$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa File: fc2b5e45-8344-4038-8f8f-6229cecec136.roa (raw, json) Hash identifier: 6ip7oMDJz17SbrEP0N8G3OpVv7sBu/IHkyB1PuKPw0I= Subject key identifier: 47:CA:ED:3E:CA:DB:70:6B:6D:4B:10:2D:99:FA:C9:C1:F1:A4:21:EB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 57AFBD3181B03E8EADEC7B6BF2B2C11BE49750CC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa Signing time: Mon 27 Apr 2026 00:30:09 +0000 ROA not before: Mon 27 Apr 2026 00:30:09 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:4141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:af:bd:31:81:b0:3e:8e:ad:ec:7b:6b:f2:b2:c1:1b:e4:97:50:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 27 00:30:09 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=14eb3f7ec262070bc5ef3033bccfe3e29cdd7dc0762f8ea9ba46c9864b4d7d2d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e3:3a:f1:7c:7b:d5:8d:28:9e:21:3c:7c:0d: 68:85:68:d0:22:30:61:61:36:3b:8b:64:d3:35:d0: 52:22:7c:cd:a6:2c:be:64:b5:74:3d:22:44:2e:85: 67:de:65:66:35:a8:01:53:8e:27:71:1d:04:a9:7e: 6b:6c:6c:7f:15:24:8d:25:7f:16:73:6f:f7:eb:61: 2d:43:3e:b7:ca:09:63:09:50:6d:86:b3:77:a6:52: a2:0c:a5:e4:26:a6:a9:77:aa:26:6d:91:7d:f8:79: d8:d2:25:a9:b8:07:5f:ec:29:6d:c5:a7:73:53:c8: 9c:2c:b2:59:d7:4d:e4:3d:09:94:82:e3:9d:78:e9: 16:06:53:54:4a:f2:b8:8a:d9:f8:9e:5f:20:b0:bb: 34:9e:ec:10:fe:06:fb:13:25:8f:30:06:f7:e8:d6: f0:e0:f2:3e:e0:25:b2:0c:b4:a3:69:d2:bd:9a:ab: 18:d0:23:28:b4:22:f4:7a:28:0e:e9:dd:91:1c:9b: 02:3f:eb:17:12:8d:41:a8:13:53:23:d3:f5:03:ef: 0e:6a:23:bf:3d:c4:72:6d:62:ec:25:ef:70:c6:42: 1d:83:3e:86:1b:c6:ba:6b:c7:98:6f:21:44:50:9b: 40:dc:bc:11:d1:96:4c:99:78:89:f4:04:a4:9d:d6: cf:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:CA:ED:3E:CA:DB:70:6B:6D:4B:10:2D:99:FA:C9:C1:F1:A4:21:EB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4141::/48 Signature Algorithm: sha256WithRSAEncryption 32:bb:2c:f7:ea:60:40:5b:14:31:7c:ae:70:cc:b2:1a:15:4b: f3:78:56:72:f4:8d:e0:89:bb:b6:24:40:92:04:25:7f:da:61: 03:7d:87:84:5d:34:cf:16:e2:de:7e:5b:bd:90:1b:89:2d:b1: cd:44:07:aa:83:e9:8c:cb:16:65:46:42:ff:91:90:d9:52:a0: 59:ce:06:1a:8e:ad:eb:3e:2d:a0:e2:8d:38:5d:d6:d2:ad:3b: fe:b6:e7:97:5a:25:1c:62:7e:6a:22:93:71:af:5f:0e:40:51: 04:fc:13:62:05:4c:88:c2:21:e8:7f:29:f4:b4:b9:78:ea:43: a0:e6:b4:5f:08:d2:3e:84:25:cb:c3:d8:54:0c:f4:3e:cb:c9: 1d:15:a8:6a:5f:c8:fe:12:68:d5:2d:33:18:07:4a:94:d8:8c: 6f:40:e1:27:e8:5c:fd:b1:56:09:75:b4:2d:6d:f6:8d:ce:28: 23:b7:24:e7:a7:07:fe:92:08:4b:14:83:6c:01:2f:58:d0:11: 1b:7f:2b:e0:bf:00:33:1c:0b:63:5c:38:42:fd:b4:de:65:5b: 01:28:3d:c2:3d:6f:41:42:52:6b:fc:14:f2:8b:bf:d9:83:ab: 31:c6:77:30:5d:4d:1b:c4:86:55:8f:aa:95:e9:a8:7d:96:7c: da:22:de:4e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUV6+9MYGwPo6t7Htr8rLBG+SXUMwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDI3MDAzMDA5WhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNGViM2Y3ZWMyNjIwNzBiYzVlZjMwMzNiY2NmZTNlMjlj ZGQ3ZGMwNzYyZjhlYTliYTQ2Yzk4NjRiNGQ3ZDJkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi4zrxfHvVjSieITx8DWiFaNAiMGFhNjuLZNM10FIifM2m LL5ktXQ9IkQuhWfeZWY1qAFTjidxHQSpfmtsbH8VJI0lfxZzb/frYS1DPrfKCWMJ UG2Gs3emUqIMpeQmpql3qiZtkX34edjSJam4B1/sKW3Fp3NTyJwsslnXTeQ9CZSC 45146RYGU1RK8riK2fieXyCwuzSe7BD+BvsTJY8wBvfo1vDg8j7gJbIMtKNp0r2a qxjQIyi0IvR6KA7p3ZEcmwI/6xcSjUGoE1Mj0/UD7w5qI789xHJtYuwl73DGQh2D PoYbxrprx5hvIURQm0DcvBHRlkyZeIn0BKSd1s8jAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUR8rtPsrbcGttSxAtmfrJwfGkIeswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjMmI1ZTQ1LTgzNDQtNDAzOC04ZjhmLTYyMjljZWNlYzEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUEwDQYJKoZIhvcNAQELBQADggEBADK7LPfqYEBbFDF8rnDMshoV S/N4VnL0jeCJu7YkQJIEJX/aYQN9h4RdNM8W4t5+W72QG4ktsc1EB6qD6YzLFmVG Qv+RkNlSoFnOBhqOres+LaDijThd1tKtO/6255daJRxifmoik3GvXw5AUQT8E2IF TIjCIeh/KfS0uXjqQ6DmtF8I0j6EJcvD2FQM9D7LyR0VqGpfyP4SaNUtMxgHSpTY jG9A4SfoXP2xVgl1tC1t9o3OKCO3JOenB/6SCEsUg2wBL1jQERt/K+C/ADMcC2Nc OEL9tN5lWwEoPcI9b0FCUmv8FPKLv9mDqzHGdzBdTRvEhlWPqpXpqH2WfNoi3k4= -----END CERTIFICATE-----Generated at Wed May 13 00:01:33 2026 by rpki-client