$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0a9c1ab1-49ce-487d-9702-dc4efc450447.roa File: 0a9c1ab1-49ce-487d-9702-dc4efc450447.roa (raw, json) Hash identifier: LCzD2Y0EsUWzGnGfLmOw2UFI7QCKbC1kETFcyXnTVUQ= Subject key identifier: DD:26:81:14:EB:C2:70:D0:33:4D:B0:44:2F:1F:F3:28:8D:EA:BA:C1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5967A347FFF73BB3DD476F299241D654A1F8ADA4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0a9c1ab1-49ce-487d-9702-dc4efc450447.roa Signing time: Mon 04 May 2026 15:20:07 +0000 ROA not before: Mon 04 May 2026 15:20:07 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6118::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:67:a3:47:ff:f7:3b:b3:dd:47:6f:29:92:41:d6:54:a1:f8:ad:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:20:07 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=c130aec967fd143cfc179feaab38ebf0ffc8bce35b9066126312096f92e6a860, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:be:78:e5:8e:62:3b:da:a6:5f:23:ba:d0:a2: 83:2f:f8:97:7c:1d:73:c1:b5:5a:e7:37:2f:e5:b1: d2:3f:03:2a:ae:50:e3:c0:ea:27:8a:1b:eb:ff:ed: 42:45:20:f8:7f:11:ba:d2:07:52:50:2c:e9:6c:a7: 01:84:26:22:06:5c:8b:31:c8:69:ab:f5:95:28:70: 70:37:cf:8f:fe:fb:6e:d1:41:42:47:5a:ae:af:b4: 13:50:56:76:1a:b0:03:09:b6:fe:25:dd:fe:9f:ba: 0a:0f:df:45:e6:d8:70:2c:0a:81:23:5f:0d:f9:c7: 5e:cf:6d:53:ba:33:61:b9:ce:dc:60:95:ad:77:1d: f6:23:f0:7d:8e:a1:78:ba:8c:d1:b6:36:bc:14:a6: 4e:4f:26:ce:bc:77:c1:dc:38:78:ec:6d:14:73:bb: 11:2b:7d:89:42:05:ea:f7:67:d8:c6:53:04:09:18: f4:ea:c4:3c:86:eb:4b:83:4b:07:72:bd:c0:ef:ae: 17:f3:ab:96:3c:ed:47:8c:51:42:22:9c:ab:12:2e: 8e:c2:0b:68:e7:cf:1a:29:09:73:99:cd:3f:b6:d4: 52:30:80:86:a6:86:3b:7b:a8:98:8e:e1:8f:fd:60: 1c:c6:4d:10:b5:33:db:07:22:42:97:3a:b0:c2:d7: 67:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:26:81:14:EB:C2:70:D0:33:4D:B0:44:2F:1F:F3:28:8D:EA:BA:C1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0a9c1ab1-49ce-487d-9702-dc4efc450447.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6118::/48 Signature Algorithm: sha256WithRSAEncryption 74:27:82:34:31:57:cf:29:2d:17:e2:08:c6:44:c0:94:8f:1f: b4:20:06:9a:5d:07:f0:70:53:59:0c:4b:db:f0:16:71:ca:7b: 90:8f:7a:2a:34:ab:1a:b8:9f:0b:d6:eb:de:a4:d6:39:a8:13: 5e:41:10:a8:e1:39:85:c0:bb:34:ad:54:ef:80:0a:fc:c1:cc: 2a:99:6f:b7:64:00:5c:9d:53:34:a7:88:62:d2:eb:df:a9:5b: d9:5d:87:b3:6b:1d:08:39:db:2b:96:38:a4:ee:87:f0:59:e4: 77:f6:52:19:4b:9e:08:4d:39:cd:cd:8f:55:79:f1:4b:98:34: 82:ec:eb:a8:75:59:30:a2:b0:b7:8f:34:75:9d:28:95:e8:2c: d2:ea:a4:e1:4e:cd:db:62:c8:01:6f:fd:e8:f1:49:d4:8d:03: 29:50:de:aa:76:b8:68:ba:4e:e4:c7:2f:e0:91:25:3f:4c:69: d9:f2:56:40:35:bf:b8:0c:dc:22:ba:a9:35:55:7b:7c:d7:f5: 3f:1e:a2:4d:d6:fd:35:04:40:19:5a:f3:2b:be:0b:38:56:4c: 54:99:93:60:8c:4a:3f:5e:87:a2:e8:7b:80:1f:a5:ae:ba:7d: e3:f6:86:7a:2f:a5:9b:42:1c:c4:bb:f2:bb:3c:cd:06:9c:52: 64:e8:1b:b3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWWejR//3O7PdR28pkkHWVKH4raQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUyMDA3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTMwYWVjOTY3ZmQxNDNjZmMxNzlmZWFhYjM4ZWJmMGZm YzhiY2UzNWI5MDY2MTI2MzEyMDk2ZjkyZTZhODYwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgvnjljmI72qZfI7rQooMv+Jd8HXPBtVrnNy/lsdI/Ayqu UOPA6ieKG+v/7UJFIPh/EbrSB1JQLOlspwGEJiIGXIsxyGmr9ZUocHA3z4/++27R QUJHWq6vtBNQVnYasAMJtv4l3f6fugoP30Xm2HAsCoEjXw35x17PbVO6M2G5ztxg la13HfYj8H2OoXi6jNG2NrwUpk5PJs68d8HcOHjsbRRzuxErfYlCBer3Z9jGUwQJ GPTqxDyG60uDSwdyvcDvrhfzq5Y87UeMUUIinKsSLo7CC2jnzxopCXOZzT+21FIw gIamhjt7qJiO4Y/9YBzGTRC1M9sHIkKXOrDC12dPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3SaBFOvCcNAzTbBELx/zKI3qusEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBhOWMxYWIxLTQ5Y2UtNDg3ZC05NzAyLWRjNGVmYzQ1MDQ0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRgwDQYJKoZIhvcNAQELBQADggEBAHQngjQxV88pLRfiCMZEwJSP H7QgBppdB/BwU1kMS9vwFnHKe5CPeio0qxq4nwvW696k1jmoE15BEKjhOYXAuzSt VO+ACvzBzCqZb7dkAFydUzSniGLS69+pW9ldh7NrHQg52yuWOKTuh/BZ5Hf2UhlL nghNOc3Nj1V58UuYNILs66h1WTCisLePNHWdKJXoLNLqpOFOzdtiyAFv/ejxSdSN AylQ3qp2uGi6TuTHL+CRJT9MadnyVkA1v7gM3CK6qTVVe3zX9T8eok3W/TUEQBla 8yu+CzhWTFSZk2CMSj9eh6Loe4Afpa66feP2hnovpZtCHMS78rs8zQacUmToG7M= -----END CERTIFICATE-----Generated at Tue May 12 22:31:42 2026 by rpki-client