$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/412d27cc-9069-4a13-8b53-262e6f757947.roa File: 412d27cc-9069-4a13-8b53-262e6f757947.roa (raw, json) Hash identifier: fX2D9QYC5H8jCe7cE06NgBX9Of+JBLADZg1J9ATUhVs= Subject key identifier: B2:CA:7F:AD:96:87:02:C9:BE:64:E6:78:59:55:CC:01:88:50:2A:41 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 35480E4D05A6D478B54EE560CD3C52F6B78F6DB3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/412d27cc-9069-4a13-8b53-262e6f757947.roa Signing time: Mon 13 Apr 2026 20:21:51 +0000 ROA not before: Mon 13 Apr 2026 20:21:51 +0000 ROA not after: Sun 12 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6021::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 15 Apr 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:48:0e:4d:05:a6:d4:78:b5:4e:e5:60:cd:3c:52:f6:b7:8f:6d:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 13 20:21:51 2026 GMT Not After : Jul 12 23:59:59 2026 GMT Subject: serialNumber=32318cc93fd1ebfdd98bebe68360c923c866bba2d1bce76cb1adc60642931aa3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7a:e2:8f:a5:6c:72:65:3f:34:d6:27:55:6d: f8:81:f2:6a:de:0e:54:2f:e0:c9:1a:9e:20:1f:d7: 39:13:c0:8f:cb:c2:a4:2c:a1:a8:b9:0d:8c:91:63: e4:6a:68:b2:ca:0a:1e:6f:54:d3:e4:95:d7:07:38: 24:36:01:1e:f9:51:a6:78:67:bc:d2:1e:df:c4:ca: 46:c5:8c:8f:1b:b6:ac:bd:0a:61:75:37:66:05:72: 89:9f:f0:0f:e2:a1:4a:69:fe:2c:23:80:f6:05:0f: c7:35:89:e9:cb:86:41:18:8e:87:01:ad:a7:59:d3: 1e:ad:bf:89:18:cd:97:f3:43:9a:ad:41:16:e1:63: 6d:a9:fb:d1:e7:a3:d6:59:1f:ec:a1:8b:46:06:ad: 83:f0:5b:2e:dd:84:5b:a0:43:7b:e5:68:0e:ef:4a: 32:87:b1:72:dc:72:f1:4c:c0:fa:16:13:dc:d2:29: 01:3f:4e:51:4f:0b:62:3d:8b:dc:6b:37:04:1e:f5: a9:3d:ae:20:27:0d:52:4b:40:c6:a7:35:63:90:cc: fe:d9:48:1a:7f:35:9a:7a:b1:ff:8f:69:6f:be:9c: a7:c8:51:fd:a4:1a:ec:7f:67:47:6f:ac:c9:e4:ed: 9f:34:b2:b8:54:5d:e1:42:1c:ba:33:fa:db:8a:48: d3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:CA:7F:AD:96:87:02:C9:BE:64:E6:78:59:55:CC:01:88:50:2A:41 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/412d27cc-9069-4a13-8b53-262e6f757947.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6021::/48 Signature Algorithm: sha256WithRSAEncryption a1:71:a5:49:51:0d:55:7f:a0:92:bc:85:ac:3d:35:b2:90:86: fc:11:94:77:b1:f0:e0:09:af:73:f8:24:a8:69:49:f1:aa:b8: 0d:ab:1e:06:23:9c:fd:1b:27:1e:42:46:97:f7:97:8d:6b:ee: 86:8e:5a:82:f3:ac:05:59:2b:a4:cc:d7:9b:57:33:14:e5:b7: 65:4e:b1:10:a1:63:5b:0c:73:fe:a1:14:d3:e0:88:d8:c0:47: e7:95:43:e4:53:99:c9:be:b7:79:f6:96:fb:a6:94:f1:56:2c: c3:6a:ee:25:67:e1:1f:3f:86:0d:3e:da:6c:fa:41:fe:46:c8: bb:9f:71:46:90:c2:82:21:bb:54:9a:b3:d9:e9:79:4b:73:bd: e5:55:a2:91:20:d5:5f:b1:bf:a2:1e:2d:bc:c5:d3:a7:05:10: 69:67:3f:12:5c:96:a4:29:d3:49:7e:d2:28:00:5a:cd:bd:9f: 91:04:2d:ef:ce:02:d6:ea:8b:64:63:55:88:8b:e8:de:f9:63: 44:b0:78:c2:bb:42:f9:06:c5:f5:43:49:7a:61:d7:db:8d:e8: b0:7a:08:bf:36:89:9d:a3:3e:02:c7:43:47:3b:a6:aa:2f:f9: 91:5b:9e:9a:71:7e:97:60:99:a6:a5:e3:22:1c:04:5b:0b:da: 71:6b:82:13 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNUgOTQWm1Hi1TuVgzTxS9rePbbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDEzMjAyMTUxWhcNMjYwNzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjMxOGNjOTNmZDFlYmZkZDk4YmViZTY4MzYwYzkyM2M4 NjZiYmEyZDFiY2U3NmNiMWFkYzYwNjQyOTMxYWEzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2euKPpWxyZT801idVbfiB8mreDlQv4MkaniAf1zkTwI/L wqQsoai5DYyRY+RqaLLKCh5vVNPkldcHOCQ2AR75UaZ4Z7zSHt/EykbFjI8btqy9 CmF1N2YFcomf8A/ioUpp/iwjgPYFD8c1ienLhkEYjocBradZ0x6tv4kYzZfzQ5qt QRbhY22p+9Hno9ZZH+yhi0YGrYPwWy7dhFugQ3vlaA7vSjKHsXLccvFMwPoWE9zS KQE/TlFPC2I9i9xrNwQe9ak9riAnDVJLQManNWOQzP7ZSBp/NZp6sf+PaW++nKfI Uf2kGux/Z0dvrMnk7Z80srhUXeFCHLoz+tuKSNNzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUssp/rZaHAsm+ZOZ4WVXMAYhQKkEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQxMmQyN2NjLTkwNjktNGExMy04YjUzLTI2MmU2Zjc1Nzk0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYCEwDQYJKoZIhvcNAQELBQADggEBAKFxpUlRDVV/oJK8haw9NbKQ hvwRlHex8OAJr3P4JKhpSfGquA2rHgYjnP0bJx5CRpf3l41r7oaOWoLzrAVZK6TM 15tXMxTlt2VOsRChY1sMc/6hFNPgiNjAR+eVQ+RTmcm+t3n2lvumlPFWLMNq7iVn 4R8/hg0+2mz6Qf5GyLufcUaQwoIhu1Sas9npeUtzveVVopEg1V+xv6IeLbzF06cF EGlnPxJclqQp00l+0igAWs29n5EELe/OAtbqi2RjVYiL6N75Y0SweMK7QvkGxfVD SXph19uN6LB6CL82iZ2jPgLHQ0c7pqov+ZFbnppxfpdgmaal4yIcBFsL2nFrghM= -----END CERTIFICATE-----Generated at Tue Apr 14 13:10:58 2026 by rpki-client