$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1bc377fa-1761-4743-8aa4-75cb00b977af.roa File: 1bc377fa-1761-4743-8aa4-75cb00b977af.roa (raw, json) Hash identifier: a1DyJgWN2e2gZNn3jULLO4cWOnBGkjZv2pSx4nck6ig= Subject key identifier: BD:CE:0C:32:49:CC:80:43:C1:DE:2E:76:85:9C:2C:CC:60:32:B0:8D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7D08945E80AB5BE2EA18F5CF876ECA773E75DBBD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1bc377fa-1761-4743-8aa4-75cb00b977af.roa Signing time: Mon 11 May 2026 01:30:08 +0000 ROA not before: Mon 11 May 2026 01:30:08 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:08:94:5e:80:ab:5b:e2:ea:18:f5:cf:87:6e:ca:77:3e:75:db:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 11 01:30:08 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=4ccee8340ad8cd4fbc7a75703670019593e14058f7ca2bd81eca75a34ed45d23, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:86:f9:3a:ec:83:69:6f:13:64:ac:fc:7f:cc: 53:ec:71:a3:b3:a4:6a:f4:9d:75:fa:ba:35:b5:e4: d6:86:fe:d6:a5:4a:c8:b9:48:e3:d7:d0:33:fa:8c: 6e:67:8c:d4:d2:38:8e:50:10:4c:f2:23:60:0d:5e: 6c:43:06:8c:3d:ec:c9:84:01:09:70:d3:70:af:c6: ee:5e:17:a1:56:47:de:1a:61:bb:99:f2:58:f3:67: 5c:55:fc:b5:bc:c8:07:8a:93:62:21:13:bb:fc:ef: 44:2e:de:48:89:11:d1:d9:df:79:b7:35:45:c4:32: e6:c9:c8:13:16:18:e3:1d:a3:29:ad:58:51:6f:b9: d6:f9:86:80:64:da:f6:69:09:10:5c:86:d7:b8:d9: bc:bc:66:50:37:36:fe:70:c6:3e:dc:6e:39:1f:dd: 1f:74:ee:7e:a7:f2:ef:62:b6:61:72:e7:db:a2:29: 00:89:86:c8:64:51:4a:91:2c:78:2d:22:6f:7a:6f: 1d:dc:b4:79:29:6f:b6:3b:29:d5:b4:26:f6:3d:68: 2e:79:23:06:42:96:82:16:8d:e0:24:ac:49:8c:79: c2:c7:1e:47:18:fd:e4:1a:95:c4:20:97:27:f1:d8: f2:f2:55:03:fd:09:64:5f:e5:a6:53:0e:9b:9f:7c: 86:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:CE:0C:32:49:CC:80:43:C1:DE:2E:76:85:9C:2C:CC:60:32:B0:8D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1bc377fa-1761-4743-8aa4-75cb00b977af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1::/44 Signature Algorithm: sha256WithRSAEncryption 25:dd:9a:b6:44:83:59:69:0e:09:61:9e:92:41:25:4f:c7:b8: 6a:15:be:fa:3c:f7:86:27:3c:a1:4c:6d:f6:1f:bf:7b:95:15: 07:08:9f:a4:9e:d5:d4:8e:a0:8a:ca:d5:b0:f6:2e:90:6a:05: 0f:0d:4b:06:5a:9a:87:98:f3:e1:22:3f:be:33:d1:33:2b:9a: b8:54:77:93:3c:b5:f0:0c:9d:f6:a9:6d:97:68:02:70:07:77: d3:4e:c3:e3:72:c4:d2:b4:7e:37:80:7e:7f:cc:f8:52:ab:e8: 0f:22:90:24:62:20:d7:b9:b5:85:7c:4a:b2:ff:0d:bb:45:c1: a1:5d:1d:ac:87:35:2c:10:d4:b7:7e:c6:e0:cb:c2:38:b7:9c: 4f:76:86:b2:7b:2d:aa:7a:75:c5:73:5a:0b:8e:8b:c6:0e:20: 3d:8c:39:7b:8a:8f:83:60:51:d4:a4:0b:62:34:27:ec:12:08: cb:6c:6f:90:b2:c6:00:05:eb:6f:fc:8a:c9:67:48:2d:3e:9e: fa:af:47:cb:07:da:ca:24:8b:7a:e0:1c:e0:28:61:2a:56:35: f6:68:a1:bf:e1:d5:74:de:f1:c7:3c:0b:74:71:8e:3a:f8:e4: 10:75:1e:ff:f4:2b:65:11:d8:49:25:7e:80:5e:6e:f7:91:9c: 26:65:b2:22 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfQiUXoCrW+LqGPXPh27Kdz51270wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTExMDEzMDA4WhcNMjYwODA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2NlZTgzNDBhZDhjZDRmYmM3YTc1NzAzNjcwMDE5NTkz ZTE0MDU4ZjdjYTJiZDgxZWNhNzVhMzRlZDQ1ZDIzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwhvk67INpbxNkrPx/zFPscaOzpGr0nXX6ujW15NaG/tal Ssi5SOPX0DP6jG5njNTSOI5QEEzyI2ANXmxDBow97MmEAQlw03Cvxu5eF6FWR94a YbuZ8ljzZ1xV/LW8yAeKk2IhE7v870Qu3kiJEdHZ33m3NUXEMubJyBMWGOMdoymt WFFvudb5hoBk2vZpCRBchte42by8ZlA3Nv5wxj7cbjkf3R907n6n8u9itmFy59ui KQCJhshkUUqRLHgtIm96bx3ctHkpb7Y7KdW0JvY9aC55IwZCloIWjeAkrEmMecLH HkcY/eQalcQglyfx2PLyVQP9CWRf5aZTDpuffIYrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvc4MMknMgEPB3i52hZwszGAysI0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFiYzM3N2ZhLTE3NjEtNDc0My04YWE0LTc1Y2IwMGI5NzdhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDxAAAwDQYJKoZIhvcNAQELBQADggEBACXdmrZEg1lpDglhnpJBJU/H uGoVvvo894YnPKFMbfYfv3uVFQcIn6Se1dSOoIrK1bD2LpBqBQ8NSwZamoeY8+Ei P74z0TMrmrhUd5M8tfAMnfapbZdoAnAHd9NOw+NyxNK0fjeAfn/M+FKr6A8ikCRi INe5tYV8SrL/DbtFwaFdHayHNSwQ1Ld+xuDLwji3nE92hrJ7Lap6dcVzWguOi8YO ID2MOXuKj4NgUdSkC2I0J+wSCMtsb5CyxgAF62/8islnSC0+nvqvR8sH2soki3rg HOAoYSpWNfZoob/h1XTe8cc8C3Rxjjr45BB1Hv/0K2UR2EklfoBebveRnCZlsiI= -----END CERTIFICATE-----Generated at Wed May 13 01:46:20 2026 by rpki-client