$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3db0876d-51d3-4a1b-88a1-55f2d73023c1.roa File: 3db0876d-51d3-4a1b-88a1-55f2d73023c1.roa (raw, json) Hash identifier: Ub6YVn3u7jV01xuTMvkmPI1oC9cpMJxVHQT4wq4ys1U= Subject key identifier: C3:E0:77:8E:07:BF:74:EC:4E:26:EA:42:16:15:D1:79:B1:16:02:3D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5B98CCDF4BB5491DB6DC6597E2707BB7E27BB18B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3db0876d-51d3-4a1b-88a1-55f2d73023c1.roa Signing time: Sat 09 May 2026 00:10:05 +0000 ROA not before: Sat 09 May 2026 00:10:05 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f2:7000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:98:cc:df:4b:b5:49:1d:b6:dc:65:97:e2:70:7b:b7:e2:7b:b1:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 9 00:10:05 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=b321236bf03537014ef5e0c0f270d3fe029ba137b22cd91e9b0ad2a1064b0294, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:07:a8:82:54:1f:5a:b8:f0:13:1a:69:74:e7: 80:c0:61:29:42:2a:bb:ed:f1:03:1b:05:df:1c:e9: 4f:d7:59:a0:82:78:3d:85:48:d5:02:08:c2:ba:0d: fa:67:7f:01:e2:b7:e5:c0:bf:dd:c8:92:28:e3:db: 5c:ce:3d:63:22:e3:12:27:3b:de:a9:dd:ae:40:e2: e6:b2:e5:8d:6f:56:b5:f6:da:69:55:89:52:b9:6e: ab:e6:7c:04:4b:81:e2:0b:2a:d6:60:09:85:88:9d: cd:a7:a9:72:81:c0:4d:63:1c:06:5b:e2:be:d8:94: 23:a9:2c:5a:8b:d7:9f:c9:6c:29:88:3d:5e:9d:89: cb:78:79:35:a8:18:fc:c0:e3:b5:e8:cb:0a:0d:12: dc:ed:6b:f2:a0:de:92:98:92:b5:46:83:41:c9:53: 4e:3a:af:da:7a:25:93:50:64:4b:42:ec:81:60:9b: bf:4c:a3:69:4f:ff:68:1b:50:a6:77:8e:55:f8:42: da:3c:c5:be:88:dd:cf:81:75:b2:d5:2b:f6:00:62: 0f:e2:91:84:96:42:26:03:e0:bd:b3:24:a9:9e:7c: 04:79:56:8f:cd:23:ce:bf:c8:3a:32:18:c4:1c:3e: 12:bc:2d:08:d2:fc:e6:17:4e:31:ff:d2:5c:e4:1d: 1d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E0:77:8E:07:BF:74:EC:4E:26:EA:42:16:15:D1:79:B1:16:02:3D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3db0876d-51d3-4a1b-88a1-55f2d73023c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7000::/44 Signature Algorithm: sha256WithRSAEncryption a2:08:62:44:77:29:86:b4:cc:cb:e4:98:99:a8:2f:2d:83:92: 19:6c:68:38:2c:97:1a:11:d4:0c:e7:8c:db:f8:42:15:2f:8b: 75:37:2d:f3:fd:c5:ce:c2:36:37:75:6e:0f:4a:68:25:0b:ed: ee:bc:1b:10:42:fe:5b:f8:b0:98:8c:35:1d:18:b9:db:6e:2b: 80:6e:ba:61:56:3e:56:87:2b:82:32:d9:d5:2c:a8:9f:a6:c3: a2:ce:48:9d:c2:71:56:4f:6a:1f:57:4f:63:3d:5a:a6:62:76: 33:a3:a1:e8:ad:ef:2e:81:21:09:89:4a:67:55:38:a8:5a:7f: a1:11:a7:eb:95:af:b5:72:d6:98:dd:7b:6a:14:95:40:6d:3f: fa:98:3b:50:6a:9a:da:97:d7:d8:b6:11:de:8b:d8:49:57:63: 23:4c:89:cb:e7:bc:cd:fe:4a:d7:d1:a4:ac:c8:b2:93:fe:60: 8a:69:5c:1a:3b:08:b6:e7:3b:0a:c8:57:4c:53:3b:4c:ef:e2: d2:c8:47:9c:3e:a9:b5:02:2c:5d:c3:26:de:f0:26:14:4f:e9: 30:ff:6e:ce:c6:f6:ae:51:ee:e5:21:02:e5:70:76:3f:29:74: d9:fd:81:89:51:a7:03:38:93:6c:4c:9f:af:f6:ef:e2:a8:8f: 1d:d0:78:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW5jM30u1SR223GWX4nB7t+J7sYswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA5MDAxMDA1WhcNMjYwODA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzIxMjM2YmYwMzUzNzAxNGVmNWUwYzBmMjcwZDNmZTAy OWJhMTM3YjIyY2Q5MWU5YjBhZDJhMTA2NGIwMjk0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPB6iCVB9auPATGml054DAYSlCKrvt8QMbBd8c6U/XWaCC eD2FSNUCCMK6DfpnfwHit+XAv93Ikijj21zOPWMi4xInO96p3a5A4uay5Y1vVrX2 2mlViVK5bqvmfARLgeILKtZgCYWInc2nqXKBwE1jHAZb4r7YlCOpLFqL15/JbCmI PV6dict4eTWoGPzA47XoywoNEtzta/Kg3pKYkrVGg0HJU046r9p6JZNQZEtC7IFg m79Mo2lP/2gbUKZ3jlX4Qto8xb6I3c+BdbLVK/YAYg/ikYSWQiYD4L2zJKmefAR5 Vo/NI86/yDoyGMQcPhK8LQjS/OYXTjH/0lzkHR3dAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUw+B3jge/dOxOJupCFhXRebEWAj0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNkYjA4NzZkLTUxZDMtNGExYi04OGExLTU1ZjJkNzMwMjNjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycAAwDQYJKoZIhvcNAQELBQADggEBAKIIYkR3KYa0zMvkmJmoLy2D khlsaDgslxoR1AznjNv4QhUvi3U3LfP9xc7CNjd1bg9KaCUL7e68GxBC/lv4sJiM NR0YudtuK4BuumFWPlaHK4Iy2dUsqJ+mw6LOSJ3CcVZPah9XT2M9WqZidjOjoeit 7y6BIQmJSmdVOKhaf6ERp+uVr7Vy1pjde2oUlUBtP/qYO1BqmtqX19i2Ed6L2ElX YyNMicvnvM3+StfRpKzIspP+YIppXBo7CLbnOwrIV0xTO0zv4tLIR5w+qbUCLF3D Jt7wJhRP6TD/bs7G9q5R7uUhAuVwdj8pdNn9gYlRpwM4k2xMn6/27+Kojx3QeGY= -----END CERTIFICATE-----Generated at Tue May 12 23:23:55 2026 by rpki-client