$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ce480e25-f1bf-4dbe-9001-c4977aeb303b.roa File: ce480e25-f1bf-4dbe-9001-c4977aeb303b.roa (raw, json) Hash identifier: gwWs+Ts+alL4RyYb5RyEl1EdquOdR3cipKQn1FHnNGc= Subject key identifier: 91:E3:72:62:75:3E:16:3C:26:1B:8D:D5:5E:09:9A:44:17:25:AD:DD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 51B5667F8DE4C0E9E5393FCA7CE7660DC352692D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ce480e25-f1bf-4dbe-9001-c4977aeb303b.roa Signing time: Mon 25 May 2026 00:00:29 +0000 ROA not before: Mon 25 May 2026 00:00:29 +0000 ROA not after: Sun 23 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:b5:66:7f:8d:e4:c0:e9:e5:39:3f:ca:7c:e7:66:0d:c3:52:69:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 25 00:00:29 2026 GMT Not After : Aug 23 23:59:59 2026 GMT Subject: serialNumber=94aae6475164c6d4e60622d4ecb195417a2620e5b96dcb14ff810c0f4981efbf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3d:17:17:e0:42:26:e6:50:be:59:af:e2:fc: 72:0d:cc:04:7e:a9:b2:13:b4:a5:e1:69:6c:30:e6: c4:dd:53:7b:e8:9d:70:c6:cd:0b:b7:b1:f9:7b:0c: 1b:fe:d2:1d:48:11:99:2c:22:c9:5d:c5:44:c9:5f: fb:66:2c:d8:b6:ac:40:81:36:7c:af:29:cf:ac:f4: 55:4e:7e:a1:e9:82:12:23:f2:9f:6b:2d:d8:5c:d0: 64:f7:10:59:d4:f7:ca:6b:1e:c8:1a:60:72:5c:58: ee:a9:f4:45:be:a3:19:a0:82:e9:8d:c3:e8:1f:5d: 4a:2e:c3:c2:54:99:88:f7:4a:4d:55:91:ee:d7:66: 76:de:a5:da:5a:70:0c:ee:37:16:85:51:4b:18:4d: 9c:bd:35:12:cc:00:78:47:8f:19:a1:00:fb:6d:05: 67:5a:fe:24:5c:24:d1:71:16:09:b4:a7:c1:dd:1c: 57:d2:f1:23:20:05:50:9f:26:5c:ba:9e:21:15:87: a6:5f:f8:f6:d9:15:2a:73:26:ec:67:a9:37:a5:14: 36:1b:4b:7f:cc:20:0a:a6:2f:78:46:08:20:83:0d: 35:bc:3f:02:a3:35:a9:08:58:8a:be:1b:37:d9:f4: 05:ca:1d:24:45:96:2b:9d:96:39:4c:d6:8c:03:39: ba:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E3:72:62:75:3E:16:3C:26:1B:8D:D5:5E:09:9A:44:17:25:AD:DD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ce480e25-f1bf-4dbe-9001-c4977aeb303b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f010::/44 Signature Algorithm: sha256WithRSAEncryption 3f:06:ac:a8:cc:33:88:ee:60:52:59:8b:49:04:25:0e:22:f5: b5:01:a2:45:97:70:c0:d8:57:0b:06:41:e9:06:a5:f6:bd:e5: aa:ff:cc:9e:09:81:77:3a:63:e0:b6:1e:1b:0c:f1:f3:48:e8: 7a:29:84:b2:fd:16:f3:f3:69:63:6e:42:60:d8:4f:34:be:22: dc:c1:e7:7c:2c:5c:c1:17:93:e6:6a:cb:9b:9e:a1:38:c6:db: b0:f9:6e:56:9b:84:15:27:92:5c:fa:c8:3f:83:03:90:2f:94: 82:b8:96:0b:e3:ff:79:1f:ff:22:86:bb:e5:2a:f2:0f:68:01: 7c:d5:f0:2d:86:43:32:e9:c4:1e:bb:62:2d:f6:ac:da:3a:ac: 05:c7:5e:8a:30:7c:7a:e0:12:38:1a:12:77:a8:1d:29:0e:59: 78:18:28:31:11:d6:72:4e:8b:bd:78:36:84:cd:88:62:54:f2: 65:a2:8f:50:24:18:8f:57:4c:5c:3c:ea:08:f6:80:56:9e:71: b6:78:54:e6:fe:d6:37:2c:d9:aa:f1:a3:1d:cc:fe:66:27:a4: 84:91:2c:b5:e8:d5:59:35:dc:36:ca:c8:f9:42:c0:f4:3a:8f: fe:14:30:c1:44:ba:fa:e3:c2:c3:2e:d9:54:2f:76:7e:a6:3e: 77:aa:81:e8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUbVmf43kwOnlOT/KfOdmDcNSaS0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTI1MDAwMDI5WhcNMjYwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NGFhZTY0NzUxNjRjNmQ0ZTYwNjIyZDRlY2IxOTU0MTdh MjYyMGU1Yjk2ZGNiMTRmZjgxMGMwZjQ5ODFlZmJmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCPRcX4EIm5lC+Wa/i/HINzAR+qbITtKXhaWww5sTdU3vo nXDGzQu3sfl7DBv+0h1IEZksIsldxUTJX/tmLNi2rECBNnyvKc+s9FVOfqHpghIj 8p9rLdhc0GT3EFnU98prHsgaYHJcWO6p9EW+oxmggumNw+gfXUouw8JUmYj3Sk1V ke7XZnbepdpacAzuNxaFUUsYTZy9NRLMAHhHjxmhAPttBWda/iRcJNFxFgm0p8Hd HFfS8SMgBVCfJly6niEVh6Zf+PbZFSpzJuxnqTelFDYbS3/MIAqmL3hGCCCDDTW8 PwKjNakIWIq+GzfZ9AXKHSRFliudljlM1owDOboVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkeNyYnU+FjwmG43VXgmaRBclrd0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NlNDgwZTI1LWYxYmYtNGRiZS05MDAxLWM0OTc3YWViMzAzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8BAwDQYJKoZIhvcNAQELBQADggEBAD8GrKjMM4juYFJZi0kEJQ4i 9bUBokWXcMDYVwsGQekGpfa95ar/zJ4JgXc6Y+C2HhsM8fNI6HophLL9FvPzaWNu QmDYTzS+ItzB53wsXMEXk+Zqy5ueoTjG27D5blabhBUnklz6yD+DA5AvlIK4lgvj /3kf/yKGu+Uq8g9oAXzV8C2GQzLpxB67Yi32rNo6rAXHXoowfHrgEjgaEneoHSkO WXgYKDER1nJOi714NoTNiGJU8mWij1AkGI9XTFw86gj2gFaecbZ4VOb+1jcs2arx ox3M/mYnpISRLLXo1Vk13DbKyPlCwPQ6j/4UMMFEuvrjwsMu2VQvdn6mPneqgeg= -----END CERTIFICATE-----Generated at Fri Jun 12 05:52:45 2026 by rpki-client