$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa File: 1ad26571-c674-4a73-b205-77cb32fe83bd.roa (raw, json) Hash identifier: QcApD6GG2RABqLVR4qYJNCTqewFv8dkvLGHNlmgFoMI= Subject key identifier: 33:DF:59:59:D1:21:DE:E5:67:D0:73:A5:4E:9D:59:8C:8B:F8:C2:EC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4076CFC10DFEE35AFA06AAF33E21D53F0D5BE483 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa Signing time: Tue 19 May 2026 04:20:38 +0000 ROA not before: Tue 19 May 2026 04:20:38 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:76:cf:c1:0d:fe:e3:5a:fa:06:aa:f3:3e:21:d5:3f:0d:5b:e4:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:20:38 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=c67a3af25efda20a97aace044bf2b89665589b5c5e132f06401a3932682ed035, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5b:c2:c2:37:5c:ec:e3:b6:93:9f:18:b0:a0: 04:1a:a0:a5:25:dc:8e:3f:ad:5c:3a:76:11:c4:23: 61:30:b2:28:bc:8c:07:90:8e:a0:df:a5:ba:e0:6f: ee:84:b5:95:ad:ad:d3:ed:01:2e:ad:2a:ae:77:4b: 00:4d:03:88:a3:f8:62:40:f6:60:3f:a9:34:62:33: e6:43:e6:3d:a1:ea:9a:5b:61:11:91:04:eb:e2:88: 8f:95:43:2e:66:b0:6b:34:4f:4e:0f:65:3a:79:0a: dd:32:2e:6b:20:79:8f:f1:b0:95:7f:6d:d8:e8:31: af:19:4c:48:a9:44:27:78:39:ca:c9:45:47:07:54: cc:90:c9:95:e6:23:3a:e4:fd:c8:59:76:03:ab:36: 90:95:a5:d8:43:f8:15:c7:73:8b:c6:3e:5e:05:bd: 90:1a:f0:8d:b7:80:2b:de:6b:b5:b0:47:b6:25:f7: 6d:bb:5a:6d:a1:df:1a:7c:91:ce:a0:ff:58:6b:49: c2:0a:0c:38:5c:e3:0b:2e:3a:e0:40:0e:db:9a:13: c2:db:51:8b:94:3a:4f:99:f0:9f:43:89:a4:79:4e: 67:28:e5:1e:66:31:64:b3:b3:81:96:46:27:03:c9: 32:87:52:e7:4f:e1:5f:74:5c:df:7d:19:54:f3:c5: cd:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:DF:59:59:D1:21:DE:E5:67:D0:73:A5:4E:9D:59:8C:8B:F8:C2:EC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10::/48 Signature Algorithm: sha256WithRSAEncryption 9b:8e:28:20:46:26:83:2e:ef:25:e7:b9:f2:a3:7c:30:77:26: 22:5f:de:95:48:f2:96:a1:ee:a1:4e:f8:e6:7c:9a:49:25:a5: 29:a5:ae:d3:42:97:dc:06:c8:ef:eb:1f:5e:f2:81:be:be:e4: 67:c6:26:2d:8f:ad:af:ef:78:55:a8:35:55:44:92:af:52:4d: d8:23:0c:2c:73:f2:46:76:bd:17:14:34:ad:76:83:42:43:06: 6e:b3:09:3d:00:cc:10:19:ef:98:06:d9:c1:a1:2d:dc:49:f3: b5:71:ae:11:89:71:cb:8b:23:85:79:5d:60:d3:f8:2b:42:d4: 8f:ee:82:4e:28:d6:ee:f5:80:f1:1a:6e:94:8c:a3:aa:a6:c5: 12:19:ec:da:a5:56:96:c1:67:4d:35:20:a9:01:d8:6a:37:b5: ac:c9:3d:70:52:0e:dd:87:4e:2e:af:e1:bf:73:0e:6d:cd:36: d4:87:df:a5:7a:f0:6a:8a:d9:83:c4:cb:93:1f:c7:52:a5:3b: 63:bd:f4:32:49:f6:a2:81:85:6a:63:63:bf:f9:e3:e1:2f:1f: 02:0e:2c:be:f6:e9:0f:ce:b4:19:03:d1:78:0b:aa:2c:9f:8f: b9:bc:95:64:d7:80:c5:4c:55:62:f0:a2:d7:f1:03:14:74:a9: 0d:c0:75:62 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQHbPwQ3+41r6BqrzPiHVPw1b5IMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQyMDM4WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjdhM2FmMjVlZmRhMjBhOTdhYWNlMDQ0YmYyYjg5NjY1 NTg5YjVjNWUxMzJmMDY0MDFhMzkzMjY4MmVkMDM1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAW8LCN1zs47aTnxiwoAQaoKUl3I4/rVw6dhHEI2Ewsii8 jAeQjqDfpbrgb+6EtZWtrdPtAS6tKq53SwBNA4ij+GJA9mA/qTRiM+ZD5j2h6ppb YRGRBOviiI+VQy5msGs0T04PZTp5Ct0yLmsgeY/xsJV/bdjoMa8ZTEipRCd4OcrJ RUcHVMyQyZXmIzrk/chZdgOrNpCVpdhD+BXHc4vGPl4FvZAa8I23gCvea7WwR7Yl 9227Wm2h3xp8kc6g/1hrScIKDDhc4wsuOuBADtuaE8LbUYuUOk+Z8J9DiaR5Tmco 5R5mMWSzs4GWRicDyTKHUudP4V90XN99GVTzxc3zAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUM99ZWdEh3uVn0HOlTp1ZjIv4wuwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFhZDI2NTcxLWM2NzQtNGE3My1iMjA1LTc3Y2IzMmZlODNiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABAwDQYJKoZIhvcNAQELBQADggEBAJuOKCBGJoMu7yXnufKjfDB3 JiJf3pVI8pah7qFO+OZ8mkklpSmlrtNCl9wGyO/rH17ygb6+5GfGJi2Pra/veFWo NVVEkq9STdgjDCxz8kZ2vRcUNK12g0JDBm6zCT0AzBAZ75gG2cGhLdxJ87VxrhGJ ccuLI4V5XWDT+CtC1I/ugk4o1u71gPEabpSMo6qmxRIZ7NqlVpbBZ001IKkB2Go3 tazJPXBSDt2HTi6v4b9zDm3NNtSH36V68GqK2YPEy5Mfx1KlO2O99DJJ9qKBhWpj Y7/54+EvHwIOLL726Q/OtBkD0XgLqiyfj7m8lWTXgMVMVWLwotfxAxR0qQ3AdWI= -----END CERTIFICATE-----Generated at Tue Jun 16 07:39:26 2026 by rpki-client