$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa File: da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa (raw, json) Hash identifier: ZgBUvyjhumf64ZfExVrXIENmyCbzKbveVl1lyIQdOX0= Subject key identifier: 98:2A:5C:5B:E6:89:31:14:8B:79:AC:BF:D6:FF:61:DB:89:B5:76:29 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 486B3A6D620C61EC880951AA08F488300D3357F0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa Signing time: Tue 19 May 2026 04:20:04 +0000 ROA not before: Tue 19 May 2026 04:20:04 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:6b:3a:6d:62:0c:61:ec:88:09:51:aa:08:f4:88:30:0d:33:57:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:20:04 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=d1c33c28b39bc06822f23671aeb7143878aeac9f744628d23a2b09c56402916a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ed:f9:46:f3:66:68:ea:75:97:5e:6e:4b:01: ed:54:d4:a6:20:b3:a9:81:96:3d:39:5b:0b:f3:2f: b4:b2:6d:2e:ee:c4:e1:68:d4:f7:2b:10:2b:9e:ec: c5:11:10:9b:a5:88:ea:db:cb:8d:0a:bd:2c:c1:39: ae:41:fc:d1:64:73:ba:df:9f:56:9f:b0:20:88:ec: 77:78:ac:a0:46:85:b1:a8:bb:c8:b5:d9:60:8f:fa: 22:7f:a6:6a:2e:fb:c7:d1:97:9e:8d:cb:75:d7:30: 39:6a:26:a2:6a:ea:2d:5f:c0:6e:8c:ac:0e:a8:ee: a8:f9:de:dd:4a:89:ab:24:96:64:ca:01:d4:d2:95: 5f:7c:26:3b:08:b5:c4:a5:0a:46:53:32:4f:0a:8a: a1:b7:eb:dd:53:96:b8:37:f3:36:f9:c7:8c:99:b9: 23:fd:65:9d:d7:9a:ae:65:6d:b7:52:50:d1:db:af: 5c:36:86:e5:96:50:2d:16:a5:cc:d6:71:a8:53:b0: 1e:75:1a:c0:94:74:66:54:5e:c0:14:a8:99:64:85: a4:6f:cf:4a:02:73:a5:ae:cf:94:1e:98:9e:11:b2: 7d:30:45:04:db:67:61:60:bd:e1:bf:ca:3e:19:31: 18:11:d1:b7:c6:58:0c:af:6e:6e:b1:b6:11:2d:23: 2e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:2A:5C:5B:E6:89:31:14:8B:79:AC:BF:D6:FF:61:DB:89:B5:76:29 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption 88:98:4f:e2:6b:b8:86:4c:61:ad:75:96:40:cc:3a:b2:3c:18: 37:4a:3d:e0:6a:68:1f:cc:85:9e:a6:58:82:db:2a:8b:b9:49: 80:89:8e:90:43:33:c6:7a:1b:74:49:90:e0:99:9d:aa:24:8e: d4:1e:ef:2b:0f:14:05:f6:a3:44:b9:dd:93:b1:11:60:63:62: 4a:4e:e2:d9:65:9a:bc:fd:dc:bb:8c:7d:20:f3:e1:7e:b6:f9: 9a:82:97:df:4d:82:6f:c8:80:b0:bf:50:e2:36:04:89:cf:c8: 08:7a:6d:e2:c8:5d:f8:b8:32:26:72:5a:28:79:c4:1d:87:63: 20:9c:4c:b5:25:ed:02:b7:22:e2:31:12:4b:17:91:d6:c9:2a: d0:e4:dd:e2:5a:ae:e3:4e:24:6b:11:fb:08:69:7e:64:d4:3f: 4a:f8:b1:69:8f:05:d6:c8:97:09:27:1a:87:58:7a:8c:a2:8d: a9:b3:9e:81:4b:04:63:99:a9:22:b2:1b:62:26:ef:7c:14:32: a1:54:cd:5c:e4:f9:e6:28:e1:66:72:9f:53:df:94:3f:bb:4e: a5:63:7d:c4:d1:bd:27:09:d8:97:93:a9:57:1a:37:89:6b:3c: 27:f6:8b:c9:24:9e:5b:15:b0:d0:06:b4:98:99:f9:4b:c3:2b: 90:69:4b:bc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSGs6bWIMYeyICVGqCPSIMA0zV/AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQyMDA0WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWMzM2MyOGIzOWJjMDY4MjJmMjM2NzFhZWI3MTQzODc4 YWVhYzlmNzQ0NjI4ZDIzYTJiMDljNTY0MDI5MTZhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/7flG82Zo6nWXXm5LAe1U1KYgs6mBlj05WwvzL7SybS7u xOFo1PcrECue7MUREJuliOrby40KvSzBOa5B/NFkc7rfn1afsCCI7Hd4rKBGhbGo u8i12WCP+iJ/pmou+8fRl56Ny3XXMDlqJqJq6i1fwG6MrA6o7qj53t1KiasklmTK AdTSlV98JjsItcSlCkZTMk8KiqG3691Tlrg38zb5x4yZuSP9ZZ3Xmq5lbbdSUNHb r1w2huWWUC0WpczWcahTsB51GsCUdGZUXsAUqJlkhaRvz0oCc6Wuz5QemJ4Rsn0w RQTbZ2FgveG/yj4ZMRgR0bfGWAyvbm6xthEtIy41AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmCpcW+aJMRSLeay/1v9h24m1dikwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMGQwZjFmLWY4MmQtNDdiYi05YWM3LWVlMDlhNTFiM2YyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBAIiYT+JruIZMYa11lkDMOrI8 GDdKPeBqaB/MhZ6mWILbKou5SYCJjpBDM8Z6G3RJkOCZnaokjtQe7ysPFAX2o0S5 3ZOxEWBjYkpO4tllmrz93LuMfSDz4X62+ZqCl99Ngm/IgLC/UOI2BInPyAh6beLI Xfi4MiZyWih5xB2HYyCcTLUl7QK3IuIxEksXkdbJKtDk3eJaruNOJGsR+whpfmTU P0r4sWmPBdbIlwknGodYeoyijamznoFLBGOZqSKyG2Im73wUMqFUzVzk+eYo4WZy n1PflD+7TqVjfcTRvScJ2JeTqVcaN4lrPCf2i8kknlsVsNAGtJiZ+UvDK5BpS7w= -----END CERTIFICATE-----Generated at Fri Jun 12 05:51:13 2026 by rpki-client