$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0e25ff6b-b800-47bd-b202-1ffe5f44d9fe.roa File: 0e25ff6b-b800-47bd-b202-1ffe5f44d9fe.roa (raw, json) Hash identifier: 4/YT53bsL2B3kMlwBbHsOJZiB+bRapwRG8wW6iUiWEg= Subject key identifier: 00:91:F4:3E:FE:43:40:AB:9C:6A:4B:E9:82:FA:9D:BA:52:AB:34:BC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 61FA5911EAA23F15989D953AF8EE63089CE7D5FF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0e25ff6b-b800-47bd-b202-1ffe5f44d9fe.roa Signing time: Wed 20 May 2026 00:50:07 +0000 ROA not before: Wed 20 May 2026 00:50:07 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f103::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:fa:59:11:ea:a2:3f:15:98:9d:95:3a:f8:ee:63:08:9c:e7:d5:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 00:50:07 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=57df98f35061330c12103a6c32dc333118af53ad4cc498bf044c6cc5e7726a7d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4b:fe:8c:2e:fe:2a:11:17:ea:32:7e:55:10: 28:84:1f:3d:fb:d5:26:12:8b:50:f5:3e:6d:41:bc: 76:78:48:2f:57:23:d4:1f:e3:63:ef:19:5c:58:0c: 58:66:30:55:5a:ea:6e:a6:6d:74:5a:23:fd:a3:21: 8e:33:fd:5c:b2:70:93:bd:61:e7:c4:14:02:35:68: f7:8d:16:ac:32:08:a4:8d:75:10:86:63:e7:aa:9d: 2b:cd:7d:26:32:f3:2e:cd:3b:5e:81:b0:1c:4f:37: a5:06:da:cd:45:58:4d:b0:b8:fb:7b:9b:7c:d9:de: 1b:57:05:1f:0d:a6:99:b2:63:99:dc:3c:34:ed:c8: f5:52:09:21:87:b5:6d:4b:a0:ec:04:fb:ce:c2:62: 97:5d:51:ab:38:8f:93:71:92:53:eb:f3:43:38:d2: f0:ca:75:1c:3b:b9:65:0e:2a:82:e2:70:a0:ea:b5: 8e:25:5c:76:6c:07:cd:b0:02:a7:34:54:9b:06:10: 4d:49:ff:2b:4c:6c:cd:68:0e:0d:71:9f:d2:d9:20: 01:10:85:bd:71:be:62:cd:1c:46:c1:fd:50:14:39: d7:4b:e9:26:7a:9c:e5:e9:fd:57:c3:89:22:56:df: b1:e5:67:24:03:82:96:c5:bc:9b:ca:23:d9:fe:7b: 4c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:91:F4:3E:FE:43:40:AB:9C:6A:4B:E9:82:FA:9D:BA:52:AB:34:BC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0e25ff6b-b800-47bd-b202-1ffe5f44d9fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f103::/48 Signature Algorithm: sha256WithRSAEncryption 25:ef:7f:3e:5a:af:c1:b2:45:a7:21:2d:56:ad:f5:fe:6e:6f: 36:ea:2c:51:f6:52:28:1d:8d:4d:58:11:4e:df:ef:df:65:71: da:36:d9:a7:91:a3:6d:c3:c1:73:42:df:da:77:dc:d5:53:46: b3:bc:1f:3c:21:47:c6:08:02:65:96:d0:09:00:f4:38:8a:e1: d3:38:33:38:a8:f5:17:8c:b4:bc:2b:15:9b:f5:34:39:aa:7f: 97:59:29:36:b1:66:1c:ad:c0:a8:39:d6:46:9b:8d:d4:1c:13: 0b:bf:a4:93:50:7e:13:d0:d9:8f:53:88:06:3d:94:09:86:c0: ab:f7:ed:f4:f2:80:e5:1c:6c:78:aa:14:61:81:06:5d:22:1c: 5d:25:82:ad:ab:bf:07:ca:6b:66:ac:cb:d0:f7:1d:d7:5b:28: ab:f0:3c:b6:2c:f9:40:8d:28:22:cd:78:d0:ef:5e:e5:70:1d: 21:71:65:15:91:9e:26:43:7e:b3:b6:0d:92:38:5a:43:f3:d7: c1:0c:ec:e4:04:b2:bd:f2:9c:54:52:00:e8:d6:27:4b:4e:fd: 23:d6:55:b6:5a:01:6c:44:d8:bd:27:5b:eb:bc:dd:75:9e:8d: fd:a3:b5:1a:84:52:1e:9c:b7:b6:0c:38:2c:87:ee:fa:a7:ac: d8:8d:5a:5b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYfpZEeqiPxWYnZU6+O5jCJzn1f8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTIwMDA1MDA3WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1N2RmOThmMzUwNjEzMzBjMTIxMDNhNmMzMmRjMzMzMTE4 YWY1M2FkNGNjNDk4YmYwNDRjNmNjNWU3NzI2YTdkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaS/6MLv4qERfqMn5VECiEHz371SYSi1D1Pm1BvHZ4SC9X I9Qf42PvGVxYDFhmMFVa6m6mbXRaI/2jIY4z/VyycJO9YefEFAI1aPeNFqwyCKSN dRCGY+eqnSvNfSYy8y7NO16BsBxPN6UG2s1FWE2wuPt7m3zZ3htXBR8NppmyY5nc PDTtyPVSCSGHtW1LoOwE+87CYpddUas4j5NxklPr80M40vDKdRw7uWUOKoLicKDq tY4lXHZsB82wAqc0VJsGEE1J/ytMbM1oDg1xn9LZIAEQhb1xvmLNHEbB/VAUOddL 6SZ6nOXp/VfDiSJW37HlZyQDgpbFvJvKI9n+e0xLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAJH0Pv5DQKucakvpgvqdulKrNLwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBlMjVmZjZiLWI4MDAtNDdiZC1iMjAyLTFmZmU1ZjQ0ZDlmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QMwDQYJKoZIhvcNAQELBQADggEBACXvfz5ar8GyRachLVat9f5u bzbqLFH2UigdjU1YEU7f799lcdo22aeRo23DwXNC39p33NVTRrO8HzwhR8YIAmWW 0AkA9DiK4dM4Mzio9ReMtLwrFZv1NDmqf5dZKTaxZhytwKg51kabjdQcEwu/pJNQ fhPQ2Y9TiAY9lAmGwKv37fTygOUcbHiqFGGBBl0iHF0lgq2rvwfKa2asy9D3Hddb KKvwPLYs+UCNKCLNeNDvXuVwHSFxZRWRniZDfrO2DZI4WkPz18EM7OQEsr3ynFRS AOjWJ0tO/SPWVbZaAWxE2L0nW+u83XWejf2jtRqEUh6ct7YMOCyH7vqnrNiNWls= -----END CERTIFICATE-----Generated at Wed Jun 17 08:41:48 2026 by rpki-client