$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/eaa44d60-743f-446e-9c20-0b0b717ee1ab.roa File: eaa44d60-743f-446e-9c20-0b0b717ee1ab.roa (raw, json) Hash identifier: iNEr2pz5iFio4MrI586jOKwWRUUvVUItAA5oCo8xmII= Subject key identifier: A8:4C:0B:98:DF:86:98:9A:67:A9:22:1B:FF:32:29:67:BF:74:90:FD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2BAA3FF6C69DC98824E65D063B2B08841AB0229F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/eaa44d60-743f-446e-9c20-0b0b717ee1ab.roa Signing time: Fri 01 May 2026 00:00:39 +0000 ROA not before: Fri 01 May 2026 00:00:39 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:aa:3f:f6:c6:9d:c9:88:24:e6:5d:06:3b:2b:08:84:1a:b0:22:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 1 00:00:39 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=26c685e6ff14db9df2d51640d37ddce9b9f5f70d42539504946b39229e141fe0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:99:95:98:35:8e:ec:76:2b:d6:11:fd:37:0d: 8e:aa:ab:ee:9a:74:ee:84:6a:85:26:2f:80:d2:eb: 51:21:18:fe:2a:03:4a:d0:05:30:a7:08:20:72:00: 94:08:c6:41:90:f0:5d:8b:a4:63:fe:81:41:9f:5e: 96:0b:2c:05:51:6b:db:24:69:10:7f:ee:6a:70:7c: 8c:0a:3d:a0:09:72:10:14:e1:0f:a1:39:ee:4f:cd: 74:99:0b:22:80:75:03:6c:91:50:1e:89:55:69:bd: f0:e6:d9:1b:f6:ef:74:4b:f9:d5:39:2f:7e:8d:90: b2:da:96:2e:bb:26:b8:16:0b:5a:1e:2d:9f:7d:9f: f6:b8:a6:3c:cd:0a:c3:bb:13:e3:22:bd:d8:e5:ad: 04:ed:f2:e6:da:50:fb:d8:23:fb:45:5f:06:66:e4: 94:9e:fe:77:21:8b:da:55:35:f0:34:5a:cb:94:a6: 70:ce:fd:14:9f:58:bd:2b:74:52:3b:9a:40:75:c8: 4b:bd:a1:43:1a:b3:84:b9:2b:aa:cc:29:26:29:68: ec:ed:52:5c:b2:26:48:b7:cb:57:af:2b:d4:13:41: c2:f2:08:7b:c8:94:31:af:93:04:be:0c:83:68:44: d2:ce:ce:c4:e1:0a:3b:c3:98:27:30:63:67:05:f9: a0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:4C:0B:98:DF:86:98:9A:67:A9:22:1B:FF:32:29:67:BF:74:90:FD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/eaa44d60-743f-446e-9c20-0b0b717ee1ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6100::/48 Signature Algorithm: sha256WithRSAEncryption 9d:b3:4e:66:34:4d:cc:ca:b8:5f:9b:11:90:48:00:e9:df:a6: a7:34:8a:c6:e7:a4:03:c3:51:89:79:08:92:1c:24:36:44:84: ff:a0:ad:d1:fe:28:07:16:0f:f7:b5:89:32:4f:16:89:cf:9c: 1e:59:33:67:a7:2b:b7:4f:0e:13:7c:07:11:96:c1:78:b0:0c: 7d:46:4c:d8:d1:1c:42:d8:69:74:e7:04:91:64:98:9b:1d:e0: b3:83:ab:ff:8d:ce:ae:1c:b4:ac:5e:d2:8b:b6:95:88:51:6c: a2:21:e8:79:31:95:1b:63:5f:fe:35:10:c8:44:b8:bf:9c:6b: ad:e2:d0:29:5a:5e:7b:5f:3e:ea:ea:39:19:a9:16:e3:07:23: 1e:db:df:63:ea:99:a6:ea:4a:8d:e7:0a:c5:a6:2e:9d:13:4a: 8e:71:9e:7b:2b:1f:5a:d4:c8:8a:9e:2f:d7:97:67:40:e3:cf: d9:4f:e8:87:68:84:af:95:6f:5a:92:70:bc:f8:ff:b7:cc:f1: 4a:f6:3a:ec:15:45:9a:67:48:0c:52:68:e0:53:1a:e9:d7:2a: 27:13:d3:17:7b:2e:cf:3f:5a:36:a4:93:93:93:14:ef:d2:27: ad:26:61:59:b4:41:2a:46:98:b0:11:f5:ff:9c:ec:64:c5:ca: bc:e3:00:a6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUK6o/9sadyYgk5l0GOysIhBqwIp8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTAxMDAwMDM5WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNmM2ODVlNmZmMTRkYjlkZjJkNTE2NDBkMzdkZGNlOWI5 ZjVmNzBkNDI1Mzk1MDQ5NDZiMzkyMjllMTQxZmUwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvmZWYNY7sdivWEf03DY6qq+6adO6EaoUmL4DS61EhGP4q A0rQBTCnCCByAJQIxkGQ8F2LpGP+gUGfXpYLLAVRa9skaRB/7mpwfIwKPaAJchAU 4Q+hOe5PzXSZCyKAdQNskVAeiVVpvfDm2Rv273RL+dU5L36NkLLali67JrgWC1oe LZ99n/a4pjzNCsO7E+MivdjlrQTt8ubaUPvYI/tFXwZm5JSe/nchi9pVNfA0WsuU pnDO/RSfWL0rdFI7mkB1yEu9oUMas4S5K6rMKSYpaOztUlyyJki3y1evK9QTQcLy CHvIlDGvkwS+DINoRNLOzsThCjvDmCcwY2cF+aA1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqEwLmN+GmJpnqSIb/zIpZ790kP0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VhYTQ0ZDYwLTc0M2YtNDQ2ZS05YzIwLTBiMGI3MTdlZTFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQAwDQYJKoZIhvcNAQELBQADggEBAJ2zTmY0TczKuF+bEZBIAOnf pqc0isbnpAPDUYl5CJIcJDZEhP+grdH+KAcWD/e1iTJPFonPnB5ZM2enK7dPDhN8 BxGWwXiwDH1GTNjRHELYaXTnBJFkmJsd4LODq/+Nzq4ctKxe0ou2lYhRbKIh6Hkx lRtjX/41EMhEuL+ca63i0ClaXntfPurqORmpFuMHIx7b32PqmabqSo3nCsWmLp0T So5xnnsrH1rUyIqeL9eXZ0Djz9lP6IdohK+Vb1qScLz4/7fM8Ur2OuwVRZpnSAxS aOBTGunXKicT0xd7Ls8/Wjakk5OTFO/SJ60mYVm0QSpGmLAR9f+c7GTFyrzjAKY= -----END CERTIFICATE-----Generated at Wed May 13 01:32:24 2026 by rpki-client