$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2b11e0f-0112-4c4e-8aa4-168788fd6aa7.roa File: d2b11e0f-0112-4c4e-8aa4-168788fd6aa7.roa (raw, json) Hash identifier: s4NhoWXuuoHW2hxZFKW0yH+1oBckdRwGH48b6vWCapk= Subject key identifier: 9C:A0:76:24:AE:13:65:11:A8:2B:14:8D:6F:CE:6B:AE:36:DE:38:DD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7284E1D1279711FA0FD6EFB422C49D24DB49C465 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2b11e0f-0112-4c4e-8aa4-168788fd6aa7.roa Signing time: Tue 19 May 2026 04:10:57 +0000 ROA not before: Tue 19 May 2026 04:10:57 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ea00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:84:e1:d1:27:97:11:fa:0f:d6:ef:b4:22:c4:9d:24:db:49:c4:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:57 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=3a8101d95caff0800142255fcd6a944f743a558e90a193cd0379d70d9fbd5723, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:81:4b:d3:33:53:98:1b:ed:1a:2b:63:a6:f6: a0:4c:44:53:43:9c:ec:7b:04:fe:53:de:16:e7:55: 6e:02:a4:75:27:b7:05:90:4e:60:cf:e7:74:c1:cc: e8:f7:fe:66:68:33:be:8d:ba:26:78:56:c3:7a:da: 55:06:41:97:52:61:a2:ca:a8:ff:99:28:c8:cb:8d: 90:11:ea:fa:60:59:0a:c1:ab:6b:bd:7a:e1:7f:7d: 3a:38:2b:9a:c3:39:e5:f5:d9:18:0c:55:20:73:8e: f8:75:6b:a2:81:3c:f7:bf:e5:8c:5f:83:49:a9:f6: ed:03:cf:25:41:32:97:44:bc:96:ae:9a:7b:70:52: 16:b1:11:b6:11:1e:c2:c5:ca:97:29:53:ce:4a:5b: a4:6a:59:ef:8b:89:39:f7:2a:e0:aa:8a:2e:24:90: 68:8f:d9:df:0d:a0:d6:ed:cc:bd:e9:82:d4:c5:95: 46:e1:08:4a:18:eb:7b:35:da:3c:2b:05:1c:04:16: 4e:ed:5b:68:ed:c3:9b:1f:b7:0e:d6:79:d4:85:31: 9d:ff:1c:10:03:d3:90:a7:8f:a6:6b:e5:89:16:1b: 1d:eb:67:eb:cc:e1:75:08:d2:7a:c9:aa:ad:14:33: 94:73:7b:3d:ce:80:2c:44:46:aa:ab:c3:6c:e9:26: c6:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:A0:76:24:AE:13:65:11:A8:2B:14:8D:6F:CE:6B:AE:36:DE:38:DD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2b11e0f-0112-4c4e-8aa4-168788fd6aa7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ea00::/40 Signature Algorithm: sha256WithRSAEncryption 71:9b:3a:3b:66:02:4c:5f:39:3a:95:b9:7a:2d:ac:8f:54:ce: 53:c5:d0:b6:7a:07:9c:d5:e0:e4:67:fe:fb:95:c1:63:b3:f3: 99:28:b7:46:e8:1e:ac:a4:99:2c:11:71:7a:f7:23:05:39:0f: 09:f0:1c:47:9b:de:17:3d:82:85:fa:45:11:8e:37:4a:bb:5f: 3b:db:a6:96:37:4e:37:f9:d7:73:94:90:41:c9:4f:89:23:f8: 91:37:33:84:49:8c:59:8b:64:b3:a9:c8:78:d7:9f:52:1c:3c: 03:9a:6e:dc:a7:7d:f3:19:d9:2e:fa:51:52:d7:62:f2:7c:a3: ce:60:a5:e8:96:14:ab:e7:39:a5:ca:9d:40:64:ce:cd:8a:a1: 86:53:e2:06:b6:67:47:dd:c6:f9:75:cc:98:94:2d:c9:c6:93: b7:28:09:d0:38:f6:14:e4:1e:91:e1:db:0d:22:44:f5:ce:30: c3:68:83:46:6e:33:79:25:41:d2:d7:3c:5c:66:5d:90:f7:1e: 17:54:4d:56:4d:e9:3e:f4:31:15:14:10:15:97:36:75:08:05: dc:5f:80:1d:da:8b:71:97:86:86:ca:cc:c5:62:d0:23:c9:5c: ac:37:37:f4:61:b8:b8:88:96:4c:0e:0b:24:ff:38:d9:55:b0: 9c:05:c2:f1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcoTh0SeXEfoP1u+0IsSdJNtJxGUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDU3WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTgxMDFkOTVjYWZmMDgwMDE0MjI1NWZjZDZhOTQ0Zjc0 M2E1NThlOTBhMTkzY2QwMzc5ZDcwZDlmYmQ1NzIzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJgUvTM1OYG+0aK2Om9qBMRFNDnOx7BP5T3hbnVW4CpHUn twWQTmDP53TBzOj3/mZoM76NuiZ4VsN62lUGQZdSYaLKqP+ZKMjLjZAR6vpgWQrB q2u9euF/fTo4K5rDOeX12RgMVSBzjvh1a6KBPPe/5Yxfg0mp9u0DzyVBMpdEvJau mntwUhaxEbYRHsLFypcpU85KW6RqWe+LiTn3KuCqii4kkGiP2d8NoNbtzL3pgtTF lUbhCEoY63s12jwrBRwEFk7tW2jtw5sftw7WedSFMZ3/HBAD05Cnj6Zr5YkWGx3r Z+vM4XUI0nrJqq0UM5Rzez3OgCxERqqrw2zpJsYJAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnKB2JK4TZRGoKxSNb85rrjbeON0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QyYjExZTBmLTAxMTItNGM0ZS04YWE0LTE2ODc4OGZkNmFhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76jANBgkqhkiG9w0BAQsFAAOCAQEAcZs6O2YCTF85OpW5ei2sj1TO U8XQtnoHnNXg5Gf++5XBY7PzmSi3RugerKSZLBFxevcjBTkPCfAcR5veFz2ChfpF EY43SrtfO9umljdON/nXc5SQQclPiSP4kTczhEmMWYtks6nIeNefUhw8A5pu3Kd9 8xnZLvpRUtdi8nyjzmCl6JYUq+c5pcqdQGTOzYqhhlPiBrZnR93G+XXMmJQtycaT tygJ0Dj2FOQekeHbDSJE9c4ww2iDRm4zeSVB0tc8XGZdkPceF1RNVk3pPvQxFRQQ FZc2dQgF3F+AHdqLcZeGhsrMxWLQI8lcrDc39GG4uIiWTA4LJP842VWwnAXC8Q== -----END CERTIFICATE-----Generated at Fri Jun 12 05:50:16 2026 by rpki-client