$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa File: a0024e00-f937-4b63-91df-d45ce0a6a27d.roa (raw, json) Hash identifier: M7GNpQBkHlcJ5CzJPmJJoYRLjbIorG2NS+jmGOCFDgs= Subject key identifier: 07:99:46:26:B0:4D:21:E6:39:5F:90:42:B7:40:B2:83:DA:8F:94:CB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1E5080DF444FF5F1045D9E4C61C4F855EB06BFD7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa Signing time: Tue 19 May 2026 04:10:04 +0000 ROA not before: Tue 19 May 2026 04:10:04 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:50:80:df:44:4f:f5:f1:04:5d:9e:4c:61:c4:f8:55:eb:06:bf:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:04 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=758c85dacfde24737932eab61d9e987cf966f32307ebd112a966b23f51e6bfd4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:84:9a:ca:95:55:2f:fc:a7:26:4e:00:2b:0e: ee:7c:09:ef:f0:b4:7d:5f:41:d6:40:31:62:ab:e6: 6d:91:7f:41:00:ee:cf:4c:1e:c6:61:83:89:a6:5f: ff:88:3a:4e:58:f6:71:fa:3b:76:b0:96:d6:9c:d7: 95:4c:7a:02:63:cb:6f:eb:0f:b8:2f:5a:6b:a4:9f: 2a:92:f5:f8:36:34:73:f5:84:f6:60:d5:c7:5f:88: 58:bd:f7:3f:40:9f:05:88:b6:ef:3e:b2:f0:33:e6: 72:00:07:b6:b0:80:82:42:3b:1f:c8:86:13:05:01: 80:fc:58:86:e6:83:0f:b6:a5:4d:3e:74:dd:cf:a7: fe:dc:59:3b:16:8e:21:97:f5:e1:9f:02:82:e4:76: 17:71:86:73:0f:b4:53:ec:29:93:f1:ef:d5:6e:b8: 14:93:3d:c4:ee:90:73:e8:7b:92:5e:7e:72:39:04: e8:2a:b0:09:5c:6e:15:dc:8d:2b:99:3e:32:fd:2d: f2:27:c7:20:c9:d0:7c:d8:0d:2d:b4:e7:9d:b8:a2: 03:d5:2b:fe:23:42:b5:2a:7f:15:c8:8c:61:36:39: 07:4b:48:09:8d:0b:bd:ea:62:33:01:36:de:97:88: 55:e6:52:14:fa:c6:79:17:f3:aa:73:38:82:5a:bf: 38:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:99:46:26:B0:4D:21:E6:39:5F:90:42:B7:40:B2:83:DA:8F:94:CB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6010::/44 Signature Algorithm: sha256WithRSAEncryption 5a:88:6e:0b:74:84:be:99:b0:82:74:b6:ee:d8:a0:ff:b5:a5: d3:b1:69:41:2d:af:2a:a7:66:a1:a4:31:48:14:c8:d2:23:7e: 3c:be:aa:fa:3d:2b:1b:ce:4a:b7:05:da:00:57:f7:49:09:66: 7c:2d:18:97:22:fc:a5:61:7c:52:8d:7f:74:db:87:92:98:8e: d7:20:7f:11:b4:f7:56:ef:b3:4f:cc:ab:21:1d:0a:3c:a3:80: 11:d5:80:f2:34:a9:fd:08:1e:0e:77:ae:c8:9b:7c:5d:fb:c1: d7:d6:1b:aa:16:99:27:a5:9d:88:0d:61:e3:48:51:f8:a8:ce: 71:05:28:8c:fc:db:a6:36:bf:e6:e8:70:c4:68:14:89:01:21: 8b:b4:95:5b:19:24:8e:ad:a1:88:c3:e6:19:c9:1d:11:d4:f1: 4b:5d:91:d1:6b:64:85:65:6d:e2:d9:83:e8:9f:8a:9d:5b:96: 70:67:ec:8d:0b:50:b4:9b:48:c4:2e:43:b5:c6:63:d6:9d:98: ae:7f:ac:89:d9:ab:e8:1f:73:3e:15:4b:fa:0d:69:f2:1e:ca: 44:2a:95:ad:8a:91:8d:2d:6e:5c:13:62:16:26:48:3c:3b:6a: 67:b8:18:bb:46:bd:69:7f:4d:c6:c2:ab:0b:dd:7f:68:4a:e0: fc:76:ba:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHlCA30RP9fEEXZ5MYcT4VesGv9cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDA0WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NThjODVkYWNmZGUyNDczNzkzMmVhYjYxZDllOTg3Y2Y5 NjZmMzIzMDdlYmQxMTJhOTY2YjIzZjUxZTZiZmQ0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEhJrKlVUv/KcmTgArDu58Ce/wtH1fQdZAMWKr5m2Rf0EA 7s9MHsZhg4mmX/+IOk5Y9nH6O3awltac15VMegJjy2/rD7gvWmuknyqS9fg2NHP1 hPZg1cdfiFi99z9AnwWItu8+svAz5nIAB7awgIJCOx/IhhMFAYD8WIbmgw+2pU0+ dN3Pp/7cWTsWjiGX9eGfAoLkdhdxhnMPtFPsKZPx79VuuBSTPcTukHPoe5JefnI5 BOgqsAlcbhXcjSuZPjL9LfInxyDJ0HzYDS205524ogPVK/4jQrUqfxXIjGE2OQdL SAmNC73qYjMBNt6XiFXmUhT6xnkX86pzOIJavzgzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUB5lGJrBNIeY5X5BCt0Cyg9qPlMswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EwMDI0ZTAwLWY5MzctNGI2My05MWRmLWQ0NWNlMGE2YTI3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYBAwDQYJKoZIhvcNAQELBQADggEBAFqIbgt0hL6ZsIJ0tu7YoP+1 pdOxaUEtryqnZqGkMUgUyNIjfjy+qvo9KxvOSrcF2gBX90kJZnwtGJci/KVhfFKN f3Tbh5KYjtcgfxG091bvs0/MqyEdCjyjgBHVgPI0qf0IHg53rsibfF37wdfWG6oW mSelnYgNYeNIUfioznEFKIz826Y2v+bocMRoFIkBIYu0lVsZJI6toYjD5hnJHRHU 8UtdkdFrZIVlbeLZg+ifip1blnBn7I0LULSbSMQuQ7XGY9admK5/rInZq+gfcz4V S/oNafIeykQqla2KkY0tblwTYhYmSDw7ame4GLtGvWl/TcbCqwvdf2hK4Px2ugU= -----END CERTIFICATE-----Generated at Fri Jun 12 05:52:43 2026 by rpki-client