$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c99349c6-2b1b-43c8-96ba-bc1bfecfd412.roa File: c99349c6-2b1b-43c8-96ba-bc1bfecfd412.roa (raw, json) Hash identifier: BIGu49MQLVUBpUf8AkzBZ1k0oOdAYKfN5eUDLzOzEd8= Subject key identifier: 18:51:45:80:6F:34:A8:B0:6C:E0:C3:28:76:D0:D8:7B:C9:71:C1:06 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0FEF81FD930460A555B6D3208D9C62AEA48B93CE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c99349c6-2b1b-43c8-96ba-bc1bfecfd412.roa Signing time: Tue 28 Apr 2026 20:32:09 +0000 ROA not before: Tue 28 Apr 2026 20:32:09 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f1:18::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 02 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ef:81:fd:93:04:60:a5:55:b6:d3:20:8d:9c:62:ae:a4:8b:93:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 28 20:32:09 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=65d085d2804b9b5d82408c42ad1d69e97c3fe0179a04637b693b56c8686a0729, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f8:e2:0b:da:81:a0:c0:b6:11:ad:f4:a0:70: 9f:4b:95:a0:1d:d9:48:45:2f:85:25:d6:e6:35:f9: c5:66:7c:25:4d:84:c1:d9:41:dc:15:1a:15:8c:93: 34:ab:39:36:5a:62:51:59:98:57:e2:31:21:66:0a: 3b:fd:64:c8:06:d2:32:40:8a:1a:d0:c8:a3:3f:4e: 12:4b:cc:ca:e9:10:5b:ff:3c:1d:fc:5f:03:1c:02: 99:bd:67:8e:18:9a:df:7c:05:4c:46:4b:07:4d:32: 28:bf:f9:45:56:59:0e:39:f9:30:5e:0f:25:89:a8: 93:13:b1:30:09:3f:20:13:55:ed:aa:33:d0:80:d5: 42:bd:9e:0c:1f:ce:8a:2b:4f:9f:1b:76:6d:f8:e2: c2:40:4e:8e:64:b7:75:98:cd:f5:f9:8e:00:4f:fe: 0d:31:2f:0d:a8:a6:ab:f1:cd:29:1e:72:4f:ad:4d: a5:3e:01:ea:58:e5:8c:bb:13:da:cb:42:70:29:2f: fc:01:17:e4:bb:92:66:1d:59:41:38:e4:13:04:7f: ec:1c:fc:57:31:0b:8e:2a:14:5a:d5:ff:03:6c:5e: 46:68:41:00:ea:54:b2:2a:65:52:17:b9:71:54:0d: 9c:92:58:65:4d:bf:1c:4f:99:21:f6:01:23:36:aa: 5d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:51:45:80:6F:34:A8:B0:6C:E0:C3:28:76:D0:D8:7B:C9:71:C1:06 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c99349c6-2b1b-43c8-96ba-bc1bfecfd412.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:18::/46 Signature Algorithm: sha256WithRSAEncryption 42:6a:0e:2c:79:a3:0f:3c:a2:0c:c5:dc:11:d3:6a:ec:9d:df: 8b:1e:f2:56:57:e8:2e:2c:13:26:88:89:11:4b:f9:e2:73:9c: 85:e1:f0:1e:48:40:78:90:d4:a6:2c:a5:20:8b:31:7d:63:32: 4d:c2:68:20:ec:ca:f6:be:86:00:73:64:8f:e3:f4:64:d7:76: f6:1d:d9:90:78:78:e5:34:a2:7a:a8:74:89:0a:a6:1e:e2:c1: b3:23:74:91:54:97:a3:a9:dd:42:c5:6e:92:09:f5:41:1d:b5: 6d:bc:b3:d5:1a:44:f9:49:26:64:9f:10:9f:af:6a:2d:39:5c: 02:ed:84:aa:1e:c6:76:49:16:9f:c3:a0:51:3d:ff:84:53:4b: 4f:f3:ad:4c:82:e3:39:d1:25:85:86:22:42:17:51:ba:be:c0: 2d:b2:45:cc:df:60:19:d9:ec:8f:5e:91:b2:5b:aa:45:3d:fa: 1f:ae:17:00:89:88:bd:41:49:b4:4b:1b:0e:8d:09:fc:07:fa: f7:23:2d:80:c5:f2:b7:48:6d:70:eb:f4:df:aa:d9:48:92:94: 85:1c:30:a1:36:42:a3:1a:22:71:be:c0:9b:6d:c9:b4:ea:75: 6d:f3:30:4d:67:02:ba:f1:e1:a6:87:4c:4f:6f:4e:65:78:bd: f1:e9:9f:57 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUD++B/ZMEYKVVttMgjZxirqSLk84wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDI4MjAzMjA5WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWQwODVkMjgwNGI5YjVkODI0MDhjNDJhZDFkNjllOTdj M2ZlMDE3OWEwNDYzN2I2OTNiNTZjODY4NmEwNzI5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDY+OIL2oGgwLYRrfSgcJ9LlaAd2UhFL4Ul1uY1+cVmfCVN hMHZQdwVGhWMkzSrOTZaYlFZmFfiMSFmCjv9ZMgG0jJAihrQyKM/ThJLzMrpEFv/ PB38XwMcApm9Z44Ymt98BUxGSwdNMii/+UVWWQ45+TBeDyWJqJMTsTAJPyATVe2q M9CA1UK9ngwfzoorT58bdm344sJATo5kt3WYzfX5jgBP/g0xLw2opqvxzSkeck+t TaU+AepY5Yy7E9rLQnApL/wBF+S7kmYdWUE45BMEf+wc/FcxC44qFFrV/wNsXkZo QQDqVLIqZVIXuXFUDZySWGVNvxxPmSH2ASM2ql0zAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGFFFgG80qLBs4MModtDYe8lxwQYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5OTM0OWM2LTJiMWItNDNjOC05NmJhLWJjMWJmZWNmZDQxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAPDxABgwDQYJKoZIhvcNAQELBQADggEBAEJqDix5ow88ogzF3BHTauyd 34se8lZX6C4sEyaIiRFL+eJznIXh8B5IQHiQ1KYspSCLMX1jMk3CaCDsyva+hgBz ZI/j9GTXdvYd2ZB4eOU0onqodIkKph7iwbMjdJFUl6Op3ULFbpIJ9UEdtW28s9Ua RPlJJmSfEJ+vai05XALthKoexnZJFp/DoFE9/4RTS0/zrUyC4znRJYWGIkIXUbq+ wC2yRczfYBnZ7I9ekbJbqkU9+h+uFwCJiL1BSbRLGw6NCfwH+vcjLYDF8rdIbXDr 9N+q2UiSlIUcMKE2QqMaInG+wJttybTqdW3zME1nArrx4aaHTE9vTmV4vfHpn1c= -----END CERTIFICATE-----Generated at Thu Apr 30 18:29:19 2026 by rpki-client