$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa File: 3eb80061-d999-4560-9395-9a007e8e03f9.roa (raw, json) Hash identifier: LC7PvgkUjlb4VKqmy+ZoBoDSe2yO/CKAu5FtvInt/NE= Subject key identifier: 45:0A:2E:CC:0B:26:3A:5A:0F:4C:E8:D2:CF:4E:2E:5B:1E:8F:5F:56 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2C1D755BB20BFBD2FE739DDF4166CAF726C6871B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa Signing time: Mon 04 May 2026 15:00:11 +0000 ROA not before: Mon 04 May 2026 15:00:11 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f030::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:1d:75:5b:b2:0b:fb:d2:fe:73:9d:df:41:66:ca:f7:26:c6:87:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:00:11 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=b439918858755ff4d03f19374b17335c558afb2a2d0696c9ec96ceb31c03a822, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:02:00:0d:9a:a3:70:e6:79:03:6a:ae:38:01: ba:f7:04:c6:f4:91:5c:6d:0e:d5:d6:93:6f:7e:ec: cd:02:04:05:48:9e:50:21:6d:f2:80:b5:20:d8:15: 1d:28:5c:ae:77:03:ba:59:6f:03:96:be:b7:af:9b: 33:30:2b:26:ca:92:e7:5c:2f:41:39:36:d7:f9:6f: 2a:6a:dd:57:c7:38:ad:92:65:e0:89:08:91:4c:4d: 0e:75:e3:b1:9e:99:b8:b2:63:31:86:d4:1f:84:38: 42:59:bb:55:67:93:14:2b:98:76:cf:dc:8c:a3:79: b1:c3:da:44:2a:32:75:e2:7a:c4:d1:91:b5:1f:0c: e4:ac:75:85:b9:cf:5a:a2:5e:28:7e:be:c5:2d:78: bb:b8:f0:73:38:4f:a7:9a:60:3f:cf:40:1d:03:22: b3:35:b2:0a:73:e2:a5:6d:cd:d4:be:f7:f5:47:6d: 93:3e:fe:1b:aa:1f:27:07:03:33:ee:5c:de:aa:c1: 7c:6c:4a:0a:f5:00:f8:c2:ab:88:6f:eb:c2:11:7a: a2:fc:89:d1:97:7e:7f:2c:e7:37:c7:5c:35:01:f9: 3a:05:04:b5:84:f0:9d:51:ca:65:4f:45:cb:1c:0f: eb:b9:85:d0:8f:4f:7b:d5:7c:63:a4:f5:84:b3:e6: 17:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0A:2E:CC:0B:26:3A:5A:0F:4C:E8:D2:CF:4E:2E:5B:1E:8F:5F:56 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f030::/44 Signature Algorithm: sha256WithRSAEncryption 6e:6e:cd:71:57:80:0a:cd:46:c3:6e:74:a6:c9:84:e6:b4:09: 74:d7:04:44:7c:58:b8:62:7c:8f:73:41:7e:11:d4:64:89:d0: 28:a7:bc:bd:c6:e9:35:c9:61:a6:12:6d:b2:30:6d:e1:9a:cd: 1a:b8:5b:9a:4a:c2:83:c0:a5:c6:ce:44:d5:29:5a:fd:cb:c7: f6:ef:b1:a8:64:96:96:4e:ad:6e:8b:ca:ec:52:14:2f:38:0e: 36:61:c8:06:f5:c8:92:c2:54:ec:93:af:f8:45:85:74:3e:bf: d9:0c:b2:91:1b:9b:b4:7e:d1:82:e8:22:d8:52:6f:66:7c:17: 68:b2:f0:d6:8c:94:78:82:68:5a:57:0a:35:09:df:50:62:fc: bf:6f:96:de:92:c7:83:37:2e:3c:0e:67:a7:f4:3f:d1:b2:0d: 7b:0e:84:5f:34:dc:2d:01:cf:ca:04:aa:58:f5:2b:d5:25:57: 25:ed:41:1c:bb:db:62:bc:1b:f5:6c:e9:5e:1b:db:cf:9c:11: 19:6c:20:d5:15:a2:07:04:8f:25:c1:81:7e:5f:7d:64:57:c0: 75:d1:c7:5c:68:dd:47:48:57:0a:4e:cb:00:8a:83:b5:d8:cb: 67:d0:5a:15:9b:57:ed:76:69:33:b9:24:08:f1:a9:8b:3b:31: 55:95:be:d7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULB11W7IL+9L+c53fQWbK9ybGhxswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUwMDExWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDM5OTE4ODU4NzU1ZmY0ZDAzZjE5Mzc0YjE3MzM1YzU1 OGFmYjJhMmQwNjk2YzllYzk2Y2ViMzFjMDNhODIyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeAgANmqNw5nkDaq44Abr3BMb0kVxtDtXWk29+7M0CBAVI nlAhbfKAtSDYFR0oXK53A7pZbwOWvrevmzMwKybKkudcL0E5Ntf5bypq3VfHOK2S ZeCJCJFMTQ5147GembiyYzGG1B+EOEJZu1VnkxQrmHbP3IyjebHD2kQqMnXiesTR kbUfDOSsdYW5z1qiXih+vsUteLu48HM4T6eaYD/PQB0DIrM1sgpz4qVtzdS+9/VH bZM+/huqHycHAzPuXN6qwXxsSgr1APjCq4hv68IReqL8idGXfn8s5zfHXDUB+ToF BLWE8J1RymVPRcscD+u5hdCPT3vVfGOk9YSz5hdHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURQouzAsmOloPTOjSz04uWx6PX1YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNlYjgwMDYxLWQ5OTktNDU2MC05Mzk1LTlhMDA3ZThlMDNmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78DAwDQYJKoZIhvcNAQELBQADggEBAG5uzXFXgArNRsNudKbJhOa0 CXTXBER8WLhifI9zQX4R1GSJ0CinvL3G6TXJYaYSbbIwbeGazRq4W5pKwoPApcbO RNUpWv3Lx/bvsahklpZOrW6LyuxSFC84DjZhyAb1yJLCVOyTr/hFhXQ+v9kMspEb m7R+0YLoIthSb2Z8F2iy8NaMlHiCaFpXCjUJ31Bi/L9vlt6Sx4M3LjwOZ6f0P9Gy DXsOhF803C0Bz8oEqlj1K9UlVyXtQRy722K8G/Vs6V4b28+cERlsINUVogcEjyXB gX5ffWRXwHXRx1xo3UdIVwpOywCKg7XYy2fQWhWbV+12aTO5JAjxqYs7MVWVvtc= -----END CERTIFICATE-----Generated at Wed May 13 03:26:29 2026 by rpki-client