$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/628f9d70-75b3-4180-86d3-306061750e9f.roa File: 628f9d70-75b3-4180-86d3-306061750e9f.roa (raw, json) Hash identifier: l1HY5IlGesW6qJO7zvdO4TMen+j5lh+dp9x797r/82Y= Subject key identifier: E4:A9:EE:B0:60:26:54:77:52:77:3E:05:EC:CF:D2:2C:60:C8:08:E9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2032C2DD4C2C7F87B24D746972C473250AF5E187 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/628f9d70-75b3-4180-86d3-306061750e9f.roa Signing time: Tue 21 Apr 2026 20:32:12 +0000 ROA not before: Tue 21 Apr 2026 20:32:12 +0000 ROA not after: Mon 20 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Apr 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:32:c2:dd:4c:2c:7f:87:b2:4d:74:69:72:c4:73:25:0a:f5:e1:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 21 20:32:12 2026 GMT Not After : Jul 20 23:59:59 2026 GMT Subject: serialNumber=2eccb26c18fad1380bc82b9ed9fa8304673e42807449a39c66a2dcdda96dd666, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c2:f1:a9:07:d8:56:08:59:5c:89:32:7d:e2: 6b:73:8c:6c:4c:9c:ec:2f:6e:54:63:88:aa:da:df: bd:19:28:60:cc:67:0b:38:59:33:34:1b:cf:5a:3c: 14:98:12:40:23:e2:2d:44:f0:4f:2a:d9:76:c5:1a: f4:d7:b1:8e:3f:5d:ad:64:6a:ce:36:86:56:4d:a3: 7b:7b:f3:cc:3a:16:bd:e9:ed:61:03:06:5a:1d:cf: d4:a9:2b:2e:4e:e2:b4:37:e5:32:47:0f:5a:98:0f: 9b:ab:5a:24:6f:12:39:5d:c3:1a:01:8d:ad:a1:d3: 79:eb:58:f9:a8:4f:32:67:1c:f1:6a:30:9a:ee:be: cc:66:cb:fb:82:39:86:b6:86:dd:6e:35:7b:19:0e: ce:5f:09:53:61:78:7f:49:9e:ed:ff:89:20:b4:ea: 73:ae:f6:8c:11:44:bb:57:a8:ec:3b:1d:6c:0a:1d: a0:bb:2f:d5:82:55:68:8a:e5:f7:50:cc:74:11:a2: 50:59:15:ff:41:8d:12:e1:25:c3:c0:da:19:91:ff: 6a:6c:fc:b6:ba:cf:22:08:4e:ae:8a:8a:0d:3f:9e: 85:be:cf:52:46:53:04:be:48:13:2c:46:05:4f:56: ce:4d:0a:91:df:78:3f:a7:ea:66:01:35:df:14:67: d7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:A9:EE:B0:60:26:54:77:52:77:3E:05:EC:CF:D2:2C:60:C8:08:E9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/628f9d70-75b3-4180-86d3-306061750e9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:90::/44 Signature Algorithm: sha256WithRSAEncryption 51:91:89:dc:06:43:22:1e:1b:9d:02:05:98:c9:84:62:7d:9e: f8:41:04:a5:27:e6:a7:ad:d1:be:97:41:23:b0:00:4d:27:0c: 6c:5a:35:5c:df:17:e5:08:a5:3e:de:cc:e1:55:b7:ff:03:d1: 63:0b:04:89:af:66:9a:10:c8:3c:81:6b:ed:73:8d:a4:ff:93: 4e:61:61:3c:1c:08:10:5e:27:d7:72:7d:c6:0f:67:81:b7:65: 1a:30:4c:00:98:9f:2b:16:ca:69:90:77:34:25:a9:9a:58:3e: 3f:6d:a0:22:3f:37:66:40:6b:17:4b:ac:13:a6:d4:d1:dc:87: 75:f4:d7:41:3f:a4:da:30:ba:28:04:27:c2:2e:30:46:47:bf: dd:b0:62:da:89:24:53:91:d8:37:f4:1e:2e:59:90:ab:ed:31: ef:5b:7d:f5:c7:1e:d2:a6:1d:52:14:63:33:ed:d6:51:a7:4f: 66:2e:3e:31:b7:2c:0e:87:9c:fd:a3:6d:a7:3c:68:b9:8e:16: 00:70:d1:a9:09:05:b0:54:8c:bc:d8:20:59:5a:e0:d7:e8:02: cf:d7:1a:75:a1:67:0b:4a:f0:4e:dd:18:28:91:e7:fc:5e:fb: 0d:5d:cc:b4:2d:31:8e:e1:87:4a:13:5f:f6:80:b3:b1:88:df: ec:9e:9d:7f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIDLC3Uwsf4eyTXRpcsRzJQr14YcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDIxMjAzMjEyWhcNMjYwNzIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZWNjYjI2YzE4ZmFkMTM4MGJjODJiOWVkOWZhODMwNDY3 M2U0MjgwNzQ0OWEzOWM2NmEyZGNkZGE5NmRkNjY2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4wvGpB9hWCFlciTJ94mtzjGxMnOwvblRjiKra370ZKGDM Zws4WTM0G89aPBSYEkAj4i1E8E8q2XbFGvTXsY4/Xa1kas42hlZNo3t788w6Fr3p 7WEDBlodz9SpKy5O4rQ35TJHD1qYD5urWiRvEjldwxoBja2h03nrWPmoTzJnHPFq MJruvsxmy/uCOYa2ht1uNXsZDs5fCVNheH9Jnu3/iSC06nOu9owRRLtXqOw7HWwK HaC7L9WCVWiK5fdQzHQRolBZFf9BjRLhJcPA2hmR/2ps/La6zyIITq6Kig0/noW+ z1JGUwS+SBMsRgVPVs5NCpHfeD+n6mYBNd8UZ9eTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5KnusGAmVHdSdz4F7M/SLGDICOkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzYyOGY5ZDcwLTc1YjMtNDE4MC04NmQzLTMwNjA2MTc1MGU5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDxAJAwDQYJKoZIhvcNAQELBQADggEBAFGRidwGQyIeG50CBZjJhGJ9 nvhBBKUn5qet0b6XQSOwAE0nDGxaNVzfF+UIpT7ezOFVt/8D0WMLBImvZpoQyDyB a+1zjaT/k05hYTwcCBBeJ9dyfcYPZ4G3ZRowTACYnysWymmQdzQlqZpYPj9toCI/ N2ZAaxdLrBOm1NHch3X010E/pNowuigEJ8IuMEZHv92wYtqJJFOR2Df0Hi5ZkKvt Me9bffXHHtKmHVIUYzPt1lGnT2YuPjG3LA6HnP2jbac8aLmOFgBw0akJBbBUjLzY IFla4NfoAs/XGnWhZwtK8E7dGCiR5/xe+w1dzLQtMY7hh0oTX/aAs7GI3+yenX8= -----END CERTIFICATE-----Generated at Wed Apr 22 14:43:18 2026 by rpki-client