$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b20b28fe-6643-4cde-aa41-36176ca6d4b7.roa File: b20b28fe-6643-4cde-aa41-36176ca6d4b7.roa (raw, json) Hash identifier: LwWWdXOlkWG/EO5mekFtc+ZN/d2kIVoZlmi0rsM32uU= Subject key identifier: BD:1A:0D:BC:30:A0:68:C8:8E:B1:32:EE:F3:58:42:2C:FE:F5:99:8C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 44FFF33600FF161F4B8D917DD5A4B175A31D2FF2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b20b28fe-6643-4cde-aa41-36176ca6d4b7.roa Signing time: Tue 05 May 2026 22:19:01 +0000 ROA not before: Tue 05 May 2026 22:19:01 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:702::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 May 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:ff:f3:36:00:ff:16:1f:4b:8d:91:7d:d5:a4:b1:75:a3:1d:2f:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 5 22:19:01 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=ac98665be2113645e6aa499be0d3986caafc5a8ee1a1cf5f3fd8f012991e623f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d3:7b:aa:6e:52:cb:12:ca:3d:c4:65:74:26: 72:f5:77:c6:6d:ad:df:b8:af:c2:eb:3d:c1:f0:5d: 69:f8:e9:93:79:fb:d8:30:6a:a8:be:4f:4a:48:9f: 0c:d9:be:3d:72:1e:e0:4b:45:37:0e:ed:e6:a4:90: 4f:ab:3d:39:13:a9:79:a4:a2:e7:72:91:a9:8c:b9: 36:91:3b:c6:4f:1e:70:b3:93:93:95:f3:6e:43:d4: 0f:65:ff:be:49:88:c8:68:3f:8f:35:67:4a:60:56: 0c:7e:81:9f:86:43:ea:af:6f:f9:9a:b2:04:79:e5: 0e:fc:d1:1e:8d:e7:42:e6:93:90:ac:08:78:e3:2a: 15:0c:bc:a6:61:41:54:82:6a:fa:80:cc:d2:de:98: 5c:d3:98:98:c0:89:3c:2e:9e:9e:0b:26:b7:78:40: d6:df:12:f4:16:6c:c1:e0:68:84:33:1b:8b:d1:8a: 18:c6:2a:c6:81:8e:91:cb:c6:66:47:89:1f:57:72: 3b:e1:2d:eb:af:65:ad:6b:c3:0f:c4:9e:cf:4c:61: 1c:b2:e6:52:60:cf:fd:31:b1:a8:dc:cf:d8:13:88: f0:4a:cc:da:fd:b7:0d:0a:13:84:c4:b6:9d:c4:7b: 0f:99:6b:82:52:65:5d:2f:80:c5:72:4d:a2:80:15: d1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:1A:0D:BC:30:A0:68:C8:8E:B1:32:EE:F3:58:42:2C:FE:F5:99:8C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b20b28fe-6643-4cde-aa41-36176ca6d4b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:702::/48 Signature Algorithm: sha256WithRSAEncryption 7c:61:f3:12:ba:6e:71:f0:81:51:1d:cb:6f:15:07:8a:14:6d: 70:cd:a1:cb:ee:f3:1f:b1:55:63:4d:ed:97:cc:45:13:83:7c: b7:91:e3:d0:f4:f2:18:a2:f6:e8:d4:6d:61:eb:d7:70:e1:54: 38:5b:a3:dd:44:6b:85:ad:f0:6c:50:ed:13:6c:95:80:93:7a: e5:37:45:b8:60:1e:bb:e7:22:fd:e8:2a:07:69:bd:b1:b3:6e: 88:9b:f9:76:e5:15:0a:bc:b4:7f:8c:d8:6b:32:6d:49:3a:53: 52:21:cd:02:8e:e6:03:04:53:7e:82:a8:7e:00:b7:6b:17:3e: f4:61:4f:9f:25:9e:02:9f:47:a0:b3:99:73:ec:0b:06:99:84: 89:f4:66:7f:cd:fb:c9:b6:1d:b4:9b:b7:70:ae:6c:2a:72:fc: bb:17:1d:05:35:4f:47:3c:43:ed:ca:35:4c:40:7b:38:6a:7e: 24:40:31:a0:3a:cf:4e:85:1f:06:f0:09:00:90:a6:87:2e:52: 42:d3:ac:14:4d:4f:89:47:0c:30:b1:1b:13:ce:c3:a7:09:8c: 49:b0:d2:85:e0:03:04:50:e5:46:11:91:42:70:20:ad:ef:d7: 4e:76:08:0a:ed:54:07:4b:63:d3:20:ea:05:53:fe:b5:9e:68: 89:11:4d:5c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURP/zNgD/Fh9LjZF91aSxdaMdL/IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA1MjIxOTAxWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzk4NjY1YmUyMTEzNjQ1ZTZhYTQ5OWJlMGQzOTg2Y2Fh ZmM1YThlZTFhMWNmNWYzZmQ4ZjAxMjk5MWU2MjNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF03uqblLLEso9xGV0JnL1d8Ztrd+4r8LrPcHwXWn46ZN5 +9gwaqi+T0pInwzZvj1yHuBLRTcO7eakkE+rPTkTqXmkoudykamMuTaRO8ZPHnCz k5OV825D1A9l/75JiMhoP481Z0pgVgx+gZ+GQ+qvb/masgR55Q780R6N50Lmk5Cs CHjjKhUMvKZhQVSCavqAzNLemFzTmJjAiTwunp4LJrd4QNbfEvQWbMHgaIQzG4vR ihjGKsaBjpHLxmZHiR9XcjvhLeuvZa1rww/Ens9MYRyy5lJgz/0xsajcz9gTiPBK zNr9tw0KE4TEtp3Eew+Za4JSZV0vgMVyTaKAFdFjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvRoNvDCgaMiOsTLu81hCLP71mYwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IyMGIyOGZlLTY2NDMtNGNkZS1hYTQxLTM2MTc2Y2E2ZDRiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBwIwDQYJKoZIhvcNAQELBQADggEBAHxh8xK6bnHwgVEdy28VB4oU bXDNocvu8x+xVWNN7ZfMRRODfLeR49D08hii9ujUbWHr13DhVDhbo91Ea4Wt8GxQ 7RNslYCTeuU3RbhgHrvnIv3oKgdpvbGzboib+XblFQq8tH+M2GsybUk6U1IhzQKO 5gMEU36CqH4At2sXPvRhT58lngKfR6CzmXPsCwaZhIn0Zn/N+8m2HbSbt3CubCpy /LsXHQU1T0c8Q+3KNUxAezhqfiRAMaA6z06FHwbwCQCQpocuUkLTrBRNT4lHDDCx GxPOw6cJjEmw0oXgAwRQ5UYRkUJwIK3v1052CArtVAdLY9Mg6gVT/rWeaIkRTVw= -----END CERTIFICATE-----Generated at Wed May 6 10:56:08 2026 by rpki-client