:e1:db:ca:1f:11:7e:19:29:ce:c0: 8c:ec:3e:cf:55:3c:58:71:06:a2:08:57:79:bd:82: 67:8f:3a:ea:52:fb:4c:bd:41:b7:cc:49:e4:42:d0: 8f:23:26:2d:2c:35:65:78:5d:e4:8b:82:a1:2c:7c: 04:d3:bd:36:f0:ee:11:fe:22:53:ee:6d:0e:60:23: fb:ba:6b:50:7a:3c:d5:95:16:59:06:b7:a5:24:ad: ff:03:f7:d3:a4:04:87:5a:6d:90:0c:8d:52:65:de: 9b:e3:c0:71:04:e1:79:5b:92:0a:de:11:1e:66:ff: 20:06:e5:c2:39:4e:91:65:88:0a:4d:63:a5:d9:01: 32:6b:63:09:42:9d:62:11:5b:c5:14:3e:4d:36:38: aa:b7:e7:d8:54:7f:f6:37:20:bc:4f:41:e6:12:f5: 85:df:db:4d:96:81:a6:29:e2:60:6c:7e:4a:13:7c: 47:80:0a:a5:75:5f:2a:c3:d7:7b:0d:ae:28:83:ec: 06:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:5C:D3:47:12:07:F8:64:7A:58:30:85:02:F3:36:19:72:E7:D9:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f10:c800::/37 Signature Algorithm: sha256WithRSAEncryption d8:3e:77:1d:8c:41:47:00:97:be:bc:0b:fc:cd:97:f2:47:c4: 9b:34:83:ab:e6:3f:62:8d:30:c7:d0:40:15:81:fc:54:1b:52: 0d:59:36:ff:ae:ee:47:38:6e:73:b5:37:73:f7:73:70:6f:2f: 90:97:35:36:c2:77:19:d6:4f:82:f1:e3:08:95:d0:d6:ef:b6: 4d:07:ba:32:05:7d:0c:ca:36:41:6c:05:72:69:1e:98:cb:1c: 7d:10:66:40:34:97:0f:7b:49:f8:39:e9:cd:f1:d9:31:a1:0e: 97:56:22:e1:8d:b0:2f:2e:51:9e:07:ee:7c:8b:a9:58:39:63: 58:36:47:32:41:a5:e6:03:a0:a1:5c:97:46:0b:40:6b:5d:84: 9b:7d:20:1c:f7:38:28:0d:5e:fa:ec:ff:b4:f4:5d:3c:b6:8c: fe:e2:dd:be:e2:16:8a:4a:41:14:f3:20:d0:97:23:a3:fb:c8: 56:a2:bc:63:da:8f:3a:d5:28:f2:da:b3:b9:b5:f9:20:6b:92: 49:f9:39:f9:5b:00:90:ed:89:eb:6e:aa:f9:4e:35:a2:9d:29: 24:fc:3b:af:b9:0b:19:9f:ac:d0:18:33:d7:42:19:ad:70:9e: 6d:41:94:4d:ca:9c:2a:49:f2:a8:b7:ae:0d:bc:71:e0:d3:98: f9:86:01:7c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBs0OnXzNj8mdbeDZRrfJEi8jtbwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDE0MDUxWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDUxYzhhNTkzMGE1Mzk5MjBkMzZhMTdmOTc2NWVjNzdl YjAzMDYwNTZmMTU2MzZjMDE4MjU3NjMyYzU1NTNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmwxVIuAgluG9UTGs2+SSkW3JYMyU01/aaqdz+XWi/9HVb 49JdJHLuOyDErXNEgg3r8bDM4sYD3IP14QuZArod4dvKHxF+GSnOwIzsPs9VPFhx BqIIV3m9gmePOupS+0y9QbfMSeRC0I8jJi0sNWV4XeSLgqEsfATTvTbw7hH+IlPu bQ5gI/u6a1B6PNWVFlkGt6Ukrf8D99OkBIdabZAMjVJl3pvjwHEE4XlbkgreER5m /yAG5cI5TpFliApNY6XZATJrYwlCnWIRW8UUPk02OKq359hUf/Y3ILxPQeYS9YXf 202WgaYp4mBsfkoTfEeACqV1XyrD13sNriiD7AZVAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUtVzTRxIH+GR6WDCFAvM2GXLn2akwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzZjkxYWI0LTkzMGEtNDk1OC1iNmM4LTgxMWZlYjIxMWJlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8QyDANBgkqhkiG9w0BAQsFAAOCAQEA2D53HYxBRwCXvrwL/M2X8kfE mzSDq+Y/Yo0wx9BAFYH8VBtSDVk2/67uRzhuc7U3c/dzcG8vkJc1NsJ3GdZPgvHj CJXQ1u+2TQe6MgV9DMo2QWwFcmkemMscfRBmQDSXD3tJ+DnpzfHZMaEOl1Yi4Y2w Ly5RngfufIupWDljWDZHMkGl5gOgoVyXRgtAa12Em30gHPc4KA1e+uz/tPRdPLaM /uLdvuIWikpBFPMg0Jcjo/vIVqK8Y9qPOtUo8tqzubX5IGuSSfk5+VsAkO2J626q +U41op0pJPw7r7kLGZ+s0Bgz10IZrXCebUGUTcqcKknyqLeuDbxx4NOY+YYBfA== -----END CERTIFICATE-----Generated at Sat Jun 13 13:05:49 2026 by rpki-client