$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ba699c1e-9e17-4134-9d1f-8ba97ffd9f3e.roa File: ba699c1e-9e17-4134-9d1f-8ba97ffd9f3e.roa (raw, json) Hash identifier: 3JtVLFD703e8lG/VwPiu0QLf416ukT7wrQpjZwa086A= Subject key identifier: 3D:49:44:CA:0F:F7:A3:05:3A:AD:EE:20:5B:02:F1:13:E8:4D:14:C6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6FD9F1AEF9A22DC285BE520EAA0F0FA93EDE9D0A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ba699c1e-9e17-4134-9d1f-8ba97ffd9f3e.roa Signing time: Mon 04 May 2026 15:10:23 +0000 ROA not before: Mon 04 May 2026 15:10:23 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:611a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:d9:f1:ae:f9:a2:2d:c2:85:be:52:0e:aa:0f:0f:a9:3e:de:9d:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:23 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=95df56bf698fe949606a23768f6ea38c471228a640e4882e829cf34e025440c9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:de:44:86:2b:f8:49:9b:34:99:93:d1:1e:7d: c0:ad:84:0e:31:65:8b:53:00:26:44:cb:ba:3b:2c: 9d:ef:47:f4:a8:eb:9f:c5:25:63:de:cd:1d:3c:6f: ae:22:c5:9b:fa:c1:70:53:a4:f4:e2:d6:48:b0:a0: eb:14:8c:a7:80:52:26:76:c0:35:ff:5d:90:ba:19: 13:e0:35:3e:79:37:4e:41:e4:35:9b:c6:98:be:97: 28:38:0e:1f:89:a7:41:c8:aa:98:51:6d:0f:78:09: 0c:63:4b:ba:85:65:28:d1:59:1e:db:8e:c2:e3:33: b5:19:06:57:4e:a5:58:3a:3d:ef:f7:38:cb:01:68: a2:7f:72:1c:88:c7:f1:dd:50:49:e6:08:e9:18:6a: de:6c:a3:f3:f3:50:34:32:79:d2:ef:34:a0:d3:35: bc:8e:23:41:53:1d:f6:1a:86:88:4f:08:4e:8d:04: ad:4a:57:27:58:fb:eb:c7:c9:3d:4f:70:11:18:b4: c7:c3:5e:1b:bd:4c:62:05:8e:5c:04:de:ee:07:37: 28:c8:7b:70:59:c4:94:da:f9:eb:2c:32:ad:8c:be: 2e:b4:70:53:e7:d4:6c:af:22:12:e8:c2:57:61:91: 6b:91:89:a6:b9:8c:d9:12:3e:d1:cb:a8:14:36:bf: e1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:49:44:CA:0F:F7:A3:05:3A:AD:EE:20:5B:02:F1:13:E8:4D:14:C6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ba699c1e-9e17-4134-9d1f-8ba97ffd9f3e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611a::/48 Signature Algorithm: sha256WithRSAEncryption 2f:1e:95:40:a3:d8:f5:97:ae:14:cb:80:06:33:da:68:70:d1: 69:36:b0:87:53:79:40:68:70:57:3c:45:13:c7:d4:df:b0:6c: f2:26:e2:fb:5c:e0:4e:92:11:02:3d:00:52:d0:e7:11:26:eb: 84:46:2b:64:58:5f:15:b7:64:b5:9a:63:fc:fe:59:20:7a:35: ed:a1:a5:81:ad:2c:35:bf:da:a4:f2:9d:8d:b0:3a:e9:b0:0a: 3d:5a:f8:f8:83:b8:50:fb:60:f0:dc:2a:43:da:91:43:d5:0c: 58:1c:66:2e:92:63:61:b1:be:84:91:a2:f6:e0:a5:98:a1:e4: c5:4d:78:f2:dd:01:76:75:73:b9:f4:6b:d2:ce:bd:81:4d:2a: 78:e8:25:51:44:43:60:2a:20:af:4a:05:61:fc:e5:c3:bd:7c: e6:15:4f:74:39:0b:a1:9c:19:96:f8:f2:ec:23:88:69:68:cc: da:72:d9:cb:3c:45:4a:02:a1:03:81:23:e7:95:3a:7c:72:52: 4c:f4:0d:36:5d:ad:a4:75:84:10:19:ec:95:c0:2d:05:92:cb: bf:1f:c3:34:15:db:87:e5:b8:6a:87:8f:89:99:53:39:26:99: 85:ea:ed:b4:5f:9e:0a:d0:4a:2f:64:db:ab:57:0a:6c:f5:8d: 5e:52:dc:d7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUb9nxrvmiLcKFvlIOqg8PqT7enQowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDIzWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWRmNTZiZjY5OGZlOTQ5NjA2YTIzNzY4ZjZlYTM4YzQ3 MTIyOGE2NDBlNDg4MmU4MjljZjM0ZTAyNTQ0MGM5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe3kSGK/hJmzSZk9EefcCthA4xZYtTACZEy7o7LJ3vR/So 65/FJWPezR08b64ixZv6wXBTpPTi1kiwoOsUjKeAUiZ2wDX/XZC6GRPgNT55N05B 5DWbxpi+lyg4Dh+Jp0HIqphRbQ94CQxjS7qFZSjRWR7bjsLjM7UZBldOpVg6Pe/3 OMsBaKJ/chyIx/HdUEnmCOkYat5so/PzUDQyedLvNKDTNbyOI0FTHfYahohPCE6N BK1KVydY++vHyT1PcBEYtMfDXhu9TGIFjlwE3u4HNyjIe3BZxJTa+essMq2Mvi60 cFPn1GyvIhLowldhkWuRiaa5jNkSPtHLqBQ2v+EzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPUlEyg/3owU6re4gWwLxE+hNFMYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JhNjk5YzFlLTllMTctNDEzNC05ZDFmLThiYTk3ZmZkOWYzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRowDQYJKoZIhvcNAQELBQADggEBAC8elUCj2PWXrhTLgAYz2mhw 0Wk2sIdTeUBocFc8RRPH1N+wbPIm4vtc4E6SEQI9AFLQ5xEm64RGK2RYXxW3ZLWa Y/z+WSB6Ne2hpYGtLDW/2qTynY2wOumwCj1a+PiDuFD7YPDcKkPakUPVDFgcZi6S Y2GxvoSRovbgpZih5MVNePLdAXZ1c7n0a9LOvYFNKnjoJVFEQ2AqIK9KBWH85cO9 fOYVT3Q5C6GcGZb48uwjiGlozNpy2cs8RUoCoQOBI+eVOnxyUkz0DTZdraR1hBAZ 7JXALQWSy78fwzQV24fluGqHj4mZUzkmmYXq7bRfngrQSi9k26tXCmz1jV5S3Nc= -----END CERTIFICATE-----Generated at Wed May 13 01:25:27 2026 by rpki-client