$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa File: 222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa (raw, json) Hash identifier: UmeQOOf7Mw89mHgV1lU3IqEl3q6zUN1MHGLwmLeaB1Q= Subject key identifier: 9C:BF:AE:9A:33:BA:28:49:E3:90:13:76:6C:4E:DB:B9:94:EB:13:FA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2A55A514310CC81F39EE3C64DB650307ECDA62B3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa Signing time: Tue 19 May 2026 04:10:57 +0000 ROA not before: Tue 19 May 2026 04:10:57 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:55:a5:14:31:0c:c8:1f:39:ee:3c:64:db:65:03:07:ec:da:62:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:57 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=6580129ab797b38b9d507f9eeac9fa479d031854498bb56353256903efdc25fa, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bd:56:c0:8e:1d:08:bd:9d:e7:aa:00:d2:35: 36:88:d5:fb:dc:47:6c:73:22:97:4f:19:94:24:e6: 93:5f:f1:7c:95:74:f5:e3:47:01:f0:a4:50:e7:57: dc:2b:df:fb:db:2f:e5:0b:33:fb:b8:45:97:f2:7f: f3:6e:2e:58:01:ef:e2:27:6d:96:1c:1f:97:f1:dc: d2:68:ba:3b:7f:09:16:b9:47:83:28:55:3e:0b:12: c9:9e:71:da:e9:54:af:f4:02:eb:7d:e7:75:b3:9c: 32:34:32:f8:5f:49:c4:c0:44:c2:ff:a4:e2:0e:c5: 65:91:9b:e0:1e:05:92:5a:98:4d:fc:f9:ba:44:ee: 85:e0:a7:e6:08:f6:7a:32:42:af:24:3f:9d:61:88: 88:8d:1a:c1:ab:8e:6b:42:5e:f9:7c:62:6c:05:09: 60:d6:6a:b3:c2:a0:52:d1:d3:b6:91:cf:ee:c6:40: 58:2d:19:2e:8c:2a:6a:29:ed:34:f4:80:10:e8:79: 65:2b:93:68:72:f6:de:af:85:00:7d:07:ea:26:42: 73:42:94:6b:1a:10:0c:56:7d:9b:87:74:6e:c4:b0: 9b:37:20:75:1e:f2:14:fe:3e:02:b2:6c:73:97:df: a1:bd:7c:8a:a0:c6:36:e2:ca:ee:18:1b:70:a7:18: 1e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:BF:AE:9A:33:BA:28:49:E3:90:13:76:6C:4E:DB:B9:94:EB:13:FA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:40::/48 Signature Algorithm: sha256WithRSAEncryption 52:35:92:ec:e0:53:72:df:92:13:3e:08:30:e0:0e:b6:ef:8e: 58:b4:3e:eb:05:a4:99:44:9f:53:41:51:74:01:41:11:4e:a9: 87:91:1e:f4:c1:ff:13:c5:0f:9f:f0:bc:0f:24:02:db:b0:b6: 46:b2:ea:5a:c2:38:40:a4:39:71:a6:33:90:52:80:1e:d7:ee: 1d:79:a7:f4:da:2e:b2:04:61:4e:d9:0f:cd:67:47:41:16:bd: 5a:50:50:95:98:71:29:8e:62:4b:40:62:51:4c:fc:7c:93:28: c8:7e:49:6c:ce:ea:6c:8e:e2:1e:29:6f:73:cc:1f:6e:08:3d: c1:e5:c9:c8:be:b1:52:15:a4:b7:59:a1:89:57:fe:ee:1a:5a: 6e:ec:dc:b9:f9:36:25:0b:83:ca:7b:81:d8:02:a3:75:a2:69: af:10:1d:3f:96:6f:10:41:c9:f8:74:a0:16:42:9a:fe:b0:f5: 92:a1:93:d5:a8:70:18:4b:d1:3a:fc:57:ff:64:6e:ad:19:92: a6:de:74:63:df:ac:62:56:67:dd:b2:d3:28:41:7d:aa:c4:0e: 7c:0d:da:f5:66:bc:e5:0e:52:d2:61:69:8f:b4:2b:d2:8c:2a: 5e:3e:8a:2c:7a:31:d8:5c:32:48:55:04:43:a6:d8:8b:5c:ab: 67:f1:e2:4a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKlWlFDEMyB857jxk22UDB+zaYrMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDU3WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NTgwMTI5YWI3OTdiMzhiOWQ1MDdmOWVlYWM5ZmE0Nzlk MDMxODU0NDk4YmI1NjM1MzI1NjkwM2VmZGMyNWZhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClvVbAjh0IvZ3nqgDSNTaI1fvcR2xzIpdPGZQk5pNf8XyV dPXjRwHwpFDnV9wr3/vbL+ULM/u4RZfyf/NuLlgB7+InbZYcH5fx3NJoujt/CRa5 R4MoVT4LEsmecdrpVK/0Aut953WznDI0MvhfScTARML/pOIOxWWRm+AeBZJamE38 +bpE7oXgp+YI9noyQq8kP51hiIiNGsGrjmtCXvl8YmwFCWDWarPCoFLR07aRz+7G QFgtGS6MKmop7TT0gBDoeWUrk2hy9t6vhQB9B+omQnNClGsaEAxWfZuHdG7EsJs3 IHUe8hT+PgKybHOX36G9fIqgxjbiyu4YG3CnGB7rAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnL+umjO6KEnjkBN2bE7buZTrE/owHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIyMjkwNmQyLWE2YTAtNDBhZC05ZTQxLWVhYjJkN2ZmMzVhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAEAwDQYJKoZIhvcNAQELBQADggEBAFI1kuzgU3LfkhM+CDDgDrbv jli0PusFpJlEn1NBUXQBQRFOqYeRHvTB/xPFD5/wvA8kAtuwtkay6lrCOECkOXGm M5BSgB7X7h15p/TaLrIEYU7ZD81nR0EWvVpQUJWYcSmOYktAYlFM/HyTKMh+SWzO 6myO4h4pb3PMH24IPcHlyci+sVIVpLdZoYlX/u4aWm7s3Ln5NiULg8p7gdgCo3Wi aa8QHT+WbxBByfh0oBZCmv6w9ZKhk9WocBhL0Tr8V/9kbq0ZkqbedGPfrGJWZ92y 0yhBfarEDnwN2vVmvOUOUtJhaY+0K9KMKl4+iix6MdhcMkhVBEOm2Itcq2fx4ko= -----END CERTIFICATE-----Generated at Sat Jun 6 04:21:22 2026 by rpki-client