$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d5bf98f4-844c-4500-8770-5d12c1bcf3a5.roa File: d5bf98f4-844c-4500-8770-5d12c1bcf3a5.roa (raw, json) Hash identifier: v4dSZuFlbMHhu8GZUZJoZn3ixyFSsn/mHwVA148niKM= Subject key identifier: B6:D2:79:5E:4A:2A:BD:4B:8C:58:81:E0:85:50:99:68:6B:B6:0E:5A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 68D3C1B788E8476F160DF512C61808425B59009F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d5bf98f4-844c-4500-8770-5d12c1bcf3a5.roa Signing time: Mon 13 Apr 2026 20:21:52 +0000 ROA not before: Mon 13 Apr 2026 20:21:52 +0000 ROA not after: Sun 12 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6023::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 15 Apr 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d3:c1:b7:88:e8:47:6f:16:0d:f5:12:c6:18:08:42:5b:59:00:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 13 20:21:52 2026 GMT Not After : Jul 12 23:59:59 2026 GMT Subject: serialNumber=3a51045f9d63760f3315da7cc2f25460abd352ef41c6a82b221ed5157a4d82b5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:24:be:d1:57:33:4a:7f:17:7d:48:e8:d7:82: 9f:8d:a2:27:62:51:2e:e1:93:3a:49:d1:8e:6e:f8: 99:5e:fc:55:a7:7b:73:6d:30:b7:2b:f7:9e:fd:a8: 8c:bc:b1:f1:4c:ce:e8:70:32:7c:0e:b8:0c:8c:d9: 13:27:47:e8:80:9a:e4:16:24:2e:16:d4:79:36:09: a2:74:f1:51:13:da:a9:42:01:f7:9b:6f:7f:f4:e5: c3:64:e4:f9:24:72:55:ec:7a:7d:2d:76:98:64:13: 76:6b:58:36:da:95:d5:06:82:f8:cd:97:01:21:9a: 42:75:50:d2:96:7a:52:31:cb:9d:ef:e3:e6:c2:18: ce:3b:fa:61:3a:3e:6b:16:ea:21:ad:45:47:29:6c: 8e:7a:a6:bf:d2:9e:8c:f0:60:e4:70:e1:59:0a:11: c1:bd:85:40:f5:51:48:c1:03:1a:8b:d2:5e:e5:e9: 6e:bd:4e:16:5d:b5:93:6b:60:94:be:dc:f5:91:0c: a9:b2:b1:0d:a6:21:cb:4b:73:87:ac:8a:4c:ea:25: be:7f:8a:6b:e1:f0:6d:1b:77:4c:97:ce:ad:7c:fe: 55:32:f0:59:f6:2f:97:31:da:68:dc:73:e5:e8:dc: f2:22:15:c0:95:18:a1:0f:13:70:39:90:67:81:0b: 2f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:D2:79:5E:4A:2A:BD:4B:8C:58:81:E0:85:50:99:68:6B:B6:0E:5A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d5bf98f4-844c-4500-8770-5d12c1bcf3a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6023::/48 Signature Algorithm: sha256WithRSAEncryption 22:ec:6f:bc:ea:8a:40:21:d8:ae:ad:b6:ce:4a:c9:5b:d1:be: ea:6a:64:32:09:95:ee:0b:7f:a0:fb:fa:34:f0:24:a9:ae:0c: 9c:dc:52:b9:5b:3a:5f:a5:c5:a9:26:09:bd:d3:54:4b:68:a0: 3e:d8:da:fe:89:23:f3:d7:30:74:65:58:a2:79:50:d3:ff:34: a5:cc:bb:fb:01:19:b8:0e:da:43:4b:24:0e:6b:06:fb:48:27: 0b:ae:fa:ce:c6:c9:57:83:55:44:76:d4:4e:c9:13:a0:61:07: 58:28:47:37:52:1d:44:8e:d8:f5:8e:59:03:2c:84:66:2a:44: a0:0d:97:43:80:3d:9f:bc:03:f1:78:dd:26:0a:a6:75:65:b3: 66:09:d2:91:a4:f4:00:40:fd:dd:01:22:59:20:19:52:27:03: 4d:7e:5d:f4:11:df:eb:76:15:34:7b:05:55:44:99:e7:a4:79: 33:b5:a3:15:81:6f:13:c4:eb:1d:83:a1:e3:6d:b6:e6:d8:78: 48:19:72:a6:2c:b7:ba:b1:40:cb:4e:60:ca:ba:3a:31:bd:2b: dd:1b:cd:9a:1a:3f:fb:8b:44:b0:04:d0:13:c8:df:be:89:38: 5a:86:d5:b8:a2:5f:b2:11:2a:54:f3:a9:0d:fc:26:98:ec:ac: 96:c6:dd:f4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaNPBt4joR28WDfUSxhgIQltZAJ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDEzMjAyMTUyWhcNMjYwNzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTUxMDQ1ZjlkNjM3NjBmMzMxNWRhN2NjMmYyNTQ2MGFi ZDM1MmVmNDFjNmE4MmIyMjFlZDUxNTdhNGQ4MmI1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoJL7RVzNKfxd9SOjXgp+NoidiUS7hkzpJ0Y5u+Jle/FWn e3NtMLcr9579qIy8sfFMzuhwMnwOuAyM2RMnR+iAmuQWJC4W1Hk2CaJ08VET2qlC Afebb3/05cNk5PkkclXsen0tdphkE3ZrWDbaldUGgvjNlwEhmkJ1UNKWelIxy53v 4+bCGM47+mE6PmsW6iGtRUcpbI56pr/SnozwYORw4VkKEcG9hUD1UUjBAxqL0l7l 6W69ThZdtZNrYJS+3PWRDKmysQ2mIctLc4esikzqJb5/imvh8G0bd0yXzq18/lUy 8Fn2L5cx2mjcc+Xo3PIiFcCVGKEPE3A5kGeBCy+jAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUttJ5XkoqvUuMWIHghVCZaGu2DlowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Q1YmY5OGY0LTg0NGMtNDUwMC04NzcwLTVkMTJjMWJjZjNhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYCMwDQYJKoZIhvcNAQELBQADggEBACLsb7zqikAh2K6tts5KyVvR vupqZDIJle4Lf6D7+jTwJKmuDJzcUrlbOl+lxakmCb3TVEtooD7Y2v6JI/PXMHRl WKJ5UNP/NKXMu/sBGbgO2kNLJA5rBvtIJwuu+s7GyVeDVUR21E7JE6BhB1goRzdS HUSO2PWOWQMshGYqRKANl0OAPZ+8A/F43SYKpnVls2YJ0pGk9ABA/d0BIlkgGVIn A01+XfQR3+t2FTR7BVVEmeekeTO1oxWBbxPE6x2DoeNttubYeEgZcqYst7qxQMtO YMq6OjG9K90bzZoaP/uLRLAE0BPI376JOFqG1biiX7IRKlTzqQ38JpjsrJbG3fQ= -----END CERTIFICATE-----Generated at Tue Apr 14 13:09:01 2026 by rpki-client