$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa File: 7200dfa9-d36f-44de-852a-1adda1bbb99c.roa (raw, json) Hash identifier: PVzK9ll8QIsDXTFp5JpCLFy0MoAG8a+ng/IiiXxfIL0= Subject key identifier: 2E:68:F1:1F:33:DC:ED:A1:25:93:F3:D3:16:3F:D9:FB:5A:4C:66:A8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1193668753F3748B2AD281671D71F90D4BCAEBAF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa Signing time: Tue 19 May 2026 04:10:38 +0000 ROA not before: Tue 19 May 2026 04:10:38 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 28 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:93:66:87:53:f3:74:8b:2a:d2:81:67:1d:71:f9:0d:4b:ca:eb:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:38 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=8df6966f280b8aa4a979da88ab116d2b0dad63662530b15d79497d9e615eea3c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:43:b9:6b:21:5d:94:26:21:3e:45:c8:0b:59: de:a5:b1:26:bf:71:c3:89:05:9d:ab:8e:23:d2:8b: c1:5f:62:bb:22:7e:29:85:72:60:fe:17:1a:b9:d5: 9a:25:ac:af:15:1d:9d:28:1c:93:5d:bc:53:75:e8: 9a:38:a5:56:11:bb:f0:53:6d:69:ad:41:56:f6:18: f3:88:14:07:cc:85:ed:07:46:7f:c0:c3:68:79:75: a3:18:30:37:1d:d5:2b:8f:f1:f3:fe:ec:c1:32:2e: 91:92:e5:67:2d:23:f3:7c:af:45:2f:bd:c9:8f:c5: 76:5a:b3:78:b3:1e:47:5b:eb:91:f7:26:e8:69:c3: 4b:6d:5e:76:44:d8:de:05:32:93:31:7f:51:38:cf: 14:34:c4:2e:60:a2:4e:f3:c0:55:70:79:cb:d1:45: a6:99:31:f4:fd:1c:18:9b:54:2b:e5:ee:a1:ac:63: df:89:ae:fe:3a:41:f9:03:82:18:2e:c8:ce:b2:e9: 8e:f7:cd:46:d6:7d:08:b8:ae:82:be:5d:2d:4f:7c: 8e:26:33:e0:5f:5f:07:e0:2e:90:47:c7:3c:2e:57: 8e:a9:b8:79:7a:25:59:34:c7:80:b7:ef:53:ae:f3: 5f:49:b7:b8:cb:01:cb:1a:d4:cf:f8:93:11:84:91: 8f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:68:F1:1F:33:DC:ED:A1:25:93:F3:D3:16:3F:D9:FB:5A:4C:66:A8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 30:eb:91:c5:a3:d3:01:ed:3d:12:2f:7e:c2:6e:c9:7d:a8:29: 83:de:46:79:ef:24:f3:e2:a7:05:dd:01:94:c8:37:a4:23:4a: 3d:9d:75:9b:94:34:19:83:a0:33:cc:7e:75:2c:15:ff:55:58: f5:a2:83:87:4e:7b:00:92:fb:a9:f1:5f:dd:17:bf:1a:1a:5c: d4:2a:31:07:44:42:36:fe:2a:ab:74:e0:db:0b:b8:26:9c:47: de:8a:21:01:b5:d7:96:24:05:04:06:48:e8:53:92:ce:8b:57: 72:04:f9:fa:77:8e:95:b2:04:e1:62:f1:85:c1:f1:a4:17:be: e2:80:4c:56:3b:1f:41:6f:95:37:4a:de:85:93:c2:77:90:e0: 89:ac:98:e5:6a:5c:d1:17:22:6e:28:36:44:cf:17:3c:51:ce: 68:f6:09:20:56:36:c3:f1:36:ee:5a:93:75:27:b1:55:c3:ea: 2e:7c:7c:4e:63:d3:6f:ad:ba:48:32:61:ef:47:d6:04:e2:db: 57:23:cf:bd:89:46:fe:82:8b:8f:4c:b7:2e:7b:14:b6:df:34: 2f:91:38:50:a7:1e:92:e5:fe:e4:96:05:d5:dd:17:e8:5e:78: 38:94:a8:97:63:0d:0a:bc:7c:80:6c:ba:1a:85:ac:cb:56:4d: 1d:d9:5c:ef -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEZNmh1PzdIsq0oFnHXH5DUvK668wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDM4WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZGY2OTY2ZjI4MGI4YWE0YTk3OWRhODhhYjExNmQyYjBk YWQ2MzY2MjUzMGIxNWQ3OTQ5N2Q5ZTYxNWVlYTNjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6Q7lrIV2UJiE+RcgLWd6lsSa/ccOJBZ2rjiPSi8FfYrsi fimFcmD+Fxq51ZolrK8VHZ0oHJNdvFN16Jo4pVYRu/BTbWmtQVb2GPOIFAfMhe0H Rn/Aw2h5daMYMDcd1SuP8fP+7MEyLpGS5WctI/N8r0UvvcmPxXZas3izHkdb65H3 Juhpw0ttXnZE2N4FMpMxf1E4zxQ0xC5gok7zwFVwecvRRaaZMfT9HBibVCvl7qGs Y9+Jrv46QfkDghguyM6y6Y73zUbWfQi4roK+XS1PfI4mM+BfXwfgLpBHxzwuV46p uHl6JVk0x4C371Ou819Jt7jLAcsa1M/4kxGEkY8NAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULmjxHzPc7aElk/PTFj/Z+1pMZqgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMDBkZmE5LWQzNmYtNDRkZS04NTJhLTFhZGRhMWJiYjk5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBADDrkcWj0wHtPRIvfsJuyX2o KYPeRnnvJPPipwXdAZTIN6QjSj2ddZuUNBmDoDPMfnUsFf9VWPWig4dOewCS+6nx X90XvxoaXNQqMQdEQjb+Kqt04NsLuCacR96KIQG115YkBQQGSOhTks6LV3IE+fp3 jpWyBOFi8YXB8aQXvuKATFY7H0FvlTdK3oWTwneQ4ImsmOVqXNEXIm4oNkTPFzxR zmj2CSBWNsPxNu5ak3UnsVXD6i58fE5j02+tukgyYe9H1gTi21cjz72JRv6Ci49M ty57FLbfNC+ROFCnHpLl/uSWBdXdF+heeDiUqJdjDQq8fIBsuhqFrMtWTR3ZXO8= -----END CERTIFICATE-----Generated at Wed May 27 18:30:26 2026 by rpki-client