$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa File: f30a276d-715e-46ee-8158-fd4576a10978.roa (raw, json) Hash identifier: HRtnVnHYeHIzABqg/kCxvpvhnBImTXniKKjZLs3Iugw= Subject key identifier: 28:0B:EA:49:39:05:AB:E2:D3:34:0F:C0:C8:2D:D2:70:15:AA:B9:A2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3E5011C707A2DB7B7FE751E443533D4CD67D75F4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa Signing time: Tue 19 May 2026 04:10:10 +0000 ROA not before: Tue 19 May 2026 04:10:10 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:ec00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 28 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:50:11:c7:07:a2:db:7b:7f:e7:51:e4:43:53:3d:4c:d6:7d:75:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:10 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=ae57be125eee987b60d14610cc8c77786db13135474ba5e8af81db835cf2a442, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b0:45:b6:34:7d:eb:17:65:7e:4c:9c:07:8f: c2:d5:2d:a6:e7:1a:b1:00:68:6a:99:92:cc:ec:8f: ba:d8:09:c4:83:20:d6:ee:38:d7:ee:32:c2:ff:28: 5e:ee:8a:81:44:ec:51:a5:66:46:29:69:bc:c1:54: c8:81:2e:1c:6d:5f:42:8d:c7:04:e9:5f:05:21:7d: 29:6b:78:f7:be:7e:95:5a:53:31:3a:73:ea:65:38: 4e:f6:81:b2:a6:e9:d3:5a:37:3a:a9:0a:74:0a:7d: ad:2a:dc:94:a9:8c:cc:08:29:5a:20:92:a0:ce:e5: 82:b4:ec:04:de:c7:da:c4:12:e7:d4:3a:b0:2c:62: ba:f2:74:60:a1:0c:10:e4:a4:42:c4:63:28:9a:e0: a9:fb:ee:e1:e9:67:ec:05:20:cf:13:75:bc:a0:79: e5:f8:3a:dd:57:aa:06:f1:3d:a5:45:05:88:f2:2d: 22:f7:c6:6f:ca:a2:dc:15:59:30:ef:70:20:7e:1d: b9:f4:9b:94:da:8e:ef:47:c2:fe:ee:b5:88:2f:00: 47:c2:53:10:d7:e4:03:3c:70:6e:f9:64:04:59:e3: 66:06:41:2c:b0:5d:c6:74:16:c1:28:c1:10:e3:80: bf:67:70:3e:20:b8:e6:3f:7b:2b:0c:55:6d:43:6a: 47:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:0B:EA:49:39:05:AB:E2:D3:34:0F:C0:C8:2D:D2:70:15:AA:B9:A2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 8f:30:1a:19:ed:82:6e:f1:65:f8:c2:bd:85:2d:3f:97:96:87: 0a:62:6e:7d:ba:fb:a9:fe:a0:92:12:f7:ca:48:60:60:73:fe: c1:4f:bd:8d:f3:30:6c:a1:2e:e4:2a:95:a7:e9:7f:61:78:79: 3f:1c:6d:56:91:c1:4b:02:44:d0:3a:57:1e:61:3d:35:c9:77: b0:07:b5:24:52:dc:3c:6d:16:83:c7:99:80:d4:f1:72:ac:5c: 2e:31:cc:b1:8a:4a:f0:a8:36:f7:90:59:1e:49:59:bd:32:dd: 56:48:5b:59:9b:c2:fc:27:2f:81:f6:02:c2:b1:d4:23:55:b0: 21:f8:e7:d2:ac:77:75:18:45:cd:f0:21:a2:60:7d:ec:20:8c: a1:1b:80:6b:21:31:c1:9a:16:29:9a:7a:23:e9:b2:e4:2f:42: ce:8e:7e:a6:e9:ec:aa:b6:65:b8:a7:77:f5:b8:a8:f2:84:d8: 6c:15:c8:95:98:fd:1b:fd:e6:ce:24:37:56:18:c6:54:49:12: 63:8f:29:5f:e9:ee:1a:94:c3:3e:bc:bf:45:b9:21:19:3a:e6: 8e:1a:0b:a9:8f:6f:fc:47:29:5e:96:f4:d9:55:60:95:93:92: 45:35:c4:fa:4e:43:fd:f4:88:e2:f7:88:eb:54:f4:70:0e:e2: 94:04:c8:d8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPlARxwei23t/51HkQ1M9TNZ9dfQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDEwWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTU3YmUxMjVlZWU5ODdiNjBkMTQ2MTBjYzhjNzc3ODZk YjEzMTM1NDc0YmE1ZThhZjgxZGI4MzVjZjJhNDQyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrsEW2NH3rF2V+TJwHj8LVLabnGrEAaGqZkszsj7rYCcSD INbuONfuMsL/KF7uioFE7FGlZkYpabzBVMiBLhxtX0KNxwTpXwUhfSlrePe+fpVa UzE6c+plOE72gbKm6dNaNzqpCnQKfa0q3JSpjMwIKVogkqDO5YK07ATex9rEEufU OrAsYrrydGChDBDkpELEYyia4Kn77uHpZ+wFIM8TdbygeeX4Ot1XqgbxPaVFBYjy LSL3xm/KotwVWTDvcCB+Hbn0m5Taju9Hwv7utYgvAEfCUxDX5AM8cG75ZARZ42YG QSywXcZ0FsEowRDjgL9ncD4guOY/eysMVW1DakdxAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUKAvqSTkFq+LTNA/AyC3ScBWquaIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YzMGEyNzZkLTcxNWUtNDZlZS04MTU4LWZkNDU3NmExMDk3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77DANBgkqhkiG9w0BAQsFAAOCAQEAjzAaGe2CbvFl+MK9hS0/l5aH CmJufbr7qf6gkhL3ykhgYHP+wU+9jfMwbKEu5CqVp+l/YXh5PxxtVpHBSwJE0DpX HmE9Ncl3sAe1JFLcPG0Wg8eZgNTxcqxcLjHMsYpK8Kg295BZHklZvTLdVkhbWZvC /CcvgfYCwrHUI1WwIfjn0qx3dRhFzfAhomB97CCMoRuAayExwZoWKZp6I+my5C9C zo5+punsqrZluKd39bio8oTYbBXIlZj9G/3mziQ3VhjGVEkSY48pX+nuGpTDPry/ RbkhGTrmjhoLqY9v/EcpXpb02VVglZOSRTXE+k5D/fSI4veI61T0cA7ilATI2A== -----END CERTIFICATE-----Generated at Wed May 27 18:32:53 2026 by rpki-client