$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf3c6d94-673e-412e-8e11-f4184005aa90.roa File: cf3c6d94-673e-412e-8e11-f4184005aa90.roa (raw, json) Hash identifier: 6kdXW0369mz+dO64iDdmgNCxlZ/bqrwQ7hJ+tKxLGTc= Subject key identifier: 13:39:1C:A5:A7:1E:99:15:71:4F:5E:67:B7:20:74:82:13:2D:44:CF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 186C2321FCD39CC2AB262D154F36F82B3938BEC9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf3c6d94-673e-412e-8e11-f4184005aa90.roa Signing time: Sat 16 May 2026 02:20:40 +0000 ROA not before: Sat 16 May 2026 02:20:40 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:6c:23:21:fc:d3:9c:c2:ab:26:2d:15:4f:36:f8:2b:39:38:be:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 02:20:40 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=c4bd98383ada7c200c2af081829f91e24897fbe5475c1e7ac1c01e32c7030354, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:60:57:d3:42:21:be:58:d6:0f:35:d9:b8:0e: bb:09:06:d7:78:29:1d:5e:c3:1b:cb:82:30:ab:17: 51:01:96:14:1f:56:5f:fd:62:fe:31:02:4b:6a:40: f5:4f:c9:c4:dd:e0:14:ba:15:0a:9e:45:44:ec:af: 49:8c:20:f6:df:60:98:55:4d:b3:be:6d:db:68:ed: 5d:fc:26:b4:7c:54:80:bd:48:5a:81:5a:21:b7:a8: 8b:44:a3:43:cd:ca:5f:b8:ed:a8:03:fe:a0:df:8c: d1:75:f2:a6:f3:08:0c:b7:03:3b:9b:f8:77:0e:5f: c9:82:0b:8c:1d:7e:f6:50:c9:ba:54:c6:8b:72:27: 16:7b:ca:6e:97:1a:36:00:c1:82:a4:98:c8:d5:c5: 7d:68:cf:93:fe:34:57:e4:39:ee:db:69:62:85:cf: b6:54:91:75:22:f8:f1:7a:63:80:40:17:8c:06:91: 8f:a0:84:31:a7:29:ab:56:c5:b4:49:fd:78:f7:ca: 9f:56:25:cf:9f:a9:04:15:a0:29:90:2e:f2:b1:ea: 10:ff:97:a4:8a:f1:84:f1:79:c9:e3:a3:76:d9:09: 17:69:5a:cd:73:a0:13:fd:b7:7e:2c:a9:3d:22:ed: c6:0a:c0:3d:fb:27:dd:96:d4:82:75:8b:28:ce:14: dc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:39:1C:A5:A7:1E:99:15:71:4F:5E:67:B7:20:74:82:13:2D:44:CF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf3c6d94-673e-412e-8e11-f4184005aa90.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 07:7b:67:d5:7c:3c:f1:11:50:8a:4a:26:a4:62:9e:c7:5e:e3: 34:37:1d:ef:1a:0b:5e:f6:f7:5f:da:77:89:cc:85:52:b5:fa: aa:7f:b8:a8:ff:93:60:e9:00:79:60:52:31:f6:ff:f2:4e:06: 73:3f:d6:6f:df:79:8d:7a:9a:01:05:d1:3d:cf:83:e2:1b:8c: 1d:4e:64:1f:eb:77:18:ed:62:f5:1f:9c:36:96:d1:85:92:e6: c4:55:59:31:08:30:60:c8:4c:be:41:ba:7e:46:7c:2a:40:52: 97:fb:4c:11:a6:ba:23:d0:6d:a1:60:cc:47:52:56:15:1c:df: 82:c2:f9:0e:85:06:3f:a9:02:8c:a1:28:82:43:19:66:d5:24: d3:a7:37:4e:8b:b0:33:ac:76:3a:21:a5:20:64:cd:34:23:63: 52:ba:c1:5a:86:62:a9:5c:82:9d:9c:63:24:ae:f3:f7:f2:d7: 7b:f2:df:90:1e:1b:8c:b0:b8:87:eb:40:a6:39:17:78:7a:e6: 81:db:df:57:31:d5:a7:ed:ca:72:b2:a3:61:0f:be:b7:aa:29: 54:22:34:9a:31:31:84:80:8b:ae:66:9f:1d:46:5a:c0:ca:53: 5c:48:b4:91:27:3c:e1:7e:13:53:76:05:f1:0f:f0:3d:41:1c: bc:46:ad:b5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGGwjIfzTnMKrJi0VTzb4Kzk4vskwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDIyMDQwWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNGJkOTgzODNhZGE3YzIwMGMyYWYwODE4MjlmOTFlMjQ4 OTdmYmU1NDc1YzFlN2FjMWMwMWUzMmM3MDMwMzU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3YFfTQiG+WNYPNdm4DrsJBtd4KR1ewxvLgjCrF1EBlhQf Vl/9Yv4xAktqQPVPycTd4BS6FQqeRUTsr0mMIPbfYJhVTbO+bdto7V38JrR8VIC9 SFqBWiG3qItEo0PNyl+47agD/qDfjNF18qbzCAy3Azub+HcOX8mCC4wdfvZQybpU xotyJxZ7ym6XGjYAwYKkmMjVxX1oz5P+NFfkOe7baWKFz7ZUkXUi+PF6Y4BAF4wG kY+ghDGnKatWxbRJ/Xj3yp9WJc+fqQQVoCmQLvKx6hD/l6SK8YTxecnjo3bZCRdp Ws1zoBP9t34sqT0i7cYKwD37J92W1IJ1iyjOFNx/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEzkcpacemRVxT15ntyB0ghMtRM8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmM2M2ZDk0LTY3M2UtNDEyZS04ZTExLWY0MTg0MDA1YWE5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84QMAwDQYJKoZIhvcNAQELBQADggEBAAd7Z9V8PPERUIpKJqRinsde 4zQ3He8aC17291/ad4nMhVK1+qp/uKj/k2DpAHlgUjH2//JOBnM/1m/feY16mgEF 0T3Pg+IbjB1OZB/rdxjtYvUfnDaW0YWS5sRVWTEIMGDITL5Bun5GfCpAUpf7TBGm uiPQbaFgzEdSVhUc34LC+Q6FBj+pAoyhKIJDGWbVJNOnN06LsDOsdjohpSBkzTQj Y1K6wVqGYqlcgp2cYySu8/fy13vy35AeG4ywuIfrQKY5F3h65oHb31cx1aftynKy o2EPvreqKVQiNJoxMYSAi65mnx1GWsDKU1xItJEnPOF+E1N2BfEP8D1BHLxGrbU= -----END CERTIFICATE-----Generated at Sat Jun 13 13:29:46 2026 by rpki-client