$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa File: 37e5da86-98ab-4d9c-889e-6ab6e277d866.roa (raw, json) Hash identifier: nP2nJ8+8iSGiSf3o1qvnlCoP6vO41xR6kcDuijg73AM= Subject key identifier: 69:5F:89:6F:DA:5F:1D:9A:38:33:B5:DD:E5:4A:6B:9F:4C:B2:B9:8C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 20E06485B4931F538B8D6AC7003C254B956D364E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa Signing time: Tue 19 May 2026 04:10:52 +0000 ROA not before: Tue 19 May 2026 04:10:52 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:e0:64:85:b4:93:1f:53:8b:8d:6a:c7:00:3c:25:4b:95:6d:36:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:52 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=4197665c22ec19ca44b3522ae7bf4357b54d764296c3a32b3030011b6906861c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:10:ba:05:5b:a7:d2:f3:ed:8d:a7:49:41:de: d7:6e:e3:54:f3:75:7d:91:c8:66:d6:5d:7d:6a:ec: 3a:14:b8:62:02:6b:7e:4a:8d:a5:8a:12:49:99:31: 03:a2:6b:46:cf:4e:ae:42:e9:47:17:d8:7e:00:e3: 28:b3:ec:1a:dc:c1:c9:86:b1:bb:3b:65:6e:33:11: d4:68:cd:ec:d2:45:cc:4f:28:94:ad:da:b1:36:7a: c2:47:d5:99:6a:9d:d0:21:da:11:1e:10:7c:64:d7: b7:fc:d6:52:61:12:80:76:41:df:1b:6a:c5:51:e6: 9c:23:61:8d:e8:8d:48:90:78:2f:22:23:b2:a4:51: d2:e9:5a:84:5f:c7:77:c0:bf:75:64:0a:23:26:c9: bf:e6:2b:f1:e3:22:48:23:0a:00:56:d0:56:cb:9e: 1a:ac:c3:73:3e:c0:d4:d6:eb:1b:2d:47:7a:a9:ad: 3e:b8:37:db:6f:19:22:72:4b:55:2c:8c:9f:98:55: 3d:0f:f9:26:51:c5:16:d4:ec:d9:5f:b1:32:41:db: bd:f9:b1:29:a5:f5:1e:52:2c:61:d7:65:fa:67:32: e1:91:95:fa:ad:fd:57:ea:97:ed:67:13:16:4c:da: 15:33:da:4c:b9:00:d2:da:e3:1c:4f:22:48:b2:21: ce:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5F:89:6F:DA:5F:1D:9A:38:33:B5:DD:E5:4A:6B:9F:4C:B2:B9:8C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1::/48 Signature Algorithm: sha256WithRSAEncryption 34:8f:38:ca:f5:7e:aa:0d:6e:be:d3:96:64:99:01:a4:b4:d9: 82:38:b9:68:92:a8:67:b6:00:5b:12:3d:82:ef:b0:03:34:02: ad:3e:f5:91:8a:66:7b:48:07:97:75:28:84:d8:73:0f:a3:d6: ba:55:b3:ae:1a:6a:8b:80:ed:6f:c5:c0:0e:2f:a6:0b:a7:33: 44:72:c3:43:8e:b4:b2:a6:92:fb:a3:9e:9e:20:11:92:5d:99: be:57:3e:6d:ad:b8:9b:c2:f3:08:20:60:df:3c:e0:a1:5d:ba: 39:4b:14:90:6b:46:de:c8:ea:2c:c9:1a:0d:41:0a:54:05:78: aa:a6:28:94:12:8b:6e:d9:a7:4f:61:01:9c:57:35:5e:d6:a1: a0:3d:d1:16:aa:b0:d9:c7:4c:a6:00:2b:01:1f:6f:74:d9:2f: 5e:8a:72:a5:34:24:de:51:8a:c6:0c:4c:f8:ec:12:24:78:cc: d5:3e:5f:09:09:a0:fb:0a:cb:e2:51:1e:e2:a1:2a:87:47:26: 12:83:e5:24:2b:a9:b7:a8:83:8c:4d:66:da:4b:64:98:70:ff: cc:3e:40:91:1d:cb:2c:8a:3a:bd:bc:54:ff:99:34:ba:39:a5: 98:3c:9f:24:a5:6c:ad:02:d5:ef:12:3e:df:ff:17:4f:28:78: 1a:cc:5f:2b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIOBkhbSTH1OLjWrHADwlS5VtNk4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDUyWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTk3NjY1YzIyZWMxOWNhNDRiMzUyMmFlN2JmNDM1N2I1 NGQ3NjQyOTZjM2EzMmIzMDMwMDExYjY5MDY4NjFjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5ELoFW6fS8+2Np0lB3tdu41TzdX2RyGbWXX1q7DoUuGIC a35KjaWKEkmZMQOia0bPTq5C6UcX2H4A4yiz7BrcwcmGsbs7ZW4zEdRozezSRcxP KJSt2rE2esJH1ZlqndAh2hEeEHxk17f81lJhEoB2Qd8basVR5pwjYY3ojUiQeC8i I7KkUdLpWoRfx3fAv3VkCiMmyb/mK/HjIkgjCgBW0FbLnhqsw3M+wNTW6xstR3qp rT64N9tvGSJyS1UsjJ+YVT0P+SZRxRbU7NlfsTJB2735sSml9R5SLGHXZfpnMuGR lfqt/Vfql+1nExZM2hUz2ky5ANLa4xxPIkiyIc7bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUaV+Jb9pfHZo4M7Xd5Uprn0yyuYwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM3ZTVkYTg2LTk4YWItNGQ5Yy04ODllLTZhYjZlMjc3ZDg2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAEwDQYJKoZIhvcNAQELBQADggEBADSPOMr1fqoNbr7TlmSZAaS0 2YI4uWiSqGe2AFsSPYLvsAM0Aq0+9ZGKZntIB5d1KITYcw+j1rpVs64aaouA7W/F wA4vpgunM0Ryw0OOtLKmkvujnp4gEZJdmb5XPm2tuJvC8wggYN884KFdujlLFJBr Rt7I6izJGg1BClQFeKqmKJQSi27Zp09hAZxXNV7WoaA90RaqsNnHTKYAKwEfb3TZ L16KcqU0JN5RisYMTPjsEiR4zNU+XwkJoPsKy+JRHuKhKodHJhKD5SQrqbeog4xN ZtpLZJhw/8w+QJEdyyyKOr28VP+ZNLo5pZg8nySlbK0C1e8SPt//F08oeBrMXys= -----END CERTIFICATE-----Generated at Wed Jun 17 09:05:07 2026 by rpki-client