$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b5856a7-3d17-4060-a6c4-bace9436884e.roa File: 3b5856a7-3d17-4060-a6c4-bace9436884e.roa (raw, json) Hash identifier: KGb7qzsuxKUOMmMlWpEkewrEbVFIyWvrXzF0G0zIQj4= Subject key identifier: 1F:8E:FA:5F:3D:F1:FB:24:8D:F6:8A:79:CA:7D:78:FE:3F:D3:D1:1B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0D2D2E485FAB532C20180A90EF33874B55294245 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b5856a7-3d17-4060-a6c4-bace9436884e.roa Signing time: Mon 25 May 2026 00:00:29 +0000 ROA not before: Mon 25 May 2026 00:00:29 +0000 ROA not after: Sun 23 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:2d:2e:48:5f:ab:53:2c:20:18:0a:90:ef:33:87:4b:55:29:42:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 25 00:00:29 2026 GMT Not After : Aug 23 23:59:59 2026 GMT Subject: serialNumber=cacb83a3aee3044131ae9f2e27bbc6bdc5966b846a8e0f439b49651090541bce, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:05:3e:4f:28:54:db:c6:e7:41:be:ed:f5:1a: cc:c5:1c:66:87:da:88:5c:44:43:b6:d7:e2:93:3e: 44:02:78:d4:86:38:f3:14:ab:64:b8:f8:56:fd:7a: a5:f2:d3:cb:55:18:04:5c:ec:27:81:37:6a:5e:e3: 2d:fe:4f:6a:8c:7e:0f:0a:2c:b0:f6:5a:60:c0:ed: 59:b3:3f:be:08:3d:d7:b3:f9:91:a9:c9:55:f7:90: 6b:6a:94:07:35:32:33:2e:46:46:e2:f4:f1:e0:e8: 27:bf:83:34:e0:b9:71:2a:57:9f:fd:10:91:13:ef: 91:ac:62:de:5c:d2:fd:b6:4e:fb:98:64:3a:e2:f8: 22:ef:2e:f2:7e:ba:eb:34:49:c5:f6:2a:ac:a7:c1: 0a:3f:5c:ad:d0:08:06:b7:e4:d0:83:50:ad:c2:cd: 53:af:0d:e4:3f:cd:0b:56:6d:f2:99:c1:96:c3:9a: 55:f9:e9:9b:96:80:77:13:96:48:7c:2a:9e:3a:fa: f2:1b:a0:59:af:cb:8a:af:d0:94:3b:2c:cb:c6:eb: 9e:f1:cd:7b:4a:58:7a:40:f8:9f:60:e8:21:27:93: 24:9d:a9:69:28:14:29:2b:41:24:f0:bc:7f:5a:94: 7c:b4:77:5f:b9:75:e1:a6:7e:01:12:be:cc:cb:a9: ba:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:8E:FA:5F:3D:F1:FB:24:8D:F6:8A:79:CA:7D:78:FE:3F:D3:D1:1B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b5856a7-3d17-4060-a6c4-bace9436884e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7020::/44 Signature Algorithm: sha256WithRSAEncryption 1e:cd:2b:75:2c:1d:9c:0a:be:31:19:c1:92:21:2d:fa:ad:7b: 27:73:ce:ec:30:c7:86:2a:b9:35:95:dc:96:c3:ba:ec:5f:57: 70:e3:24:44:ff:4b:78:21:86:6b:94:69:04:13:f0:7e:e0:31: af:c0:1c:20:de:d0:14:f0:26:ae:53:b9:4c:bd:9c:40:7a:5b: 55:5f:1f:60:54:e8:9f:e7:5c:98:ef:53:5b:18:2f:e1:82:29: c4:5a:16:47:f0:e0:6f:06:8b:91:5e:2f:1d:9a:85:a4:93:e5: 1e:b6:85:33:a6:21:9e:ee:ef:b0:c8:54:73:b4:84:64:ac:83: 48:45:15:79:f8:0d:6d:d9:b3:9a:53:ca:86:0f:9d:74:6d:a9: 0b:4a:a8:2a:90:3b:89:67:ba:5e:c9:05:4e:0f:db:5b:c7:b8: f7:8e:de:d7:40:29:a0:c2:43:e3:6e:5c:2f:3f:2d:ff:0a:46: 86:e0:a6:20:76:75:37:d4:95:c6:92:9e:6c:13:e2:38:a5:c3: 03:ff:3a:0c:98:5c:4f:aa:93:43:87:d6:05:46:46:18:f8:ae: c1:4d:dd:4b:ba:64:33:ed:d2:83:12:80:7f:d3:06:67:f6:75: de:02:9c:ce:e7:0a:f0:a0:ed:51:64:8d:41:85:08:2e:cf:93: 3d:46:67:b1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDS0uSF+rUywgGAqQ7zOHS1UpQkUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTI1MDAwMDI5WhcNMjYwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWNiODNhM2FlZTMwNDQxMzFhZTlmMmUyN2JiYzZiZGM1 OTY2Yjg0NmE4ZTBmNDM5YjQ5NjUxMDkwNTQxYmNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+BT5PKFTbxudBvu31GszFHGaH2ohcREO21+KTPkQCeNSG OPMUq2S4+Fb9eqXy08tVGARc7CeBN2pe4y3+T2qMfg8KLLD2WmDA7VmzP74IPdez +ZGpyVX3kGtqlAc1MjMuRkbi9PHg6Ce/gzTguXEqV5/9EJET75GsYt5c0v22TvuY ZDri+CLvLvJ+uus0ScX2KqynwQo/XK3QCAa35NCDUK3CzVOvDeQ/zQtWbfKZwZbD mlX56ZuWgHcTlkh8Kp46+vIboFmvy4qv0JQ7LMvG657xzXtKWHpA+J9g6CEnkySd qWkoFCkrQSTwvH9alHy0d1+5deGmfgESvszLqbqzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUH476Xz3x+ySN9op5yn14/j/T0RswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNiNTg1NmE3LTNkMTctNDA2MC1hNmM0LWJhY2U5NDM2ODg0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycCAwDQYJKoZIhvcNAQELBQADggEBAB7NK3UsHZwKvjEZwZIhLfqt eydzzuwwx4YquTWV3JbDuuxfV3DjJET/S3ghhmuUaQQT8H7gMa/AHCDe0BTwJq5T uUy9nEB6W1VfH2BU6J/nXJjvU1sYL+GCKcRaFkfw4G8Gi5FeLx2ahaST5R62hTOm IZ7u77DIVHO0hGSsg0hFFXn4DW3Zs5pTyoYPnXRtqQtKqCqQO4lnul7JBU4P21vH uPeO3tdAKaDCQ+NuXC8/Lf8KRobgpiB2dTfUlcaSnmwT4jilwwP/OgyYXE+qk0OH 1gVGRhj4rsFN3Uu6ZDPt0oMSgH/TBmf2dd4CnM7nCvCg7VFkjUGFCC7Pkz1GZ7E= -----END CERTIFICATE-----Generated at Wed Jun 17 11:21:18 2026 by rpki-client