$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05876e04-6a48-47f9-a53a-40496713d9ab.roa File: 05876e04-6a48-47f9-a53a-40496713d9ab.roa (raw, json) Hash identifier: A4iBvbtNWkJEjcNYG+jMWy/Km6Cq+2zz4XONHzv43+k= Subject key identifier: 7C:DC:64:AD:16:A8:BB:0C:60:BF:05:D9:61:3F:97:66:53:F6:08:4D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4514C04317CED140FA4C5AD5D575DC24EB90C3CF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05876e04-6a48-47f9-a53a-40496713d9ab.roa Signing time: Wed 20 May 2026 00:50:11 +0000 ROA not before: Wed 20 May 2026 00:50:11 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:14:c0:43:17:ce:d1:40:fa:4c:5a:d5:d5:75:dc:24:eb:90:c3:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 00:50:11 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=d745b81c9cd56ea966fcd1666e6f8ca9d185f100de7a14c282e4ce55b6d2bcfb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fc:07:25:c8:5a:a6:b0:18:50:15:93:91:16: 47:f1:47:a1:fb:4d:05:05:bf:08:da:3f:0e:d4:98: d9:04:65:51:25:b4:41:2a:e1:8e:99:97:86:f9:96: 9e:c8:83:60:3f:c4:e6:b0:f1:c7:1e:36:e5:25:22: 4c:96:60:28:66:6a:1e:82:fe:7d:64:86:b8:fe:f0: 60:39:33:1a:79:b1:e2:0b:f0:b7:27:99:82:6d:33: 0e:05:49:17:bf:e7:af:78:89:d0:e4:4f:22:9a:34: 2e:10:b3:1c:f2:f3:2d:b0:ba:db:9c:7c:d3:34:0c: 2d:30:e3:0b:ce:1b:35:47:49:98:64:b5:f8:03:59: c9:6f:ee:ac:08:ce:b8:cf:f4:6f:13:87:c9:91:d5: a8:36:88:b7:5d:a3:e7:77:00:b0:13:fc:f0:c4:c7: 19:3c:f5:92:cb:00:d2:ee:6f:e3:3b:08:0a:0f:a1: 43:13:73:97:ab:94:cf:8b:dd:91:43:09:9f:49:ac: 06:ce:77:a4:fa:4d:62:8a:0c:68:d0:33:b0:07:9b: 80:1f:4b:2f:22:f4:da:93:08:c8:5a:f6:3d:f3:f3: da:1a:4e:29:9e:a0:7b:47:78:e7:e6:ed:08:e2:a1: 64:d8:ab:cd:48:b0:63:c6:c3:64:8f:21:49:96:a0: 55:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:DC:64:AD:16:A8:BB:0C:60:BF:05:D9:61:3F:97:66:53:F6:08:4D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05876e04-6a48-47f9-a53a-40496713d9ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f100::/40 Signature Algorithm: sha256WithRSAEncryption 5d:d5:f0:b6:9e:12:dc:b6:d9:56:ab:b0:b3:db:4d:5d:67:d7: 6f:85:2c:87:9e:37:d2:67:f7:bc:47:65:0b:6c:ba:e4:ec:5e: 72:ac:ee:47:d2:e9:34:25:3d:3d:77:4b:03:40:94:e9:be:1e: 0d:11:0c:96:3b:61:a9:b6:a0:86:f2:0f:bd:95:ed:75:58:69: 0f:2e:aa:51:1b:a8:21:4b:7b:6a:36:f3:07:16:01:3e:0f:f0: 8a:2a:18:2d:45:5c:5d:87:5b:dd:1e:50:d2:94:2c:37:92:bf: a9:ec:86:2c:8f:84:29:a4:fc:61:d9:82:3c:25:bf:c1:72:23: 68:6c:87:ae:9f:64:a7:79:cf:2d:f6:77:6d:2e:ca:cf:92:ee: 63:d9:14:26:c9:c6:5d:86:ae:fe:bd:9f:a2:36:24:8b:45:ba: 2b:bc:07:e7:8e:61:9c:39:b8:cc:06:d8:73:25:91:da:6a:f5: 39:7f:01:8a:82:c5:65:c7:99:4f:55:fa:cc:f4:aa:7a:ae:5f: b3:71:fd:13:07:3d:40:30:fe:27:81:40:ed:f4:ad:36:fd:11: c2:9f:ee:95:59:98:b3:5e:9a:0b:e7:64:62:e0:8a:6a:d1:09: 14:c2:de:97:83:37:38:75:1b:3d:28:6b:89:2c:04:bf:90:6e: cf:21:84:b3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURRTAQxfO0UD6TFrV1XXcJOuQw88wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTIwMDA1MDExWhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzQ1YjgxYzljZDU2ZWE5NjZmY2QxNjY2ZTZmOGNhOWQx ODVmMTAwZGU3YTE0YzI4MmU0Y2U1NWI2ZDJiY2ZiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDl/AclyFqmsBhQFZORFkfxR6H7TQUFvwjaPw7UmNkEZVEl tEEq4Y6Zl4b5lp7Ig2A/xOaw8cceNuUlIkyWYChmah6C/n1khrj+8GA5Mxp5seIL 8LcnmYJtMw4FSRe/5694idDkTyKaNC4Qsxzy8y2wutucfNM0DC0w4wvOGzVHSZhk tfgDWclv7qwIzrjP9G8Th8mR1ag2iLddo+d3ALAT/PDExxk89ZLLANLub+M7CAoP oUMTc5erlM+L3ZFDCZ9JrAbOd6T6TWKKDGjQM7AHm4AfSy8i9NqTCMha9j3z89oa TimeoHtHeOfm7QjioWTYq81IsGPGw2SPIUmWoFWnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUfNxkrRaouwxgvwXZYT+XZlP2CE0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA1ODc2ZTA0LTZhNDgtNDdmOS1hNTNhLTQwNDk2NzEzZDlhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD78TANBgkqhkiG9w0BAQsFAAOCAQEAXdXwtp4S3LbZVquws9tNXWfX b4Ush5430mf3vEdlC2y65OxecqzuR9LpNCU9PXdLA0CU6b4eDREMljthqbaghvIP vZXtdVhpDy6qURuoIUt7ajbzBxYBPg/wiioYLUVcXYdb3R5Q0pQsN5K/qeyGLI+E KaT8YdmCPCW/wXIjaGyHrp9kp3nPLfZ3bS7Kz5LuY9kUJsnGXYau/r2fojYki0W6 K7wH545hnDm4zAbYcyWR2mr1OX8BioLFZceZT1X6zPSqeq5fs3H9Ewc9QDD+J4FA 7fStNv0Rwp/ulVmYs16aC+dkYuCKatEJFMLel4M3OHUbPShriSwEv5BuzyGEsw== -----END CERTIFICATE-----Generated at Wed Jun 17 11:20:42 2026 by rpki-client