$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/21691b49-2580-406c-8b6c-f238d38236a9.roa File: 21691b49-2580-406c-8b6c-f238d38236a9.roa (raw, json) Hash identifier: ZIRGkETq7yG356tuaf+hbdobQ7OjNjWlgeT/bW9ofIY= Subject key identifier: 0F:24:2B:BF:C8:58:D3:AE:D9:BB:26:83:3F:19:29:3A:93:F5:DA:CC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 18D0453C2D0A5E9DCD3A12B0AF91BCFDF0C3D2E6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/21691b49-2580-406c-8b6c-f238d38236a9.roa Signing time: Fri 22 May 2026 00:00:05 +0000 ROA not before: Fri 22 May 2026 00:00:05 +0000 ROA not after: Thu 20 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:603::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:d0:45:3c:2d:0a:5e:9d:cd:3a:12:b0:af:91:bc:fd:f0:c3:d2:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 22 00:00:05 2026 GMT Not After : Aug 20 23:59:59 2026 GMT Subject: serialNumber=c9adbb6bc750c40bb3f0f9a4bfbe48bdae638dd8efde3499f54e2b2f9f974a99, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ab:15:4a:e1:c9:02:e0:eb:50:15:ad:05:4d: d8:05:18:82:19:8e:33:2c:6c:4d:62:81:36:3a:de: 45:29:50:fd:3d:e0:00:df:3f:f0:3a:33:1e:26:3e: 5e:b5:3b:b6:c5:e7:27:29:0b:0e:5f:fd:c5:a2:66: 36:0e:e4:1f:ca:e7:a2:cf:14:3b:dd:a5:60:b7:02: 4e:27:4d:92:29:b9:5f:c3:98:15:8d:d4:d4:92:91: 14:c1:5e:a3:82:12:d9:54:54:06:b5:1e:8c:a0:c5: 6a:e1:63:87:e9:34:3c:32:80:db:d9:c3:78:55:d1: ab:06:ee:b2:3c:ca:0a:5e:2e:30:81:b7:a9:0e:07: 26:df:ca:2e:94:ab:ed:9f:ed:34:db:f7:f0:7a:89: e9:a8:57:a5:cd:7b:79:d5:21:aa:61:94:08:f5:ff: ad:08:dc:40:09:c4:02:fe:77:95:8c:9e:a9:44:23: 25:83:7e:e5:b1:aa:40:e6:79:be:01:93:82:49:9a: c8:7a:b9:79:1b:c5:af:8c:f1:11:20:e2:40:41:eb: cc:64:31:9e:1c:3e:ad:83:81:8e:2e:4e:46:2b:79: 8c:5c:be:19:46:c4:d1:b6:93:78:35:53:4f:a7:13: 50:f1:16:36:a5:5b:ed:43:18:25:2e:b3:1e:71:bc: e5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:24:2B:BF:C8:58:D3:AE:D9:BB:26:83:3F:19:29:3A:93:F5:DA:CC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/21691b49-2580-406c-8b6c-f238d38236a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:603::/48 Signature Algorithm: sha256WithRSAEncryption 7c:c7:32:ef:81:32:27:d4:4d:77:06:f1:68:43:10:38:47:27: 40:d3:6e:57:ff:ed:f9:c2:d1:bf:80:a7:c7:4e:e5:9c:8a:00: 49:f3:c4:41:20:64:bc:d5:5c:2d:90:2c:9a:31:07:5f:28:14: b2:1d:85:f1:b1:9d:d9:e4:b3:cf:c1:e2:a4:24:7e:03:29:06: ad:43:54:2f:2b:8e:72:27:5d:c0:3f:fd:c5:38:7c:6a:fd:6c: 2b:3b:0b:60:f2:bc:67:77:02:cd:31:bd:49:38:71:3b:fc:e5: c7:45:19:37:6e:b2:ad:a1:e2:50:f8:99:24:47:0d:e9:c9:4a: 99:88:7b:0a:07:02:51:80:d2:4f:fb:c0:97:be:df:55:94:6e: ab:07:b3:10:3f:dd:d9:ea:a7:99:fe:91:44:fb:a4:b1:0c:93: f3:a0:af:a2:e7:8a:a6:ab:63:ef:e9:03:66:f2:9b:28:bd:a0: 89:5d:39:b0:09:c9:01:9e:6c:b0:d9:2d:9a:34:39:19:71:a4: 8f:c8:be:4f:ec:a9:2a:ee:ed:a6:e5:04:2a:cb:b5:9b:cc:79: f1:60:1e:c2:9e:31:52:ff:bd:0f:2e:1e:73:3e:d0:42:f2:94: 12:4c:fa:af:07:ce:85:f1:0e:8e:f9:00:56:44:26:97:d5:d7: 92:0d:c8:f5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGNBFPC0KXp3NOhKwr5G8/fDD0uYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTIyMDAwMDA1WhcNMjYwODIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOWFkYmI2YmM3NTBjNDBiYjNmMGY5YTRiZmJlNDhiZGFl NjM4ZGQ4ZWZkZTM0OTlmNTRlMmIyZjlmOTc0YTk5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXqxVK4ckC4OtQFa0FTdgFGIIZjjMsbE1igTY63kUpUP09 4ADfP/A6Mx4mPl61O7bF5ycpCw5f/cWiZjYO5B/K56LPFDvdpWC3Ak4nTZIpuV/D mBWN1NSSkRTBXqOCEtlUVAa1HoygxWrhY4fpNDwygNvZw3hV0asG7rI8ygpeLjCB t6kOBybfyi6Uq+2f7TTb9/B6iemoV6XNe3nVIaphlAj1/60I3EAJxAL+d5WMnqlE IyWDfuWxqkDmeb4Bk4JJmsh6uXkbxa+M8REg4kBB68xkMZ4cPq2DgY4uTkYreYxc vhlGxNG2k3g1U0+nE1DxFjalW+1DGCUusx5xvOWvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDyQrv8hY067ZuyaDPxkpOpP12swwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIxNjkxYjQ5LTI1ODAtNDA2Yy04YjZjLWYyMzhkMzgyMzZhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBgMwDQYJKoZIhvcNAQELBQADggEBAHzHMu+BMifUTXcG8WhDEDhH J0DTblf/7fnC0b+Ap8dO5ZyKAEnzxEEgZLzVXC2QLJoxB18oFLIdhfGxndnks8/B 4qQkfgMpBq1DVC8rjnInXcA//cU4fGr9bCs7C2DyvGd3As0xvUk4cTv85cdFGTdu sq2h4lD4mSRHDenJSpmIewoHAlGA0k/7wJe+31WUbqsHsxA/3dnqp5n+kUT7pLEM k/Ogr6LniqarY+/pA2bymyi9oIldObAJyQGebLDZLZo0ORlxpI/Ivk/sqSru7abl BCrLtZvMefFgHsKeMVL/vQ8uHnM+0ELylBJM+q8HzoXxDo75AFZEJpfV15INyPU= -----END CERTIFICATE-----Generated at Fri Jun 12 05:54:08 2026 by rpki-client