$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa File: 4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa (raw, json) Hash identifier: IuTgOn+PSFc4zZL5UE2SMbKJUqD/F/boaWpt1UfY/eE= Subject key identifier: 31:BF:B9:19:77:84:0B:E2:21:EB:07:1B:F2:A8:B7:A2:CB:B3:28:57 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 61FC6536FCFF38E74ED9D1B1E07913532E680B33 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa Signing time: Tue 19 May 2026 04:30:18 +0000 ROA not before: Tue 19 May 2026 04:30:18 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:fc:65:36:fc:ff:38:e7:4e:d9:d1:b1:e0:79:13:53:2e:68:0b:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:30:18 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=997466be14bb678c3f241127980ce546dbf8d941060bdbe13eba89c246df3407, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:44:55:19:05:e9:39:21:2e:41:a5:43:d4:83: 0e:9d:01:bc:65:e5:56:d3:4f:dd:ed:14:4e:78:8c: 15:00:c7:4b:b3:6e:bb:05:d4:9a:19:13:1f:0f:0d: 7b:ce:39:76:44:1b:5b:af:4f:43:0b:8b:8b:10:3c: 6f:ec:80:aa:fc:36:46:1b:69:14:b7:bd:64:b9:5c: 92:e6:fd:93:90:2f:f9:39:e8:c7:fa:bf:32:6e:e1: 1d:7b:82:fe:31:bc:ed:39:ff:08:87:7d:5d:20:c7: 04:85:5c:12:5b:f5:c0:17:1d:a8:a9:f3:53:29:54: bd:3c:55:d8:e7:ec:8e:12:8d:e7:19:54:02:79:57: e6:31:77:0e:42:0c:b1:ee:58:95:e3:92:6c:45:5d: 88:56:db:5c:8f:1e:2d:02:91:56:bc:3f:54:58:b8: 50:68:d5:8f:78:48:bf:0a:08:a2:8c:ea:5c:5d:15: 2f:d2:39:d3:10:9c:d9:7f:ed:ab:94:be:4d:cf:18: 51:9a:80:83:fc:b2:4f:d1:7e:c3:e1:1e:ad:94:94: c5:52:18:08:31:1d:d8:7e:d7:6e:52:f7:3b:5e:17: b1:00:72:da:73:8c:6e:52:5a:31:d7:8e:26:70:f5: 87:53:8c:b3:0a:8f:77:b6:08:d5:74:30:78:d1:6b: 06:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:BF:B9:19:77:84:0B:E2:21:EB:07:1B:F2:A8:B7:A2:CB:B3:28:57 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:a0::/48 Signature Algorithm: sha256WithRSAEncryption 21:85:28:8f:12:9f:25:b5:32:a2:a7:a9:9a:98:d7:45:7b:00: c9:76:3a:7c:da:86:be:e3:a0:e0:9d:3b:68:d3:49:6d:c0:72: 70:56:8c:6c:08:11:a5:59:9a:9b:19:65:46:84:c5:38:bb:07: 3a:68:99:27:38:a3:06:95:a2:38:ba:e2:f1:68:b5:80:cb:37: d4:35:7e:15:6d:50:63:29:e8:a9:ca:9e:6d:1a:70:41:bb:ca: 1f:73:64:95:c7:d2:77:84:86:c0:55:9d:72:79:a4:5c:41:0c: 3c:9b:5b:6a:ef:4f:21:27:c4:6e:2b:d4:5d:00:c9:2d:8b:c2: fb:0d:06:10:10:3b:69:37:dd:6b:17:52:a5:bc:d3:2c:db:9e: 0e:d0:72:c2:f4:2f:4c:cc:2d:db:0c:b2:3a:d6:a8:ca:cf:6d: 54:8e:a7:ae:ad:b2:96:e1:08:d4:aa:82:37:33:a1:68:99:5a: df:3e:20:31:8e:63:77:d4:8c:17:34:30:51:a3:d2:d7:26:92: b2:44:15:1a:5b:01:04:12:09:cb:c1:bd:a3:35:73:8f:68:f9: f2:2a:2c:0f:39:85:12:69:81:53:d6:26:ca:37:60:76:aa:17: 92:08:8f:ba:a2:f0:ad:f5:9f:f7:fa:7b:cd:01:cd:b2:c6:8f: c9:d9:95:e9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYfxlNvz/OOdO2dGx4HkTUy5oCzMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQzMDE4WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTc0NjZiZTE0YmI2NzhjM2YyNDExMjc5ODBjZTU0NmRi ZjhkOTQxMDYwYmRiZTEzZWJhODljMjQ2ZGYzNDA3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeRFUZBek5IS5BpUPUgw6dAbxl5VbTT93tFE54jBUAx0uz brsF1JoZEx8PDXvOOXZEG1uvT0MLi4sQPG/sgKr8NkYbaRS3vWS5XJLm/ZOQL/k5 6Mf6vzJu4R17gv4xvO05/wiHfV0gxwSFXBJb9cAXHaip81MpVL08Vdjn7I4SjecZ VAJ5V+Yxdw5CDLHuWJXjkmxFXYhW21yPHi0CkVa8P1RYuFBo1Y94SL8KCKKM6lxd FS/SOdMQnNl/7auUvk3PGFGagIP8sk/RfsPhHq2UlMVSGAgxHdh+125S9zteF7EA ctpzjG5SWjHXjiZw9YdTjLMKj3e2CNV0MHjRawYTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMb+5GXeEC+Ih6wcb8qi3osuzKFcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRhODYyM2M0LTEwYTAtNDZiNi1hNWY1LWM5NGU4NGM1Njg2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAKAwDQYJKoZIhvcNAQELBQADggEBACGFKI8SnyW1MqKnqZqY10V7 AMl2Onzahr7joOCdO2jTSW3AcnBWjGwIEaVZmpsZZUaExTi7BzpomSc4owaVoji6 4vFotYDLN9Q1fhVtUGMp6KnKnm0acEG7yh9zZJXH0neEhsBVnXJ5pFxBDDybW2rv TyEnxG4r1F0AyS2LwvsNBhAQO2k33WsXUqW80yzbng7QcsL0L0zMLdsMsjrWqMrP bVSOp66tspbhCNSqgjczoWiZWt8+IDGOY3fUjBc0MFGj0tcmkrJEFRpbAQQSCcvB vaM1c49o+fIqLA85hRJpgVPWJso3YHaqF5IIj7qi8K31n/f6e80BzbLGj8nZlek= -----END CERTIFICATE-----Generated at Fri Jun 12 05:52:45 2026 by rpki-client