$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5463f2e9-c071-45ba-a891-46817c1759f6.roa File: 5463f2e9-c071-45ba-a891-46817c1759f6.roa (raw, json) Hash identifier: EpTvOEzzDFKWATlqn378yIIm8dnNLQHqAJxdwOixl5Q= Subject key identifier: 48:52:17:8F:13:CB:0D:74:92:C7:58:7E:F5:4B:51:E8:DE:FD:16:D6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6AE9F4E551D6C0F8C47CE71F93270E5DC93A580F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5463f2e9-c071-45ba-a891-46817c1759f6.roa Signing time: Mon 04 May 2026 15:10:23 +0000 ROA not before: Mon 04 May 2026 15:10:23 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:611a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:e9:f4:e5:51:d6:c0:f8:c4:7c:e7:1f:93:27:0e:5d:c9:3a:58:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:23 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=377bd15ca9c9e44fab40e340a13995c6a4e9493d7a81a7a6f0bd90113192dd4b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:70:93:dc:a5:09:e7:a0:18:a3:05:a9:39:04: 62:a2:bf:1a:c9:03:18:a2:a2:da:e6:8e:83:c8:5c: 94:12:b7:00:ed:61:db:0c:d8:79:8b:f8:93:8b:7c: 67:2a:19:cc:44:e1:ea:09:7b:c0:8c:91:59:a5:a1: a5:1b:c7:c6:41:cd:88:55:f9:38:d3:19:6f:92:91: b6:6b:22:01:ef:19:8f:3b:55:43:f7:6d:99:ab:0e: 3e:40:a1:0f:4f:46:80:93:6a:cf:48:40:4d:d3:49: e6:32:e3:c2:a2:8b:d1:06:1c:ea:ca:a6:ff:19:fd: be:f9:42:8c:9a:a9:bf:73:a9:8a:0c:b3:f3:6d:21: 7e:e9:c6:67:1f:d1:54:3e:85:20:8b:80:76:07:80: a9:8f:f8:ea:53:b1:9a:90:94:74:53:e8:ac:d5:8c: ae:fe:d6:71:f1:55:a5:59:d7:22:e9:3c:33:a7:cb: 58:92:38:d5:72:8e:cd:c6:c3:96:9f:e2:31:c2:2e: 40:4a:4a:fa:93:a6:cd:3f:1c:ad:e9:db:b6:7f:d1: a0:c4:29:94:02:11:ff:32:14:13:4c:f8:09:fa:78: a2:44:a9:58:e1:31:90:8d:0d:6c:7f:9c:11:01:e3: 7e:b8:25:5f:78:38:0f:1e:85:bb:d4:c3:be:ff:ab: e9:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:52:17:8F:13:CB:0D:74:92:C7:58:7E:F5:4B:51:E8:DE:FD:16:D6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5463f2e9-c071-45ba-a891-46817c1759f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611a::/48 Signature Algorithm: sha256WithRSAEncryption 79:05:6f:95:49:c9:cc:3a:2f:cd:90:60:a2:c4:a3:5e:dc:2b: 4a:5f:59:1e:e4:97:3f:b3:68:cd:00:b9:f6:dd:5c:ae:a1:e6: 9c:ce:93:e6:dc:c7:4f:3c:79:3d:2c:b0:45:5a:c8:ec:43:d7: 4c:a6:d9:79:43:21:32:c3:59:1e:75:ef:25:ff:b6:8a:22:29: 7a:69:b5:e6:a0:1d:88:05:35:43:af:f1:9a:96:56:97:8b:9f: e7:68:b7:c0:8b:79:ce:6d:c9:f4:39:e1:5f:5d:54:02:18:93: ca:dd:a5:23:54:f8:ac:75:ea:7a:96:9b:78:93:9b:14:62:54: ac:af:3a:ef:e7:9c:8e:84:7c:2e:64:9b:05:b4:f9:70:fa:63: e0:f0:aa:0c:51:bc:bc:ea:63:94:e9:91:2b:2d:3b:d3:32:ea: 77:37:72:29:5e:0d:28:3b:26:1e:e5:e7:80:ed:f0:f7:0f:37: 6f:e2:19:40:d0:80:75:90:64:36:3c:8a:6c:4b:93:69:cf:b7: 07:35:73:66:5a:9b:6e:c5:e9:8d:97:1f:58:60:ba:cc:d5:cf: 9c:a5:c9:d9:41:07:4a:9a:d3:d3:08:ff:f8:14:17:18:ac:4e: 6f:93:18:72:49:99:86:93:6f:cb:13:2f:3a:63:cb:5a:40:9d: cd:5d:70:a8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaun05VHWwPjEfOcfkycOXck6WA8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDIzWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzdiZDE1Y2E5YzllNDRmYWI0MGUzNDBhMTM5OTVjNmE0 ZTk0OTNkN2E4MWE3YTZmMGJkOTAxMTMxOTJkZDRiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6cJPcpQnnoBijBak5BGKivxrJAxiiotrmjoPIXJQStwDt YdsM2HmL+JOLfGcqGcxE4eoJe8CMkVmloaUbx8ZBzYhV+TjTGW+SkbZrIgHvGY87 VUP3bZmrDj5AoQ9PRoCTas9IQE3TSeYy48Kii9EGHOrKpv8Z/b75Qoyaqb9zqYoM s/NtIX7pxmcf0VQ+hSCLgHYHgKmP+OpTsZqQlHRT6KzVjK7+1nHxVaVZ1yLpPDOn y1iSONVyjs3Gw5af4jHCLkBKSvqTps0/HK3p27Z/0aDEKZQCEf8yFBNM+An6eKJE qVjhMZCNDWx/nBEB4364JV94OA8ehbvUw77/q+m9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSFIXjxPLDXSSx1h+9UtR6N79FtYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NjNmMmU5LWMwNzEtNDViYS1hODkxLTQ2ODE3YzE3NTlmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRowDQYJKoZIhvcNAQELBQADggEBAHkFb5VJycw6L82QYKLEo17c K0pfWR7klz+zaM0AufbdXK6h5pzOk+bcx088eT0ssEVayOxD10ym2XlDITLDWR51 7yX/tooiKXppteagHYgFNUOv8ZqWVpeLn+dot8CLec5tyfQ54V9dVAIYk8rdpSNU +Kx16nqWm3iTmxRiVKyvOu/nnI6EfC5kmwW0+XD6Y+DwqgxRvLzqY5TpkSstO9My 6nc3cileDSg7Jh7l54Dt8PcPN2/iGUDQgHWQZDY8imxLk2nPtwc1c2Zam27F6Y2X H1hguszVz5ylydlBB0qa09MI//gUFxisTm+TGHJJmYaTb8sTLzpjy1pAnc1dcKg= -----END CERTIFICATE-----Generated at Wed May 13 00:40:02 2026 by rpki-client