$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/038bfc14-70d0-4845-80d9-ef20d84714c7.roa File: 038bfc14-70d0-4845-80d9-ef20d84714c7.roa (raw, json) Hash identifier: Cep5nOVIO67si0kdxl5pFshu3F+G0zfvh5SIzgcBk74= Subject key identifier: 51:6E:93:C4:C3:46:CD:C8:8D:C7:9B:4C:AA:79:C8:A9:08:6D:B9:24 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2AC80ED518C8C544FA1DD6BC1A3A6EC04DA7A6FA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/038bfc14-70d0-4845-80d9-ef20d84714c7.roa Signing time: Wed 20 May 2026 00:40:07 +0000 ROA not before: Wed 20 May 2026 00:40:07 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f10f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:c8:0e:d5:18:c8:c5:44:fa:1d:d6:bc:1a:3a:6e:c0:4d:a7:a6:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 00:40:07 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=cfcc79fce2a040bd3b864bb105859219deaf46c7cbdec67592f2038be35923e4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3e:93:ac:d3:86:ea:eb:ab:25:b7:63:90:74: 92:94:a0:71:ae:e0:4c:36:7d:c8:3b:53:f7:68:81: 21:fe:ee:83:80:72:4b:64:17:9c:7b:ac:f4:36:58: 83:02:9d:46:3a:75:62:af:64:2c:dc:e6:47:a7:33: d5:0a:cd:31:20:fb:36:e4:62:d8:0c:89:f8:0d:a8: 75:63:47:3d:28:e7:38:96:15:08:e7:cd:84:4f:04: 49:25:8e:86:f7:4d:08:3c:0e:55:83:ee:dc:d6:39: fd:9f:3e:52:d9:12:5d:ae:aa:ef:b1:92:42:89:0a: 2a:75:fc:77:18:c2:a2:77:f2:b2:85:8f:5a:b3:62: 60:9b:6f:7e:cf:d6:a7:96:28:db:11:ce:2b:95:27: 38:00:6d:a3:a8:e5:8c:d0:b1:7d:c1:c4:c4:2d:29: 45:f3:a4:a3:0a:26:f9:98:e1:07:cf:d7:cf:c9:77: 93:f6:4a:ed:7d:6a:86:0f:0c:83:ca:3b:a1:15:5a: f4:74:25:1d:43:40:da:05:33:06:3f:b7:1e:f6:ca: e6:85:cd:40:19:9e:69:bf:ec:0c:fe:c8:06:d6:3e: 3c:d5:9b:6e:bc:c7:b6:9f:24:69:27:55:04:ad:f3: d5:7d:7d:0a:81:96:93:3f:20:a9:3c:ed:5b:b9:8f: 01:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:6E:93:C4:C3:46:CD:C8:8D:C7:9B:4C:AA:79:C8:A9:08:6D:B9:24 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/038bfc14-70d0-4845-80d9-ef20d84714c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10f::/48 Signature Algorithm: sha256WithRSAEncryption 79:40:49:ba:14:a9:c1:20:aa:c2:eb:28:2b:27:0d:bb:bc:52: 5a:be:32:61:f3:b7:16:ca:47:6e:8c:48:7a:2b:01:ad:e6:21: cb:08:9c:07:4c:a4:9c:58:ea:66:7b:b5:79:8d:62:36:73:44: 5a:bc:13:64:87:87:6f:f6:89:34:b9:a9:1b:9e:03:cb:cb:f2: 45:5b:76:9d:39:d8:26:fd:c2:68:f7:c2:48:3e:7a:25:a6:88: 11:d0:76:c7:7b:46:a5:06:b7:bf:dd:b0:09:05:b7:a9:e3:1d: 90:9a:dd:79:b8:9d:5a:c7:a8:f2:7b:c4:47:66:27:67:34:0c: 0c:86:8b:a1:71:d6:35:d7:b8:b3:ae:46:3d:de:31:c7:dd:32: f1:fb:1c:51:13:86:53:91:70:3d:ea:49:e9:9c:c8:9a:ca:14: e4:88:c6:ac:0c:4e:27:be:d5:45:21:9d:8b:d2:b4:b6:fd:fc: a7:d2:a3:1b:d1:58:1f:36:20:ae:fe:1b:fc:d9:6e:53:bd:9f: 81:c3:45:e5:2e:1b:d4:a8:99:9c:5c:37:e9:18:89:42:d8:5c: 47:43:e8:81:72:c8:6a:1e:57:e0:5f:bf:79:bc:1f:11:06:9c: 60:e2:bb:6c:11:d4:76:58:36:28:4d:7f:66:ef:c0:4f:2d:65: 2f:3c:94:24 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKsgO1RjIxUT6Hda8GjpuwE2npvowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTIwMDA0MDA3WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmNjNzlmY2UyYTA0MGJkM2I4NjRiYjEwNTg1OTIxOWRl YWY0NmM3Y2JkZWM2NzU5MmYyMDM4YmUzNTkyM2U0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDPpOs04bq66slt2OQdJKUoHGu4Ew2fcg7U/dogSH+7oOA cktkF5x7rPQ2WIMCnUY6dWKvZCzc5kenM9UKzTEg+zbkYtgMifgNqHVjRz0o5ziW FQjnzYRPBEkljob3TQg8DlWD7tzWOf2fPlLZEl2uqu+xkkKJCip1/HcYwqJ38rKF j1qzYmCbb37P1qeWKNsRziuVJzgAbaOo5YzQsX3BxMQtKUXzpKMKJvmY4QfP18/J d5P2Su19aoYPDIPKO6EVWvR0JR1DQNoFMwY/tx72yuaFzUAZnmm/7Az+yAbWPjzV m268x7afJGknVQSt89V9fQqBlpM/IKk87Vu5jwFzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUW6TxMNGzciNx5tMqnnIqQhtuSQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAzOGJmYzE0LTcwZDAtNDg0NS04MGQ5LWVmMjBkODQ3MTRjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78Q8wDQYJKoZIhvcNAQELBQADggEBAHlASboUqcEgqsLrKCsnDbu8 Ulq+MmHztxbKR26MSHorAa3mIcsInAdMpJxY6mZ7tXmNYjZzRFq8E2SHh2/2iTS5 qRueA8vL8kVbdp052Cb9wmj3wkg+eiWmiBHQdsd7RqUGt7/dsAkFt6njHZCa3Xm4 nVrHqPJ7xEdmJ2c0DAyGi6Fx1jXXuLOuRj3eMcfdMvH7HFEThlORcD3qSemcyJrK FOSIxqwMTie+1UUhnYvStLb9/KfSoxvRWB82IK7+G/zZblO9n4HDReUuG9SomZxc N+kYiULYXEdD6IFyyGoeV+Bfv3m8HxEGnGDiu2wR1HZYNihNf2bvwE8tZS88lCQ= -----END CERTIFICATE-----Generated at Wed Jun 17 11:18:33 2026 by rpki-client