$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fad6e987-5e31-4212-8de7-9e29b43e7687.roa File: fad6e987-5e31-4212-8de7-9e29b43e7687.roa (raw, json) Hash identifier: 0dBT57LuDzo9xA2EfCzcx5DERfFu57niK9OiVWw9pu4= Subject key identifier: 11:82:B8:FA:E4:AA:BA:1A:A7:C9:CC:5A:11:95:FE:87:AE:25:87:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F3BCD500262C5D3FD9C2D08207F066CACAB6F7D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fad6e987-5e31-4212-8de7-9e29b43e7687.roa Signing time: Sat 16 May 2026 01:30:15 +0000 ROA not before: Sat 16 May 2026 01:30:15 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1e:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:3b:cd:50:02:62:c5:d3:fd:9c:2d:08:20:7f:06:6c:ac:ab:6f:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:30:15 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=551c1c3dc951ecd9663daa766c5fa14a517b2e0bec1b2064c3ee1687dcaa07c1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ff:eb:b9:af:75:bd:d5:59:7e:42:53:a8:51: 53:d0:4d:7d:b8:bf:04:b9:02:5d:79:38:95:4e:aa: 83:0d:d7:59:ca:58:90:40:f7:63:28:00:06:52:13: 90:b7:5c:50:d3:65:61:f9:3c:11:d5:ee:f0:8c:f0: 6a:eb:c0:6c:6e:49:d7:0f:d2:2c:61:0b:b3:12:d2: 51:e1:34:c5:ce:80:40:11:50:06:a2:db:d7:3a:2c: 57:ce:81:85:0f:5a:4c:de:8e:93:26:c2:46:80:b4: b2:e7:95:65:e4:0d:fb:f6:1a:51:21:92:21:67:5a: 26:3b:74:12:bf:bf:c7:e7:33:f0:1e:9d:73:61:20: 71:f1:06:93:cc:9d:a1:70:57:79:13:3f:3f:48:88: 35:d1:92:94:41:0a:e5:4d:1e:20:4f:c4:b9:3d:8e: 54:14:ec:00:1d:2c:46:03:dc:1e:0b:7a:e0:c8:4a: b2:91:d0:86:da:fa:4d:cc:e4:2c:6d:55:b8:1f:c9: 8d:6e:25:0c:6f:07:f3:8a:75:82:7f:36:92:97:bb: c9:92:05:ea:d2:22:c9:8b:54:af:50:bf:db:22:6e: 02:5f:da:48:ac:d6:89:3a:2f:9a:29:5d:f2:e5:4f: 6e:28:a9:0a:bd:86:1b:c8:67:49:1d:37:01:b9:dd: 1a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:82:B8:FA:E4:AA:BA:1A:A7:C9:CC:5A:11:95:FE:87:AE:25:87:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fad6e987-5e31-4212-8de7-9e29b43e7687.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1e:400::/38 Signature Algorithm: sha256WithRSAEncryption d9:74:02:b7:ff:05:14:4c:d5:ba:b4:fe:3c:7b:b4:da:f3:c1: d0:16:19:50:36:82:96:33:c8:bd:02:6a:8b:0f:21:39:fe:dc: 19:65:53:bd:1a:4b:66:15:1f:db:e3:4d:b0:98:10:71:1e:b8: b8:98:87:18:c8:59:88:02:48:ad:20:5c:93:2e:42:09:a8:7e: cc:dc:be:80:e4:ea:fd:5e:ce:c3:8f:99:3d:73:1e:7f:50:21: df:82:ec:f0:6e:b7:64:ae:65:13:5f:08:13:53:3c:0b:3d:9e: 99:8f:b1:41:5a:a4:a3:80:a1:e0:de:94:82:86:cd:54:f2:79: 3d:92:6c:e2:3c:c4:17:dc:c8:1a:27:1c:da:ab:6d:4f:63:a2: e6:40:f9:3e:de:66:04:80:2e:1b:91:16:f2:05:4e:29:0b:ee: ca:c6:c6:04:88:fc:76:4c:dd:c8:7f:56:96:8f:ea:a6:0a:a4: 26:1d:b5:32:90:36:1d:0d:11:3d:a0:a6:6f:dc:b5:b1:8f:83: d8:a0:9d:f6:01:c6:ae:14:1e:11:1d:14:56:98:05:49:1c:57: db:97:a0:a9:b1:6f:2b:c0:dc:47:cd:54:e0:3b:e0:f3:9b:fd: 5c:a5:f2:a5:a3:32:14:f7:5a:61:77:49:05:cb:f7:c2:6d:26: be:05:be:ce -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDzvNUAJixdP9nC0IIH8GbKyrb30wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEzMDE1WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTFjMWMzZGM5NTFlY2Q5NjYzZGFhNzY2YzVmYTE0YTUx N2IyZTBiZWMxYjIwNjRjM2VlMTY4N2RjYWEwN2MxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDE/+u5r3W91Vl+QlOoUVPQTX24vwS5Al15OJVOqoMN11nK WJBA92MoAAZSE5C3XFDTZWH5PBHV7vCM8GrrwGxuSdcP0ixhC7MS0lHhNMXOgEAR UAai29c6LFfOgYUPWkzejpMmwkaAtLLnlWXkDfv2GlEhkiFnWiY7dBK/v8fnM/Ae nXNhIHHxBpPMnaFwV3kTPz9IiDXRkpRBCuVNHiBPxLk9jlQU7AAdLEYD3B4LeuDI SrKR0Iba+k3M5CxtVbgfyY1uJQxvB/OKdYJ/NpKXu8mSBerSIsmLVK9Qv9sibgJf 2kis1ok6L5opXfLlT24oqQq9hhvIZ0kdNwG53RoHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUEYK4+uSquhqnycxaEZX+h64lh8QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZhZDZlOTg3LTVlMzEtNDIxMi04ZGU3LTllMjliNDNlNzY4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8eBDANBgkqhkiG9w0BAQsFAAOCAQEA2XQCt/8FFEzVurT+PHu02vPB 0BYZUDaCljPIvQJqiw8hOf7cGWVTvRpLZhUf2+NNsJgQcR64uJiHGMhZiAJIrSBc ky5CCah+zNy+gOTq/V7Ow4+ZPXMef1Ah34Ls8G63ZK5lE18IE1M8Cz2emY+xQVqk o4Ch4N6UgobNVPJ5PZJs4jzEF9zIGicc2qttT2Oi5kD5Pt5mBIAuG5EW8gVOKQvu ysbGBIj8dkzdyH9Wlo/qpgqkJh21MpA2HQ0RPaCmb9y1sY+D2KCd9gHGrhQeER0U VpgFSRxX25egqbFvK8DcR81U4Dvg85v9XKXypaMyFPdaYXdJBcv3wm0mvgW+zg== -----END CERTIFICATE-----Generated at Sat Jun 13 07:15:09 2026 by rpki-client