$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa File: 6632e911-ee11-4bc9-a573-00ef83fd31d7.roa (raw, json) Hash identifier: G3M4LaNYTFOxUazhyp6wmb+0JEkN9KbPHkii9K+6dXU= Subject key identifier: 42:9D:FF:E9:1E:9C:20:90:8D:AD:B2:B4:F7:C8:BC:3E:3E:5F:49:12 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0AF186E27F3CA153FE5C37FCC18CD4F7E16E4E66 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa Signing time: Tue 19 May 2026 04:20:48 +0000 ROA not before: Tue 19 May 2026 04:20:48 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 28 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:f1:86:e2:7f:3c:a1:53:fe:5c:37:fc:c1:8c:d4:f7:e1:6e:4e:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:20:48 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=17441dbd1764e1651da70be13bcb5b9bf2ab69c4f0e52a29a961ca280c6306cf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9b:e4:78:5e:da:94:81:72:8f:ba:d5:d1:d1: 78:15:60:cb:e1:b2:ab:3e:68:d1:db:d6:ab:09:d7: 10:0f:18:b7:1d:6a:40:d9:a9:9f:a3:ad:6b:5e:92: b1:13:92:2e:16:bb:6a:45:c8:f4:72:b1:78:6e:02: 5d:8b:da:7d:22:06:87:93:12:98:74:3d:5f:e4:c7: 6a:97:80:a7:fd:36:1e:2d:f3:93:a4:82:27:c7:09: ea:02:45:cd:b4:80:92:00:44:21:3c:d4:37:b8:07: 2f:e0:bb:7e:50:65:7f:71:10:27:39:8a:21:bc:8b: 9b:66:0f:89:32:57:8e:f6:59:b7:dd:12:76:e5:4c: 44:11:bf:ea:55:f5:9e:71:da:a8:e7:3d:66:41:67: 45:7d:e3:18:c2:b5:5a:0f:4d:9d:18:1c:60:2a:8b: c9:5d:41:3f:0a:b1:32:87:4c:e1:3e:40:71:73:6a: da:f2:2b:45:52:02:94:4e:7e:1d:f8:00:e3:7a:3a: 9d:11:f2:45:d4:d6:6b:14:2d:a3:ef:89:89:d2:16: 08:75:00:26:39:ee:74:6a:87:75:98:b8:29:e5:08: 31:db:83:70:f9:58:f7:6f:40:d2:ea:df:7b:6e:a5: 71:f3:44:87:93:50:bf:ab:e1:ea:84:23:3e:89:b7: c7:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:9D:FF:E9:1E:9C:20:90:8D:AD:B2:B4:F7:C8:BC:3E:3E:5F:49:12 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6000::/44 Signature Algorithm: sha256WithRSAEncryption 25:ad:4f:b5:bf:06:f3:3b:c9:a6:34:e2:0a:19:99:8c:1a:50: 0f:26:0c:56:94:e3:0c:af:ec:83:19:c4:0c:f6:cd:75:ab:fd: 53:7c:e2:e5:49:d5:89:57:f9:9a:98:6b:cb:79:6f:c9:4b:eb: 8a:0d:36:e8:8e:ee:f5:28:23:25:12:77:44:36:15:ff:dc:c9: fa:43:04:53:4e:5f:1e:af:de:38:2f:35:0f:39:81:16:2e:75: 48:96:ec:5e:d1:7e:ae:de:61:7f:19:ce:90:5b:bb:32:a9:af: 69:71:70:fe:12:65:9b:de:ab:3f:7c:73:99:87:69:9e:6d:07: 9d:f8:54:3b:71:08:e9:f6:4a:4f:d0:68:8a:a0:77:62:7a:cd: a3:a1:aa:8e:cb:d7:fe:a9:a7:8c:d4:0f:53:ac:78:32:16:01: 84:0f:4b:8e:54:40:0e:c0:df:bd:5b:e9:9c:d1:f0:86:bb:47: 69:14:20:69:05:8a:ad:28:51:37:b9:82:5e:1d:a6:10:40:77: 25:89:ad:b6:07:32:6b:02:11:70:96:d0:56:b3:8e:58:ba:87: e2:b2:d0:78:6b:16:9f:44:3b:a8:03:fc:76:db:80:a0:d5:cf: 1f:7b:0c:cc:e6:70:af:d4:43:cf:70:dd:a1:94:74:5f:e8:e4: 9d:e6:0f:e7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCvGG4n88oVP+XDf8wYzU9+FuTmYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQyMDQ4WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzQ0MWRiZDE3NjRlMTY1MWRhNzBiZTEzYmNiNWI5YmYy YWI2OWM0ZjBlNTJhMjlhOTYxY2EyODBjNjMwNmNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCym+R4XtqUgXKPutXR0XgVYMvhsqs+aNHb1qsJ1xAPGLcd akDZqZ+jrWtekrETki4Wu2pFyPRysXhuAl2L2n0iBoeTEph0PV/kx2qXgKf9Nh4t 85OkgifHCeoCRc20gJIARCE81De4By/gu35QZX9xECc5iiG8i5tmD4kyV472Wbfd EnblTEQRv+pV9Z5x2qjnPWZBZ0V94xjCtVoPTZ0YHGAqi8ldQT8KsTKHTOE+QHFz atryK0VSApROfh34AON6Op0R8kXU1msULaPviYnSFgh1ACY57nRqh3WYuCnlCDHb g3D5WPdvQNLq33tupXHzRIeTUL+r4eqEIz6Jt8ePAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQp3/6R6cIJCNrbK098i8Pj5fSRIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY2MzJlOTExLWVlMTEtNGJjOS1hNTczLTAwZWY4M2ZkMzFkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYAAwDQYJKoZIhvcNAQELBQADggEBACWtT7W/BvM7yaY04goZmYwa UA8mDFaU4wyv7IMZxAz2zXWr/VN84uVJ1YlX+ZqYa8t5b8lL64oNNuiO7vUoIyUS d0Q2Ff/cyfpDBFNOXx6v3jgvNQ85gRYudUiW7F7Rfq7eYX8ZzpBbuzKpr2lxcP4S ZZveqz98c5mHaZ5tB534VDtxCOn2Sk/QaIqgd2J6zaOhqo7L1/6pp4zUD1OseDIW AYQPS45UQA7A371b6ZzR8Ia7R2kUIGkFiq0oUTe5gl4dphBAdyWJrbYHMmsCEXCW 0Fazjli6h+Ky0HhrFp9EO6gD/HbbgKDVzx97DMzmcK/UQ89w3aGUdF/o5J3mD+c= -----END CERTIFICATE-----Generated at Wed May 27 18:30:24 2026 by rpki-client