$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1a6b8fe3-7a24-4908-a73d-425df209068f.roa File: 1a6b8fe3-7a24-4908-a73d-425df209068f.roa (raw, json) Hash identifier: waTEGmTQV2KeZWJ4TIFrhvCHVRB+RLExSaL2rXdtovE= Subject key identifier: F8:61:A7:99:4C:42:23:63:71:B0:FB:DC:65:BF:93:36:DC:3D:13:C1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0D72BDAC0F4421238C0A39F51903BAC6A6489CE6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1a6b8fe3-7a24-4908-a73d-425df209068f.roa Signing time: Mon 04 May 2026 15:20:08 +0000 ROA not before: Mon 04 May 2026 15:20:08 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:611d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:72:bd:ac:0f:44:21:23:8c:0a:39:f5:19:03:ba:c6:a6:48:9c:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:20:08 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=e309e0ccca6f1b2297d7627e84adfb6a7acc9f955de0faab224937772dd77aca, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:38:4c:ba:b9:97:3d:a2:c5:d4:46:a7:d9:b6: 3c:88:20:d8:70:77:94:51:31:4d:3b:09:d6:61:59: e5:22:8d:2c:e5:da:65:65:c5:ea:2c:ff:21:06:2f: c3:62:27:40:18:df:e6:69:4c:3d:a5:3e:72:c1:51: 9f:0d:f4:8b:a3:59:06:37:e2:86:76:eb:4f:ed:65: 0b:eb:84:6f:b9:26:59:a1:c7:75:ac:d4:5c:7b:e6: 6b:9a:8e:6b:d8:00:49:b1:2d:5d:df:8f:f5:7b:cc: 69:2b:10:94:7c:6c:ca:0c:9c:c5:69:23:85:4d:23: 38:af:7b:fd:bd:d5:0f:e4:b2:96:db:e5:55:98:2d: 58:6c:53:e1:3e:1c:4f:4a:00:3d:b5:91:ea:5a:ee: 2b:3c:d1:e0:d2:22:f6:b7:cc:af:6b:db:93:34:ca: 48:fe:11:e5:48:54:12:47:c6:97:bb:1e:22:c1:98: 61:09:6b:3b:b4:1a:cd:90:89:df:e1:83:eb:b4:93: fe:c3:5d:5a:92:24:dd:f8:a7:85:49:1b:db:4b:50: 6b:f2:ef:6a:77:de:aa:05:00:9d:d3:66:d6:5e:24: 5a:49:d3:8b:aa:49:a0:d2:40:04:2f:39:45:e6:58: f1:2d:9d:67:9a:f4:3a:37:2e:9a:02:87:cc:2a:bb: 53:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:61:A7:99:4C:42:23:63:71:B0:FB:DC:65:BF:93:36:DC:3D:13:C1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1a6b8fe3-7a24-4908-a73d-425df209068f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611d::/48 Signature Algorithm: sha256WithRSAEncryption 4d:08:fd:76:39:01:17:db:56:3f:69:c2:59:cf:cf:6e:48:38: c0:3d:f7:52:16:09:6b:e0:34:90:b3:51:28:73:1b:bf:04:8a: 1c:34:92:5b:cc:48:84:a0:df:61:b7:15:17:2a:e6:59:9e:a0: ba:a8:e4:5a:e7:6a:6b:5f:f0:74:0f:56:cf:70:80:08:96:a8: c3:15:fc:06:e5:ac:b2:e2:9c:f5:00:69:97:51:e1:bf:be:f4: 9b:79:2c:09:4d:3d:ea:0c:f3:39:83:1c:ab:2a:9d:bf:89:bc: 65:c7:c5:8d:b1:71:88:5d:f5:52:89:88:03:00:7c:8b:f0:42: 8f:9f:cf:b1:ef:f4:b9:91:42:ad:99:0e:6e:0d:57:74:ad:4c: 9a:c8:15:d5:f2:d5:3c:4f:92:c4:4a:00:4b:71:e9:43:cd:b1: d2:62:36:f8:2f:2a:63:13:8a:f4:3c:27:6f:9b:f2:ae:f2:35: bf:c8:48:0f:19:41:a7:d4:03:20:23:b6:56:79:02:99:45:b4: 5e:22:fb:2d:2d:8e:a6:05:51:92:7a:bb:8c:9f:02:a8:2b:38: b3:5d:f9:38:4c:7b:26:49:d4:fa:cc:20:cf:5c:24:ba:7b:ef: 2d:bf:06:a4:07:8f:35:14:4a:f1:85:6c:8c:29:54:6a:d8:fc: 9d:fa:f5:a8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDXK9rA9EISOMCjn1GQO6xqZInOYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUyMDA4WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzA5ZTBjY2NhNmYxYjIyOTdkNzYyN2U4NGFkZmI2YTdh Y2M5Zjk1NWRlMGZhYWIyMjQ5Mzc3NzJkZDc3YWNhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5OEy6uZc9osXURqfZtjyIINhwd5RRMU07CdZhWeUijSzl 2mVlxeos/yEGL8NiJ0AY3+ZpTD2lPnLBUZ8N9IujWQY34oZ260/tZQvrhG+5Jlmh x3Ws1Fx75muajmvYAEmxLV3fj/V7zGkrEJR8bMoMnMVpI4VNIzive/291Q/kspbb 5VWYLVhsU+E+HE9KAD21kepa7is80eDSIva3zK9r25M0ykj+EeVIVBJHxpe7HiLB mGEJazu0Gs2Qid/hg+u0k/7DXVqSJN34p4VJG9tLUGvy72p33qoFAJ3TZtZeJFpJ 04uqSaDSQAQvOUXmWPEtnWea9Do3LpoCh8wqu1MXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+GGnmUxCI2NxsPvcZb+TNtw9E8EwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFhNmI4ZmUzLTdhMjQtNDkwOC1hNzNkLTQyNWRmMjA5MDY4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYR0wDQYJKoZIhvcNAQELBQADggEBAE0I/XY5ARfbVj9pwlnPz25I OMA991IWCWvgNJCzUShzG78Eihw0klvMSISg32G3FRcq5lmeoLqo5Frnamtf8HQP Vs9wgAiWqMMV/AblrLLinPUAaZdR4b++9Jt5LAlNPeoM8zmDHKsqnb+JvGXHxY2x cYhd9VKJiAMAfIvwQo+fz7Hv9LmRQq2ZDm4NV3StTJrIFdXy1TxPksRKAEtx6UPN sdJiNvgvKmMTivQ8J2+b8q7yNb/ISA8ZQafUAyAjtlZ5AplFtF4i+y0tjqYFUZJ6 u4yfAqgrOLNd+ThMeyZJ1PrMIM9cJLp77y2/BqQHjzUUSvGFbIwpVGrY/J369ag= -----END CERTIFICATE-----Generated at Tue May 12 23:41:47 2026 by rpki-client