$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3d4602c0-9599-4325-ba8d-dc8b19c6c24f.roa File: 3d4602c0-9599-4325-ba8d-dc8b19c6c24f.roa (raw, json) Hash identifier: TbSpAmW59+zkndvlSR5B6DPDzcWLqhus5VP2LRoj/M0= Subject key identifier: E6:8F:9D:94:30:39:B5:70:20:01:8B:CC:CE:CE:C0:3D:D6:13:DD:08 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 149BE47B209E2D3E37D41D8DD1552DCFF600FB64 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3d4602c0-9599-4325-ba8d-dc8b19c6c24f.roa Signing time: Mon 04 May 2026 15:00:06 +0000 ROA not before: Mon 04 May 2026 15:00:06 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:610b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:9b:e4:7b:20:9e:2d:3e:37:d4:1d:8d:d1:55:2d:cf:f6:00:fb:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:00:06 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=1f0ac90de31cf8e19be770813b528c41d8f9b1c25b08d4354ace431bf3a763a0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c8:b9:8e:95:a5:47:16:08:4b:67:81:f6:54: 7b:01:3c:38:0d:1c:56:98:a2:ca:76:e0:27:f5:3a: 01:33:f4:98:e4:d5:40:68:4b:4c:c0:12:76:96:89: d6:91:db:fc:3d:07:c4:4f:b6:4a:cc:64:d0:c9:ba: d7:0b:a5:3e:8e:07:f8:2a:b6:a8:52:28:73:e0:3e: 27:da:74:09:fb:61:db:de:8b:ae:1d:9f:ae:7b:32: 90:7a:58:14:01:59:b5:85:cc:c6:9f:ee:a6:25:99: a0:02:a7:e5:47:30:e8:0c:89:3b:3b:f7:6e:7d:bd: 48:52:71:81:8a:1f:ed:b2:2c:9e:fc:32:32:98:51: 5e:32:87:a3:d8:6a:33:ff:58:e5:0f:bb:4d:23:c1: 17:f8:2a:5e:d0:9d:3b:ad:c3:2a:30:13:68:3c:c7: 54:ad:c7:b0:f2:44:65:77:37:f7:e6:c7:08:a8:42: 8d:5e:78:4d:09:a8:4f:a1:db:78:28:d5:91:c4:f4: 67:85:1e:69:17:ef:9b:39:89:3f:8d:a9:e8:9b:f8: 27:9e:1c:c6:87:1d:64:1d:aa:07:3d:f1:90:ff:7e: 4c:0c:9b:b3:fe:1d:44:99:98:2f:b7:39:ec:10:4d: ab:a6:ae:e5:f3:2c:02:cb:ac:07:c4:e9:03:52:c0: 3a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:8F:9D:94:30:39:B5:70:20:01:8B:CC:CE:CE:C0:3D:D6:13:DD:08 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3d4602c0-9599-4325-ba8d-dc8b19c6c24f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610b::/48 Signature Algorithm: sha256WithRSAEncryption 87:9a:ca:50:06:d8:aa:4a:29:a3:c8:d3:1b:4a:cd:58:90:3b: 99:f0:e1:4d:e2:30:c9:94:52:10:8f:ab:de:e0:27:9a:64:1b: a7:e8:d1:a7:9d:e4:25:1c:17:84:4f:29:9f:8b:c1:a6:11:05: a9:b4:1a:42:23:88:20:5f:dd:a0:08:2f:fa:ec:37:0f:04:cc: 16:52:5c:64:58:2f:82:6e:6b:f9:7c:2d:24:33:57:94:6a:ab: bb:0a:88:f9:4e:0a:af:fa:76:c5:ec:4b:96:e3:79:62:bb:69: fd:cd:03:38:30:80:b6:d5:e6:eb:56:d1:a6:3e:a6:b6:ab:ac: 12:ab:8b:25:c3:25:fc:67:3a:d7:13:1d:e8:00:ee:ad:03:8b: 45:de:e5:1f:38:b1:df:2c:fb:9e:87:6f:f0:51:f0:76:3d:94: 77:4b:f7:65:ae:dd:cf:da:6f:3c:26:0f:5f:52:7f:72:40:79: bc:1d:f3:8d:36:d6:78:5a:50:44:5d:83:f7:23:c7:fa:f4:d3: b4:ba:ef:c8:38:da:26:f6:d8:a6:1c:8a:42:98:ac:81:51:fa: 92:86:9c:0e:e0:d6:94:68:65:0d:e9:70:41:7d:bc:71:b8:9c: a1:81:cb:d0:ed:30:e9:0a:78:fb:c6:38:54:54:76:5a:ee:12: 42:0d:f6:1b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFJvkeyCeLT431B2N0VUtz/YA+2QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUwMDA2WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjBhYzkwZGUzMWNmOGUxOWJlNzcwODEzYjUyOGM0MWQ4 ZjliMWMyNWIwOGQ0MzU0YWNlNDMxYmYzYTc2M2EwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8yLmOlaVHFghLZ4H2VHsBPDgNHFaYosp24Cf1OgEz9Jjk 1UBoS0zAEnaWidaR2/w9B8RPtkrMZNDJutcLpT6OB/gqtqhSKHPgPifadAn7Ydve i64dn657MpB6WBQBWbWFzMaf7qYlmaACp+VHMOgMiTs79259vUhScYGKH+2yLJ78 MjKYUV4yh6PYajP/WOUPu00jwRf4Kl7QnTutwyowE2g8x1Stx7DyRGV3N/fmxwio Qo1eeE0JqE+h23go1ZHE9GeFHmkX75s5iT+Nqeib+CeeHMaHHWQdqgc98ZD/fkwM m7P+HUSZmC+3OewQTaumruXzLALLrAfE6QNSwDojAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5o+dlDA5tXAgAYvMzs7APdYT3QgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNkNDYwMmMwLTk1OTktNDMyNS1iYThkLWRjOGIxOWM2YzI0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQswDQYJKoZIhvcNAQELBQADggEBAIeaylAG2KpKKaPI0xtKzViQ O5nw4U3iMMmUUhCPq97gJ5pkG6fo0aed5CUcF4RPKZ+LwaYRBam0GkIjiCBf3aAI L/rsNw8EzBZSXGRYL4Jua/l8LSQzV5Rqq7sKiPlOCq/6dsXsS5bjeWK7af3NAzgw gLbV5utW0aY+prarrBKriyXDJfxnOtcTHegA7q0Di0Xe5R84sd8s+56Hb/BR8HY9 lHdL92Wu3c/abzwmD19Sf3JAebwd84021nhaUERdg/cjx/r007S678g42ib22KYc ikKYrIFR+pKGnA7g1pRoZQ3pcEF9vHG4nKGBy9DtMOkKePvGOFRUdlruEkIN9hs= -----END CERTIFICATE-----Generated at Wed May 13 01:31:53 2026 by rpki-client