$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa File: 973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa (raw, json) Hash identifier: sQdNlzLv+ilN+YgerPoVROv/kn1a3OO4awkbkc0Ixyg= Subject key identifier: CD:5C:40:38:E0:F8:C9:F0:63:59:9C:CF:61:7E:1D:24:73:43:F3:05 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4FA811319677AD11536EE3C562701667E6078DC2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa Signing time: Mon 04 May 2026 15:10:21 +0000 ROA not before: Mon 04 May 2026 15:10:21 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:a8:11:31:96:77:ad:11:53:6e:e3:c5:62:70:16:67:e6:07:8d:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:21 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=8de2f0d75bb06b823dbb6dfc0e0ff9c4adfd88763258c1816456febea7e9af35, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ce:72:3b:16:ba:86:36:d8:31:dc:a0:9f:c1: 74:85:e2:70:a8:ff:3e:96:b3:96:c7:e5:c9:3f:7e: 72:e6:a0:61:55:3b:17:6c:11:d2:7b:11:b2:0e:2b: bd:b3:70:ff:68:0e:cd:b1:60:9d:44:21:5f:12:ca: b5:6c:40:99:0d:63:7a:21:b7:92:4b:0a:7f:d3:b5: 6c:3a:32:80:d1:d4:e0:4c:8e:e0:ef:04:de:38:69: 2c:18:8c:d7:38:aa:3a:55:11:ea:c2:bb:85:be:92: b9:42:f2:2d:d7:ea:d6:a8:4b:f1:f1:45:0f:ff:4f: 78:a7:5b:db:e2:68:f0:fc:1d:d6:49:0b:d6:dd:22: 07:4e:b7:0f:d3:9c:6b:c4:ba:60:16:c0:0f:5c:a8: 63:a3:0a:ec:54:c9:d8:e2:50:a1:3b:27:4c:9b:76: fd:33:7a:9c:22:c9:1e:5b:2d:4c:df:1b:98:fb:84: 65:ec:88:d6:48:b1:01:39:ad:05:da:12:65:b4:0b: 98:5b:ad:24:1b:cf:04:e3:3a:08:6b:ca:14:bb:2b: 7c:4f:3c:c3:da:ee:dc:d7:d7:b3:94:98:40:0e:df: 27:0a:32:94:45:10:3a:03:b0:d6:62:20:6b:73:9d: 7d:9c:7f:af:d1:0d:02:9d:7c:b0:cc:f5:6c:52:cc: a5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:5C:40:38:E0:F8:C9:F0:63:59:9C:CF:61:7E:1D:24:73:43:F3:05 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6120::/48 Signature Algorithm: sha256WithRSAEncryption 87:d0:ae:7b:5e:92:af:cd:35:08:83:9e:cc:52:89:9a:8e:a2: 96:b1:17:9e:da:94:04:ec:8f:36:a5:54:9e:84:80:96:19:ee: c4:f1:c2:79:bb:fd:dc:7e:f0:21:86:a6:96:9b:2c:4f:51:c3: 1c:ed:35:9c:7a:13:bb:54:43:2d:15:9a:5b:e5:42:73:df:2a: f2:49:23:c8:48:f9:b9:93:04:af:60:45:d0:c3:0e:99:5d:16: 05:ee:94:d3:ae:30:3f:80:ec:5a:a0:27:10:56:1f:39:a4:d0: fd:1b:e3:56:4c:4e:88:66:c3:10:12:15:be:ba:6f:1c:a4:49: 20:f0:cb:3d:e0:70:a2:39:b3:86:c5:94:7e:70:03:4d:43:d2: 53:3d:50:47:b1:e0:e6:b8:bc:fb:b4:65:9a:1d:66:a6:f6:d3: 02:9c:19:54:e9:8c:71:1b:95:ff:1a:50:0a:10:a2:a5:df:3c: 9b:16:71:d4:2e:48:a9:4b:ba:6a:e0:8c:2c:d7:83:d6:49:5b: f1:86:ac:d7:ae:33:f2:1e:2e:94:c8:88:01:19:b6:54:a7:00: 10:1a:a3:18:35:ed:08:7d:24:d6:ef:05:47:8d:a1:6c:3f:5d: f8:f2:68:97:11:51:98:6f:9a:b5:30:d1:65:f2:2e:42:ab:6f: 60:33:d6:09 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUT6gRMZZ3rRFTbuPFYnAWZ+YHjcIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDIxWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZGUyZjBkNzViYjA2YjgyM2RiYjZkZmMwZTBmZjljNGFk ZmQ4ODc2MzI1OGMxODE2NDU2ZmViZWE3ZTlhZjM1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdznI7FrqGNtgx3KCfwXSF4nCo/z6Ws5bH5ck/fnLmoGFV OxdsEdJ7EbIOK72zcP9oDs2xYJ1EIV8SyrVsQJkNY3oht5JLCn/TtWw6MoDR1OBM juDvBN44aSwYjNc4qjpVEerCu4W+krlC8i3X6taoS/HxRQ//T3inW9viaPD8HdZJ C9bdIgdOtw/TnGvEumAWwA9cqGOjCuxUydjiUKE7J0ybdv0zepwiyR5bLUzfG5j7 hGXsiNZIsQE5rQXaEmW0C5hbrSQbzwTjOghryhS7K3xPPMPa7tzX17OUmEAO3ycK MpRFEDoDsNZiIGtznX2cf6/RDQKdfLDM9WxSzKWXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzVxAOOD4yfBjWZzPYX4dJHND8wUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3M2U4MjFjLThiMmMtNGMyYi05M2ZjLTJlMDBlZjcyMWZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSAwDQYJKoZIhvcNAQELBQADggEBAIfQrntekq/NNQiDnsxSiZqO opaxF57alATsjzalVJ6EgJYZ7sTxwnm7/dx+8CGGppabLE9RwxztNZx6E7tUQy0V mlvlQnPfKvJJI8hI+bmTBK9gRdDDDpldFgXulNOuMD+A7FqgJxBWHzmk0P0b41ZM TohmwxASFb66bxykSSDwyz3gcKI5s4bFlH5wA01D0lM9UEex4Oa4vPu0ZZodZqb2 0wKcGVTpjHEblf8aUAoQoqXfPJsWcdQuSKlLumrgjCzXg9ZJW/GGrNeuM/IeLpTI iAEZtlSnABAaoxg17Qh9JNbvBUeNoWw/XfjyaJcRUZhvmrUw0WXyLkKrb2Az1gk= -----END CERTIFICATE-----Generated at Tue May 12 23:17:31 2026 by rpki-client