$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa File: d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa (raw, json) Hash identifier: Evoa0sMyKAJTeM3UDjUjDCjU1JSgGFu/XoMpF0HPnBQ= Subject key identifier: 61:6A:5A:36:4D:DF:D6:FD:FC:B9:7C:B3:EC:7B:3B:8D:9B:E3:E7:89 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 37E3BD6BB3EB5C20816BD1FB4309D05A149D9ECC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa Signing time: Mon 27 Apr 2026 00:30:09 +0000 ROA not before: Mon 27 Apr 2026 00:30:09 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 28 Apr 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e3:bd:6b:b3:eb:5c:20:81:6b:d1:fb:43:09:d0:5a:14:9d:9e:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 27 00:30:09 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=faf82df79db0195435ae53c29e243f659de2c8ae171c6cbe99ae74ae392c2ecb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:76:94:15:b3:0e:ae:3f:22:74:e8:0b:fd:b2: 1e:8d:2d:56:a8:9d:6f:43:ec:da:4c:9f:46:43:be: a0:0f:8a:b9:47:c7:f1:8a:28:a7:1c:94:9e:61:3e: 5d:0b:13:7f:0a:40:65:24:09:26:66:cb:3e:5f:f0: 05:6e:3e:54:82:89:db:ea:5b:61:a1:cf:30:2a:59: cc:f9:47:b2:fb:bf:37:e4:d3:47:af:67:4f:4a:c1: 3d:e2:2d:c6:fc:1c:e1:3a:8b:48:e1:93:fa:c7:ba: 5d:24:75:a6:ad:36:df:e8:14:71:ff:78:85:eb:d8: 5b:53:72:b1:90:03:f7:eb:4a:8b:9a:9a:e2:ab:bd: 5c:0c:64:31:d2:dc:55:16:75:60:55:8c:d5:51:73: 8d:ad:ce:3e:82:e7:5f:a8:ee:2a:0c:06:1f:b5:59: cf:83:b5:9d:08:fb:eb:70:92:e0:2f:58:3b:8f:82: b7:dc:f5:a1:d2:ea:56:f8:e7:11:92:aa:57:b1:39: 9b:5d:00:ad:a6:cd:44:ef:3a:c9:e5:d9:fa:ef:98: 7d:73:95:1e:bf:68:a3:d6:fe:dd:15:34:77:a6:ed: f3:67:72:05:2d:d2:3f:d8:78:3c:5a:80:45:3d:b7: 1d:14:a6:e4:a3:fd:cd:28:fb:1e:cb:4b:bc:ad:18: a1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:6A:5A:36:4D:DF:D6:FD:FC:B9:7C:B3:EC:7B:3B:8D:9B:E3:E7:89 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4141::/48 Signature Algorithm: sha256WithRSAEncryption 53:65:f6:13:b6:91:d3:bf:d0:52:1e:76:5d:5a:ab:cb:8c:00: 8a:b2:f2:6c:f9:99:e0:67:7d:fa:67:4e:39:27:1f:12:f7:a4: 52:f2:c8:15:ab:9d:74:b3:0d:fb:03:2e:0a:cc:c3:33:65:d3: 5f:7f:ec:35:0c:8f:fd:dd:47:30:43:1b:ef:28:22:dd:86:c0: 3c:ff:1a:73:29:46:e7:f2:94:fd:45:bc:0f:8c:98:05:33:59: 79:d3:59:36:45:02:82:40:94:e0:08:fe:0e:b2:bd:de:8a:eb: ab:ec:d2:06:fe:d1:b4:af:f5:d2:1f:53:a7:3d:78:29:c7:85: a9:db:76:38:92:2f:ce:25:fd:1b:22:76:11:b0:9f:aa:86:c0: b7:26:ea:36:b6:b5:1c:df:93:19:a9:e9:dc:45:60:cf:20:d1: ba:5b:45:51:68:e0:3b:7b:09:59:41:c4:18:d0:53:e8:d4:27: 75:79:9c:5c:2f:8d:e2:69:da:df:39:fa:d4:6f:6f:23:62:5c: a0:7b:36:3f:80:e0:87:c4:ac:43:e1:4a:43:54:bc:7e:d3:2a: 57:82:43:41:4b:88:cd:b0:6d:49:9e:e5:31:4c:aa:9a:0c:fb: 1c:7c:d8:a5:be:22:58:20:76:76:3e:70:ab:b8:90:89:61:77: 8f:f7:fc:6f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUN+O9a7PrXCCBa9H7QwnQWhSdnswwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDI3MDAzMDA5WhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYWY4MmRmNzlkYjAxOTU0MzVhZTUzYzI5ZTI0M2Y2NTlk ZTJjOGFlMTcxYzZjYmU5OWFlNzRhZTM5MmMyZWNiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHdpQVsw6uPyJ06Av9sh6NLVaonW9D7NpMn0ZDvqAPirlH x/GKKKcclJ5hPl0LE38KQGUkCSZmyz5f8AVuPlSCidvqW2GhzzAqWcz5R7L7vzfk 00evZ09KwT3iLcb8HOE6i0jhk/rHul0kdaatNt/oFHH/eIXr2FtTcrGQA/frSoua muKrvVwMZDHS3FUWdWBVjNVRc42tzj6C51+o7ioMBh+1Wc+DtZ0I++twkuAvWDuP grfc9aHS6lb45xGSqlexOZtdAK2mzUTvOsnl2frvmH1zlR6/aKPW/t0VNHem7fNn cgUt0j/YeDxagEU9tx0UpuSj/c0o+x7LS7ytGKGPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYWpaNk3f1v38uXyz7Hs7jZvj54kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QyZTNjOTllLTNlMDMtNDExNS04NTZiLWIyNWQ3ZTk3YzRmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUEwDQYJKoZIhvcNAQELBQADggEBAFNl9hO2kdO/0FIedl1aq8uM AIqy8mz5meBnffpnTjknHxL3pFLyyBWrnXSzDfsDLgrMwzNl019/7DUMj/3dRzBD G+8oIt2GwDz/GnMpRufylP1FvA+MmAUzWXnTWTZFAoJAlOAI/g6yvd6K66vs0gb+ 0bSv9dIfU6c9eCnHhanbdjiSL84l/RsidhGwn6qGwLcm6ja2tRzfkxmp6dxFYM8g 0bpbRVFo4Dt7CVlBxBjQU+jUJ3V5nFwvjeJp2t85+tRvbyNiXKB7Nj+A4IfErEPh SkNUvH7TKleCQ0FLiM2wbUme5TFMqpoM+xx82KW+IlggdnY+cKu4kIlhd4/3/G8= -----END CERTIFICATE-----Generated at Mon Apr 27 15:31:15 2026 by rpki-client