$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbdd7149-1b63-485c-91e0-217a5a311a88.roa File: dbdd7149-1b63-485c-91e0-217a5a311a88.roa (raw, json) Hash identifier: nsjFs7f5Vd6UF6uSBHxoZA1u7f2VPy1P9GJq84+3o+E= Subject key identifier: F4:F6:2F:DC:8B:31:B6:47:73:73:C4:25:D2:46:B7:D8:9B:73:4A:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42CF5F67AD46E1F12B6D5E1A58A4A7BC9A7C484F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbdd7149-1b63-485c-91e0-217a5a311a88.roa Signing time: Fri 15 May 2026 01:50:11 +0000 ROA not before: Fri 15 May 2026 01:50:11 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:80f0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:cf:5f:67:ad:46:e1:f1:2b:6d:5e:1a:58:a4:a7:bc:9a:7c:48:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:50:11 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=89fc3f7eec82a89897f838590f97a0a7643b1ef83e4563febf4581637520f9bb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:3a:93:34:e6:75:c7:3d:92:5a:4e:95:9c:39: 7d:bf:b9:14:88:51:09:38:62:89:3d:50:5d:3b:c9: 3a:f7:33:ca:48:76:25:bf:dd:87:11:3d:e9:05:b1: f4:bd:76:82:e9:ca:86:98:5d:5c:b4:af:5f:03:59: 17:ea:ea:39:a9:6f:64:55:80:6b:a7:81:90:74:4b: 7d:fb:b1:f0:be:57:df:f8:52:5d:45:a5:f3:40:f4: 14:54:64:60:f2:ae:b2:a0:ed:25:f4:33:4c:ed:44: c0:a0:0c:76:a5:4e:91:87:50:60:b5:4f:37:89:2c: 74:37:d0:f5:51:3f:0c:c1:2e:86:7f:15:bb:cb:e5: 5a:2e:09:f3:1d:71:c1:d1:b8:52:c4:45:08:d1:f0: 15:42:20:99:7c:39:65:af:2c:cc:13:50:29:89:b5: db:a8:fd:4b:55:6f:54:07:58:cb:5c:c4:8c:f6:c5: 37:d4:9a:b0:98:6f:c3:b1:d0:3e:d7:37:b3:ed:8c: 12:03:69:cb:48:a4:5f:63:a9:9d:c7:8c:ed:ad:70: 28:24:db:e8:45:16:10:9a:06:8e:a3:0d:96:eb:01: 65:8e:92:e4:0d:90:37:8e:e7:06:2b:09:c6:82:52: 8f:bb:7e:7e:89:96:04:70:7e:08:fc:31:04:ed:e6: 4e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F6:2F:DC:8B:31:B6:47:73:73:C4:25:D2:46:B7:D8:9B:73:4A:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbdd7149-1b63-485c-91e0-217a5a311a88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:80f0::/48 Signature Algorithm: sha256WithRSAEncryption 82:04:4b:6e:8c:1b:35:89:95:68:7a:82:37:0e:d7:cd:06:04: 14:5b:36:f2:e9:b5:0d:83:70:14:56:0a:9b:a6:aa:90:61:92: 08:fd:5f:f7:f5:04:7d:a9:4d:5a:61:a5:0a:87:60:58:44:2a: b4:01:91:34:bf:40:d6:da:9c:b3:cf:d2:f1:e5:ad:a7:de:94: 05:bb:c3:87:47:65:27:48:f2:88:64:10:6b:eb:82:0d:17:83: 15:70:f0:30:76:aa:7b:22:00:1f:a3:15:a1:c0:18:32:49:4f: 8b:50:cd:cc:ad:fb:89:96:a2:e7:a9:2f:74:81:a6:23:12:95: 78:48:9e:6d:57:bd:73:c3:39:fc:47:90:0b:a6:98:f3:58:b8: e4:a0:a0:5b:e7:a0:4e:e5:28:ef:f5:67:92:7e:3d:fc:6a:70: e1:08:b1:2e:de:24:8c:56:41:56:eb:b6:2a:66:12:5a:1d:72: b1:d7:1e:fe:25:27:7e:6b:33:73:48:33:28:05:de:14:a0:02: be:96:b1:56:21:c8:0e:ef:52:2e:d7:a8:6f:2a:26:eb:34:bd: b0:65:f6:69:f9:ba:46:c1:3e:0b:0c:c3:50:77:b9:06:d1:19: 45:67:53:69:55:a5:b3:c0:30:af:70:49:c2:d3:c2:ba:d2:dd: 98:d7:fa:d0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQs9fZ61G4fErbV4aWKSnvJp8SE8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDE1MDExWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWZjM2Y3ZWVjODJhODk4OTdmODM4NTkwZjk3YTBhNzY0 M2IxZWY4M2U0NTYzZmViZjQ1ODE2Mzc1MjBmOWJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaOpM05nXHPZJaTpWcOX2/uRSIUQk4Yok9UF07yTr3M8pI diW/3YcRPekFsfS9doLpyoaYXVy0r18DWRfq6jmpb2RVgGungZB0S337sfC+V9/4 Ul1FpfNA9BRUZGDyrrKg7SX0M0ztRMCgDHalTpGHUGC1TzeJLHQ30PVRPwzBLoZ/ FbvL5VouCfMdccHRuFLERQjR8BVCIJl8OWWvLMwTUCmJtduo/UtVb1QHWMtcxIz2 xTfUmrCYb8Ox0D7XN7PtjBIDactIpF9jqZ3HjO2tcCgk2+hFFhCaBo6jDZbrAWWO kuQNkDeO5wYrCcaCUo+7fn6JlgRwfgj8MQTt5k7ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9PYv3Isxtkdzc8Ql0ka32JtzSnMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RiZGQ3MTQ5LTFiNjMtNDg1Yy05MWUwLTIxN2E1YTMxMWE4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgPAwDQYJKoZIhvcNAQELBQADggEBAIIES26MGzWJlWh6gjcO180G BBRbNvLptQ2DcBRWCpumqpBhkgj9X/f1BH2pTVphpQqHYFhEKrQBkTS/QNbanLPP 0vHlrafelAW7w4dHZSdI8ohkEGvrgg0XgxVw8DB2qnsiAB+jFaHAGDJJT4tQzcyt +4mWouepL3SBpiMSlXhInm1XvXPDOfxHkAummPNYuOSgoFvnoE7lKO/1Z5J+Pfxq cOEIsS7eJIxWQVbrtipmElodcrHXHv4lJ35rM3NIMygF3hSgAr6WsVYhyA7vUi7X qG8qJus0vbBl9mn5ukbBPgsMw1B3uQbRGUVnU2lVpbPAMK9wScLTwrrS3ZjX+tA= -----END CERTIFICATE-----Generated at Sat Jun 13 11:25:03 2026 by rpki-client