$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa File: 2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa (raw, json) Hash identifier: yg9SCxe3dEgYHXtsxXVKr/dujX4r/6ILfYKBrKOKTac= Subject key identifier: 60:AF:F6:84:15:EB:F3:7D:9D:1A:2E:0F:31:4B:68:9A:B8:9F:4D:B8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 26A8103A60D25799C5231E10201B85D88BE15BA4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa Signing time: Tue 19 May 2026 04:20:35 +0000 ROA not before: Tue 19 May 2026 04:20:35 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:a8:10:3a:60:d2:57:99:c5:23:1e:10:20:1b:85:d8:8b:e1:5b:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:20:35 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=b9e16668f61b11eb7aa38af2bfa9d14a07083e00d5d269a5617257320c2611bf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c0:23:32:fe:62:d7:db:dd:13:68:d9:97:6d: 27:51:b0:2d:6f:9a:58:86:ba:18:49:00:ee:79:f6: 46:b0:23:32:22:c5:e5:25:56:8e:60:98:90:94:19: 16:1e:d4:6f:8a:98:0a:cb:3d:d0:e7:97:bd:09:bb: aa:57:70:c8:e8:20:07:d0:eb:f6:2c:1c:0c:63:9a: 4c:7c:89:08:08:1f:1d:68:eb:e8:f9:f3:32:71:29: a4:48:8d:b4:41:ce:5d:f2:2f:85:54:53:7c:b2:1b: 6e:4d:b8:26:30:62:65:48:d6:25:8d:8f:54:aa:d0: e2:a0:bb:1e:7e:24:d1:2e:41:b3:b0:97:d8:e0:12: a9:78:01:04:c0:1f:a9:13:a5:bf:36:ed:24:d8:eb: 34:fb:39:6e:3f:df:98:56:64:a0:9f:63:4d:70:2d: 11:06:88:c2:5b:4f:f6:b3:22:98:30:92:c6:79:9d: 66:03:13:79:6f:6d:7e:18:3d:dd:18:e5:aa:f3:44: 2c:91:bc:85:44:60:0e:ce:ed:91:9f:4a:68:71:29: cf:e8:fa:fe:12:c4:2c:84:f1:86:5a:ec:70:b0:38: 55:42:c5:ed:54:2e:b2:7f:f4:66:0e:50:a6:be:d1: 6b:69:55:f7:73:93:8d:a0:bc:ce:ab:69:fa:d0:25: 06:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:AF:F6:84:15:EB:F3:7D:9D:1A:2E:0F:31:4B:68:9A:B8:9F:4D:B8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/40 Signature Algorithm: sha256WithRSAEncryption 1f:5b:62:2b:5d:2f:95:21:b4:44:9b:bc:75:ab:76:11:b2:d7: f3:79:25:25:f8:5a:f7:ef:0f:29:f2:14:c8:89:71:e3:3f:40: b9:79:c1:b0:40:80:5d:97:b1:06:03:5c:1e:57:41:fb:97:d4: e0:26:92:d6:dc:bb:41:74:8b:a5:b0:0f:95:d7:bc:00:7c:a7: 39:f9:7f:60:9d:d8:55:e3:bb:e9:b8:24:07:e8:40:aa:fd:ba: bf:83:9f:81:0e:bb:10:e0:34:8c:e0:29:e0:c1:6d:4c:3e:d5: f2:19:33:55:88:ca:53:09:a1:5d:ec:df:d1:57:ea:a4:be:75: ea:35:e6:22:a9:77:16:bd:77:27:f2:3c:2e:26:87:d9:7f:fe: 99:f9:11:0f:9f:71:03:e5:28:0e:b6:39:1a:d2:82:21:8c:a7: 3f:e1:92:d2:37:f4:60:d6:eb:f7:f6:53:3a:11:67:1b:fb:2e: a7:90:5f:96:94:14:55:95:81:be:57:d3:79:57:19:5d:ab:5f: b2:74:22:04:b6:ce:65:76:d2:22:11:42:f9:b2:58:00:86:05: a7:95:a7:31:14:af:dd:5a:aa:55:04:32:4a:28:40:0b:f0:cd: a9:3a:49:80:40:4b:33:b2:22:f9:eb:a0:41:61:76:c1:a4:41: 8b:f0:aa:0c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJqgQOmDSV5nFIx4QIBuF2IvhW6QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQyMDM1WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWUxNjY2OGY2MWIxMWViN2FhMzhhZjJiZmE5ZDE0YTA3 MDgzZTAwZDVkMjY5YTU2MTcyNTczMjBjMjYxMWJmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBwCMy/mLX290TaNmXbSdRsC1vmliGuhhJAO559kawIzIi xeUlVo5gmJCUGRYe1G+KmArLPdDnl70Ju6pXcMjoIAfQ6/YsHAxjmkx8iQgIHx1o 6+j58zJxKaRIjbRBzl3yL4VUU3yyG25NuCYwYmVI1iWNj1Sq0OKgux5+JNEuQbOw l9jgEql4AQTAH6kTpb827STY6zT7OW4/35hWZKCfY01wLREGiMJbT/azIpgwksZ5 nWYDE3lvbX4YPd0Y5arzRCyRvIVEYA7O7ZGfSmhxKc/o+v4SxCyE8YZa7HCwOFVC xe1ULrJ/9GYOUKa+0WtpVfdzk42gvM6rafrQJQbbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUYK/2hBXr832dGi4PMUtomrifTbgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI5MTBiY2ZhLTRiY2ItNDEyNS1hNTZmLTRiYjk1OTZmNWFkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwBTANBgkqhkiG9w0BAQsFAAOCAQEAH1tiK10vlSG0RJu8dat2EbLX 83klJfha9+8PKfIUyIlx4z9AuXnBsECAXZexBgNcHldB+5fU4CaS1ty7QXSLpbAP lde8AHynOfl/YJ3YVeO76bgkB+hAqv26v4OfgQ67EOA0jOAp4MFtTD7V8hkzVYjK UwmhXezf0VfqpL516jXmIql3Fr13J/I8LiaH2X/+mfkRD59xA+UoDrY5GtKCIYyn P+GS0jf0YNbr9/ZTOhFnG/sup5BflpQUVZWBvlfTeVcZXatfsnQiBLbOZXbSIhFC +bJYAIYFp5WnMRSv3VqqVQQySihAC/DNqTpJgEBLM7Ii+eugQWF2waRBi/CqDA== -----END CERTIFICATE-----Generated at Fri Jun 12 05:50:25 2026 by rpki-client