$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6a64a335-1962-4306-9dd6-beb2565ad283.roa File: 6a64a335-1962-4306-9dd6-beb2565ad283.roa (raw, json) Hash identifier: u2TqCvb3WkcsDynvbakI612WBlzxjKaJPC8rhHtMvVU= Subject key identifier: 93:E9:06:0B:09:18:49:43:F3:03:7A:5E:17:FE:65:CF:83:58:44:83 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4E40000C83AB14B9714FFBC3F4B580F91622FE39 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6a64a335-1962-4306-9dd6-beb2565ad283.roa Signing time: Mon 30 Mar 2026 23:06:48 +0000 ROA not before: Mon 30 Mar 2026 23:06:48 +0000 ROA not after: Sun 28 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:c00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 02 Apr 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:40:00:0c:83:ab:14:b9:71:4f:fb:c3:f4:b5:80:f9:16:22:fe:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 30 23:06:48 2026 GMT Not After : Jun 28 23:59:59 2026 GMT Subject: serialNumber=e395999ca7f0834358f96b41cdc58b5e5bb750e95c0a1b7a22688acd64527f0c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ff:8a:63:fa:b4:57:bb:ef:3e:66:a7:77:d5: 3b:4f:53:bb:83:cc:41:3f:1d:a7:4f:85:c2:d2:57: bb:84:37:89:1e:36:f6:ad:e1:c1:f4:b8:f6:d0:dc: f8:35:fa:ea:59:4f:4e:1d:8e:e3:31:6d:f3:d7:b0: bf:a5:ff:51:f2:32:44:cf:9b:bf:d6:4f:01:52:7a: 5e:06:ab:c9:a5:54:2c:23:b6:2e:2f:4d:d5:b1:73: 39:02:8c:b4:0f:6e:59:1e:f1:98:b6:88:bc:56:9b: 43:9f:f0:ad:02:93:66:bb:f5:19:e4:4c:79:f1:cd: 0d:b8:d8:05:92:e4:e8:87:0e:bc:7f:bc:9b:66:9b: 0a:46:65:f4:e6:cd:cc:0a:9c:2c:f0:2f:e6:32:a9: c3:ac:09:5d:39:c1:cf:7b:75:23:6e:8e:c5:48:47: 72:70:ae:5b:1e:d7:ab:5b:fa:df:a8:5b:82:4e:e2: 5e:13:a6:1a:76:a8:6a:5c:7f:6a:c9:5d:a2:a1:3b: 6f:8f:8f:62:9e:ec:87:46:85:93:c7:f7:4a:0f:98: fa:a3:ec:b0:26:65:95:25:ad:9c:6f:98:5e:c3:b2: af:40:46:7b:c9:97:e0:25:fa:db:ac:5a:d3:35:28: 8d:d6:67:3e:07:3c:c7:d2:80:3e:e1:58:49:13:ef: 70:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E9:06:0B:09:18:49:43:F3:03:7A:5E:17:FE:65:CF:83:58:44:83 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6a64a335-1962-4306-9dd6-beb2565ad283.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:c00::/40 Signature Algorithm: sha256WithRSAEncryption 25:38:f1:bf:85:5d:14:51:14:3b:c0:fd:95:6a:a9:ad:f7:0d: e8:fc:88:b1:8c:14:5d:73:19:81:eb:9d:9e:4d:40:9a:19:42: fc:38:e1:30:91:48:cf:94:6e:77:44:cb:ea:e0:6b:af:7f:9c: 35:32:70:13:e8:4a:d2:3c:41:1e:3f:f5:57:68:37:d2:2e:8b: 9e:a3:07:c5:6e:a6:a8:04:83:54:f3:5c:57:9c:c9:b9:3c:3c: b2:b5:b6:c9:c4:a3:2f:ed:10:39:fd:9e:dd:7f:b8:71:5d:83: c5:e0:84:b4:cd:cf:15:2e:7c:cc:33:05:9d:ef:cb:df:11:a0: 65:9f:77:4c:31:f3:02:ef:d4:7a:0d:2e:c0:9a:fd:52:8b:40: c2:21:a3:5e:9e:80:4f:af:3a:6a:c4:fa:3e:91:90:22:19:f3: de:e5:ea:12:ea:31:a3:10:70:75:16:53:80:b1:70:f2:26:1e: cc:e4:6e:a4:4a:38:83:22:ed:da:d3:98:99:25:56:26:eb:88: 42:27:29:71:f6:76:ae:65:ab:39:26:c5:ef:16:0b:3f:c8:40: ad:d1:12:27:6d:e1:17:e4:ca:03:96:85:cd:0a:f1:a9:01:84: 70:9d:8d:77:66:b7:df:2c:64:c9:38:f0:1c:ae:f0:07:86:b5: 55:a4:35:29 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTkAADIOrFLlxT/vD9LWA+RYi/jkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzMwMjMwNjQ4WhcNMjYwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzk1OTk5Y2E3ZjA4MzQzNThmOTZiNDFjZGM1OGI1ZTVi Yjc1MGU5NWMwYTFiN2EyMjY4OGFjZDY0NTI3ZjBjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs/4pj+rRXu+8+Zqd31TtPU7uDzEE/HadPhcLSV7uEN4ke Nvat4cH0uPbQ3Pg1+upZT04djuMxbfPXsL+l/1HyMkTPm7/WTwFSel4Gq8mlVCwj ti4vTdWxczkCjLQPblke8Zi2iLxWm0Of8K0Ck2a79RnkTHnxzQ242AWS5OiHDrx/ vJtmmwpGZfTmzcwKnCzwL+YyqcOsCV05wc97dSNujsVIR3Jwrlse16tb+t+oW4JO 4l4Tphp2qGpcf2rJXaKhO2+Pj2Ke7IdGhZPH90oPmPqj7LAmZZUlrZxvmF7Dsq9A RnvJl+Al+tusWtM1KI3WZz4HPMfSgD7hWEkT73DBAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUk+kGCwkYSUPzA3peF/5lz4NYRIMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzZhNjRhMzM1LTE5NjItNDMwNi05ZGQ2LWJlYjI1NjVhZDI4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwDDANBgkqhkiG9w0BAQsFAAOCAQEAJTjxv4VdFFEUO8D9lWqprfcN 6PyIsYwUXXMZgeudnk1AmhlC/DjhMJFIz5Rud0TL6uBrr3+cNTJwE+hK0jxBHj/1 V2g30i6LnqMHxW6mqASDVPNcV5zJuTw8srW2ycSjL+0QOf2e3X+4cV2DxeCEtM3P FS58zDMFne/L3xGgZZ93TDHzAu/Ueg0uwJr9UotAwiGjXp6AT686asT6PpGQIhnz 3uXqEuoxoxBwdRZTgLFw8iYezORupEo4gyLt2tOYmSVWJuuIQicpcfZ2rmWrOSbF 7xYLP8hArdESJ23hF+TKA5aFzQrxqQGEcJ2Nd2a33yxkyTjwHK7wB4a1VaQ1KQ== -----END CERTIFICATE-----Generated at Wed Apr 1 19:31:00 2026 by rpki-client