$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f5b1d1bf-721f-4a57-a400-f549c190180c.roa File: f5b1d1bf-721f-4a57-a400-f549c190180c.roa (raw, json) Hash identifier: H0YZYBVUS6zqm/MxPYFOaecJ9Mahu8nK5Vxjb8Byts4= Subject key identifier: 73:EC:8A:66:6E:4F:1B:6F:ED:30:CD:43:73:AB:EA:D8:88:F8:76:E6 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 43AC4F01F6AB6C426AC77B9B6C8F161C748DEBBD Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f5b1d1bf-721f-4a57-a400-f549c190180c.roa Signing time: Mon 04 May 2026 15:00:29 +0000 ROA not before: Mon 04 May 2026 15:00:29 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2606:8140:400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ac:4f:01:f6:ab:6c:42:6a:c7:7b:9b:6c:8f:16:1c:74:8d:eb:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 4 15:00:29 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=b54a8e8f0ad4ae316ba11254eb394c87173dfe2514e2dbbefa6fd922f75da890, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fb:9f:40:20:44:2b:50:2e:e0:94:c9:22:41: d2:82:37:5e:86:ce:e6:df:49:14:f4:75:6f:b6:ae: ab:12:e1:d5:e3:3b:d6:ba:48:ea:ba:cf:56:1c:84: eb:33:f0:7d:a6:5c:bc:43:2a:64:7f:75:0b:5f:7c: db:25:d0:31:f2:1b:43:4d:9a:6e:29:4b:3a:02:8d: 4e:c1:37:60:f1:21:83:4d:41:ac:52:45:08:4e:c9: d0:3b:cb:fe:9b:6b:52:d7:1b:79:18:43:05:d5:07: 83:e9:1a:35:9f:69:fd:20:28:49:d0:97:44:0c:bc: f8:12:db:d7:0c:c3:a1:67:87:3c:8c:a5:11:50:1c: 8c:30:e1:cb:08:06:ca:cd:5c:2f:e0:63:40:fe:3a: ae:e0:d4:db:4c:06:a4:0f:2b:fd:08:4e:7c:83:cd: ca:64:7a:62:57:88:2e:70:85:c6:9f:ac:fc:b8:d6: 84:02:a5:97:77:8c:78:86:ee:d9:c2:e0:48:2c:44: ba:28:4f:c4:a0:94:2f:e9:71:8c:4e:a0:d0:02:be: 16:c1:f6:b6:8e:03:76:ce:f7:01:8c:a4:84:56:41: f3:3b:47:50:37:bb:4c:ca:37:8f:73:fb:03:af:09: 7e:26:29:23:f4:df:3f:40:28:ec:31:91:04:75:7d: bf:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:EC:8A:66:6E:4F:1B:6F:ED:30:CD:43:73:AB:EA:D8:88:F8:76:E6 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f5b1d1bf-721f-4a57-a400-f549c190180c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140:400::/40 Signature Algorithm: sha256WithRSAEncryption 5d:ac:bd:b3:a0:e1:46:86:27:5a:36:48:5b:49:e2:1a:3c:2b: a1:e3:1b:f4:79:0e:90:ce:42:d2:68:0a:4b:dc:c4:7f:97:28: ed:18:a8:dd:e3:c7:11:87:42:e2:22:39:f0:94:57:50:44:43: 62:c2:80:58:3b:31:3b:46:d8:2b:bf:93:64:60:7b:07:b6:c1: d9:04:98:d6:ce:4d:21:1b:c4:49:09:f4:f1:91:f5:f9:a0:f0: cf:c6:61:ff:29:d9:a6:0d:25:85:8d:06:18:29:36:c6:55:bb: 18:d4:86:d8:d7:f8:04:7b:fb:4d:c5:6c:0f:4f:a8:8e:92:85: e6:9c:76:d3:79:24:53:20:2d:14:39:0a:e3:79:34:60:39:34: a2:78:3b:c1:96:da:dc:0a:ba:94:a6:a8:39:34:1a:e1:33:bd: 88:0e:f7:3e:49:da:c0:a6:82:9a:5e:b2:d5:a4:5b:7e:85:9b: f9:51:ad:c8:0f:7b:9f:10:94:da:7d:57:21:4b:99:43:69:96: 37:68:89:8c:8a:4c:b8:31:10:8d:48:d3:d0:07:32:a0:dc:4d: 39:ec:51:19:a5:03:6b:0f:dc:19:a7:03:2e:df:7c:2d:fe:7b: 3c:ce:41:5e:d1:69:02:f9:e2:3c:dd:52:f2:9a:ad:b7:a7:e5: 95:b7:f1:53 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQ6xPAfarbEJqx3ubbI8WHHSN670wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA0MTUwMDI5WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNTRhOGU4ZjBhZDRhZTMxNmJhMTEyNTRlYjM5NGM4NzE3 M2RmZTI1MTRlMmRiYmVmYTZmZDkyMmY3NWRhODkwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0+59AIEQrUC7glMkiQdKCN16GzubfSRT0dW+2rqsS4dXj O9a6SOq6z1YchOsz8H2mXLxDKmR/dQtffNsl0DHyG0NNmm4pSzoCjU7BN2DxIYNN QaxSRQhOydA7y/6ba1LXG3kYQwXVB4PpGjWfaf0gKEnQl0QMvPgS29cMw6FnhzyM pRFQHIww4csIBsrNXC/gY0D+Oq7g1NtMBqQPK/0ITnyDzcpkemJXiC5whcafrPy4 1oQCpZd3jHiG7tnC4EgsRLooT8SglC/pcYxOoNACvhbB9raOA3bO9wGMpIRWQfM7 R1A3u0zKN49z+wOvCX4mKSP03z9AKOwxkQR1fb9rAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUc+yKZm5PG2/tMM1Dc6vq2Ij4duYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Y1YjFkMWJmLTcyMWYtNGE1Ny1hNDAwLWY1NDljMTkwMTgwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBoFABDANBgkqhkiG9w0BAQsFAAOCAQEAXay9s6DhRoYnWjZIW0niGjwr oeMb9HkOkM5C0mgKS9zEf5co7Rio3ePHEYdC4iI58JRXUERDYsKAWDsxO0bYK7+T ZGB7B7bB2QSY1s5NIRvESQn08ZH1+aDwz8Zh/ynZpg0lhY0GGCk2xlW7GNSG2Nf4 BHv7TcVsD0+ojpKF5px203kkUyAtFDkK43k0YDk0ong7wZba3Aq6lKaoOTQa4TO9 iA73PknawKaCml6y1aRbfoWb+VGtyA97nxCU2n1XIUuZQ2mWN2iJjIpMuDEQjUjT 0AcyoNxNOexRGaUDaw/cGacDLt98Lf57PM5BXtFpAvniPN1S8pqtt6fllbfxUw== -----END CERTIFICATE-----Generated at Tue May 12 23:05:48 2026 by rpki-client