$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a188fe83-6643-4c1d-a083-434d151a0315.roa File: a188fe83-6643-4c1d-a083-434d151a0315.roa (raw, json) Hash identifier: cpLuX5sj7T1YJ8GdUAOvxcCpKG+VNwZjPbRPCVr5GR0= Subject key identifier: B6:02:AA:DC:A2:57:4B:2C:1D:B9:F7:0A:83:3B:96:6B:31:77:5E:98 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 322FA50A5752E202B1AD2BE29F9A96A6256D09D1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a188fe83-6643-4c1d-a083-434d151a0315.roa Signing time: Mon 04 May 2026 15:00:10 +0000 ROA not before: Mon 04 May 2026 15:00:10 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6121::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:2f:a5:0a:57:52:e2:02:b1:ad:2b:e2:9f:9a:96:a6:25:6d:09:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:00:10 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=442926a8733ce4d46062eb26852ab19993fd67cda91347a5467063fff563998b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:05:d4:f4:a8:6c:9f:f6:62:34:50:95:b6:04: 18:b6:e5:61:99:f4:5a:9a:3e:fd:50:53:8c:76:fa: 3b:2c:04:93:95:9a:c9:0e:3b:2d:93:84:67:5e:a4: 4f:94:b6:b9:e4:49:76:80:6c:7b:a7:51:10:73:67: b6:76:62:0a:16:b5:32:f2:b4:4c:a9:88:ef:00:2a: af:ca:3e:b9:e7:a3:22:0d:e9:86:5a:84:84:67:00: e8:03:64:16:ee:0b:6e:09:9b:3b:92:63:27:1f:12: 9c:32:27:bd:ba:88:41:90:29:50:f0:fa:68:02:60: f1:ff:8d:cc:bb:af:a3:c5:16:14:e5:76:ca:15:bf: a4:f8:d9:b1:70:dc:41:a2:94:0c:f3:ea:9e:f2:4d: 37:10:f7:d7:b1:9b:b9:65:e7:50:d5:e8:63:e6:0a: 9f:c5:0f:21:64:84:5c:7d:1c:09:ff:23:e8:44:b5: 67:22:1c:e5:41:53:06:1e:9e:6f:85:41:b9:4a:06: 99:e6:01:8a:bc:b7:6f:4e:20:29:10:1c:aa:dc:c9: 24:18:3d:a1:8e:fe:78:0f:c1:d4:1a:09:cd:09:5e: a6:1a:08:e1:95:c8:89:1f:a3:10:ba:fc:11:9a:0b: 01:54:1a:7e:8e:fa:7f:71:dc:ca:d6:82:d3:ae:84: a8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:02:AA:DC:A2:57:4B:2C:1D:B9:F7:0A:83:3B:96:6B:31:77:5E:98 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a188fe83-6643-4c1d-a083-434d151a0315.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6121::/48 Signature Algorithm: sha256WithRSAEncryption 46:c8:b3:69:99:1b:0a:f0:c3:fc:1c:34:cb:c1:56:11:f6:e7: 8a:46:31:dc:fe:42:b6:23:c9:e9:9f:08:18:80:7a:d7:bf:dc: eb:cc:ef:ca:a5:f0:f4:ae:e7:00:6d:e3:f9:e2:d4:43:a2:f1: 13:64:dd:27:35:10:c7:b5:23:4d:ab:5d:58:ba:ce:da:93:90: 74:09:61:d6:d2:9c:30:47:0a:cc:51:b2:83:09:1b:19:9e:d7: e0:93:66:d1:6c:e9:6f:71:3e:6f:a7:7c:a1:86:1f:cf:2e:e2: f2:5c:a4:9b:c2:96:06:6b:ee:13:4f:3b:f6:c4:36:1e:71:c0: 83:9f:c8:4a:f6:c6:91:f1:46:c5:7c:e2:bd:c6:d1:0e:82:9f: 5f:4f:e4:d0:b7:e4:79:27:4d:77:a6:47:5b:50:51:ea:c3:18: 97:45:95:4d:d8:38:97:07:be:36:c5:d7:cc:8b:77:a0:f3:cd: d8:9e:12:ad:c3:1f:b2:c1:d4:b7:23:d5:ef:14:13:c7:a7:c0: a6:5a:a2:e1:fa:28:a4:96:6d:13:6d:b5:5e:76:b3:c2:94:e2: fc:7d:83:2b:7a:26:f9:48:98:5f:bb:84:f7:7f:54:24:49:e6: 3c:30:29:8c:b9:9e:4e:54:fb:38:2b:ff:31:52:d8:28:f8:4b: b2:1c:93:ed -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMi+lCldS4gKxrSvin5qWpiVtCdEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUwMDEwWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDI5MjZhODczM2NlNGQ0NjA2MmViMjY4NTJhYjE5OTkz ZmQ2N2NkYTkxMzQ3YTU0NjcwNjNmZmY1NjM5OThiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEBdT0qGyf9mI0UJW2BBi25WGZ9FqaPv1QU4x2+jssBJOV mskOOy2ThGdepE+UtrnkSXaAbHunURBzZ7Z2YgoWtTLytEypiO8AKq/KPrnnoyIN 6YZahIRnAOgDZBbuC24JmzuSYycfEpwyJ726iEGQKVDw+mgCYPH/jcy7r6PFFhTl dsoVv6T42bFw3EGilAzz6p7yTTcQ99exm7ll51DV6GPmCp/FDyFkhFx9HAn/I+hE tWciHOVBUwYenm+FQblKBpnmAYq8t29OICkQHKrcySQYPaGO/ngPwdQaCc0JXqYa COGVyIkfoxC6/BGaCwFUGn6O+n9x3MrWgtOuhKgHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtgKq3KJXSywdufcKgzuWazF3XpgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExODhmZTgzLTY2NDMtNGMxZC1hMDgzLTQzNGQxNTFhMDMxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSEwDQYJKoZIhvcNAQELBQADggEBAEbIs2mZGwrww/wcNMvBVhH2 54pGMdz+QrYjyemfCBiAete/3OvM78ql8PSu5wBt4/ni1EOi8RNk3Sc1EMe1I02r XVi6ztqTkHQJYdbSnDBHCsxRsoMJGxme1+CTZtFs6W9xPm+nfKGGH88u4vJcpJvC lgZr7hNPO/bENh5xwIOfyEr2xpHxRsV84r3G0Q6Cn19P5NC35HknTXemR1tQUerD GJdFlU3YOJcHvjbF18yLd6DzzdieEq3DH7LB1Lcj1e8UE8enwKZaouH6KKSWbRNt tV52s8KU4vx9gyt6JvlImF+7hPd/VCRJ5jwwKYy5nk5U+zgr/zFS2Cj4S7Ick+0= -----END CERTIFICATE-----Generated at Wed May 13 01:46:11 2026 by rpki-client