$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/320ac659-3ec0-4c68-b834-ada37188b990.roa File: 320ac659-3ec0-4c68-b834-ada37188b990.roa (raw, json) Hash identifier: jFXzlaxhlYOV021cLRY7Wddj4JsuRFlNHqKMYWvSwtg= Subject key identifier: 76:92:1D:61:55:2D:99:18:99:D6:89:71:D5:F1:57:A1:32:A6:F5:79 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 25963619FA61268B193EC1FB949E8432462BFF73 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/320ac659-3ec0-4c68-b834-ada37188b990.roa Signing time: Mon 04 May 2026 15:10:10 +0000 ROA not before: Mon 04 May 2026 15:10:10 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:610e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:96:36:19:fa:61:26:8b:19:3e:c1:fb:94:9e:84:32:46:2b:ff:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:10 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=90c424f04024d7d9f961f0ac236eb635616e8ed6c4cbe2c6dd4c69edbf27d070, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:49:50:7c:72:be:b6:c3:b1:b2:9a:6a:f5:6e: 90:b5:56:10:f5:1b:f6:64:98:c9:44:2d:85:04:5f: bb:5d:b1:45:94:30:a4:6b:92:1c:13:4b:73:5c:e4: 3a:40:15:77:b6:78:e4:d1:c0:ed:8b:f8:56:2d:f7: 32:68:c6:6f:84:1c:f1:5f:e4:7c:b5:7a:88:51:39: 63:0c:2b:1e:6a:83:71:78:bb:8a:b1:af:07:e4:56: bf:c6:74:58:82:53:ec:e7:7b:0f:66:ec:66:ad:22: 77:a2:4f:59:e8:c8:5b:51:4c:56:db:ff:26:05:f4: d1:2f:67:c2:72:eb:a4:34:67:98:5d:36:ea:60:5e: c0:30:17:81:54:2b:36:83:dc:1a:cf:db:25:39:ea: fb:18:a0:51:ac:18:c8:66:64:3c:29:46:c3:25:25: 5e:e3:1e:da:8e:df:4a:21:de:f5:e3:a4:77:64:a5: 70:e7:aa:b5:67:17:31:a5:fc:f5:c3:2e:7a:fd:85: b7:5b:0b:31:08:92:9c:8c:3c:bf:d7:f8:fb:eb:34: 0b:8a:20:5e:32:ac:cd:45:27:af:68:8e:d9:18:b6: 37:03:38:24:f5:57:84:87:b2:23:47:fb:95:5d:25: 70:96:f0:f0:8a:c7:59:eb:a3:b4:eb:ec:56:7c:9d: 22:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:92:1D:61:55:2D:99:18:99:D6:89:71:D5:F1:57:A1:32:A6:F5:79 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/320ac659-3ec0-4c68-b834-ada37188b990.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610e::/48 Signature Algorithm: sha256WithRSAEncryption 42:84:c4:40:61:4d:54:a5:4a:fa:0c:03:25:49:c7:c5:86:86: 99:77:5d:ce:a6:21:85:cc:e4:a3:92:8d:98:73:09:07:14:db: 2e:0a:14:a3:34:2f:0d:8f:43:a3:82:0f:8e:37:1c:92:ec:50: 82:b8:64:88:d5:00:bb:9a:7a:25:46:cb:51:c2:a1:6c:b1:ce: ad:27:28:65:0d:f8:f7:83:8b:f1:3e:10:b6:fb:13:09:75:15: 8e:7c:4b:61:9a:ee:43:8f:5c:7b:fe:31:c2:61:f1:87:af:9c: d7:7e:7a:a5:d3:3e:ec:34:19:39:38:15:a4:a6:f5:90:11:f6: 0b:06:8f:77:a4:7c:b3:be:2a:a6:3a:f1:f7:e9:89:87:8b:ea: 4b:fc:39:f7:1b:17:ef:97:1d:fb:5f:c9:c3:af:ba:b9:ce:eb: b1:cb:4b:84:a5:cf:4a:ae:15:12:d0:84:eb:fa:df:5e:09:15: e3:c2:67:e9:9c:6b:71:8a:82:be:73:7a:98:2c:d3:16:01:83: 1d:dc:eb:6c:88:21:62:a3:5b:d6:2a:21:8a:d2:ea:ca:7a:18: fc:d7:58:be:bf:32:95:4d:9a:8a:07:d0:ab:58:54:26:7f:9e: 22:62:d2:8f:9e:5a:c8:cf:98:52:37:a6:13:f9:3f:c0:c4:dd: 2c:ca:c1:de -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJZY2GfphJosZPsH7lJ6EMkYr/3MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDEwWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MGM0MjRmMDQwMjRkN2Q5Zjk2MWYwYWMyMzZlYjYzNTYx NmU4ZWQ2YzRjYmUyYzZkZDRjNjllZGJmMjdkMDcwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDySVB8cr62w7Gymmr1bpC1VhD1G/ZkmMlELYUEX7tdsUWU MKRrkhwTS3Nc5DpAFXe2eOTRwO2L+FYt9zJoxm+EHPFf5Hy1eohROWMMKx5qg3F4 u4qxrwfkVr/GdFiCU+znew9m7GatIneiT1noyFtRTFbb/yYF9NEvZ8Jy66Q0Z5hd NupgXsAwF4FUKzaD3BrP2yU56vsYoFGsGMhmZDwpRsMlJV7jHtqO30oh3vXjpHdk pXDnqrVnFzGl/PXDLnr9hbdbCzEIkpyMPL/X+PvrNAuKIF4yrM1FJ69ojtkYtjcD OCT1V4SHsiNH+5VdJXCW8PCKx1nro7Tr7FZ8nSIjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdpIdYVUtmRiZ1olx1fFXoTKm9XkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzMyMGFjNjU5LTNlYzAtNGM2OC1iODM0LWFkYTM3MTg4Yjk5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQ4wDQYJKoZIhvcNAQELBQADggEBAEKExEBhTVSlSvoMAyVJx8WG hpl3Xc6mIYXM5KOSjZhzCQcU2y4KFKM0Lw2PQ6OCD443HJLsUIK4ZIjVALuaeiVG y1HCoWyxzq0nKGUN+PeDi/E+ELb7Ewl1FY58S2Ga7kOPXHv+McJh8YevnNd+eqXT Puw0GTk4FaSm9ZAR9gsGj3ekfLO+KqY68ffpiYeL6kv8OfcbF++XHftfycOvurnO 67HLS4Slz0quFRLQhOv6314JFePCZ+mca3GKgr5zepgs0xYBgx3c62yIIWKjW9Yq IYrS6sp6GPzXWL6/MpVNmooH0KtYVCZ/niJi0o+eWsjPmFI3phP5P8DE3SzKwd4= -----END CERTIFICATE-----Generated at Wed May 13 00:41:36 2026 by rpki-client