$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1ddf06f-fa7b-4d9a-969b-553930838905.roa File: c1ddf06f-fa7b-4d9a-969b-553930838905.roa (raw, json) Hash identifier: 794yTjvdTQERIwPoUI7hvglFMLw8K+nFD6Uft0E5v0U= Subject key identifier: 9C:8A:F2:73:7F:9B:89:DA:6C:33:EA:FA:EE:37:10:3E:E2:17:4C:94 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 13CCEE20C3A6F2EF19357236A6CF18308B4F6786 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1ddf06f-fa7b-4d9a-969b-553930838905.roa Signing time: Mon 04 May 2026 15:00:08 +0000 ROA not before: Mon 04 May 2026 15:00:08 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6119::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:cc:ee:20:c3:a6:f2:ef:19:35:72:36:a6:cf:18:30:8b:4f:67:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:00:08 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=84c7d01750023dcbbe84bff11668f8428131dcb3106d8a0dd9bbc21eff8e8b36, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f2:4b:e5:c2:09:b5:96:66:23:52:53:f6:cb: 62:8d:8f:9c:8b:0f:95:4d:c0:6c:ac:40:e1:1b:bc: 55:47:44:38:a8:ac:67:bd:02:0a:a3:1f:87:4c:42: 73:bd:b7:6e:17:18:5f:00:11:37:5c:83:74:d1:c8: 74:17:c7:0b:45:9c:98:b4:98:38:e3:67:92:cc:18: 40:f6:31:98:38:21:48:a6:8a:bc:42:f1:f0:1b:81: b0:0c:39:f6:dc:a0:66:63:a7:50:23:06:bb:b7:63: 76:2a:46:2c:4a:8d:19:08:6c:ea:d2:65:43:8e:73: 9e:0c:d9:e6:ce:ef:f8:de:82:7a:b5:33:37:86:39: 8d:03:74:35:89:82:46:36:b3:3c:27:33:66:6e:ff: 25:cc:8b:37:a2:09:6e:76:48:a5:d2:e7:04:21:d3: 70:15:cb:c2:e3:14:40:70:dc:f2:a3:75:03:6e:93: 3c:88:c1:01:da:a9:db:2e:d2:b8:68:fc:29:27:a9: 7f:1d:54:2a:20:4a:9f:f3:f4:e9:43:ce:42:be:b1: e5:68:ed:ce:b9:77:ca:f6:ea:e8:7e:c1:36:49:f6: dc:0f:f2:d3:d1:36:d4:b5:96:84:17:46:03:b1:88: 11:ff:36:fe:f3:03:ad:2c:b0:1b:af:73:35:ea:8d: 56:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:8A:F2:73:7F:9B:89:DA:6C:33:EA:FA:EE:37:10:3E:E2:17:4C:94 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1ddf06f-fa7b-4d9a-969b-553930838905.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6119::/48 Signature Algorithm: sha256WithRSAEncryption 86:ed:b1:36:18:39:d1:fe:94:c1:ed:92:ed:73:9f:b0:1d:ca: c5:56:fe:bd:d5:df:d7:c3:2c:de:83:84:2d:73:58:f1:a1:06: 55:37:fd:8d:b2:9e:ae:86:ab:e1:c2:52:05:4b:47:56:15:cd: ac:01:a3:04:9e:a8:f9:06:3c:15:16:7f:0e:8e:87:02:cf:58: d1:66:af:b7:e6:29:e4:97:c9:d3:8a:01:e5:89:a8:b8:4a:10: eb:8d:41:78:4d:22:7e:ef:0b:21:24:f5:6d:a5:76:d2:17:c1: 0f:22:5d:4d:08:ed:b3:af:a1:1f:da:39:1f:ba:6e:a7:11:b4: b9:4f:b9:8b:54:95:af:ae:99:89:b1:bc:e6:4f:28:a7:0d:2b: 5c:a6:25:08:c2:31:9c:d6:10:4f:7d:8d:3a:74:2d:14:7e:34: 72:fc:b8:af:88:88:51:12:62:3e:61:57:af:bf:c1:e6:4c:19: 13:6c:f8:f7:07:33:17:82:bd:1e:2e:50:d4:aa:6b:02:d6:86: b0:02:ca:1d:d9:fe:ad:9e:1b:12:e7:8d:1e:7e:fa:bd:82:8d: 44:bb:0f:53:31:c7:08:49:2f:c4:ad:cc:a6:c1:ce:37:33:7c: eb:e9:e6:6a:ad:16:99:79:cc:bd:b2:50:91:f9:63:3a:a7:88: 7c:85:fd:9d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUE8zuIMOm8u8ZNXI2ps8YMItPZ4YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUwMDA4WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGM3ZDAxNzUwMDIzZGNiYmU4NGJmZjExNjY4Zjg0Mjgx MzFkY2IzMTA2ZDhhMGRkOWJiYzIxZWZmOGU4YjM2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh8kvlwgm1lmYjUlP2y2KNj5yLD5VNwGysQOEbvFVHRDio rGe9AgqjH4dMQnO9t24XGF8AETdcg3TRyHQXxwtFnJi0mDjjZ5LMGED2MZg4IUim irxC8fAbgbAMOfbcoGZjp1AjBru3Y3YqRixKjRkIbOrSZUOOc54M2ebO7/jegnq1 MzeGOY0DdDWJgkY2szwnM2Zu/yXMizeiCW52SKXS5wQh03AVy8LjFEBw3PKjdQNu kzyIwQHaqdsu0rho/CknqX8dVCogSp/z9OlDzkK+seVo7c65d8r26uh+wTZJ9twP 8tPRNtS1loQXRgOxiBH/Nv7zA60ssBuvczXqjVYlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnIryc3+bidpsM+r67jcQPuIXTJQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxZGRmMDZmLWZhN2ItNGQ5YS05NjliLTU1MzkzMDgzODkwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRkwDQYJKoZIhvcNAQELBQADggEBAIbtsTYYOdH+lMHtku1zn7Ad ysVW/r3V39fDLN6DhC1zWPGhBlU3/Y2ynq6Gq+HCUgVLR1YVzawBowSeqPkGPBUW fw6OhwLPWNFmr7fmKeSXydOKAeWJqLhKEOuNQXhNIn7vCyEk9W2ldtIXwQ8iXU0I 7bOvoR/aOR+6bqcRtLlPuYtUla+umYmxvOZPKKcNK1ymJQjCMZzWEE99jTp0LRR+ NHL8uK+IiFESYj5hV6+/weZMGRNs+PcHMxeCvR4uUNSqawLWhrACyh3Z/q2eGxLn jR5++r2CjUS7D1MxxwhJL8StzKbBzjczfOvp5mqtFpl5zL2yUJH5YzqniHyF/Z0= -----END CERTIFICATE-----Generated at Wed May 13 01:01:02 2026 by rpki-client