$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa File: 20df74ce-1a64-4df1-b616-115d4493a969.roa (raw, json) Hash identifier: o6YrfAGeOO0JRURGq+tF+nfskqfiMzCVuPYju73OLqY= Subject key identifier: 14:FE:EF:B9:EA:D1:3D:75:F7:1B:44:91:71:05:3C:11:22:CC:38:5D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 38F97392E52D1CF3CD0DB220894FA7AF0A5A9FBA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa Signing time: Tue 19 May 2026 04:10:54 +0000 ROA not before: Tue 19 May 2026 04:10:54 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:f9:73:92:e5:2d:1c:f3:cd:0d:b2:20:89:4f:a7:af:0a:5a:9f:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:54 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=062bc518ffef622894679f768e8351917050f3add07aaa482819cbd0a11d4a15, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:eb:b6:b0:ff:e0:66:28:64:13:ab:23:b2:c2: 41:ba:33:1d:9d:8c:ab:5d:09:65:46:cb:44:92:2b: ac:85:95:64:46:48:ca:15:99:2e:d4:77:0b:1c:04: 3b:3b:98:10:f5:81:c9:e5:ce:12:bd:f3:e4:b3:c4: 01:58:b8:f6:1b:af:da:6e:77:e8:fc:6b:b4:a6:c0: 04:07:b2:6c:b6:2f:d2:82:0f:e8:c1:3a:cf:01:dd: c1:30:7f:b4:2e:ab:dc:02:21:c1:07:ac:cb:5c:36: a7:b9:9b:ac:bc:3e:6c:b6:66:43:62:d3:d2:b5:67: 66:41:3b:0f:ff:d0:82:7d:87:36:a5:d2:9a:b7:71: 9f:e7:bb:b3:9a:47:c0:79:b9:63:b3:b0:ae:c5:7c: b1:eb:1e:08:95:6d:01:b3:3d:2f:a7:38:8f:87:86: 45:7b:ba:4a:9e:4f:79:39:53:0d:f2:ef:de:67:45: ad:68:bd:ae:29:11:c1:ea:b4:01:fa:d4:d5:6e:59: a5:37:28:db:47:d2:82:21:17:35:b0:c6:ba:f6:d0: 18:f2:a3:62:9e:b7:df:87:1e:e2:96:e1:9b:ee:63: 73:95:5e:84:6d:52:9e:7a:5e:d2:d4:76:80:8e:84: 1c:0d:fa:f3:5e:c3:d8:7b:42:c1:ea:37:5d:e8:ce: 42:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:FE:EF:B9:EA:D1:3D:75:F7:1B:44:91:71:05:3C:11:22:CC:38:5D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:200::/40 Signature Algorithm: sha256WithRSAEncryption 32:3a:a1:de:bd:1a:e1:0c:60:1b:ad:e9:3f:13:38:30:30:79: 1f:81:a8:b5:e1:af:a6:3c:0c:1b:71:c6:6e:83:3f:e6:80:9c: 9c:e7:4d:7b:5e:09:89:10:fc:28:88:40:41:f5:45:7e:63:27: 6b:f4:05:17:25:14:b3:4e:2f:b0:99:7c:2f:91:b1:4e:5f:82: 4c:09:42:31:d2:df:38:ee:e2:a3:ff:c4:3b:c9:e9:cc:1e:bb: 88:1b:a6:c8:c0:fc:6b:10:d5:96:20:bb:e5:29:11:6c:29:a1: 17:b5:0b:a0:01:56:31:48:39:90:9f:68:6e:3d:f8:14:31:20: 5a:56:1b:59:f3:53:e2:cf:67:f8:60:de:c8:d8:c4:21:ba:ba: a5:cb:42:09:a7:07:a1:62:30:e7:cd:05:de:17:f0:3c:e3:ad: 84:d7:83:5b:a1:07:fe:e8:bb:77:d4:50:67:48:3f:f2:0d:5d: 99:3a:c7:98:89:8c:82:1c:92:86:67:44:bd:41:e4:a2:6d:92: ed:93:92:18:ff:3b:0a:cb:f0:f0:25:69:ac:68:ec:f6:6b:a9: 46:2b:6a:e7:8a:19:7f:50:6a:f1:86:30:15:fc:8a:d6:fd:8c: 87:d5:b0:db:bf:46:24:04:77:97:21:fa:ca:0d:6f:74:59:fa: a5:77:f2:73 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOPlzkuUtHPPNDbIgiU+nrwpan7owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDU0WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjJiYzUxOGZmZWY2MjI4OTQ2NzlmNzY4ZTgzNTE5MTcw NTBmM2FkZDA3YWFhNDgyODE5Y2JkMGExMWQ0YTE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCY67aw/+BmKGQTqyOywkG6Mx2djKtdCWVGy0SSK6yFlWRG SMoVmS7UdwscBDs7mBD1gcnlzhK98+SzxAFYuPYbr9pud+j8a7SmwAQHsmy2L9KC D+jBOs8B3cEwf7Quq9wCIcEHrMtcNqe5m6y8Pmy2ZkNi09K1Z2ZBOw//0IJ9hzal 0pq3cZ/nu7OaR8B5uWOzsK7FfLHrHgiVbQGzPS+nOI+HhkV7ukqeT3k5Uw3y795n Ra1ova4pEcHqtAH61NVuWaU3KNtH0oIhFzWwxrr20Bjyo2Ket9+HHuKW4ZvuY3OV XoRtUp56XtLUdoCOhBwN+vNew9h7QsHqN13ozkLHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUFP7vuerRPXX3G0SRcQU8ESLMOF0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIwZGY3NGNlLTFhNjQtNGRmMS1iNjE2LTExNWQ0NDkzYTk2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwAjANBgkqhkiG9w0BAQsFAAOCAQEAMjqh3r0a4QxgG63pPxM4MDB5 H4GoteGvpjwMG3HGboM/5oCcnOdNe14JiRD8KIhAQfVFfmMna/QFFyUUs04vsJl8 L5GxTl+CTAlCMdLfOO7io//EO8npzB67iBumyMD8axDVliC75SkRbCmhF7ULoAFW MUg5kJ9obj34FDEgWlYbWfNT4s9n+GDeyNjEIbq6pctCCacHoWIw580F3hfwPOOt hNeDW6EH/ui7d9RQZ0g/8g1dmTrHmImMghyShmdEvUHkom2S7ZOSGP87Csvw8CVp rGjs9mupRitq54oZf1Bq8YYwFfyK1v2Mh9Ww279GJAR3lyH6yg1vdFn6pXfycw== -----END CERTIFICATE-----Generated at Fri Jun 12 05:52:09 2026 by rpki-client