$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cfa32114-1528-41e2-94e0-650a1c21a174.roa File: cfa32114-1528-41e2-94e0-650a1c21a174.roa (raw, json) Hash identifier: n7mzAMX7/vOIa1yK1BfOaDSDHxdvMHCbvb+MDs55+sg= Subject key identifier: 30:2F:59:C2:1B:78:56:20:6E:BD:F0:8A:7D:99:0F:31:80:43:90:4D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5060323C0509089A9C42D7FFB2D60A7218252347 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cfa32114-1528-41e2-94e0-650a1c21a174.roa Signing time: Tue 19 May 2026 00:40:06 +0000 ROA not before: Tue 19 May 2026 00:40:06 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f26:c000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:60:32:3c:05:09:08:9a:9c:42:d7:ff:b2:d6:0a:72:18:25:23:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:40:06 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=1a2d42316cff97e5071440bfea227f23e9b20469d53aa7439297b99f168ad7e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0a:ee:2a:5a:91:b0:7b:c6:cc:80:dc:ed:7d: b2:54:9a:11:cb:80:a3:c9:c1:c9:fa:22:72:b7:13: 23:3a:1a:18:18:b2:07:44:39:47:8e:d7:f3:1e:3f: 12:4d:c9:fa:09:2c:a0:53:74:49:51:d1:e4:b0:a1: 4e:e1:05:67:af:70:f2:49:40:7d:77:0d:e0:ea:e1: 6c:bd:4a:2f:e8:6f:c2:71:3d:6c:90:cc:3d:05:5f: 3c:4b:ca:66:22:8d:36:6a:53:d5:1f:2a:f1:ba:4c: 47:31:40:09:64:b0:e4:01:ba:b1:21:fc:0f:0f:f4: bb:52:44:8e:0a:60:5a:9b:6e:29:36:2c:83:50:67: c6:56:91:fa:16:86:36:e3:92:82:7f:ca:66:5d:4d: 6f:b6:e2:17:89:4f:d8:1b:cb:f7:fc:f9:7d:cc:dc: a9:d6:d8:b9:1b:66:48:f4:5d:4f:70:23:f4:22:34: 94:0e:78:81:9e:38:1e:5a:e3:e0:5d:48:a9:e2:0a: 18:f6:e5:e3:cd:7f:ec:5e:77:b4:e6:15:40:dc:fe: a9:b4:70:ab:97:df:55:49:c9:5a:ea:ac:05:35:df: b9:35:d2:13:e3:49:22:f8:58:4b:dc:b9:33:9f:00: 12:35:c2:96:3e:e4:79:2a:7f:de:6d:e0:c4:07:d2: a6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:2F:59:C2:1B:78:56:20:6E:BD:F0:8A:7D:99:0F:31:80:43:90:4D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cfa32114-1528-41e2-94e0-650a1c21a174.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f26:c000::/37 Signature Algorithm: sha256WithRSAEncryption bf:f8:25:48:79:c4:11:a8:3a:85:0c:25:ac:99:82:e0:94:68: e7:e6:b9:99:b8:b6:df:d8:b2:4f:a1:dd:c5:b1:e7:8e:b8:10: db:41:f0:5f:49:ba:64:23:85:3b:ce:2e:6d:bc:f6:5e:c0:cf: e7:ac:3e:55:8e:98:50:70:b3:64:83:a6:d8:36:8a:87:cf:96: 81:79:e6:ad:16:07:d1:fc:16:a7:b5:2b:b8:93:07:1c:ed:44: ab:4f:87:d9:52:5f:1d:7a:35:d8:90:06:8b:64:87:39:12:70: a8:29:c6:f5:72:f5:be:3f:00:da:ab:b7:b0:9f:1e:30:4d:d0: 32:7f:08:38:51:5a:af:a1:9e:03:45:a3:52:05:6d:04:14:fc: 9a:0d:3f:62:fc:2c:dc:f2:78:c7:0f:a9:40:3d:90:a5:06:ab: fc:08:eb:93:9d:07:a4:31:b2:2b:93:30:d5:c3:f6:87:5e:54: 2f:4e:fd:fd:de:b4:cf:9f:cb:e5:41:78:d2:5d:69:29:85:9c: 14:b3:6e:fb:ba:37:fc:09:15:a8:86:19:41:32:76:cb:98:8b: fe:2b:e8:2b:83:14:9a:9a:cb:f2:f1:fd:46:b4:ee:9d:e6:ac: e7:48:2e:b6:53:36:a6:97:a1:b8:32:0a:50:86:45:d0:14:3e: d0:80:fe:37 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUGAyPAUJCJqcQtf/stYKchglI0cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDA0MDA2WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTJkNDIzMTZjZmY5N2U1MDcxNDQwYmZlYTIyN2YyM2U5 YjIwNDY5ZDUzYWE3NDM5Mjk3Yjk5ZjE2OGFkN2U5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGCu4qWpGwe8bMgNztfbJUmhHLgKPJwcn6InK3EyM6GhgY sgdEOUeO1/MePxJNyfoJLKBTdElR0eSwoU7hBWevcPJJQH13DeDq4Wy9Si/ob8Jx PWyQzD0FXzxLymYijTZqU9UfKvG6TEcxQAlksOQBurEh/A8P9LtSRI4KYFqbbik2 LINQZ8ZWkfoWhjbjkoJ/ymZdTW+24heJT9gby/f8+X3M3KnW2LkbZkj0XU9wI/Qi NJQOeIGeOB5a4+BdSKniChj25ePNf+xed7TmFUDc/qm0cKuX31VJyVrqrAU137k1 0hPjSSL4WEvcuTOfABI1wpY+5Hkqf95t4MQH0qY9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMC9Zwht4ViBuvfCKfZkPMYBDkE0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmYTMyMTE0LTE1MjgtNDFlMi05NGUwLTY1MGExYzIxYTE3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8mwDANBgkqhkiG9w0BAQsFAAOCAQEAv/glSHnEEag6hQwlrJmC4JRo 5+a5mbi239iyT6HdxbHnjrgQ20HwX0m6ZCOFO84ubbz2XsDP56w+VY6YUHCzZIOm 2DaKh8+WgXnmrRYH0fwWp7UruJMHHO1Eq0+H2VJfHXo12JAGi2SHORJwqCnG9XL1 vj8A2qu3sJ8eME3QMn8IOFFar6GeA0WjUgVtBBT8mg0/Yvws3PJ4xw+pQD2QpQar /Ajrk50HpDGyK5Mw1cP2h15UL079/d60z5/L5UF40l1pKYWcFLNu+7o3/AkVqIYZ QTJ2y5iL/ivoK4MUmprL8vH9RrTuneas50gutlM2ppehuDIKUIZF0BQ+0ID+Nw== -----END CERTIFICATE-----Generated at Sat Jun 13 14:24:46 2026 by rpki-client