$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/43de5aff-1abc-4ba4-ac76-194395f6be8f.roa File: 43de5aff-1abc-4ba4-ac76-194395f6be8f.roa (raw, json) Hash identifier: gUXC41cDdnwHekSHNLdV0jU2TO41bvaxzyYMIHjioh4= Subject key identifier: 12:F9:82:35:1C:8D:EC:65:CE:D7:49:BF:E5:C9:64:13:25:E2:14:66 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6343F9710EEB57F6D7C1D7B8CF6AC36B1BA7FF56 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/43de5aff-1abc-4ba4-ac76-194395f6be8f.roa Signing time: Fri 15 May 2026 00:30:09 +0000 ROA not before: Fri 15 May 2026 00:30:09 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f1:8b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 28 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:43:f9:71:0e:eb:57:f6:d7:c1:d7:b8:cf:6a:c3:6b:1b:a7:ff:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 15 00:30:09 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=c7b0b8fe2f1d02bccffadec13922929b4a654d5b1576880f58d77b5c07cc1beb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:46:62:22:7d:05:9b:57:54:78:0e:8a:01:b0: f5:9c:e6:38:e5:00:ab:0f:73:b8:27:05:5e:05:d9: a5:03:9f:d0:29:e7:36:0f:67:8b:0a:b7:a1:4f:31: fa:45:98:7b:90:40:b4:58:9b:5d:ef:a1:b6:88:c0: bc:7c:ea:81:e0:9c:cb:1c:2a:91:86:23:0f:45:63: e3:8b:f7:1b:94:8c:0b:10:3e:7d:b3:32:f6:ef:7d: 9d:c4:99:25:46:dc:36:8f:cc:25:d2:2d:cc:ca:e8: fd:a8:43:48:c7:1d:c3:0d:78:9d:ec:79:a3:fd:0c: c0:92:5a:d9:bb:16:8a:7e:de:b7:4c:8d:94:03:8a: 92:36:6a:45:04:3b:16:52:a4:10:08:9d:18:54:09: 38:10:53:8a:5a:b7:51:51:f3:b3:85:07:91:91:1c: 0b:12:37:5b:32:f9:2b:1b:73:21:27:1e:7f:6b:53: 80:9e:20:5c:09:a1:e9:77:32:f7:96:e3:01:5f:87: aa:ac:68:71:73:d6:7f:e6:14:d6:10:5e:82:be:5c: f6:39:ff:f6:3e:9a:8f:ee:87:f7:ce:cc:20:4b:39: 5f:d5:7a:a5:92:1c:41:37:61:b0:28:02:57:8d:8b: f1:8f:81:39:d2:54:68:65:57:40:0d:50:f8:59:f9: a9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F9:82:35:1C:8D:EC:65:CE:D7:49:BF:E5:C9:64:13:25:E2:14:66 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/43de5aff-1abc-4ba4-ac76-194395f6be8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8b00::/48 Signature Algorithm: sha256WithRSAEncryption 6d:7f:c6:89:68:d0:fa:6d:e3:22:d0:73:bc:09:e0:a4:19:7b: e1:ea:c5:5d:6d:17:36:07:cd:36:6d:d6:e6:26:73:d5:d4:0d: e8:05:2c:3b:76:b1:74:d8:e8:c6:db:d9:0e:5a:5a:58:93:6e: 4c:52:01:72:ea:04:f1:67:b4:dc:fe:84:23:5d:c1:32:12:fe: f9:5f:c2:49:2b:9d:08:6a:77:0d:32:c3:69:39:c0:8a:04:a7: 16:8b:53:e8:68:3d:b8:5f:68:66:e4:d3:04:23:0f:69:a0:9b: 8b:07:6f:42:a0:bd:5a:9e:3f:ab:a9:77:43:15:8e:76:5c:0e: cb:25:a7:ae:1c:f1:23:cb:7d:e6:4b:e7:1c:e6:ce:3d:58:99: d8:0f:a8:65:39:00:54:5f:79:62:75:69:c8:29:f5:c9:20:13: 9c:88:ce:c8:d5:7f:65:35:83:99:35:fb:fe:5b:79:6d:f1:d3: ee:cf:6d:79:2b:32:e7:d2:3d:86:cc:36:85:77:5d:41:2b:16: db:39:de:74:ac:42:74:3e:35:72:4f:42:09:4b:83:9c:ac:fb: db:d4:f0:d5:eb:82:af:d1:1c:fa:90:1f:8b:d7:32:5a:9e:7d: 12:bc:37:d6:74:15:bc:2b:ba:22:85:93:3c:a2:5a:3c:a6:98: ff:82:58:b4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUY0P5cQ7rV/bXwde4z2rDaxun/1YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE1MDAzMDA5WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2IwYjhmZTJmMWQwMmJjY2ZmYWRlYzEzOTIyOTI5YjRh NjU0ZDViMTU3Njg4MGY1OGQ3N2I1YzA3Y2MxYmViMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQRmIifQWbV1R4DooBsPWc5jjlAKsPc7gnBV4F2aUDn9Ap 5zYPZ4sKt6FPMfpFmHuQQLRYm13vobaIwLx86oHgnMscKpGGIw9FY+OL9xuUjAsQ Pn2zMvbvfZ3EmSVG3DaPzCXSLczK6P2oQ0jHHcMNeJ3seaP9DMCSWtm7Fop+3rdM jZQDipI2akUEOxZSpBAInRhUCTgQU4pat1FR87OFB5GRHAsSN1sy+SsbcyEnHn9r U4CeIFwJoel3MveW4wFfh6qsaHFz1n/mFNYQXoK+XPY5//Y+mo/uh/fOzCBLOV/V eqWSHEE3YbAoAleNi/GPgTnSVGhlV0ANUPhZ+akLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEvmCNRyN7GXO10m/5clkEyXiFGYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQzZGU1YWZmLTFhYmMtNGJhNC1hYzc2LTE5NDM5NWY2YmU4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiwAwDQYJKoZIhvcNAQELBQADggEBAG1/xolo0Ppt4yLQc7wJ4KQZ e+HqxV1tFzYHzTZt1uYmc9XUDegFLDt2sXTY6Mbb2Q5aWliTbkxSAXLqBPFntNz+ hCNdwTIS/vlfwkkrnQhqdw0yw2k5wIoEpxaLU+hoPbhfaGbk0wQjD2mgm4sHb0Kg vVqeP6upd0MVjnZcDsslp64c8SPLfeZL5xzmzj1YmdgPqGU5AFRfeWJ1acgp9ckg E5yIzsjVf2U1g5k1+/5beW3x0+7PbXkrMufSPYbMNoV3XUErFts53nSsQnQ+NXJP QglLg5ys+9vU8NXrgq/RHPqQH4vXMlqefRK8N9Z0FbwruiKFkzyiWjymmP+CWLQ= -----END CERTIFICATE-----Generated at Wed May 27 18:32:10 2026 by rpki-client