$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa File: 73712e14-51d5-41db-bcf2-73aa504e6eab.roa (raw, json) Hash identifier: QBmJxA3EjpvNBtiw5OJ10akrWTmCHtrpbtR0ajACdbw= Subject key identifier: 6D:3E:8D:9E:72:89:97:1E:D6:34:88:EA:46:73:66:75:A8:73:9B:13 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 578DFC57DC5336AE12E75CEE34DDD37040B2BF39 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa Signing time: Tue 19 May 2026 04:10:12 +0000 ROA not before: Tue 19 May 2026 04:10:12 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 31 May 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:8d:fc:57:dc:53:36:ae:12:e7:5c:ee:34:dd:d3:70:40:b2:bf:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:12 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=10560e27cf9244701dbeb8b1d0419348070fa188d56c5fd9a893690d887a3b88, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1a:f1:64:db:e9:e5:4b:41:22:de:03:72:94: ca:40:bc:04:79:fe:1b:e5:5c:eb:ea:b1:89:2b:b7: e5:27:5d:74:9e:3a:52:0f:81:1f:89:4e:6c:2a:17: 22:b2:a9:3d:63:8e:2b:4d:6f:d6:fb:99:8a:53:15: 30:0a:53:1d:1d:70:c6:b1:af:a4:75:f1:48:06:75: 1a:78:1a:67:bf:05:54:f1:de:76:2f:93:ab:35:d9: 43:26:56:a7:b3:f4:70:49:d8:d7:c8:3f:2f:93:f3: 09:de:da:3f:8b:cc:8b:a0:53:40:52:d0:55:0d:15: d8:e3:13:d1:c0:66:c2:12:01:74:96:00:d4:30:45: 0e:0f:91:b1:cf:c4:c6:bd:83:84:13:15:f4:82:d9: cb:22:93:23:b4:47:21:fd:cd:7e:67:40:70:92:c9: 76:a2:62:d7:e2:38:e3:6c:44:8c:d1:1d:90:4c:71: bb:9a:4d:ef:33:8c:2a:d4:b2:1b:bd:15:06:61:67: 04:66:86:a8:c5:1a:ba:fc:15:b0:4c:11:90:e4:ac: fb:54:9a:a8:c7:c5:44:05:d6:d8:49:f3:5b:c4:fb: a7:8e:61:85:11:96:5f:dc:be:0a:f6:ad:54:37:1d: c8:2b:23:c9:61:cb:34:46:24:2f:f9:8a:70:79:ac: 6f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:3E:8D:9E:72:89:97:1E:D6:34:88:EA:46:73:66:75:A8:73:9B:13 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 4a:a2:dc:77:fe:62:a4:42:d8:87:98:31:dc:9f:91:9c:99:b3: 51:ff:94:15:cb:8f:ad:50:51:1b:d2:69:2f:ab:5c:83:93:fa: 21:72:da:4b:1e:b6:6b:02:0c:b3:9a:cd:34:65:68:75:6b:28: 4a:8f:2f:f6:7e:97:b5:67:90:5b:cb:ce:d1:28:aa:2b:ee:ed: 54:28:10:10:4c:7f:53:77:15:5e:75:9d:a2:29:57:e0:c8:3f: 33:9f:49:6e:ac:7a:31:64:66:a6:a4:b5:66:d3:1b:aa:90:b5: e7:2c:f0:71:12:d1:37:a2:98:2a:32:23:08:0d:4e:77:c7:96: ca:eb:2c:ac:3a:24:0f:9d:47:54:a6:0a:92:34:fe:49:85:31: 95:fd:4e:b5:71:12:b5:d4:44:d4:1b:49:3b:0b:49:87:1d:74: f5:76:80:3c:c6:1e:e7:28:50:8d:d3:53:f3:09:c4:e4:18:bb: 1d:07:51:87:b0:86:b6:4e:1b:dd:b0:e7:2a:92:9b:dd:87:21: 3c:0a:f3:96:ef:6d:de:13:96:af:72:54:ed:81:2c:00:b5:a2: 90:d1:6d:15:59:bb:71:07:d2:22:82:7d:f0:c8:16:fc:97:27: 0b:6f:23:c1:9a:e0:c5:73:1a:7d:09:b4:aa:d1:84:c4:f7:97: 09:b2:ed:93 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUV438V9xTNq4S51zuNN3TcECyvzkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDEyWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDU2MGUyN2NmOTI0NDcwMWRiZWI4YjFkMDQxOTM0ODA3 MGZhMTg4ZDU2YzVmZDlhODkzNjkwZDg4N2EzYjg4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKGvFk2+nlS0Ei3gNylMpAvAR5/hvlXOvqsYkrt+UnXXSe OlIPgR+JTmwqFyKyqT1jjitNb9b7mYpTFTAKUx0dcMaxr6R18UgGdRp4Gme/BVTx 3nYvk6s12UMmVqez9HBJ2NfIPy+T8wne2j+LzIugU0BS0FUNFdjjE9HAZsISAXSW ANQwRQ4PkbHPxMa9g4QTFfSC2csikyO0RyH9zX5nQHCSyXaiYtfiOONsRIzRHZBM cbuaTe8zjCrUshu9FQZhZwRmhqjFGrr8FbBMEZDkrPtUmqjHxUQF1thJ81vE+6eO YYURll/cvgr2rVQ3HcgrI8lhyzRGJC/5inB5rG9/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbT6NnnKJlx7WNIjqRnNmdahzmxMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzczNzEyZTE0LTUxZDUtNDFkYi1iY2YyLTczYWE1MDRlNmVhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAEqi3Hf+YqRC2IeYMdyfkZyZ s1H/lBXLj61QURvSaS+rXIOT+iFy2ksetmsCDLOazTRlaHVrKEqPL/Z+l7VnkFvL ztEoqivu7VQoEBBMf1N3FV51naIpV+DIPzOfSW6sejFkZqaktWbTG6qQtecs8HES 0TeimCoyIwgNTnfHlsrrLKw6JA+dR1SmCpI0/kmFMZX9TrVxErXURNQbSTsLSYcd dPV2gDzGHucoUI3TU/MJxOQYux0HUYewhrZOG92w5yqSm92HITwK85bvbd4Tlq9y VO2BLAC1opDRbRVZu3EH0iKCffDIFvyXJwtvI8Ga4MVzGn0JtKrRhMT3lwmy7ZM= -----END CERTIFICATE-----Generated at Sat May 30 02:00:57 2026 by rpki-client