$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa File: 976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa (raw, json) Hash identifier: ZsdQT98xWKjLXkNjgmC3cRKmh/xQId0z+Ze5+iUVgzM= Subject key identifier: 1A:52:5D:07:4E:CC:57:E3:2C:41:02:17:C9:7C:FB:AE:52:18:31:8E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 732FE8126A27BECAF46B1052BF84A20A117C7894 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa Signing time: Tue 19 May 2026 04:20:36 +0000 ROA not before: Tue 19 May 2026 04:20:36 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:2f:e8:12:6a:27:be:ca:f4:6b:10:52:bf:84:a2:0a:11:7c:78:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:20:36 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=cdb446107186b8737f1da23473151f9eac9f2853ee94e68241239b980d6b7f97, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d1:a8:be:a8:fe:67:75:39:21:70:50:e5:16: 1b:8b:0a:d5:49:5b:1e:6a:6b:2d:0b:5b:2f:b7:c7: 10:b6:b9:b0:d4:4a:13:2a:64:0a:06:53:c8:da:d0: cf:81:1e:cb:01:90:92:21:37:66:33:61:38:f2:ee: df:53:30:2a:69:32:34:a4:17:d1:c6:68:ba:fa:5e: 0e:52:95:06:aa:d0:bc:a2:bf:d9:01:d9:08:e3:20: 21:e1:c2:04:f4:29:36:f5:ca:0d:8a:5a:5f:b1:91: 9b:24:8a:57:e5:4f:24:7f:9f:83:d8:2a:66:8e:e8: 43:36:b7:ef:7b:bd:a3:88:ce:11:2b:58:d2:46:9a: b9:97:63:d4:16:0c:5d:69:50:ef:28:47:df:b4:1f: b1:f9:e8:64:e6:3f:10:8b:de:10:35:7e:8c:6e:7f: 0f:b7:67:db:e2:2a:48:d2:30:32:3d:5d:f8:94:cb: d6:30:78:c7:86:ba:47:6f:64:dd:19:11:be:23:04: 9e:13:ee:d4:85:58:30:ed:e7:2f:cf:b8:10:e4:db: 51:21:f9:9f:bb:f3:d0:8f:db:89:18:df:86:ae:cc: 1e:0c:e2:b0:21:cd:ac:66:ac:21:fe:5f:7a:19:23: 23:2a:e0:fb:26:e4:e4:b9:3b:e0:20:0d:bd:dc:14: d9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:52:5D:07:4E:CC:57:E3:2C:41:02:17:C9:7C:FB:AE:52:18:31:8E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:f00::/48 Signature Algorithm: sha256WithRSAEncryption 9d:17:cc:ca:4f:d3:8f:82:c3:4a:b7:8e:ea:ca:81:94:1a:f1: bc:21:bc:8a:db:9a:fb:f4:71:07:6b:3f:3f:a2:cc:0b:47:80: e7:93:cc:6e:38:76:61:4b:b9:50:4e:36:fc:08:57:c5:5a:98: 19:84:62:69:af:dd:1e:bb:03:5c:18:c1:b6:3b:0a:54:55:8d: 5c:e8:10:e0:dc:30:fe:5a:03:d1:2f:7f:21:3f:f7:61:a1:8b: d0:1a:92:a3:6e:9c:c6:98:fd:5f:85:d8:9a:9e:5d:73:1d:69: c5:7c:85:cf:7c:26:75:25:ba:35:d6:df:32:3a:a5:9c:04:e7: e9:9f:42:ba:f8:fc:16:67:e4:fa:2a:a4:6e:aa:73:64:4c:1d: 95:18:95:17:0d:fb:5a:f9:74:a3:8f:9d:42:e8:b2:c1:e6:c0: ff:3c:2b:59:e9:6c:c2:7d:d2:4c:fe:dc:5a:87:88:32:4c:e6: d1:91:1a:4b:b9:59:b1:1c:9f:97:c3:44:bd:b6:b4:fe:9f:7c: e7:98:e5:59:c9:78:d6:7c:99:b3:47:20:29:e0:ba:c2:84:81: 40:95:70:04:c3:e1:09:42:3d:b4:2b:4c:9c:0a:c4:2d:f5:49: 13:52:85:c7:51:1a:66:5a:64:7b:4e:56:ca:11:e5:5a:ba:b0: ba:5b:1b:ea -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcy/oEmonvsr0axBSv4SiChF8eJQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQyMDM2WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZGI0NDYxMDcxODZiODczN2YxZGEyMzQ3MzE1MWY5ZWFj OWYyODUzZWU5NGU2ODI0MTIzOWI5ODBkNmI3Zjk3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC40ai+qP5ndTkhcFDlFhuLCtVJWx5qay0LWy+3xxC2ubDU ShMqZAoGU8ja0M+BHssBkJIhN2YzYTjy7t9TMCppMjSkF9HGaLr6Xg5SlQaq0Lyi v9kB2QjjICHhwgT0KTb1yg2KWl+xkZskilflTyR/n4PYKmaO6EM2t+97vaOIzhEr WNJGmrmXY9QWDF1pUO8oR9+0H7H56GTmPxCL3hA1foxufw+3Z9viKkjSMDI9XfiU y9YweMeGukdvZN0ZEb4jBJ4T7tSFWDDt5y/PuBDk21Eh+Z+789CP24kY34auzB4M 4rAhzaxmrCH+X3oZIyMq4Psm5OS5O+AgDb3cFNk7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGlJdB07MV+MsQQIXyXz7rlIYMY4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3NjYyM2FkLTBiNWEtNGE1Zi1iNGEzLTYwNjgxZDJlYWM3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwDwAwDQYJKoZIhvcNAQELBQADggEBAJ0XzMpP04+Cw0q3jurKgZQa 8bwhvIrbmvv0cQdrPz+izAtHgOeTzG44dmFLuVBONvwIV8VamBmEYmmv3R67A1wY wbY7ClRVjVzoEODcMP5aA9EvfyE/92Ghi9AakqNunMaY/V+F2JqeXXMdacV8hc98 JnUlujXW3zI6pZwE5+mfQrr4/BZn5PoqpG6qc2RMHZUYlRcN+1r5dKOPnULossHm wP88K1npbMJ90kz+3FqHiDJM5tGRGku5WbEcn5fDRL22tP6ffOeY5VnJeNZ8mbNH ICngusKEgUCVcATD4QlCPbQrTJwKxC31SRNShcdRGmZaZHtOVsoR5Vq6sLpbG+o= -----END CERTIFICATE-----Generated at Fri Jun 12 05:52:32 2026 by rpki-client