$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c49749c5-4263-443f-a5d1-f0fc1a27edc1.roa File: c49749c5-4263-443f-a5d1-f0fc1a27edc1.roa (raw, json) Hash identifier: Gk4JTB9W8ka/y5h2ldW1t3q/lp3Fr3NmAGKGhOcFkcE= Subject key identifier: 5B:CC:90:87:CA:D2:75:14:3C:1E:B4:87:BE:B1:F6:86:26:1F:56:8C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 23D2DDE94728CDBD74A7AEBD875947DB7AAE1E65 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c49749c5-4263-443f-a5d1-f0fc1a27edc1.roa Signing time: Wed 20 May 2026 00:40:09 +0000 ROA not before: Wed 20 May 2026 00:40:09 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8801::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d2:dd:e9:47:28:cd:bd:74:a7:ae:bd:87:59:47:db:7a:ae:1e:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 00:40:09 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=e52a6ea6c43b2658824d33655c388c145d6bb2dd8222b47d128c5942042bc5f7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ed:9c:ae:b4:02:58:68:4e:7d:cc:15:c2:d8: 1e:be:40:e1:1b:80:3c:96:a4:a5:41:a8:61:67:b3: a5:c0:ca:cc:77:82:ae:79:55:5c:cb:3a:c1:3f:31: 9c:8d:c2:0b:03:83:d0:67:40:af:ac:a1:c9:31:f3: 62:89:f5:8f:b9:ab:7c:39:6b:e4:f4:00:14:99:a2: 18:cf:38:38:82:66:a9:75:5b:d6:95:b8:a9:12:fe: 5d:c1:bc:9a:9d:18:29:cc:58:bd:b1:35:3c:53:b5: 07:63:ff:3b:9c:7e:dd:c6:67:42:11:a0:6b:5a:05: 60:e3:74:41:0e:9f:a7:8a:c4:84:41:96:ae:71:e9: 39:3c:ed:ab:66:7d:6e:b7:54:4f:fa:77:52:98:74: 14:58:8f:29:5b:be:22:96:74:46:c4:4c:97:4d:f3: 28:05:11:df:89:e3:58:0b:81:db:5e:65:ee:e2:23: cc:2e:16:96:63:01:9c:f2:02:69:34:f7:36:f5:06: d3:d4:bd:10:31:6c:95:ce:d7:89:21:fc:6c:21:80: 7e:a1:30:4e:67:15:e5:11:ff:d2:26:e9:90:a9:20: 65:65:e9:b9:6c:13:b3:10:90:a8:ae:c5:03:fc:66: a8:f1:55:2f:8a:59:5f:f7:c5:80:78:1f:54:dd:ea: 88:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:CC:90:87:CA:D2:75:14:3C:1E:B4:87:BE:B1:F6:86:26:1F:56:8C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c49749c5-4263-443f-a5d1-f0fc1a27edc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8801::/48 Signature Algorithm: sha256WithRSAEncryption 8b:cd:5c:68:2a:2b:bf:50:12:45:6a:31:ae:ae:78:4c:58:bd: a6:14:03:60:84:a0:8f:22:d6:f2:b3:2d:c0:89:57:d3:d9:7a: c9:aa:7e:c1:81:c7:74:b9:f2:46:fd:43:be:47:5a:5c:f3:d2: ec:91:08:cd:1d:30:a3:af:95:3b:10:3e:69:ab:13:50:7a:03: d0:b3:f5:99:68:6e:9b:b5:1f:aa:1d:14:e4:78:9f:27:6f:f1: bb:a0:b5:2a:d1:d1:67:ba:ae:85:6b:d1:61:d2:ce:01:0b:4a: 2f:fc:a1:50:8f:68:43:3e:19:59:6e:5b:13:0e:be:1b:c4:5c: 90:fc:67:4a:f6:f7:eb:30:0b:e5:a3:e3:37:3f:a1:b6:6a:de: c3:15:01:98:d9:c9:bd:01:d4:75:97:d2:ea:27:f7:5b:a4:49: 7f:de:45:f7:30:49:8f:95:73:fb:f4:4c:bc:3c:a6:a1:ad:b1: 64:fd:c3:8b:98:6f:5d:1e:39:10:03:2f:62:cd:bc:43:06:b0: 6e:23:8c:4c:13:8a:b6:e1:72:cc:e0:89:53:7f:68:af:53:ae: 5b:96:6a:ef:bd:ab:bc:82:70:a8:17:6b:d5:58:6a:d3:70:f1: ce:56:72:9b:2f:45:79:9b:b9:cc:f1:45:64:6a:c2:7f:c8:b4: ea:4b:2e:39 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI9Ld6Ucozb10p669h1lH23quHmUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTIwMDA0MDA5WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTJhNmVhNmM0M2IyNjU4ODI0ZDMzNjU1YzM4OGMxNDVk NmJiMmRkODIyMmI0N2QxMjhjNTk0MjA0MmJjNWY3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo7ZyutAJYaE59zBXC2B6+QOEbgDyWpKVBqGFns6XAysx3 gq55VVzLOsE/MZyNwgsDg9BnQK+sockx82KJ9Y+5q3w5a+T0ABSZohjPODiCZql1 W9aVuKkS/l3BvJqdGCnMWL2xNTxTtQdj/zucft3GZ0IRoGtaBWDjdEEOn6eKxIRB lq5x6Tk87atmfW63VE/6d1KYdBRYjylbviKWdEbETJdN8ygFEd+J41gLgdteZe7i I8wuFpZjAZzyAmk09zb1BtPUvRAxbJXO14kh/GwhgH6hME5nFeUR/9Im6ZCpIGVl 6blsE7MQkKiuxQP8ZqjxVS+KWV/3xYB4H1Td6ognAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUW8yQh8rSdRQ8HrSHvrH2hiYfVowwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M0OTc0OWM1LTQyNjMtNDQzZi1hNWQxLWYwZmMxYTI3ZWRjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiAEwDQYJKoZIhvcNAQELBQADggEBAIvNXGgqK79QEkVqMa6ueExY vaYUA2CEoI8i1vKzLcCJV9PZesmqfsGBx3S58kb9Q75HWlzz0uyRCM0dMKOvlTsQ PmmrE1B6A9Cz9Zlobpu1H6odFOR4nydv8bugtSrR0We6roVr0WHSzgELSi/8oVCP aEM+GVluWxMOvhvEXJD8Z0r29+swC+Wj4zc/obZq3sMVAZjZyb0B1HWX0uon91uk SX/eRfcwSY+Vc/v0TLw8pqGtsWT9w4uYb10eORADL2LNvEMGsG4jjEwTirbhcszg iVN/aK9TrluWau+9q7yCcKgXa9VYatNw8c5WcpsvRXmbuczxRWRqwn/ItOpLLjk= -----END CERTIFICATE-----Generated at Fri Jun 12 05:54:09 2026 by rpki-client