$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa File: bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa (raw, json) Hash identifier: qz7kkYAi7eeqAmm5eHxdZO3v3HipJT0IMmrcMSJrqso= Subject key identifier: 45:E2:DC:CB:CB:68:5E:A8:9A:37:9D:5F:60:FE:5A:6C:1B:1D:B1:27 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 792BEB54333409BDB86046A5A09FBA8FFC14B305 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa Signing time: Tue 19 May 2026 04:10:36 +0000 ROA not before: Tue 19 May 2026 04:10:36 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e400::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:2b:eb:54:33:34:09:bd:b8:60:46:a5:a0:9f:ba:8f:fc:14:b3:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:36 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=791445c588ead044a981e9a73af48713a53fde86c8e7eb1a0c3f58e5ee21ec26, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:20:ce:6a:d1:3d:f9:20:5c:ef:8d:e6:bc:c8: 26:27:d5:24:fb:dd:5f:6c:b8:3a:e1:41:b1:c6:b4: d0:d7:0e:12:b5:f3:9f:1e:98:70:ca:8f:f5:0f:d6: d9:d8:5b:dd:9e:e0:01:b4:d2:12:30:cc:65:0c:73: 75:15:fe:a6:55:d0:b4:4d:ba:09:f9:ce:1b:66:12: 85:97:80:19:d0:f5:12:b0:fd:e9:62:ba:d4:05:da: 6f:8a:5c:37:42:64:f7:01:c1:14:38:3b:fc:f1:06: c4:ad:ab:66:de:85:7c:93:a9:b7:6a:0f:c2:0a:8b: b5:8b:37:35:9b:7d:94:f1:55:73:56:ad:70:f6:5d: e5:3e:e5:27:f7:e3:22:10:59:31:c4:aa:79:7d:df: 8b:6f:8d:11:f3:16:26:db:c5:fe:68:23:73:38:62: ad:38:4b:8e:39:d7:4d:04:b6:49:79:11:63:70:93: 5a:ce:3d:40:16:6a:5f:d7:06:54:54:88:9d:8f:94: 43:21:c3:5c:e1:08:02:b6:cf:6f:ff:95:a7:43:77: dc:3b:a7:c5:f2:00:c2:a5:a2:72:d8:e1:b1:42:59: 29:c2:b5:fc:cb:67:dd:86:2a:bf:fc:15:78:5e:0f: 0c:37:ec:b7:dc:13:3a:9f:8f:3c:14:41:4a:bd:ae: 31:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:E2:DC:CB:CB:68:5E:A8:9A:37:9D:5F:60:FE:5A:6C:1B:1D:B1:27 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e400::/42 Signature Algorithm: sha256WithRSAEncryption 7a:47:70:b0:25:7f:c4:5c:3a:22:36:bf:08:65:bf:4c:79:24: d9:ea:3d:93:53:2c:97:f1:b3:6e:92:6e:d3:15:d3:d9:bd:c1: 02:b6:b9:20:7b:53:67:0a:33:bc:34:19:e4:e1:5b:ce:15:de: a8:73:04:9c:8b:02:dc:96:7b:42:44:37:74:c0:e6:e0:9d:08: a7:5d:91:7f:02:7d:fb:97:ca:d5:fc:19:6c:15:f2:d1:a2:88: f2:b0:15:9c:d4:db:07:57:8f:6d:00:4f:6f:b3:07:41:4c:bd: 81:92:03:c1:bc:a2:3c:4f:bd:87:b9:62:e2:4e:71:b8:d1:af: 0b:51:47:74:dd:d3:b8:97:4c:5f:91:2e:18:b6:94:a7:d3:76: b1:05:e6:f6:27:a5:be:e9:58:80:74:e2:3a:20:80:c5:b2:1e: b5:8b:24:6d:d5:ce:eb:50:68:6b:b3:6d:b2:11:aa:79:be:86: 0b:76:15:04:44:86:81:25:bb:eb:ec:f3:e9:9c:27:52:46:2e: f4:71:28:d8:77:04:07:72:bc:82:37:37:84:06:19:2a:3f:9e: 55:c3:f7:e9:3c:3e:a6:55:6f:b5:22:29:13:24:08:2d:6e:14: b8:87:89:65:47:04:d1:7c:3a:73:8b:e0:50:9f:d7:b7:44:75: f6:a7:0a:14 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeSvrVDM0Cb24YEaloJ+6j/wUswUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDM2WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTE0NDVjNTg4ZWFkMDQ0YTk4MWU5YTczYWY0ODcxM2E1 M2ZkZTg2YzhlN2ViMWEwYzNmNThlNWVlMjFlYzI2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6IM5q0T35IFzvjea8yCYn1ST73V9suDrhQbHGtNDXDhK1 858emHDKj/UP1tnYW92e4AG00hIwzGUMc3UV/qZV0LRNugn5zhtmEoWXgBnQ9RKw /eliutQF2m+KXDdCZPcBwRQ4O/zxBsStq2behXyTqbdqD8IKi7WLNzWbfZTxVXNW rXD2XeU+5Sf34yIQWTHEqnl934tvjRHzFibbxf5oI3M4Yq04S445100Etkl5EWNw k1rOPUAWal/XBlRUiJ2PlEMhw1zhCAK2z2//ladDd9w7p8XyAMKlonLY4bFCWSnC tfzLZ92GKr/8FXheDww37LfcEzqfjzwUQUq9rjG/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUReLcy8toXqiaN51fYP5abBsdsScwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JmMjdmZGI3LTg0YmYtNDBkMi05MDZhLTdiNGMxZmY0MDViMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75AAwDQYJKoZIhvcNAQELBQADggEBAHpHcLAlf8RcOiI2vwhlv0x5 JNnqPZNTLJfxs26SbtMV09m9wQK2uSB7U2cKM7w0GeThW84V3qhzBJyLAtyWe0JE N3TA5uCdCKddkX8CffuXytX8GWwV8tGiiPKwFZzU2wdXj20AT2+zB0FMvYGSA8G8 ojxPvYe5YuJOcbjRrwtRR3Td07iXTF+RLhi2lKfTdrEF5vYnpb7pWIB04joggMWy HrWLJG3VzutQaGuzbbIRqnm+hgt2FQREhoElu+vs8+mcJ1JGLvRxKNh3BAdyvII3 N4QGGSo/nlXD9+k8PqZVb7UiKRMkCC1uFLiHiWVHBNF8OnOL4FCf17dEdfanChQ= -----END CERTIFICATE-----Generated at Fri Jun 12 05:50:17 2026 by rpki-client