$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa File: bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa (raw, json) Hash identifier: iUrc+M2SIqglbMBMLNxV4SKyFN0JLIIwp+tnLVqrH0g= Subject key identifier: BF:EA:9D:60:3C:C1:FF:83:7D:3F:D3:BC:BD:10:81:A7:08:6C:74:E2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5424A6EC0636CA9B6B3F80CD90EACE653DB18F08 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa Signing time: Tue 19 May 2026 04:20:54 +0000 ROA not before: Tue 19 May 2026 04:20:54 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e700::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:24:a6:ec:06:36:ca:9b:6b:3f:80:cd:90:ea:ce:65:3d:b1:8f:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:20:54 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=02fdfcd146fd11f2d6208593c6fba69e9adba24a15b97e8bc2d95582abce953b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f3:63:f5:a1:ba:d5:fa:8a:3b:40:07:08:fc: d1:fc:b9:df:df:17:ac:da:81:26:fe:2e:cc:fe:51: a6:ce:46:52:76:ea:3f:54:df:dd:fc:67:62:bd:ea: 88:97:9a:0f:7d:f4:3a:7e:96:04:1d:4a:3c:90:07: 7b:b5:fc:10:8a:c9:28:fd:dc:cf:7d:6e:d9:fa:17: 9d:0f:89:b4:43:3d:f0:ee:2f:de:f4:47:91:82:aa: 06:18:ca:eb:62:14:dd:d3:9d:c0:36:02:67:4d:2c: cf:7f:06:ea:92:17:ba:7e:42:b1:aa:46:f6:eb:1e: c3:42:79:4b:ac:3c:29:8a:36:92:39:c7:5b:37:16: 0f:a7:54:3b:38:24:b6:c7:e5:50:60:0d:40:6c:c6: cf:3e:32:2f:24:2e:b4:b2:16:ee:68:dc:c4:6d:ba: 53:31:9d:27:ac:0b:fa:68:b7:b7:9a:e5:7e:9f:1b: 70:8d:d2:50:48:34:7a:c9:52:05:af:30:4f:d9:de: c0:68:b6:79:d0:39:03:75:e1:5e:f5:19:86:e8:81: d0:aa:cf:c8:7c:17:a6:8d:40:dc:06:95:aa:61:88: cb:99:45:a7:be:63:45:f0:f2:83:34:38:55:95:77: 54:a7:dd:a0:95:23:41:5c:11:65:b2:be:2e:a8:c5: b7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:EA:9D:60:3C:C1:FF:83:7D:3F:D3:BC:BD:10:81:A7:08:6C:74:E2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e700::/42 Signature Algorithm: sha256WithRSAEncryption a7:d5:9c:bb:16:8c:78:fa:32:c5:85:b4:13:a2:6a:a3:24:e7: 5c:ee:ab:ad:4f:bd:19:17:f6:62:fd:49:a0:5e:21:ca:53:1f: b4:ed:32:21:f9:95:8e:1b:d6:1b:1a:f0:f4:74:e9:46:02:d8: 93:fe:3d:84:56:c4:91:15:82:56:0e:3d:65:a4:03:72:7d:f6: c6:da:e6:bb:61:12:e2:69:50:e6:d1:a9:0c:09:00:6b:6a:8c: 1d:03:f9:09:42:9a:f0:16:0d:14:e6:e4:3c:a7:a8:0a:10:0e: 18:c0:6d:1b:a3:b8:a4:61:f2:e2:f9:54:54:34:48:f1:86:24: ec:3d:87:74:a5:2b:79:ba:a7:01:8c:aa:42:f9:18:23:0a:23: ef:8d:20:e1:de:c5:00:c5:3d:47:c6:3d:07:48:80:53:7f:69: 8d:01:4b:d8:d9:94:44:a2:3e:b3:a0:90:4e:fc:b8:14:87:d0: 81:ea:95:48:ad:62:5c:55:e3:ba:6e:6b:04:39:cb:57:97:ac: f1:39:42:4c:46:66:1d:90:24:5a:cb:bc:9b:b7:2b:a8:e2:f6: 7b:7c:9c:1f:58:6d:d1:25:c3:d8:41:1e:3d:ac:18:77:15:49: ca:4d:30:56:2b:14:85:00:aa:5e:ab:9a:6d:01:05:dd:8a:fb: d8:e2:f0:67 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVCSm7AY2yptrP4DNkOrOZT2xjwgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQyMDU0WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMmZkZmNkMTQ2ZmQxMWYyZDYyMDg1OTNjNmZiYTY5ZTlh ZGJhMjRhMTViOTdlOGJjMmQ5NTU4MmFiY2U5NTNiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC182P1obrV+oo7QAcI/NH8ud/fF6zagSb+Lsz+UabORlJ2 6j9U3938Z2K96oiXmg999Dp+lgQdSjyQB3u1/BCKySj93M99btn6F50PibRDPfDu L970R5GCqgYYyutiFN3TncA2AmdNLM9/BuqSF7p+QrGqRvbrHsNCeUusPCmKNpI5 x1s3Fg+nVDs4JLbH5VBgDUBsxs8+Mi8kLrSyFu5o3MRtulMxnSesC/pot7ea5X6f G3CN0lBINHrJUgWvME/Z3sBotnnQOQN14V71GYbogdCqz8h8F6aNQNwGlaphiMuZ Rae+Y0Xw8oM0OFWVd1Sn3aCVI0FcEWWyvi6oxbf3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUv+qdYDzB/4N9P9O8vRCBpwhsdOIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JmM2FlZmQ3LTE0NGEtNDIxMC04NTMyLWE3YjZlMDUzM2RkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75wAwDQYJKoZIhvcNAQELBQADggEBAKfVnLsWjHj6MsWFtBOiaqMk 51zuq61PvRkX9mL9SaBeIcpTH7TtMiH5lY4b1hsa8PR06UYC2JP+PYRWxJEVglYO PWWkA3J99sba5rthEuJpUObRqQwJAGtqjB0D+QlCmvAWDRTm5DynqAoQDhjAbRuj uKRh8uL5VFQ0SPGGJOw9h3SlK3m6pwGMqkL5GCMKI++NIOHexQDFPUfGPQdIgFN/ aY0BS9jZlESiPrOgkE78uBSH0IHqlUitYlxV47puawQ5y1eXrPE5QkxGZh2QJFrL vJu3K6ji9nt8nB9YbdElw9hBHj2sGHcVScpNMFYrFIUAql6rmm0BBd2K+9ji8Gc= -----END CERTIFICATE-----Generated at Fri Jun 12 05:51:09 2026 by rpki-client