$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ca586b6c-c586-4283-8392-892b53790b90.roa File: ca586b6c-c586-4283-8392-892b53790b90.roa (raw, json) Hash identifier: tSIIPJQFaC7FrT1MNlfkg76+3YZoz0rwoLySAATW5tE= Subject key identifier: 65:DA:C3:AC:B8:C4:FA:96:C9:E4:3E:5D:C8:5C:4B:56:02:4D:8C:0F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4CBA3261935CDA87CD4ACF11447903B19FCDB54A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ca586b6c-c586-4283-8392-892b53790b90.roa Signing time: Mon 11 May 2026 01:30:08 +0000 ROA not before: Mon 11 May 2026 01:30:08 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f1::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:ba:32:61:93:5c:da:87:cd:4a:cf:11:44:79:03:b1:9f:cd:b5:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 11 01:30:08 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=cd1fd93e05d6da5bddc4330f17354cb191d2855de0498dd88ec9fd98f613574f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4d:20:b7:4b:34:22:13:50:6d:7b:43:6b:14: cf:66:64:cf:2d:3e:1e:46:a4:74:36:31:32:af:7b: 27:62:21:de:a1:18:97:01:6f:50:80:40:9d:6f:84: 43:58:69:fb:37:69:27:b2:87:41:59:9a:12:ca:68: 9f:4d:9f:53:26:f3:7d:d4:55:95:b9:3e:d9:a5:9c: f8:5c:e8:1e:b2:cf:7a:48:83:ae:cd:dd:f1:c8:fe: 09:fc:7c:3a:ae:2d:bd:bb:e4:7e:ac:cf:12:c7:f1: ea:2b:fd:ba:49:4e:a6:fc:d7:3e:bd:0b:ec:30:ce: 15:c9:0a:7b:cd:52:4b:3f:c9:08:53:66:53:40:06: aa:f7:d3:49:62:b1:09:6e:b5:f8:ca:0d:37:cf:b5: b4:24:3a:71:8f:7d:72:ce:b9:89:b0:cf:b7:7c:5a: 2f:e6:b1:b8:b8:08:24:35:c5:01:16:9d:15:c7:fa: 89:26:6e:f0:40:44:2d:14:28:13:1a:81:91:52:14: 51:00:bf:65:40:3a:be:27:b9:34:bc:06:ee:b7:7b: fe:3e:7e:5b:37:66:0f:8f:d7:0f:ee:35:40:93:5c: a4:bd:3c:89:23:bc:a5:db:de:1b:4c:ac:af:90:7c: ce:cb:b6:56:6f:4f:0d:15:9c:d6:a4:d7:1c:f4:c6: d5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:DA:C3:AC:B8:C4:FA:96:C9:E4:3E:5D:C8:5C:4B:56:02:4D:8C:0F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ca586b6c-c586-4283-8392-892b53790b90.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1::/44 Signature Algorithm: sha256WithRSAEncryption 32:a7:f3:c3:ad:44:2f:d9:d1:e8:bf:45:08:95:fb:4f:9f:18: 24:91:05:8d:00:2d:01:84:4c:fb:9c:d9:c8:74:a9:64:16:d8: 1b:7d:5b:48:7c:34:c3:c0:23:d2:26:ff:d4:e4:d2:3f:88:9e: f2:82:b9:20:fb:28:dd:8e:0f:4f:1a:89:e4:0a:f3:0f:12:66: d1:24:81:f1:ee:5f:5d:6f:01:bf:dd:6b:e6:61:dc:53:cd:f4: 82:37:63:88:da:ea:bc:7e:29:12:e8:f6:c7:1f:50:04:fb:1d: b1:55:c3:96:36:39:80:e4:4f:c5:cf:7d:9f:03:9f:14:a3:42: d2:fa:c5:14:de:5d:97:25:84:85:27:4c:06:e8:cd:f4:7e:0e: 64:08:ac:8b:64:06:21:e2:5a:d4:64:8e:1a:19:82:7f:e2:2c: cc:85:d1:23:ec:0c:aa:63:f7:8d:e8:10:e6:b4:cf:ed:1d:1f: be:8b:fe:8b:e3:a3:68:26:57:fd:dd:af:a6:14:93:be:17:63: ca:f4:55:c0:8f:0e:ac:77:b1:d8:09:83:ac:88:46:f4:05:9d: 32:3f:72:51:ce:fa:38:9b:27:e5:c4:37:e4:cb:bc:f0:68:f7: d1:36:7b:6e:38:ea:d4:2e:fc:d5:c1:88:dc:08:35:34:97:4e: eb:13:1d:cd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTLoyYZNc2ofNSs8RRHkDsZ/NtUowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTExMDEzMDA4WhcNMjYwODA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDFmZDkzZTA1ZDZkYTViZGRjNDMzMGYxNzM1NGNiMTkx ZDI4NTVkZTA0OThkZDg4ZWM5ZmQ5OGY2MTM1NzRmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChTSC3SzQiE1Bte0NrFM9mZM8tPh5GpHQ2MTKveydiId6h GJcBb1CAQJ1vhENYafs3aSeyh0FZmhLKaJ9Nn1Mm833UVZW5PtmlnPhc6B6yz3pI g67N3fHI/gn8fDquLb275H6szxLH8eor/bpJTqb81z69C+wwzhXJCnvNUks/yQhT ZlNABqr300lisQlutfjKDTfPtbQkOnGPfXLOuYmwz7d8Wi/msbi4CCQ1xQEWnRXH +okmbvBARC0UKBMagZFSFFEAv2VAOr4nuTS8Bu63e/4+fls3Zg+P1w/uNUCTXKS9 PIkjvKXb3htMrK+QfM7LtlZvTw0VnNak1xz0xtXDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZdrDrLjE+pbJ5D5dyFxLVgJNjA8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NhNTg2YjZjLWM1ODYtNDI4My04MzkyLTg5MmI1Mzc5MGI5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDxAAAwDQYJKoZIhvcNAQELBQADggEBADKn88OtRC/Z0ei/RQiV+0+f GCSRBY0ALQGETPuc2ch0qWQW2Bt9W0h8NMPAI9Im/9Tk0j+InvKCuSD7KN2OD08a ieQK8w8SZtEkgfHuX11vAb/da+Zh3FPN9II3Y4ja6rx+KRLo9scfUAT7HbFVw5Y2 OYDkT8XPfZ8DnxSjQtL6xRTeXZclhIUnTAbozfR+DmQIrItkBiHiWtRkjhoZgn/i LMyF0SPsDKpj943oEOa0z+0dH76L/ovjo2gmV/3dr6YUk74XY8r0VcCPDqx3sdgJ g6yIRvQFnTI/clHO+jibJ+XEN+TLvPBo99E2e2446tQu/NXBiNwINTSXTusTHc0= -----END CERTIFICATE-----Generated at Wed May 13 00:16:06 2026 by rpki-client