$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa File: af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa (raw, json) Hash identifier: rv7qHCEAPHJyqaNwHWbBh8aQUiBaqmFN2PAlsO7jYyA= Subject key identifier: 8C:21:99:E9:D5:5C:45:E4:CB:0A:89:0B:E3:F5:DA:D0:03:89:D8:DD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3820E39D62696714C9754D7E45336AE1D9877E5C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa Signing time: Fri 08 May 2026 03:10:35 +0000 ROA not before: Fri 08 May 2026 03:10:35 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6122::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:20:e3:9d:62:69:67:14:c9:75:4d:7e:45:33:6a:e1:d9:87:7e:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 8 03:10:35 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=8a23a0283124cadf38f9493efd65b7c1abda01ebc8f6c6ee19d07ece76066502, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a9:aa:19:33:8c:e6:f3:5a:18:7e:45:3f:d5: 1f:d9:79:60:93:60:15:63:66:42:ec:cd:1f:e4:98: a0:70:9d:a3:71:a4:26:8e:f4:e1:0f:64:f1:b9:48: 34:6e:1c:3a:48:59:03:e7:1f:b6:3d:e9:e6:c8:ca: 9c:0f:fc:f6:ac:b7:8b:81:92:ab:93:b2:d8:c8:90: 9e:fc:54:b3:ab:2c:72:3b:bf:d3:0c:98:e8:ee:9a: 08:fd:cb:50:6e:24:d6:db:cc:a7:5e:d7:72:e4:01: 40:29:5b:85:1f:ed:0e:bb:8e:ba:0b:8c:d9:9e:a5: 6f:16:b6:e6:63:db:5c:14:4a:14:31:ed:ff:e4:ed: e6:18:ca:a8:3e:0d:74:06:9f:fd:48:7d:fa:41:d3: 5d:ed:15:ef:19:9c:47:df:3b:53:86:6f:d3:19:a7: f6:2f:02:e7:86:97:4d:99:45:14:eb:ba:b6:62:6d: c6:fb:81:f8:63:4a:d2:0b:68:e3:53:e1:32:46:7c: 98:70:1a:b9:30:b7:70:78:54:26:14:55:cc:24:e1: 9e:14:bf:ac:3f:21:5a:b6:fb:ce:6a:b6:79:9a:3a: 4e:37:08:fa:e8:8c:39:70:b4:b2:c9:22:49:93:14: be:77:7b:b5:6e:77:88:39:7c:8b:73:b9:8e:52:24: 38:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:21:99:E9:D5:5C:45:E4:CB:0A:89:0B:E3:F5:DA:D0:03:89:D8:DD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6122::/48 Signature Algorithm: sha256WithRSAEncryption 01:49:a8:e2:74:35:7d:98:be:26:49:6c:e3:85:3d:48:02:f7: 02:fb:53:16:31:9e:f5:2d:95:a0:80:92:78:08:df:aa:7f:f5: 54:5a:92:5e:ae:e1:a3:68:86:3c:a5:a1:12:24:3c:fb:10:6c: 8f:99:2e:ec:40:df:52:b3:e8:ad:7b:60:8d:0e:1e:b4:30:a8: e9:53:fa:27:b8:27:32:f9:1a:a9:57:4c:a2:54:cb:4b:02:2f: 32:a0:d9:a9:26:d5:ff:d7:26:42:cd:49:20:1e:2e:f3:4a:cb: 2d:05:9d:50:5d:4a:6a:ea:9a:aa:eb:0d:95:48:a4:0a:74:0c: 12:6c:b0:72:4a:63:49:69:28:99:66:fd:80:85:23:f8:0a:fe: 35:fc:f9:67:c2:9f:3d:f1:40:41:fe:f7:36:a5:29:54:7b:6e: 7b:fd:c8:f9:3c:8e:8e:2b:ac:85:a3:ff:14:55:2d:cf:99:0c: 1a:e3:95:bd:ed:be:45:bd:1d:2e:ad:f5:71:5a:79:b9:7b:f0: 3b:68:32:d9:7e:7d:34:96:ac:5f:ff:8f:1f:08:51:af:5b:89: 8a:ad:50:eb:b3:ca:29:79:67:d1:50:cc:b6:6f:b2:e7:a7:43: 30:90:5a:bf:3f:e7:c8:24:22:74:64:22:53:dc:c6:e4:34:46: 36:96:48:20 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOCDjnWJpZxTJdU1+RTNq4dmHflwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA4MDMxMDM1WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTIzYTAyODMxMjRjYWRmMzhmOTQ5M2VmZDY1YjdjMWFi ZGEwMWViYzhmNmM2ZWUxOWQwN2VjZTc2MDY2NTAyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuqaoZM4zm81oYfkU/1R/ZeWCTYBVjZkLszR/kmKBwnaNx pCaO9OEPZPG5SDRuHDpIWQPnH7Y96ebIypwP/Past4uBkquTstjIkJ78VLOrLHI7 v9MMmOjumgj9y1BuJNbbzKde13LkAUApW4Uf7Q67jroLjNmepW8WtuZj21wUShQx 7f/k7eYYyqg+DXQGn/1IffpB013tFe8ZnEffO1OGb9MZp/YvAueGl02ZRRTrurZi bcb7gfhjStILaONT4TJGfJhwGrkwt3B4VCYUVcwk4Z4Uv6w/IVq2+85qtnmaOk43 CProjDlwtLLJIkmTFL53e7Vud4g5fItzuY5SJDg5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjCGZ6dVcReTLCokL4/Xa0AOJ2N0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FmNmQwY2ExLWRkNzctNDI0OS1hNWNmLWRkNzU3NGRiMzRmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSIwDQYJKoZIhvcNAQELBQADggEBAAFJqOJ0NX2YviZJbOOFPUgC 9wL7UxYxnvUtlaCAkngI36p/9VRakl6u4aNohjyloRIkPPsQbI+ZLuxA31Kz6K17 YI0OHrQwqOlT+ie4JzL5GqlXTKJUy0sCLzKg2akm1f/XJkLNSSAeLvNKyy0FnVBd SmrqmqrrDZVIpAp0DBJssHJKY0lpKJlm/YCFI/gK/jX8+WfCnz3xQEH+9zalKVR7 bnv9yPk8jo4rrIWj/xRVLc+ZDBrjlb3tvkW9HS6t9XFaebl78DtoMtl+fTSWrF// jx8IUa9biYqtUOuzyil5Z9FQzLZvsuenQzCQWr8/58gkInRkIlPcxuQ0RjaWSCA= -----END CERTIFICATE-----Generated at Wed May 13 00:57:49 2026 by rpki-client