$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa File: 7fef00dc-1a9a-497c-b857-792da38e532f.roa (raw, json) Hash identifier: aQsO0k+/xNIaTqqCgM3uHjzxLFWxR7lp9BfggMFdVgg= Subject key identifier: 4A:F6:16:BB:17:E6:71:00:48:F2:11:D5:00:FF:DE:82:C6:89:A8:33 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5BBD03C9589D47E371C5EB4F21AD9218F0E83200 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa Signing time: Wed 20 May 2026 00:50:26 +0000 ROA not before: Wed 20 May 2026 00:50:26 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:bd:03:c9:58:9d:47:e3:71:c5:eb:4f:21:ad:92:18:f0:e8:32:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 00:50:26 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=4ea9489f7b03346699a12836e99d8929c10287c7f8f3553279d7a6b3f2fbf9e4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:9c:14:c1:2a:fc:e4:31:0e:81:68:3c:01: 23:32:46:f4:0b:65:2a:d7:e8:a1:c6:de:30:d8:a4: 48:cf:c0:3d:bc:cc:0d:ef:37:b9:78:09:52:ae:1f: 02:dd:6e:41:7f:ad:72:b9:5d:b0:42:2b:40:1e:db: 12:4a:df:5e:49:05:e2:f5:e6:54:aa:c1:76:87:54: 6d:93:ea:8e:b0:cc:d9:83:d9:16:14:cb:11:08:87: 91:f8:17:68:76:21:94:6b:c5:1f:c9:1c:10:fa:c6: f1:4e:2e:cf:b6:78:69:73:9d:f7:c3:a8:6f:58:18: fc:b7:7c:5b:0d:0a:52:57:a8:49:82:a7:6c:3e:58: 87:05:32:f1:90:d4:a3:fd:a6:0e:0a:bd:be:10:b0: a3:c9:1a:bd:36:3f:98:b7:50:22:26:b0:b5:46:4d: 7f:98:22:52:c8:f4:50:3d:91:85:88:10:f0:04:74: 28:dd:2c:ad:a0:4a:74:9f:ab:61:34:31:07:d2:2b: 3c:0a:d8:4e:72:cc:91:ba:0b:d3:b0:cf:72:5b:30: ee:41:7a:4a:e1:5e:48:49:6b:00:5d:7a:81:2a:a0: 8d:f8:8f:94:98:a5:2b:f4:16:e0:6b:29:13:48:de: 89:2c:4b:cb:44:42:34:91:7b:69:e8:d3:b0:75:14: ea:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F6:16:BB:17:E6:71:00:48:F2:11:D5:00:FF:DE:82:C6:89:A8:33 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5500::/48 Signature Algorithm: sha256WithRSAEncryption 03:b4:6d:a1:3a:95:67:fb:c0:f2:15:8b:35:7f:e5:7b:6c:dc: d4:5d:99:7f:be:83:dc:81:50:9f:73:80:86:a8:05:85:65:99: 54:fb:39:16:59:0c:16:02:f0:c7:40:c9:34:8e:bf:5b:24:09: df:bc:10:5b:65:e6:27:fa:bd:50:40:15:d0:23:86:16:01:44: 5b:48:06:94:eb:ca:c6:ec:5e:46:c5:1c:20:32:34:80:6d:64: b7:ee:66:c1:02:ad:67:a2:ff:dd:67:33:01:a8:ef:ad:fe:39: cd:39:af:6c:d1:68:74:f3:e9:15:97:0c:6e:09:56:35:90:e9: 36:7c:c2:5d:69:37:9b:f6:a4:b0:ff:c9:7b:92:db:07:53:09: 4c:75:66:01:0a:32:b1:9c:a4:50:78:91:5b:c5:89:a8:06:1f: 99:07:5e:85:16:81:88:50:75:aa:05:27:fa:e1:4f:f8:22:d4: 60:65:ef:47:ad:53:86:6e:2f:e7:9f:e3:1a:47:24:b6:db:f5: ba:02:54:0e:47:6c:95:02:c4:5f:00:e8:60:fc:45:cf:a4:a5: c6:30:04:3d:98:39:fd:3c:c8:ef:b2:bb:a9:0e:d5:aa:f5:0b: b5:1e:43:12:e5:18:1d:a7:13:b0:d0:df:d2:33:c0:16:6a:d1: 1a:4a:f8:21 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW70DyVidR+NxxetPIa2SGPDoMgAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTIwMDA1MDI2WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZWE5NDg5ZjdiMDMzNDY2OTlhMTI4MzZlOTlkODkyOWMx MDI4N2M3ZjhmMzU1MzI3OWQ3YTZiM2YyZmJmOWU0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrvpwUwSr85DEOgWg8ASMyRvQLZSrX6KHG3jDYpEjPwD28 zA3vN7l4CVKuHwLdbkF/rXK5XbBCK0Ae2xJK315JBeL15lSqwXaHVG2T6o6wzNmD 2RYUyxEIh5H4F2h2IZRrxR/JHBD6xvFOLs+2eGlznffDqG9YGPy3fFsNClJXqEmC p2w+WIcFMvGQ1KP9pg4Kvb4QsKPJGr02P5i3UCImsLVGTX+YIlLI9FA9kYWIEPAE dCjdLK2gSnSfq2E0MQfSKzwK2E5yzJG6C9Owz3JbMO5BekrhXkhJawBdeoEqoI34 j5SYpSv0FuBrKRNI3oksS8tEQjSRe2no07B1FOpXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSvYWuxfmcQBI8hHVAP/egsaJqDMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdmZWYwMGRjLTFhOWEtNDk3Yy1iODU3LTc5MmRhMzhlNTMyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQAwDQYJKoZIhvcNAQELBQADggEBAAO0baE6lWf7wPIVizV/5Xts 3NRdmX++g9yBUJ9zgIaoBYVlmVT7ORZZDBYC8MdAyTSOv1skCd+8EFtl5if6vVBA FdAjhhYBRFtIBpTrysbsXkbFHCAyNIBtZLfuZsECrWei/91nMwGo763+Oc05r2zR aHTz6RWXDG4JVjWQ6TZ8wl1pN5v2pLD/yXuS2wdTCUx1ZgEKMrGcpFB4kVvFiagG H5kHXoUWgYhQdaoFJ/rhT/gi1GBl70etU4ZuL+ef4xpHJLbb9boCVA5HbJUCxF8A 6GD8Rc+kpcYwBD2YOf08yO+yu6kO1ar1C7UeQxLlGB2nE7DQ39IzwBZq0RpK+CE= -----END CERTIFICATE-----Generated at Fri Jun 12 05:50:34 2026 by rpki-client