$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa File: 5443f26e-949a-460a-b187-e26290bfcf24.roa (raw, json) Hash identifier: A5HEIbcj7fPbJxNVtl3JrESNY38RcUjknysG94RbNRg= Subject key identifier: 2F:FB:45:BE:3D:91:95:A3:33:CE:B9:B5:1E:04:94:1F:98:34:EE:11 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3A76B8B4117FB7EDFAFCA7C14F40AADB97E30FA5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa Signing time: Wed 20 May 2026 00:50:26 +0000 ROA not before: Wed 20 May 2026 00:50:26 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:76:b8:b4:11:7f:b7:ed:fa:fc:a7:c1:4f:40:aa:db:97:e3:0f:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 00:50:26 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=2df0d472303701bc7abe293fc6ed73c062900866a2102ec9b715dc46786a7a25, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:18:7d:bf:ef:a6:f1:84:91:44:23:90:84:72: 36:72:4a:3a:64:f7:4d:1f:fd:88:1f:db:04:73:7e: 4a:6f:4d:11:bf:3b:d3:ee:d7:8a:a8:b9:7c:56:e1: e5:1b:f5:ae:17:8e:e5:42:9f:2f:3d:66:0a:97:23: 43:33:cd:5d:02:96:3b:68:82:10:60:c7:5a:e8:b6: be:ee:cd:cf:e8:e2:c3:38:1e:44:c5:e0:86:e6:f1: 79:85:77:ac:5b:a7:ef:64:3c:0c:8b:76:5a:d0:58: f9:61:f8:c9:7c:11:34:68:cc:c0:f5:74:1b:f2:f3: 6f:81:81:cb:54:34:fe:ab:6b:4d:ce:14:b8:62:4a: f0:5b:ec:f4:5c:3b:f3:6a:4f:46:ee:bc:e7:2b:8b: b3:57:d6:e5:40:e7:2f:dc:fc:e8:e7:fb:47:87:ce: e6:73:61:d4:e0:78:9c:69:c4:94:a9:db:a9:1f:b9: 7d:04:54:4c:bd:6b:47:9c:d6:ef:10:4b:fb:d7:b5: e7:7a:56:ec:38:c9:fe:fd:db:fc:24:8c:a7:29:c9: c9:0b:3f:a4:db:74:e9:b1:ce:5d:9e:1a:f7:6e:17: 81:ec:a6:10:8c:48:7a:d4:d6:37:7f:d1:31:82:17: 3b:e7:5a:ad:34:4b:58:cc:d5:d1:07:bb:dd:d1:5c: f7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:FB:45:BE:3D:91:95:A3:33:CE:B9:B5:1E:04:94:1F:98:34:EE:11 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4000::/44 Signature Algorithm: sha256WithRSAEncryption 6c:6f:18:f9:89:f3:3a:99:6a:06:14:03:ec:69:ed:c7:6e:c8: 39:4c:f0:fe:1b:f6:e4:c7:4d:ff:22:1e:1f:08:34:3c:84:fb: 75:b8:e3:ca:3d:a2:d6:f1:f6:f2:c4:3c:a0:fb:8d:eb:77:08: 50:a8:95:f5:32:51:02:c3:a7:be:9c:7e:db:ef:8f:2e:5b:3c: a9:d4:71:be:c2:95:47:6e:69:48:be:fc:03:5a:cf:0a:8b:6d: 77:e1:40:9d:43:fd:10:24:e8:14:9b:19:36:e1:63:04:47:e8: 59:37:87:5e:82:6d:1f:3e:48:4c:56:95:4c:7e:af:fd:93:aa: 27:2f:a4:79:2a:96:05:17:b3:9a:d5:78:86:bd:4a:14:e0:54: fd:95:54:82:36:13:80:f3:65:20:70:88:a4:f5:ec:b2:1c:c6: 00:4b:b6:f2:5d:c9:7c:2b:11:d2:6a:77:4c:87:76:dc:e3:e8: f4:63:04:a4:e3:f4:45:92:e1:6f:df:b3:83:04:cd:07:20:8c: d7:70:ed:e8:07:92:5d:ff:41:31:8d:af:68:0c:f9:48:ce:50: e7:1f:75:df:2a:1b:6b:46:49:84:11:bd:da:4b:3a:35:ab:8e: 0e:16:16:26:f5:32:d6:c5:06:cc:54:28:72:78:ab:a0:d8:85: e7:ab:8e:df -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOna4tBF/t+36/KfBT0Cq25fjD6UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTIwMDA1MDI2WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZGYwZDQ3MjMwMzcwMWJjN2FiZTI5M2ZjNmVkNzNjMDYy OTAwODY2YTIxMDJlYzliNzE1ZGM0Njc4NmE3YTI1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWGH2/76bxhJFEI5CEcjZySjpk900f/Ygf2wRzfkpvTRG/ O9Pu14qouXxW4eUb9a4XjuVCny89ZgqXI0MzzV0CljtoghBgx1rotr7uzc/o4sM4 HkTF4Ibm8XmFd6xbp+9kPAyLdlrQWPlh+Ml8ETRozMD1dBvy82+BgctUNP6ra03O FLhiSvBb7PRcO/NqT0buvOcri7NX1uVA5y/c/Ojn+0eHzuZzYdTgeJxpxJSp26kf uX0EVEy9a0ec1u8QS/vXted6Vuw4yf792/wkjKcpyckLP6TbdOmxzl2eGvduF4Hs phCMSHrU1jd/0TGCFzvnWq00S1jM1dEHu93RXPdxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUL/tFvj2RlaMzzrm1HgSUH5g07hEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NDNmMjZlLTk0OWEtNDYwYS1iMTg3LWUyNjI5MGJmY2YyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwQAAwDQYJKoZIhvcNAQELBQADggEBAGxvGPmJ8zqZagYUA+xp7cdu yDlM8P4b9uTHTf8iHh8INDyE+3W448o9otbx9vLEPKD7jet3CFColfUyUQLDp76c ftvvjy5bPKnUcb7ClUduaUi+/ANazwqLbXfhQJ1D/RAk6BSbGTbhYwRH6Fk3h16C bR8+SExWlUx+r/2TqicvpHkqlgUXs5rVeIa9ShTgVP2VVII2E4DzZSBwiKT17LIc xgBLtvJdyXwrEdJqd0yHdtzj6PRjBKTj9EWS4W/fs4MEzQcgjNdw7egHkl3/QTGN r2gM+UjOUOcfdd8qG2tGSYQRvdpLOjWrjg4WFib1MtbFBsxUKHJ4q6DYheerjt8= -----END CERTIFICATE-----Generated at Fri Jun 12 05:50:33 2026 by rpki-client