$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/df5a5b5e-7d3e-401e-a4e6-4d4a0175d77f.roa File: df5a5b5e-7d3e-401e-a4e6-4d4a0175d77f.roa (raw, json) Hash identifier: oMDK8Vdeb6EBZ1cTO4oqNZyoHGO0f/9pLnswbSRlruU= Subject key identifier: 0E:A8:5B:D1:08:FC:5C:88:59:9B:48:5D:45:3D:58:AB:1D:1F:57:ED Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 06D20C6D8084BBCCECF22E1AAC6D670DF15B8AE1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/df5a5b5e-7d3e-401e-a4e6-4d4a0175d77f.roa Signing time: Mon 04 May 2026 15:10:09 +0000 ROA not before: Mon 04 May 2026 15:10:09 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6117::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:d2:0c:6d:80:84:bb:cc:ec:f2:2e:1a:ac:6d:67:0d:f1:5b:8a:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:09 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=b0ef4f7f46eb7eb7369dda054bd5b4a25721d9fa5ac1d5606eb2a335ab411189, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8a:ba:ac:6a:8f:1a:72:49:65:34:c2:2f:d6: eb:cd:f5:bc:09:d6:c9:3d:35:b0:54:22:ac:c1:be: 0a:46:81:b5:c6:45:fc:16:98:ac:25:87:93:20:9c: 8e:3f:06:41:3f:ad:cd:29:8f:cc:8d:93:73:d2:a7: 34:f4:79:f4:d3:d3:f2:b5:06:a2:aa:7e:7e:eb:f1: ba:04:3f:00:bb:f5:fb:e9:b3:61:e8:68:1b:aa:0c: c7:2a:85:e0:38:0a:5d:98:0d:51:67:95:e0:9b:68: f3:5d:25:8d:79:54:98:73:57:08:b6:2f:6e:72:ef: 88:6c:ed:57:94:13:d9:27:b4:0b:3a:5f:a3:84:50: e5:35:82:21:01:85:b5:2b:88:71:0d:07:61:4b:1e: 97:d0:27:b7:a8:1b:11:db:3f:4d:88:16:8d:0c:16: 0a:f7:55:ce:5c:03:5f:2c:16:ed:04:61:3e:04:d2: 7b:c5:a1:7b:7a:5e:b2:99:a6:3c:68:f7:5e:a3:3b: 23:7c:ac:4c:96:1b:7b:34:1b:b3:2b:bf:df:f6:2a: 71:7e:32:f6:f7:69:72:04:92:78:2b:c4:ec:5d:e0: fd:fe:91:b0:d5:e3:26:b5:8d:49:65:c1:d6:08:5a: 3f:de:a4:bb:55:6f:0a:e3:48:45:ea:26:c1:ae:21: 31:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:A8:5B:D1:08:FC:5C:88:59:9B:48:5D:45:3D:58:AB:1D:1F:57:ED X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/df5a5b5e-7d3e-401e-a4e6-4d4a0175d77f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6117::/48 Signature Algorithm: sha256WithRSAEncryption 53:05:81:cc:91:9e:20:c8:70:93:28:24:77:30:09:ea:1d:4e: d1:a2:d8:c5:e4:35:2d:37:7a:53:18:c4:ef:4c:2f:24:da:bc: 8c:ec:22:66:af:73:c1:f1:8c:64:ba:61:f2:d6:12:fd:4c:47: ac:aa:72:2c:77:fa:93:d7:bb:14:c5:bd:7d:c5:4c:9c:67:2c: d4:fc:8c:00:5a:2a:0c:0b:7d:32:05:e7:e0:8d:97:d0:53:17: d8:13:35:ba:d8:b7:51:ec:99:37:f6:f4:b6:92:ee:10:b3:28: c8:dc:fe:56:81:c3:1d:3b:7b:45:56:47:e8:65:3d:22:a8:a9: 2c:83:22:52:f4:82:96:95:d7:7b:7e:b3:2e:fc:3c:f7:76:0f: ae:22:87:68:b2:21:b9:c4:b6:a2:f1:f8:b1:f8:14:9e:d2:c2: 8c:f0:8b:a8:a2:55:d7:1c:0d:b2:ad:86:8c:01:62:7b:59:25: 03:6b:25:80:e5:0d:f1:15:eb:ce:89:bd:cc:7a:54:98:fe:be: 8c:ce:36:4c:bd:00:b0:c8:5d:c3:04:b2:30:ce:57:d6:da:ea: 59:24:df:31:57:41:20:d0:95:98:97:b5:d0:e1:8f:0c:9e:36: 36:81:38:42:65:81:72:21:9a:75:d4:a5:ab:cc:4d:fe:07:d5: 84:c9:9d:57 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBtIMbYCEu8zs8i4arG1nDfFbiuEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDA5WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMGVmNGY3ZjQ2ZWI3ZWI3MzY5ZGRhMDU0YmQ1YjRhMjU3 MjFkOWZhNWFjMWQ1NjA2ZWIyYTMzNWFiNDExMTg5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGirqsao8ackllNMIv1uvN9bwJ1sk9NbBUIqzBvgpGgbXG RfwWmKwlh5MgnI4/BkE/rc0pj8yNk3PSpzT0efTT0/K1BqKqfn7r8boEPwC79fvp s2HoaBuqDMcqheA4Cl2YDVFnleCbaPNdJY15VJhzVwi2L25y74hs7VeUE9kntAs6 X6OEUOU1giEBhbUriHENB2FLHpfQJ7eoGxHbP02IFo0MFgr3Vc5cA18sFu0EYT4E 0nvFoXt6XrKZpjxo916jOyN8rEyWG3s0G7Mrv9/2KnF+Mvb3aXIEkngrxOxd4P3+ kbDV4ya1jUllwdYIWj/epLtVbwrjSEXqJsGuITFJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDqhb0Qj8XIhZm0hdRT1Yqx0fV+0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RmNWE1YjVlLTdkM2UtNDAxZS1hNGU2LTRkNGEwMTc1ZDc3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRcwDQYJKoZIhvcNAQELBQADggEBAFMFgcyRniDIcJMoJHcwCeod TtGi2MXkNS03elMYxO9MLyTavIzsImavc8HxjGS6YfLWEv1MR6yqcix3+pPXuxTF vX3FTJxnLNT8jABaKgwLfTIF5+CNl9BTF9gTNbrYt1HsmTf29LaS7hCzKMjc/laB wx07e0VWR+hlPSKoqSyDIlL0gpaV13t+sy78PPd2D64ih2iyIbnEtqLx+LH4FJ7S wozwi6iiVdccDbKthowBYntZJQNrJYDlDfEV686Jvcx6VJj+vozONky9ALDIXcME sjDOV9ba6lkk3zFXQSDQlZiXtdDhjwyeNjaBOEJlgXIhmnXUpavMTf4H1YTJnVc= -----END CERTIFICATE-----Generated at Wed May 13 01:25:51 2026 by rpki-client