$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa File: 0668f39a-0950-45e9-b174-8f7a83ff26e9.roa (raw, json) Hash identifier: iQ/PlGRnyWXGGI03/H1vbQdhN1ycoyrZrWBtmPpSTC4= Subject key identifier: B4:7D:1D:D7:29:CD:64:02:64:61:56:25:6E:F3:43:BC:65:E6:99:BD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 46C1680D378F58902B56BDBC5EF1DC4676A471C5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa Signing time: Tue 19 May 2026 04:20:51 +0000 ROA not before: Tue 19 May 2026 04:20:51 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:c1:68:0d:37:8f:58:90:2b:56:bd:bc:5e:f1:dc:46:76:a4:71:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:20:51 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=657f4ab1298f678f91625b729334c444612f81bfbea983cb61fd69d5827689bc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b2:d8:1c:df:cd:79:a1:de:99:e2:cf:40:5c: a5:ce:01:3e:3b:47:a4:05:0a:50:5f:ac:96:56:3b: 79:7c:fe:ea:d8:2a:3d:87:dc:0c:15:16:72:92:c3: 51:30:8f:49:c5:c0:a6:59:61:d0:de:7f:6a:84:55: 8e:b6:b1:44:79:b8:03:c2:75:bc:ce:db:2c:36:df: dd:3e:10:01:ad:3c:48:19:ed:55:67:ae:d0:8f:00: d7:d0:f9:e4:aa:24:b3:3e:88:44:8c:2c:33:1f:f8: 5f:c3:bc:d0:41:7f:dd:70:01:48:a4:5c:56:e1:0f: 23:8b:0f:cd:81:14:fe:7f:58:74:03:38:98:38:f5: ad:d7:35:b5:b7:83:6b:3b:cd:6e:c5:50:62:0b:a8: 0e:b3:2a:21:5b:ec:87:0b:2b:e2:b1:5d:ef:88:a8: 37:c3:11:78:97:6c:d6:5a:69:7c:ae:8a:e0:a4:89: 48:07:c9:44:bd:09:5b:4c:43:6e:9e:34:27:fe:d5: d2:a0:96:30:d7:30:04:30:ad:c1:97:bf:38:55:83: 72:dd:7c:fd:ff:63:63:0d:d0:c8:b3:6a:29:49:5e: ac:61:65:e8:b7:ca:bb:88:81:c4:17:42:ce:7d:27: 29:ab:5b:44:f8:40:e7:d7:4d:0f:32:47:84:ef:9b: e9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:7D:1D:D7:29:CD:64:02:64:61:56:25:6E:F3:43:BC:65:E6:99:BD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 42:8c:f5:8d:fa:36:c6:a2:2e:58:b0:31:d2:22:53:12:a5:58: 61:d8:8c:a5:ab:0e:fc:5a:4d:dc:ce:f9:12:d4:b4:08:07:ce: ee:cd:a7:af:a5:55:87:54:e3:cd:2b:19:13:99:d6:84:3e:73: b1:cc:bf:3c:7f:ea:8f:06:da:2b:d8:e4:7e:03:5b:84:ab:6a: 7d:58:b4:02:eb:e9:02:5f:fb:e9:74:d7:21:96:89:14:4d:ec: b3:58:af:53:0b:9a:0a:38:51:1f:9e:26:50:82:a1:77:89:f7: eb:7a:09:04:2a:10:90:01:e2:22:cd:e1:1c:f7:57:62:90:9c: b4:15:cc:39:76:46:ea:c8:92:a8:ef:8d:01:e3:56:f9:f3:21: f2:fd:16:04:9a:7d:29:70:05:79:2e:83:6a:3a:f4:ec:f3:c8: 83:37:26:41:e7:16:9d:3b:63:dd:df:7a:49:c8:75:8a:00:df: 00:1f:b8:a8:a3:67:ef:55:58:78:ec:4f:b9:bb:22:f9:31:45: 27:db:10:83:0e:8a:f5:64:d4:2a:c9:2e:87:33:c0:69:44:d6: 91:b4:09:7d:99:b3:70:e5:f8:c9:c6:b9:89:f9:3a:c2:05:0f: 76:59:2c:1a:6c:c5:e9:3c:97:57:f0:84:a0:79:42:df:a0:2f: 7f:90:1c:ee -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURsFoDTePWJArVr28XvHcRnakccUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQyMDUxWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NTdmNGFiMTI5OGY2NzhmOTE2MjViNzI5MzM0YzQ0NDYx MmY4MWJmYmVhOTgzY2I2MWZkNjlkNTgyNzY4OWJjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkstgc3815od6Z4s9AXKXOAT47R6QFClBfrJZWO3l8/urY Kj2H3AwVFnKSw1Ewj0nFwKZZYdDef2qEVY62sUR5uAPCdbzO2yw2390+EAGtPEgZ 7VVnrtCPANfQ+eSqJLM+iESMLDMf+F/DvNBBf91wAUikXFbhDyOLD82BFP5/WHQD OJg49a3XNbW3g2s7zW7FUGILqA6zKiFb7IcLK+KxXe+IqDfDEXiXbNZaaXyuiuCk iUgHyUS9CVtMQ26eNCf+1dKgljDXMAQwrcGXvzhVg3LdfP3/Y2MN0MizailJXqxh Zei3yruIgcQXQs59JymrW0T4QOfXTQ8yR4Tvm+mtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtH0d1ynNZAJkYVYlbvNDvGXmmb0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA2NjhmMzlhLTA5NTAtNDVlOS1iMTc0LThmN2E4M2ZmMjZlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAEKM9Y36NsaiLliwMdIiUxKl WGHYjKWrDvxaTdzO+RLUtAgHzu7Np6+lVYdU480rGROZ1oQ+c7HMvzx/6o8G2ivY 5H4DW4Sran1YtALr6QJf++l01yGWiRRN7LNYr1MLmgo4UR+eJlCCoXeJ9+t6CQQq EJAB4iLN4Rz3V2KQnLQVzDl2RurIkqjvjQHjVvnzIfL9FgSafSlwBXkug2o69Ozz yIM3JkHnFp07Y93feknIdYoA3wAfuKijZ+9VWHjsT7m7IvkxRSfbEIMOivVk1CrJ LoczwGlE1pG0CX2Zs3Dl+MnGuYn5OsIFD3ZZLBpsxek8l1fwhKB5Qt+gL3+QHO4= -----END CERTIFICATE-----Generated at Fri Jun 12 07:02:58 2026 by rpki-client