$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e46b344-1c35-4502-912b-8ec7b80005d8.roa File: 1e46b344-1c35-4502-912b-8ec7b80005d8.roa (raw, json) Hash identifier: ZaGtv5P3PouNWUHsSq+Qz5wxexl3MbwJUIXlaJbUcQU= Subject key identifier: C0:CF:01:A4:65:AA:2F:E6:02:5A:50:E7:03:07:A9:11:95:82:A6:6A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5911DEF9536B90ADBE30E915354A209EAC8FA177 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e46b344-1c35-4502-912b-8ec7b80005d8.roa Signing time: Mon 04 May 2026 15:20:02 +0000 ROA not before: Mon 04 May 2026 15:20:02 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:610f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:11:de:f9:53:6b:90:ad:be:30:e9:15:35:4a:20:9e:ac:8f:a1:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:20:02 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=a21979f723c874fa8c56560ac52b19be0a9c8f741e7432d05237d633f1a9f40b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1b:a9:66:60:05:96:d3:69:b4:69:18:18:c4: 9f:94:51:03:f0:27:1a:69:8e:e2:8a:74:25:73:e1: 52:89:ab:03:6e:26:8c:37:cd:5b:6f:eb:44:7e:fe: a7:55:fd:a4:70:27:8d:19:0e:9b:89:12:ca:7b:9a: d7:a2:b7:a6:09:f1:93:c4:75:df:27:08:24:7a:02: 37:9c:85:dc:29:f5:ff:71:80:b6:cb:ce:a5:24:91: 0b:e2:a8:1a:91:6f:fb:b4:d2:3a:af:67:ce:a8:8a: f9:1d:9d:be:b6:bb:27:de:b4:34:4b:8b:e4:d5:0f: 1f:fd:15:f7:18:77:1d:2a:5e:26:38:fa:8f:90:97: 2e:17:43:d5:44:19:b8:1d:96:b6:e7:b6:a8:29:d3: 65:ff:77:25:6c:d1:f5:45:e1:38:ee:ca:15:ac:94: 31:c8:eb:1c:ff:fc:db:b0:7b:84:7d:0a:0f:16:8d: c6:d0:2f:95:25:fb:12:4a:e3:f8:0a:5d:b4:d3:cd: ae:16:6b:ad:61:aa:7c:c0:23:8e:72:26:a9:93:8c: 95:aa:73:82:0d:8c:b7:d9:ee:10:5c:e3:0f:74:77: d9:ee:2b:d1:20:f0:f8:65:e7:18:d1:75:91:bd:92: af:8c:c5:b2:9b:a3:c5:bf:fc:53:e7:82:67:c0:36: 12:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:CF:01:A4:65:AA:2F:E6:02:5A:50:E7:03:07:A9:11:95:82:A6:6A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e46b344-1c35-4502-912b-8ec7b80005d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610f::/48 Signature Algorithm: sha256WithRSAEncryption 14:66:32:1b:12:6e:75:32:ad:33:34:e6:76:71:5f:a7:2a:ae: 43:86:e8:03:4b:0f:1f:5c:6b:f7:71:c9:d4:15:3a:19:05:ba: 9f:01:8a:3d:8f:39:91:d1:4e:62:9f:0e:3d:5d:7a:ba:d9:24: 6f:c2:b9:f1:e7:29:7f:9d:83:ec:fd:2a:aa:b2:b5:5c:61:78: aa:08:b5:b1:24:2f:a2:b1:e7:5c:66:fb:9e:e6:2c:64:e2:61: ad:14:d5:b7:8f:12:f0:95:b2:b7:bb:0e:6f:27:54:95:8a:a9: fc:9d:c2:7d:43:0e:33:4b:6d:b5:61:d0:d2:e5:ed:85:05:1d: 89:5d:7e:3f:5a:66:65:54:69:c0:72:a7:6e:21:f7:13:f6:94: ab:80:e6:8d:41:87:55:0d:c8:19:06:c5:86:52:0e:63:a8:c9: 25:9c:be:ca:4e:9a:1c:88:6f:76:80:79:2a:1d:0a:6b:35:91: d1:29:81:13:8a:90:72:77:fa:34:f7:88:b1:19:34:62:2a:07: ee:01:3b:a8:0b:d3:d0:d7:9b:0f:64:14:eb:63:79:d4:08:79: f5:34:ad:47:54:d6:4b:01:9c:02:f6:0a:5f:49:1b:b6:6e:61: 16:aa:7e:2d:06:8a:90:27:a7:55:1d:dc:70:93:bd:2c:f5:9a: 4c:a2:63:12 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWRHe+VNrkK2+MOkVNUognqyPoXcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUyMDAyWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjE5NzlmNzIzYzg3NGZhOGM1NjU2MGFjNTJiMTliZTBh OWM4Zjc0MWU3NDMyZDA1MjM3ZDYzM2YxYTlmNDBiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuG6lmYAWW02m0aRgYxJ+UUQPwJxppjuKKdCVz4VKJqwNu Jow3zVtv60R+/qdV/aRwJ40ZDpuJEsp7mteit6YJ8ZPEdd8nCCR6Ajechdwp9f9x gLbLzqUkkQviqBqRb/u00jqvZ86oivkdnb62uyfetDRLi+TVDx/9FfcYdx0qXiY4 +o+Qly4XQ9VEGbgdlrbntqgp02X/dyVs0fVF4TjuyhWslDHI6xz//Nuwe4R9Cg8W jcbQL5Ul+xJK4/gKXbTTza4Wa61hqnzAI45yJqmTjJWqc4INjLfZ7hBc4w90d9nu K9Eg8Phl5xjRdZG9kq+MxbKbo8W//FPngmfANhL5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwM8BpGWqL+YCWlDnAwepEZWCpmowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFlNDZiMzQ0LTFjMzUtNDUwMi05MTJiLThlYzdiODAwMDVkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQ8wDQYJKoZIhvcNAQELBQADggEBABRmMhsSbnUyrTM05nZxX6cq rkOG6ANLDx9ca/dxydQVOhkFup8Bij2POZHRTmKfDj1derrZJG/CufHnKX+dg+z9 KqqytVxheKoItbEkL6Kx51xm+57mLGTiYa0U1bePEvCVsre7Dm8nVJWKqfydwn1D DjNLbbVh0NLl7YUFHYldfj9aZmVUacByp24h9xP2lKuA5o1Bh1UNyBkGxYZSDmOo ySWcvspOmhyIb3aAeSodCms1kdEpgROKkHJ3+jT3iLEZNGIqB+4BO6gL09DXmw9k FOtjedQIefU0rUdU1ksBnAL2Cl9JG7ZuYRaqfi0GipAnp1Ud3HCTvSz1mkyiYxI= -----END CERTIFICATE-----Generated at Wed May 13 02:22:14 2026 by rpki-client