$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ac2a9611-2cea-40b0-bf97-738c3e8fa5fe.roa File: ac2a9611-2cea-40b0-bf97-738c3e8fa5fe.roa (raw, json) Hash identifier: nq1rlcjmayilpYlgLE+8zbfEWnoSRtvnUW18R7MSJyE= Subject key identifier: C6:B6:02:56:FB:10:C1:29:68:EC:22:2C:EE:4E:5C:2B:29:4D:F9:8E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1A01747C9889CFEFD3F9E53D6CEDF1AD5EA98787 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ac2a9611-2cea-40b0-bf97-738c3e8fa5fe.roa Signing time: Tue 28 Apr 2026 00:10:07 +0000 ROA not before: Tue 28 Apr 2026 00:10:07 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fa::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:01:74:7c:98:89:cf:ef:d3:f9:e5:3d:6c:ed:f1:ad:5e:a9:87:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 28 00:10:07 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=e9969661a0ce6a1d481c6767a839f19f3e38abcc8606144cd75aa9fb62abdbb1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:db:66:4c:3f:97:50:79:99:bf:90:72:7f:81: 8c:ce:86:8d:2d:3d:52:0c:89:13:3d:f6:54:d3:a1: f5:04:d7:46:77:16:3c:fe:e6:64:73:f8:87:ed:47: 4f:3b:a6:a3:50:7b:cb:64:44:ab:ab:3d:99:5b:48: 97:d0:6f:5e:8d:4d:58:b1:a2:87:04:68:f0:81:09: 75:8b:a3:1c:2d:cc:c2:b6:89:ab:d3:b9:43:85:84: b2:24:5f:87:bb:c3:04:ff:ea:ad:86:f9:56:14:f5: eb:e0:be:7d:13:47:05:18:c6:d7:39:1c:31:c6:26: 4b:97:eb:a1:39:05:b7:90:cb:bc:ea:ca:b4:10:a9: 0e:c0:43:a8:93:f6:0f:82:cf:9b:98:0a:c7:23:37: 8b:d0:29:ce:cd:ed:a6:da:81:50:27:bd:c5:a7:b4: 5e:86:88:dc:5a:b5:f7:26:dd:c0:d3:af:bf:7a:3f: b4:be:fb:e0:81:4f:18:c5:3c:12:38:3c:38:f1:e9: a9:be:92:b7:9e:77:da:bf:dc:e9:d3:f6:d3:20:00: 00:51:98:c9:a8:4c:a5:a5:9e:69:03:6c:15:31:05: e4:47:af:ba:f8:4b:76:e8:11:3c:73:e5:d4:ac:b6: 87:8a:63:9a:91:da:5d:80:9d:48:18:90:5e:eb:b1: 6c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B6:02:56:FB:10:C1:29:68:EC:22:2C:EE:4E:5C:2B:29:4D:F9:8E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ac2a9611-2cea-40b0-bf97-738c3e8fa5fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fa::/32 Signature Algorithm: sha256WithRSAEncryption 90:e9:7d:4d:54:ac:f8:ed:6a:f6:23:f0:f5:5f:5c:02:7a:37: fe:5c:ad:8f:23:68:fe:86:d7:d4:83:8e:e6:77:ce:da:a5:7c: ca:b5:fe:b5:82:89:1e:8d:a6:bc:96:45:73:c3:b8:48:d2:2a: 40:b9:ba:19:1a:5f:40:1f:d1:81:28:3a:25:ff:da:05:b6:72: cd:a4:4f:7a:61:fb:ff:81:ba:2b:71:a6:f2:7b:c4:af:6b:5e: a5:0e:09:3e:9e:3e:b6:fa:16:b5:13:03:9f:11:6f:bb:35:bd: 9e:4d:3a:30:76:fb:ae:4e:66:c0:07:5b:5d:c8:15:42:31:85: 27:d9:9a:18:99:8d:b1:b4:aa:5f:25:42:64:6f:6d:f6:c4:56: 44:37:e7:87:1b:81:db:ea:75:87:88:2d:df:84:32:3f:87:bb: ef:b2:fb:ed:21:00:19:4e:dd:e0:f9:83:47:43:e5:71:68:1b: fa:7d:f1:ed:ca:81:40:b0:97:d2:72:4a:74:cf:a9:07:6c:43: d6:8d:c6:7a:c4:57:29:f7:8b:09:2b:0d:e2:97:e9:cb:69:af: 40:6f:01:f2:aa:d0:b3:28:89:6b:e2:9c:23:20:85:63:a0:93: 31:ab:60:66:1f:bc:10:4a:c0:4e:32:64:a7:c0:12:36:08:53: 9b:0f:43:f3 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUGgF0fJiJz+/T+eU9bO3xrV6ph4cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDI4MDAxMDA3WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTk2OTY2MWEwY2U2YTFkNDgxYzY3NjdhODM5ZjE5ZjNl MzhhYmNjODYwNjE0NGNkNzVhYTlmYjYyYWJkYmIxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDY22ZMP5dQeZm/kHJ/gYzOho0tPVIMiRM99lTTofUE10Z3 Fjz+5mRz+IftR087pqNQe8tkRKurPZlbSJfQb16NTVixoocEaPCBCXWLoxwtzMK2 iavTuUOFhLIkX4e7wwT/6q2G+VYU9evgvn0TRwUYxtc5HDHGJkuX66E5BbeQy7zq yrQQqQ7AQ6iT9g+Cz5uYCscjN4vQKc7N7abagVAnvcWntF6GiNxatfcm3cDTr796 P7S+++CBTxjFPBI4PDjx6am+kreed9q/3OnT9tMgAABRmMmoTKWlnmkDbBUxBeRH r7r4S3boETxz5dSstoeKY5qR2l2AnUgYkF7rsWzjAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUxrYCVvsQwSlo7CIs7k5cKylN+Y4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FjMmE5NjExLTJjZWEtNDBiMC1iZjk3LTczOGMzZThmYTVmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAPD6MA0GCSqGSIb3DQEBCwUAA4IBAQCQ6X1NVKz47Wr2I/D1X1wCejf+ XK2PI2j+htfUg47md87apXzKtf61gokejaa8lkVzw7hI0ipAuboZGl9AH9GBKDol /9oFtnLNpE96Yfv/gborcabye8Sva16lDgk+nj62+ha1EwOfEW+7Nb2eTTowdvuu TmbAB1tdyBVCMYUn2ZoYmY2xtKpfJUJkb232xFZEN+eHG4Hb6nWHiC3fhDI/h7vv svvtIQAZTt3g+YNHQ+VxaBv6ffHtyoFAsJfSckp0z6kHbEPWjcZ6xFcp94sJKw3i l+nLaa9AbwHyqtCzKIlr4pwjIIVjoJMxq2BmH7wQSsBOMmSnwBI2CFObD0Pz -----END CERTIFICATE-----Generated at Wed May 13 01:25:28 2026 by rpki-client