$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8a20ddd-dd3f-4259-b041-244eaf7ffe03.roa File: d8a20ddd-dd3f-4259-b041-244eaf7ffe03.roa (raw, json) Hash identifier: ZERbBCp2aqr5o2q/cYfHZ81REGYmrTk83jQm+gzW2BI= Subject key identifier: 70:B5:6D:2A:11:60:BC:17:A0:D2:74:79:8B:4D:A8:C0:D1:DA:54:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 682178457761FB68A295534FD391AD55D6AF1863 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8a20ddd-dd3f-4259-b041-244eaf7ffe03.roa Signing time: Fri 15 May 2026 01:31:07 +0000 ROA not before: Fri 15 May 2026 01:31:07 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:5000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:21:78:45:77:61:fb:68:a2:95:53:4f:d3:91:ad:55:d6:af:18:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:31:07 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=5c6b027da91c8c4219f93d3528da0eff1d84b37988141c0054ece269c475d4c0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:0f:72:22:23:f3:e4:41:bf:dc:33:87:ac:09: 17:44:41:62:ec:8c:f0:d0:c9:9b:35:fe:c4:80:a1: 8e:5b:0a:ec:69:02:1a:b2:eb:62:da:1a:4e:47:4f: f2:3e:da:64:04:4f:6f:6e:fd:86:1f:c4:26:ad:78: 0e:77:5c:ae:75:64:29:51:00:c1:73:b9:84:24:6f: da:6b:04:3c:d7:83:61:69:60:9b:de:b7:d8:57:52: 5e:a2:f2:41:6e:c3:e5:e3:0b:47:a1:63:27:2d:05: 65:22:0b:74:1c:bb:0c:1b:f9:49:77:95:83:7a:4e: 5d:e8:5c:d0:f5:e2:71:c0:1d:82:4d:e8:2c:c4:43: b7:e6:59:8c:0f:44:71:3a:3c:fa:65:69:39:70:fa: f6:67:23:ad:06:87:ba:2a:5f:5a:a4:0d:53:70:b1: 66:fc:6e:55:e5:2b:c0:0a:22:43:79:6d:07:ef:ce: 6f:b1:11:3d:47:bd:e9:ad:b2:68:e4:8c:66:ff:ef: 58:76:35:a6:13:e3:bc:50:d3:24:7f:14:8c:a2:9e: 68:fb:1a:c7:6b:2b:94:a9:0e:57:8c:25:c5:7c:c8: 5b:b6:e5:5f:93:19:ef:78:4d:00:30:64:8a:33:d0: 37:a6:f8:72:0a:50:54:93:56:35:48:23:3a:e1:fd: 87:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B5:6D:2A:11:60:BC:17:A0:D2:74:79:8B:4D:A8:C0:D1:DA:54:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8a20ddd-dd3f-4259-b041-244eaf7ffe03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:5000::/40 Signature Algorithm: sha256WithRSAEncryption 3b:87:0e:df:b0:66:36:e5:b6:c2:5f:4e:47:58:5a:e3:56:6a: c9:0a:73:6c:e9:f9:d1:eb:04:83:05:d6:1c:06:bc:ab:17:f3: ac:c4:4b:c8:24:47:7e:3e:4e:88:ca:a3:93:74:47:0c:13:53: 0f:48:9d:52:49:19:90:11:0a:77:a4:04:19:c2:a3:cf:57:ec: 97:24:65:b4:4a:6b:91:d3:4b:00:88:64:b3:c5:1c:63:2d:a3: 58:99:b4:5a:8c:41:8b:5d:d3:d5:3c:38:f7:65:86:c2:01:df: 6c:c8:dd:a7:92:86:78:2b:72:f3:44:b4:79:63:9a:10:f0:fc: 75:03:e7:c6:20:2f:a9:bc:2c:f7:4b:99:f9:cd:f4:5b:38:e3: a0:de:91:fc:1d:2c:1a:a5:72:db:0a:c5:5d:cf:19:57:e8:2f: 17:73:ec:f7:07:9a:93:a5:1a:a9:69:d0:53:33:16:51:1f:dc: d7:89:b8:d2:d3:9f:11:bf:13:c4:de:e5:a5:4f:79:93:ab:29: 01:42:67:a7:29:e0:6c:47:79:21:1e:f1:5b:b9:7e:42:bc:c0: 9e:cc:ce:17:9c:e8:06:3c:34:5a:47:1f:21:b2:15:7f:07:69: 9e:f7:dc:61:b2:c9:90:4a:3b:3d:d9:36:1d:1c:8a:7a:4c:34: 51:22:35:47 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaCF4RXdh+2iilVNP05GtVdavGGMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDEzMTA3WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzZiMDI3ZGE5MWM4YzQyMTlmOTNkMzUyOGRhMGVmZjFk ODRiMzc5ODgxNDFjMDA1NGVjZTI2OWM0NzVkNGMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrD3IiI/PkQb/cM4esCRdEQWLsjPDQyZs1/sSAoY5bCuxp Ahqy62LaGk5HT/I+2mQET29u/YYfxCateA53XK51ZClRAMFzuYQkb9prBDzXg2Fp YJvet9hXUl6i8kFuw+XjC0ehYyctBWUiC3Qcuwwb+Ul3lYN6Tl3oXND14nHAHYJN 6CzEQ7fmWYwPRHE6PPplaTlw+vZnI60Gh7oqX1qkDVNwsWb8blXlK8AKIkN5bQfv zm+xET1HvemtsmjkjGb/71h2NaYT47xQ0yR/FIyinmj7GsdrK5SpDleMJcV8yFu2 5V+TGe94TQAwZIoz0Dem+HIKUFSTVjVIIzrh/YdnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUcLVtKhFgvBeg0nR5i02owNHaVKswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4YTIwZGRkLWRkM2YtNDI1OS1iMDQxLTI0NGVhZjdmZmUwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/yUDANBgkqhkiG9w0BAQsFAAOCAQEAO4cO37BmNuW2wl9OR1ha41Zq yQpzbOn50esEgwXWHAa8qxfzrMRLyCRHfj5OiMqjk3RHDBNTD0idUkkZkBEKd6QE GcKjz1fslyRltEprkdNLAIhks8UcYy2jWJm0WoxBi13T1Tw492WGwgHfbMjdp5KG eCty80S0eWOaEPD8dQPnxiAvqbws90uZ+c30WzjjoN6R/B0sGqVy2wrFXc8ZV+gv F3Ps9weak6UaqWnQUzMWUR/c14m40tOfEb8TxN7lpU95k6spAUJnpyngbEd5IR7x W7l+QrzAnszOF5zoBjw0WkcfIbIVfwdpnvfcYbLJkEo7Pdk2HRyKekw0USI1Rw== -----END CERTIFICATE-----Generated at Sat Jun 13 08:17:03 2026 by rpki-client