$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/17964269-4037-4ed5-aaa5-d2527a564b59.roa File: 17964269-4037-4ed5-aaa5-d2527a564b59.roa (raw, json) Hash identifier: 8NSiYzRdu0XoiqwQTASYgSkp/Q6E1z2MicvovPVzu3c= Subject key identifier: 32:B9:F9:9F:5F:58:53:F2:0F:47:2A:2F:32:4A:03:B0:D6:F9:2B:2E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6AD7429531C5130611AC090F6ABFCCE33C73BD03 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/17964269-4037-4ed5-aaa5-d2527a564b59.roa Signing time: Mon 04 May 2026 15:10:20 +0000 ROA not before: Mon 04 May 2026 15:10:20 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6114::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:d7:42:95:31:c5:13:06:11:ac:09:0f:6a:bf:cc:e3:3c:73:bd:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:20 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=01298a3166cf90f07fe33a43d02ba0bddff07ae365a5652fedffe34c060bd39c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:dc:31:da:31:9c:aa:ae:bb:ec:8a:f8:9c:a5: 25:06:58:63:f7:97:bb:ed:be:c7:2a:60:e8:cd:23: 17:0c:67:67:63:9b:80:44:09:e3:13:70:e8:ac:07: 12:8f:19:8c:ae:a8:38:60:00:d2:e9:ee:1f:f6:58: a8:6d:4d:18:48:86:64:44:7c:59:05:12:14:6d:84: 3c:11:7c:2e:b2:27:31:6f:5d:e2:a8:fa:09:77:8f: 8a:b6:cf:3f:a6:a4:b0:da:54:6c:dd:1f:28:35:88: 43:84:1e:d8:0d:b5:3c:ff:03:5e:d2:c2:36:82:46: 5e:d5:fc:ea:04:6e:04:d1:cb:fa:c2:ae:d4:f2:da: 44:e9:72:86:ba:8d:ef:27:c6:79:d3:e8:e8:9e:9c: b1:85:b0:f5:7d:12:dd:70:09:4f:f5:e5:fa:c4:45: 7c:ce:cc:d7:30:91:f7:10:68:8f:0e:6d:27:8b:18: de:50:56:15:1f:66:27:d4:72:35:08:1d:97:8f:f5: d5:40:28:fb:46:ad:be:47:73:fa:a6:bf:74:28:08: 49:74:70:65:f2:65:01:e2:c7:dd:43:df:2c:48:58: ba:ba:0a:33:39:63:1d:e5:ef:37:96:8e:0d:6c:a5: cf:1b:c0:39:5c:6c:b6:23:b0:d6:b8:83:b0:f9:2d: 6e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B9:F9:9F:5F:58:53:F2:0F:47:2A:2F:32:4A:03:B0:D6:F9:2B:2E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/17964269-4037-4ed5-aaa5-d2527a564b59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6114::/48 Signature Algorithm: sha256WithRSAEncryption 2d:70:bc:df:1d:8c:a8:77:a4:ad:b2:ce:65:c5:10:4b:ab:1e: c7:e6:f9:ed:30:39:bb:a2:ed:44:b5:41:6f:fc:29:05:54:9d: be:1c:c3:72:36:c6:9f:f0:1a:3f:ca:28:85:fd:d8:1a:28:86: 46:52:e3:55:8f:8f:68:13:05:b6:6c:e1:e0:78:34:2e:5c:6d: 08:9a:71:69:2e:7a:ef:c8:ac:1d:c2:58:dd:b5:18:66:6f:55: b4:d1:ab:9c:ef:f5:43:f0:23:16:1c:1d:70:03:a7:71:f5:54: 45:1a:30:71:ed:d1:a9:3a:1d:67:16:2f:34:6b:0f:63:7a:b1: 4d:7d:22:d0:87:75:07:dc:31:75:b1:3b:04:31:37:39:87:45: f6:8e:c0:e6:c4:96:b6:1c:51:20:d8:06:51:d4:98:a3:a3:42: 36:af:9c:e1:8e:85:47:0a:33:ed:96:96:bb:69:65:b9:e8:c5: 07:f7:ae:fd:23:0f:03:99:c3:24:e8:0b:7e:10:13:33:6b:7d: 45:b3:bc:ea:9d:f0:c4:da:02:0c:37:7c:60:70:b1:bb:ce:c3: e8:55:5e:f7:88:4e:e6:a9:de:a8:b7:c2:56:33:f4:be:2f:8e: 10:57:c2:50:b7:a1:13:4b:dd:66:53:10:78:5f:66:01:92:a8: fb:14:a3:77 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUatdClTHFEwYRrAkPar/M4zxzvQMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDIwWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTI5OGEzMTY2Y2Y5MGYwN2ZlMzNhNDNkMDJiYTBiZGRm ZjA3YWUzNjVhNTY1MmZlZGZmZTM0YzA2MGJkMzljMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCW3DHaMZyqrrvsivicpSUGWGP3l7vtvscqYOjNIxcMZ2dj m4BECeMTcOisBxKPGYyuqDhgANLp7h/2WKhtTRhIhmREfFkFEhRthDwRfC6yJzFv XeKo+gl3j4q2zz+mpLDaVGzdHyg1iEOEHtgNtTz/A17SwjaCRl7V/OoEbgTRy/rC rtTy2kTpcoa6je8nxnnT6OienLGFsPV9Et1wCU/15frERXzOzNcwkfcQaI8ObSeL GN5QVhUfZifUcjUIHZeP9dVAKPtGrb5Hc/qmv3QoCEl0cGXyZQHix91D3yxIWLq6 CjM5Yx3l7zeWjg1spc8bwDlcbLYjsNa4g7D5LW5BAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMrn5n19YU/IPRyovMkoDsNb5Ky4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE3OTY0MjY5LTQwMzctNGVkNS1hYWE1LWQyNTI3YTU2NGI1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRQwDQYJKoZIhvcNAQELBQADggEBAC1wvN8djKh3pK2yzmXFEEur Hsfm+e0wObui7US1QW/8KQVUnb4cw3I2xp/wGj/KKIX92BoohkZS41WPj2gTBbZs 4eB4NC5cbQiacWkueu/IrB3CWN21GGZvVbTRq5zv9UPwIxYcHXADp3H1VEUaMHHt 0ak6HWcWLzRrD2N6sU19ItCHdQfcMXWxOwQxNzmHRfaOwObElrYcUSDYBlHUmKOj QjavnOGOhUcKM+2WlrtpZbnoxQf3rv0jDwOZwyToC34QEzNrfUWzvOqd8MTaAgw3 fGBwsbvOw+hVXveITuap3qi3wlYz9L4vjhBXwlC3oRNL3WZTEHhfZgGSqPsUo3c= -----END CERTIFICATE-----Generated at Wed May 13 01:00:22 2026 by rpki-client