$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b801f8fd-dbab-4a07-86be-11a07359c259.roa File: b801f8fd-dbab-4a07-86be-11a07359c259.roa (raw, json) Hash identifier: q/iTW1gWLPEFAAiG8Eym4Avv14ap+bz2JjUohzCj9n4= Subject key identifier: E6:07:97:E5:27:89:EB:4F:51:8F:65:76:77:6E:51:EC:7F:29:84:49 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4198054BCA3ECC938C83C8E2BDE07D5E90E4A102 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b801f8fd-dbab-4a07-86be-11a07359c259.roa Signing time: Fri 08 May 2026 16:47:16 +0000 ROA not before: Fri 08 May 2026 16:47:16 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:700::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 May 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:98:05:4b:ca:3e:cc:93:8c:83:c8:e2:bd:e0:7d:5e:90:e4:a1:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 8 16:47:16 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=44897d71308f4db8eba820859d03d70bdb9e8542c276e262dda257d3fa7e38c0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d1:e2:23:cb:d5:72:71:0e:3a:bf:da:ab:fe: 3d:d4:52:1a:ef:ff:bf:f4:10:68:6f:d1:f1:38:87: 19:c8:33:43:e6:18:c6:94:4f:12:1c:c7:e3:bf:e1: 57:aa:fa:a1:e8:80:44:3f:6f:dc:d6:a8:30:4d:ee: 24:8e:fb:f2:23:75:97:46:4e:1b:94:7d:14:91:85: a5:1f:74:d3:60:61:54:e2:bb:4a:3c:e7:24:cb:af: c7:bc:a3:2a:20:87:b0:58:3c:39:cd:b9:7f:db:1e: 52:80:4c:61:d8:f1:f5:28:7b:5b:b1:3d:be:f3:3d: 18:cd:ba:e7:c3:e1:b0:91:50:f9:1d:48:9c:3d:37: 97:8e:bb:d6:ab:49:b4:0a:c6:4b:07:d9:bb:b2:86: ac:f2:26:49:9f:80:e8:54:75:64:d3:50:f0:5c:84: f1:7e:45:6d:cc:8e:84:44:83:24:76:79:b8:91:48: 15:54:70:a0:4d:c3:63:2f:96:86:7c:39:42:3c:03: c7:d0:0a:f7:4c:1c:66:0f:be:3f:b5:08:b2:1d:15: 97:0f:60:1d:48:dc:ea:59:0a:cd:e0:96:00:c2:12: ef:f9:3d:97:ef:a4:32:55:b0:b9:f9:51:46:43:83: 43:04:d4:bf:18:9f:03:27:82:4c:8e:ca:70:2c:e6: 68:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:07:97:E5:27:89:EB:4F:51:8F:65:76:77:6E:51:EC:7F:29:84:49 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b801f8fd-dbab-4a07-86be-11a07359c259.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:700::/40 Signature Algorithm: sha256WithRSAEncryption a6:54:90:28:f3:ea:f8:10:a9:fe:6e:2e:84:28:40:f2:e1:3f: 4e:e7:24:b5:54:2b:55:a8:69:3f:88:9f:7d:25:64:87:ca:ce: 08:55:6d:df:ad:8e:a3:3e:dd:a0:de:53:68:e1:62:c3:00:5c: 10:0a:f5:d3:58:a8:97:ea:ec:b9:17:06:a1:c8:8f:54:80:5f: 69:aa:64:7b:24:79:60:50:60:23:51:15:75:f8:e9:a2:36:da: 3b:01:2f:11:c1:22:f2:03:d6:e8:f8:26:c4:61:d2:27:e6:c1: e5:13:b4:d0:77:c6:bb:7b:70:e6:ba:34:f8:72:f1:be:89:2f: f6:d5:eb:19:61:19:ac:43:e2:f5:dc:89:62:88:30:69:27:8b: 47:8a:31:af:45:be:56:fb:c7:18:39:33:65:0f:4e:9e:2f:1c: 0b:4a:94:15:a6:04:c4:a0:c4:ed:f7:93:3b:5f:ef:c2:f1:76: ad:5c:ef:bd:80:f1:a4:79:1e:66:58:c8:49:5d:6a:56:5c:3d: 92:08:35:6d:88:ec:3c:cb:01:ec:2f:a7:56:17:e3:26:6c:f1: 6e:3f:c6:f2:21:03:5c:a4:94:75:db:e3:db:bb:3c:1b:2a:d8: 94:2b:34:6b:77:c7:4d:7c:f5:f9:1b:fb:ae:b1:f8:59:8d:85: 5f:41:a0:81 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQZgFS8o+zJOMg8jiveB9XpDkoQIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA4MTY0NzE2WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDg5N2Q3MTMwOGY0ZGI4ZWJhODIwODU5ZDAzZDcwYmRi OWU4NTQyYzI3NmUyNjJkZGEyNTdkM2ZhN2UzOGMwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ0eIjy9VycQ46v9qr/j3UUhrv/7/0EGhv0fE4hxnIM0Pm GMaUTxIcx+O/4Veq+qHogEQ/b9zWqDBN7iSO+/IjdZdGThuUfRSRhaUfdNNgYVTi u0o85yTLr8e8oyogh7BYPDnNuX/bHlKATGHY8fUoe1uxPb7zPRjNuufD4bCRUPkd SJw9N5eOu9arSbQKxksH2buyhqzyJkmfgOhUdWTTUPBchPF+RW3MjoREgyR2ebiR SBVUcKBNw2MvloZ8OUI8A8fQCvdMHGYPvj+1CLIdFZcPYB1I3OpZCs3glgDCEu/5 PZfvpDJVsLn5UUZDg0ME1L8YnwMngkyOynAs5mh7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5geX5SeJ609Rj2V2d25R7H8phEkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I4MDFmOGZkLWRiYWItNGEwNy04NmJlLTExYTA3MzU5YzI1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwBzANBgkqhkiG9w0BAQsFAAOCAQEAplSQKPPq+BCp/m4uhChA8uE/ TucktVQrVahpP4iffSVkh8rOCFVt362Ooz7doN5TaOFiwwBcEAr101iol+rsuRcG ociPVIBfaapkeyR5YFBgI1EVdfjpojbaOwEvEcEi8gPW6PgmxGHSJ+bB5RO00HfG u3tw5ro0+HLxvokv9tXrGWEZrEPi9dyJYogwaSeLR4oxr0W+VvvHGDkzZQ9Oni8c C0qUFaYExKDE7feTO1/vwvF2rVzvvYDxpHkeZljISV1qVlw9kgg1bYjsPMsB7C+n VhfjJmzxbj/G8iEDXKSUddvj27s8GyrYlCs0a3fHTXz1+Rv7rrH4WY2FX0GggQ== -----END CERTIFICATE-----Generated at Sun May 10 11:26:49 2026 by rpki-client