$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c02ee773-2479-4a68-a9fa-4a6dd18d6083.roa File: c02ee773-2479-4a68-a9fa-4a6dd18d6083.roa (raw, json) Hash identifier: Vcq8yU0S2cjydlj4FXfbHw7C9ruNTrzOWP8iL47BTdo= Subject key identifier: 88:A3:3C:C9:90:F2:D7:42:A0:79:16:6B:95:70:05:92:08:85:60:35 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 71644AB7705A13B54809A88AB36D4541E0151C02 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c02ee773-2479-4a68-a9fa-4a6dd18d6083.roa Signing time: Mon 11 May 2026 01:30:16 +0000 ROA not before: Mon 11 May 2026 01:30:16 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f2:7012::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:64:4a:b7:70:5a:13:b5:48:09:a8:8a:b3:6d:45:41:e0:15:1c:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 11 01:30:16 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=2cad2a6a15ae5fd5ebbcbc40472ebca93cf70d90b897e9b9b0388108764278fc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:92:e8:cc:9a:37:f9:c1:3a:15:7c:6d:56:d0: 7f:9d:83:b2:bd:f8:34:c8:64:4d:92:96:e9:4f:8e: 86:22:0d:86:62:fe:da:b2:50:d3:95:ef:bf:33:0b: c0:2d:e2:c2:2f:03:f4:e1:35:8c:30:e9:46:e4:b7: 67:c6:f4:6e:27:2a:17:0d:a1:49:df:5b:d6:c3:f3: ef:6c:db:86:04:ea:72:8c:60:f5:ac:79:64:c0:3e: e9:53:14:dd:e5:83:f9:07:0b:9e:84:20:22:6a:18: bf:7b:d6:17:ae:6b:57:e5:b9:24:7e:93:8f:42:2b: ac:a2:01:62:b3:79:1d:5f:de:34:02:ed:2e:15:b8: db:0c:aa:bf:7f:ed:8b:a1:c1:c8:c5:55:c2:6c:ee: f7:80:c8:50:dc:9a:2d:f3:f2:22:36:64:8d:73:d5: 97:47:ee:7c:68:5e:71:70:e4:e8:5e:a4:ad:85:e2: 07:d2:62:c1:c1:cd:8e:9a:30:e9:c8:69:c0:14:55: 84:9b:26:98:91:ac:9a:bb:9c:f9:97:47:ea:31:e5: 53:d0:5e:6c:85:ff:d0:f0:d3:6d:47:77:8e:eb:59: 38:46:05:9c:4b:f1:78:26:cb:13:83:cd:6f:5c:c0: 21:9d:47:c3:f0:34:04:ae:d2:52:e5:9d:53:23:05: 8d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:A3:3C:C9:90:F2:D7:42:A0:79:16:6B:95:70:05:92:08:85:60:35 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c02ee773-2479-4a68-a9fa-4a6dd18d6083.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7012::/48 Signature Algorithm: sha256WithRSAEncryption 84:fe:ed:36:aa:c8:1b:32:d3:67:59:26:8d:cd:4d:53:3a:74: ce:37:98:f6:ac:0a:0d:b1:12:8f:aa:4f:c4:17:d5:33:de:36: b8:77:d6:19:5d:0d:2a:3c:ff:68:19:05:4e:d3:81:b0:13:8f: 98:79:ef:36:1f:14:e3:03:91:6e:ab:ff:49:bb:1a:c5:3e:71: 70:59:13:f3:fa:0a:8d:f8:34:64:99:24:70:7d:f6:56:6e:95: 2e:50:4e:70:7d:42:4d:ee:bf:ae:c0:1e:7a:c4:d8:1f:de:3f: 6a:d3:ba:81:13:d6:62:2c:d0:e2:0a:97:0d:d1:9f:fa:be:2c: 37:f1:cc:be:ca:37:8b:b4:8a:83:99:54:04:43:a1:73:ef:a4: 72:31:16:21:b1:5d:c9:3e:6d:10:42:e8:92:4e:dd:6f:74:ad: 36:b9:8a:7c:6b:b1:20:e4:65:e4:4d:5d:ac:13:b7:a5:52:e6: 56:cb:23:36:79:27:ed:5c:8f:6d:2e:4b:5e:7f:14:77:c2:56: dd:fc:09:5f:49:6d:a1:d7:4a:bf:b1:1a:ce:a9:32:99:21:53: 52:67:32:8c:23:98:67:07:1a:f2:22:dc:de:9a:fa:f5:72:17: 11:6d:20:28:99:70:14:1e:cd:86:5a:2b:9e:81:06:b2:44:5f: 97:2c:91:de -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcWRKt3BaE7VICaiKs21FQeAVHAIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTExMDEzMDE2WhcNMjYwODA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2FkMmE2YTE1YWU1ZmQ1ZWJiY2JjNDA0NzJlYmNhOTNj ZjcwZDkwYjg5N2U5YjliMDM4ODEwODc2NDI3OGZjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjkujMmjf5wToVfG1W0H+dg7K9+DTIZE2SlulPjoYiDYZi /tqyUNOV778zC8At4sIvA/ThNYww6Ubkt2fG9G4nKhcNoUnfW9bD8+9s24YE6nKM YPWseWTAPulTFN3lg/kHC56EICJqGL971heua1fluSR+k49CK6yiAWKzeR1f3jQC 7S4VuNsMqr9/7YuhwcjFVcJs7veAyFDcmi3z8iI2ZI1z1ZdH7nxoXnFw5OhepK2F 4gfSYsHBzY6aMOnIacAUVYSbJpiRrJq7nPmXR+ox5VPQXmyF/9Dw021Hd47rWThG BZxL8XgmyxODzW9cwCGdR8PwNASu0lLlnVMjBY1PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUiKM8yZDy10KgeRZrlXAFkgiFYDUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MwMmVlNzczLTI0NzktNGE2OC1hOWZhLTRhNmRkMThkNjA4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycBIwDQYJKoZIhvcNAQELBQADggEBAIT+7TaqyBsy02dZJo3NTVM6 dM43mPasCg2xEo+qT8QX1TPeNrh31hldDSo8/2gZBU7TgbATj5h57zYfFOMDkW6r /0m7GsU+cXBZE/P6Co34NGSZJHB99lZulS5QTnB9Qk3uv67AHnrE2B/eP2rTuoET 1mIs0OIKlw3Rn/q+LDfxzL7KN4u0ioOZVARDoXPvpHIxFiGxXck+bRBC6JJO3W90 rTa5inxrsSDkZeRNXawTt6VS5lbLIzZ5J+1cj20uS15/FHfCVt38CV9JbaHXSr+x Gs6pMpkhU1JnMowjmGcHGvIi3N6a+vVyFxFtICiZcBQezYZaK56BBrJEX5cskd4= -----END CERTIFICATE-----Generated at Tue May 12 22:57:34 2026 by rpki-client