$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa File: ef295804-89a7-4ec3-826e-73e32733dc02.roa (raw, json) Hash identifier: aSGPgjymZC8ZYSEGCc6WJsk8N6n4ixZxvyA3TtqQ2Tk= Subject key identifier: 82:AF:D9:62:66:ED:A9:A9:FA:F5:3E:F5:2F:73:07:37:C9:95:00:60 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 372E4971AADC75DC2339982FCC4166D495CCBFB2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa Signing time: Tue 19 May 2026 04:20:09 +0000 ROA not before: Tue 19 May 2026 04:20:09 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 28 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:2e:49:71:aa:dc:75:dc:23:39:98:2f:cc:41:66:d4:95:cc:bf:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:20:09 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=f15f7641728211b2df2b79325b8158964769e99bff1c9a0ab71c2d024bd97993, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6f:0f:86:13:e2:ad:20:91:7a:3b:d5:b5:65: 5b:ab:b1:c2:c4:6f:15:98:0c:0d:1b:d6:38:10:1f: bf:84:7c:4a:e9:22:b2:0e:3b:90:d9:89:7e:aa:5e: 3d:e1:1a:80:ea:bd:56:eb:15:a2:59:49:51:bd:54: 48:f8:1c:07:1b:28:52:81:66:fe:e7:1a:40:21:85: 03:54:76:c6:60:e5:db:21:d8:7b:63:a3:fa:97:bb: 8c:83:f9:36:7c:ec:7c:02:1f:3a:ac:f5:72:1e:dd: 33:c2:56:b6:16:86:d8:09:17:da:0f:61:82:93:bf: 9f:43:07:4f:48:53:86:33:ec:af:b4:14:4d:b8:e7: d4:19:16:01:0c:41:4a:7e:18:f0:18:4e:41:ac:38: 8c:cf:93:75:92:fc:bf:f0:c2:3b:d5:4d:25:71:28: b9:cb:e7:60:15:9e:42:52:03:12:e7:bb:b8:47:6e: 0f:b3:59:3d:cb:3a:27:7a:bc:a8:e0:6d:30:f3:b8: 3c:1c:80:99:08:63:48:e8:8d:1c:9e:a5:74:2a:00: 74:05:1e:f4:9d:32:3c:a8:b3:8a:62:47:09:0a:d8: 55:ab:fe:a0:74:47:87:cd:c1:13:f4:34:09:27:1d: a8:6f:b9:da:09:48:ef:f4:b6:72:14:5d:9a:6e:5f: d7:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:AF:D9:62:66:ED:A9:A9:FA:F5:3E:F5:2F:73:07:37:C9:95:00:60 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption a1:12:3f:ca:93:c3:74:13:cc:f1:e6:f5:8a:8b:78:7e:93:cb: 09:6b:ec:39:b6:7e:40:93:3c:ae:29:27:0a:84:44:1c:42:f6: a1:36:e9:57:d8:79:d8:54:2c:84:dd:78:50:8e:ef:ab:c8:90: 41:b7:3e:d1:0b:0a:66:33:23:d0:07:30:74:99:cd:f0:e7:35: 6c:4c:34:44:b8:34:24:53:f5:a6:6d:d2:6b:04:ed:92:b2:c6: 89:96:00:ec:ee:b9:fe:21:3f:0a:a1:16:9f:90:6a:94:1b:6a: 13:ae:3e:29:81:99:d7:61:5b:c0:c5:c5:c6:bb:47:9b:22:4c: b1:be:e1:17:ac:7c:34:8c:f6:38:78:c6:d3:b2:c6:9f:1c:7b: 4b:03:b5:1c:81:4c:a9:29:8c:8f:e3:db:03:15:b9:10:00:6b: b6:7d:18:ba:99:43:d2:7f:f3:c2:56:f4:84:af:98:51:7e:b8: 56:49:79:b2:73:ae:14:6d:19:3f:c2:c6:59:a1:80:93:c2:78: 89:ba:3d:17:3a:66:b8:09:32:5b:6b:5e:fd:d8:ab:9d:84:17: 22:88:81:0e:b0:0d:2e:89:93:a6:4d:1d:51:94:05:7c:dd:65: 08:86:e5:9c:b4:fb:09:c7:3f:44:7d:f6:bf:f3:7c:1f:43:93: 60:73:0b:50 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNy5JcarcddwjOZgvzEFm1JXMv7IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQyMDA5WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTVmNzY0MTcyODIxMWIyZGYyYjc5MzI1YjgxNTg5NjQ3 NjllOTliZmYxYzlhMGFiNzFjMmQwMjRiZDk3OTkzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdbw+GE+KtIJF6O9W1ZVurscLEbxWYDA0b1jgQH7+EfErp IrIOO5DZiX6qXj3hGoDqvVbrFaJZSVG9VEj4HAcbKFKBZv7nGkAhhQNUdsZg5dsh 2Htjo/qXu4yD+TZ87HwCHzqs9XIe3TPCVrYWhtgJF9oPYYKTv59DB09IU4Yz7K+0 FE2459QZFgEMQUp+GPAYTkGsOIzPk3WS/L/wwjvVTSVxKLnL52AVnkJSAxLnu7hH bg+zWT3LOid6vKjgbTDzuDwcgJkIY0jojRyepXQqAHQFHvSdMjyos4piRwkK2FWr /qB0R4fNwRP0NAknHahvudoJSO/0tnIUXZpuX9dZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgq/ZYmbtqan69T71L3MHN8mVAGAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VmMjk1ODA0LTg5YTctNGVjMy04MjZlLTczZTMyNzMzZGMwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAKESP8qTw3QTzPHm9YqLeH6T ywlr7Dm2fkCTPK4pJwqERBxC9qE26VfYedhULITdeFCO76vIkEG3PtELCmYzI9AH MHSZzfDnNWxMNES4NCRT9aZt0msE7ZKyxomWAOzuuf4hPwqhFp+QapQbahOuPimB mddhW8DFxca7R5siTLG+4ResfDSM9jh4xtOyxp8ce0sDtRyBTKkpjI/j2wMVuRAA a7Z9GLqZQ9J/88JW9ISvmFF+uFZJebJzrhRtGT/CxlmhgJPCeIm6PRc6ZrgJMltr Xv3Yq52EFyKIgQ6wDS6Jk6ZNHVGUBXzdZQiG5Zy0+wnHP0R99r/zfB9Dk2BzC1A= -----END CERTIFICATE-----Generated at Wed May 27 18:31:34 2026 by rpki-client