$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/373de46b-0532-424d-b3f0-749aec3cab9c.roa File: 373de46b-0532-424d-b3f0-749aec3cab9c.roa (raw, json) Hash identifier: OUJ3HHoSwqKVkP4Nz3lhJZuudm7trNLK6HL5hhCbOdY= Subject key identifier: B7:43:8F:93:BE:31:C4:51:9F:86:C5:80:51:BA:98:61:4B:16:17:B9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7D71DD9F521CAE3C5D6355237188B953FA39B120 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/373de46b-0532-424d-b3f0-749aec3cab9c.roa Signing time: Mon 04 May 2026 15:10:39 +0000 ROA not before: Mon 04 May 2026 15:10:39 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6116::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:71:dd:9f:52:1c:ae:3c:5d:63:55:23:71:88:b9:53:fa:39:b1:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:39 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=c4969cc52a75934745104e030b8d47c5812444e25a54dac34b9d1ba6380f859d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:42:f1:34:e4:69:64:f9:3e:10:25:ac:49:66: ab:d7:85:89:c6:3d:47:44:86:46:6c:bd:76:31:ea: 7b:3a:bb:4e:16:f2:2b:b4:ff:ee:d4:87:cb:4c:0a: 55:d1:b1:90:aa:be:98:2c:eb:ef:9b:e4:5a:ce:a7: 49:ef:bf:96:c0:2d:65:cd:2b:59:1e:13:da:c1:ee: 4b:08:e4:df:e3:bf:2d:ae:2f:f5:60:23:9e:eb:c4: 38:fb:11:58:95:79:67:80:0c:6e:15:f9:e2:15:13: 66:b0:87:f9:d8:70:11:32:d6:10:d0:66:9a:92:41: 30:c7:44:c6:c3:bd:d7:62:f8:c8:d8:a6:be:e9:6a: 49:0e:b9:6b:a5:69:7d:eb:26:1f:44:ea:f1:8f:d0: 3a:cc:5b:1a:72:c0:db:f6:4a:f8:c5:43:f8:a8:87: 76:6f:dd:8d:14:34:0e:dd:b6:f1:52:ac:80:73:45: fa:4e:dc:d0:4d:8b:aa:c3:6e:e6:d8:6d:51:f5:79: 06:6f:96:c8:3e:b1:05:9c:26:d8:f3:e1:20:a6:e8: 1c:22:80:82:f5:99:81:fb:78:93:58:fe:53:0e:53: 7d:b7:d5:49:e8:58:ef:99:74:ef:77:ab:43:bc:10: 7d:45:f7:00:6d:04:1f:13:8c:1d:79:4f:3f:2b:f1: 5b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:43:8F:93:BE:31:C4:51:9F:86:C5:80:51:BA:98:61:4B:16:17:B9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/373de46b-0532-424d-b3f0-749aec3cab9c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6116::/48 Signature Algorithm: sha256WithRSAEncryption 0f:30:d3:66:8b:27:60:05:a4:cd:18:1c:eb:4c:7b:46:57:a5: 75:f7:c0:0c:c5:db:39:15:18:23:18:73:51:dc:f5:fd:5d:00: dc:30:26:e7:e5:49:d2:7c:e4:84:5b:a7:1f:fd:99:88:4f:b9: f2:54:e2:fd:92:e4:84:a5:b8:92:0d:d8:cd:54:4b:8f:3c:e2: 77:d2:23:71:03:ba:32:3d:c4:7b:24:37:fa:11:53:00:aa:60: e8:47:46:a1:31:8c:18:30:5d:ff:82:37:9d:bb:e0:05:6a:01: a2:86:22:7a:7c:82:00:16:b8:80:ca:ab:7f:de:0b:2a:22:ee: ea:63:89:9e:f9:7c:27:78:33:8e:0d:f9:b5:8d:7f:e3:7f:58: 0f:43:6b:f5:d7:f2:54:bf:70:58:8d:c1:b6:fb:09:2e:27:2c: 7b:88:fe:4f:ec:ad:22:36:d0:c6:21:e9:25:ce:b5:c4:6b:56: c5:c8:94:95:e9:77:f8:51:6a:ed:ae:5c:76:69:f3:eb:51:6a: f2:83:73:ef:15:b0:aa:f8:78:88:2d:c5:78:f7:ca:eb:3d:aa: b2:f2:ef:52:8a:ec:da:4c:a8:9b:b4:a3:4a:87:6b:b1:16:4e: 6b:f1:88:a9:81:be:e4:18:e8:62:96:96:2b:4d:7a:d4:31:c5: 76:03:8a:7d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfXHdn1IcrjxdY1UjcYi5U/o5sSAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDM5WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDk2OWNjNTJhNzU5MzQ3NDUxMDRlMDMwYjhkNDdjNTgx MjQ0NGUyNWE1NGRhYzM0YjlkMWJhNjM4MGY4NTlkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXQvE05Glk+T4QJaxJZqvXhYnGPUdEhkZsvXYx6ns6u04W 8iu0/+7Uh8tMClXRsZCqvpgs6++b5FrOp0nvv5bALWXNK1keE9rB7ksI5N/jvy2u L/VgI57rxDj7EViVeWeADG4V+eIVE2awh/nYcBEy1hDQZpqSQTDHRMbDvddi+MjY pr7pakkOuWulaX3rJh9E6vGP0DrMWxpywNv2SvjFQ/ioh3Zv3Y0UNA7dtvFSrIBz RfpO3NBNi6rDbubYbVH1eQZvlsg+sQWcJtjz4SCm6BwigIL1mYH7eJNY/lMOU323 1UnoWO+ZdO93q0O8EH1F9wBtBB8TjB15Tz8r8VtbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUt0OPk74xxFGfhsWAUbqYYUsWF7kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM3M2RlNDZiLTA1MzItNDI0ZC1iM2YwLTc0OWFlYzNjYWI5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRYwDQYJKoZIhvcNAQELBQADggEBAA8w02aLJ2AFpM0YHOtMe0ZX pXX3wAzF2zkVGCMYc1Hc9f1dANwwJuflSdJ85IRbpx/9mYhPufJU4v2S5ISluJIN 2M1US4884nfSI3EDujI9xHskN/oRUwCqYOhHRqExjBgwXf+CN5274AVqAaKGInp8 ggAWuIDKq3/eCyoi7upjiZ75fCd4M44N+bWNf+N/WA9Da/XX8lS/cFiNwbb7CS4n LHuI/k/srSI20MYh6SXOtcRrVsXIlJXpd/hRau2uXHZp8+tRavKDc+8VsKr4eIgt xXj3yus9qrLy71KK7NpMqJu0o0qHa7EWTmvxiKmBvuQY6GKWlitNetQxxXYDin0= -----END CERTIFICATE-----Generated at Wed May 13 00:00:59 2026 by rpki-client