$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f937d10a-ab1d-4f0c-85f2-3661bd103bc9.roa File: f937d10a-ab1d-4f0c-85f2-3661bd103bc9.roa (raw, json) Hash identifier: +IQ/lboWGk9j2rwpyyVpVk+MOSMTuRE0qXxldzPh/rI= Subject key identifier: 7B:14:F7:59:3D:A4:D2:89:3F:B2:41:93:CB:BF:1A:87:FA:F0:3B:15 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1898D9DCACA25C3D0B83BCB73AE008EB630D5421 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f937d10a-ab1d-4f0c-85f2-3661bd103bc9.roa Signing time: Mon 04 May 2026 15:10:08 +0000 ROA not before: Mon 04 May 2026 15:10:08 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6117::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:98:d9:dc:ac:a2:5c:3d:0b:83:bc:b7:3a:e0:08:eb:63:0d:54:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:08 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=83cf511b2fcfd82aa94a0c2e6d1480fd92f2e865d6cfc11cd6861497fdcec4a6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8d:0c:c7:86:70:2d:74:7f:f4:39:50:19:28: 43:e7:03:92:64:a4:cc:56:34:de:6b:d6:a7:1d:23: ed:5c:a1:c2:95:aa:ed:36:19:ed:2e:f6:08:43:28: 29:e6:0c:ca:45:39:b8:f7:04:f1:d1:c1:0a:d2:58: 6c:5e:6c:61:ed:15:bd:fb:b0:ba:f6:71:ed:94:34: 24:db:42:a2:bb:19:9f:40:27:d9:11:df:13:b4:52: 0f:6d:88:3e:a9:75:5e:ef:43:a4:2b:8d:a4:a3:08: c3:36:82:87:43:29:e6:5e:4b:40:2b:dc:17:7b:b4: 79:64:a6:2c:94:44:4e:0f:4b:be:fc:3f:b6:43:f7: 7e:50:3d:a6:f2:19:9c:91:b9:1d:64:0c:8f:cd:92: fc:df:38:b6:3a:0c:b7:09:a4:58:26:a0:7f:33:1e: 27:9d:ef:74:e7:9b:37:27:ab:49:4b:e1:88:b8:88: 37:f0:89:f1:de:27:fa:1b:6b:90:a5:f5:c9:e7:f9: fe:31:82:56:86:96:d3:32:fd:03:6f:c7:c9:a3:43: 78:a0:93:f9:bb:93:e3:b4:be:54:15:cb:34:03:5b: e0:0d:d5:38:31:e2:c4:a8:6d:fb:63:71:ce:8d:9a: 10:02:b4:22:cf:2b:11:35:c9:2c:c1:fc:f2:45:6b: 5e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:14:F7:59:3D:A4:D2:89:3F:B2:41:93:CB:BF:1A:87:FA:F0:3B:15 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f937d10a-ab1d-4f0c-85f2-3661bd103bc9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6117::/48 Signature Algorithm: sha256WithRSAEncryption 60:65:df:2b:b4:c8:47:0c:d7:fb:1a:a6:a7:2e:3e:c8:7e:55: a5:91:48:7d:1d:68:db:06:57:26:cd:e2:10:75:7e:a6:54:f2: 53:a2:67:53:34:2b:fb:87:4d:32:3d:99:a5:a6:fc:22:19:b4: 5f:8f:50:48:7e:33:ab:cd:a0:d6:07:13:14:66:98:31:29:fc: e7:ba:3d:68:5c:1a:26:af:94:ef:a2:ce:7c:9d:f5:4d:b9:69: 39:44:62:2f:2a:21:7d:38:26:75:90:37:b7:a3:19:d8:e3:a3: 17:4d:db:e2:f7:60:66:29:2e:d4:f1:3d:e4:1f:04:7a:ca:89: 27:64:d9:12:06:56:70:17:f3:56:a5:c7:0d:98:06:f2:91:3c: f7:01:bc:06:55:19:ff:43:3f:5a:c6:9f:04:58:ac:8d:c3:fc: 83:00:1d:3d:fa:de:ff:6f:d6:32:fa:f8:21:b6:3d:4b:e7:03: 93:c2:6c:8e:93:1c:3c:9a:e4:86:0e:eb:17:dd:b6:27:bf:98: b5:f1:94:78:67:37:bd:54:5f:12:b2:32:99:a0:17:02:44:61: 20:6b:4c:b8:3c:6e:ba:49:e1:8e:6c:6e:56:70:1b:52:bc:79: c7:f7:b1:2b:01:df:9c:11:bb:ee:93:42:53:0a:5c:20:90:4c: f4:39:4b:ca -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGJjZ3KyiXD0Lg7y3OuAI62MNVCEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDA4WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4M2NmNTExYjJmY2ZkODJhYTk0YTBjMmU2ZDE0ODBmZDky ZjJlODY1ZDZjZmMxMWNkNjg2MTQ5N2ZkY2VjNGE2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6jQzHhnAtdH/0OVAZKEPnA5JkpMxWNN5r1qcdI+1cocKV qu02Ge0u9ghDKCnmDMpFObj3BPHRwQrSWGxebGHtFb37sLr2ce2UNCTbQqK7GZ9A J9kR3xO0Ug9tiD6pdV7vQ6QrjaSjCMM2godDKeZeS0Ar3Bd7tHlkpiyURE4PS778 P7ZD935QPabyGZyRuR1kDI/NkvzfOLY6DLcJpFgmoH8zHied73Tnmzcnq0lL4Yi4 iDfwifHeJ/oba5Cl9cnn+f4xglaGltMy/QNvx8mjQ3igk/m7k+O0vlQVyzQDW+AN 1Tgx4sSobftjcc6NmhACtCLPKxE1ySzB/PJFa16ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUexT3WT2k0ok/skGTy78ah/rwOxUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y5MzdkMTBhLWFiMWQtNGYwYy04NWYyLTM2NjFiZDEwM2JjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRcwDQYJKoZIhvcNAQELBQADggEBAGBl3yu0yEcM1/sapqcuPsh+ VaWRSH0daNsGVybN4hB1fqZU8lOiZ1M0K/uHTTI9maWm/CIZtF+PUEh+M6vNoNYH ExRmmDEp/Oe6PWhcGiavlO+iznyd9U25aTlEYi8qIX04JnWQN7ejGdjjoxdN2+L3 YGYpLtTxPeQfBHrKiSdk2RIGVnAX81alxw2YBvKRPPcBvAZVGf9DP1rGnwRYrI3D /IMAHT363v9v1jL6+CG2PUvnA5PCbI6THDya5IYO6xfdtie/mLXxlHhnN71UXxKy MpmgFwJEYSBrTLg8brpJ4Y5sblZwG1K8ecf3sSsB35wRu+6TQlMKXCCQTPQ5S8o= -----END CERTIFICATE-----Generated at Tue May 12 22:18:14 2026 by rpki-client