$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa File: 56527727-111d-4d4a-9da3-1e8d68e15a4c.roa (raw, json) Hash identifier: K/O4PXrdhCBPPs+bhq7NRksdulUHzwSUWB3fKPHBgDY= Subject key identifier: D6:E7:52:3E:34:24:30:E3:9F:4C:8D:BC:16:43:1C:C0:13:FA:99:EC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6D06541023AF00A42349748C9C632223956BA003 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa Signing time: Tue 19 May 2026 04:30:21 +0000 ROA not before: Tue 19 May 2026 04:30:21 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:06:54:10:23:af:00:a4:23:49:74:8c:9c:63:22:23:95:6b:a0:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:30:21 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=f1b8a608993c4d36fbd1347f11f73a0a1d4c91a4907c3f75482f4702aa0b194e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:af:29:07:ef:be:dd:eb:5d:ee:d2:67:21:8f: 6e:48:23:25:94:44:e4:8c:15:4d:b4:27:65:2f:66: eb:a2:f3:e5:1f:7a:ca:44:39:8c:ea:c2:9c:d1:0d: d6:e4:c4:09:c1:56:4b:ad:ce:bd:23:5e:9f:87:7d: c7:b8:b8:29:8c:e7:6a:05:f9:c6:11:eb:3f:99:93: 73:47:c0:57:49:6e:15:ad:e2:ae:05:1d:d6:4b:0e: c1:84:46:75:6b:b2:9e:12:79:15:dc:16:ef:e7:2a: 79:df:28:0c:a5:c9:7b:1b:ec:a3:08:19:51:b3:04: 36:e1:6c:d2:c7:61:2f:b4:78:f1:91:d4:ce:5c:4a: 79:94:56:5c:2a:3b:89:1c:36:ed:20:b8:a6:ee:ea: eb:31:88:cd:2b:f6:74:5d:06:b7:1e:0e:b5:b7:df: 59:b4:50:4c:03:5a:61:cb:63:6f:5c:8b:f6:59:42: ce:a2:6c:56:96:cd:1e:3f:49:af:97:7d:b2:2c:95: 1f:69:27:70:e7:7e:e7:88:90:df:9b:1a:d4:b3:ee: ca:c8:bf:3d:a2:8b:96:8a:ad:4c:45:1f:56:0e:cd: a1:bd:75:98:77:f6:d7:9a:1a:ec:eb:15:c3:24:17: 46:80:ae:a6:50:33:a7:65:c2:4a:ff:50:99:91:d8: c5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:E7:52:3E:34:24:30:E3:9F:4C:8D:BC:16:43:1C:C0:13:FA:99:EC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/44 Signature Algorithm: sha256WithRSAEncryption 63:25:a3:58:bc:44:48:c0:6c:32:2f:43:bc:35:83:c3:b1:35: 13:f1:04:54:a6:ca:33:c3:65:62:10:29:98:09:ed:3a:5e:40: dd:2f:70:c6:d4:80:03:0a:fb:1e:ee:21:47:cb:e4:d7:ff:88: f4:b6:6b:43:26:03:e0:94:66:7c:00:6c:cb:e2:f5:52:a4:ef: 85:1f:72:53:53:5f:50:b1:ab:e5:8f:16:f5:d1:28:5c:f4:2d: 06:0a:4c:f9:a7:f4:1f:10:1f:7c:b9:77:dd:8b:a0:ef:f1:bd: 42:ca:a8:89:7f:ab:45:ca:81:44:36:92:84:7d:c5:69:3d:9a: dd:03:92:b9:54:14:fe:7f:30:fb:eb:76:51:33:4f:ff:0b:87: aa:c2:80:3a:70:48:13:2e:bb:d1:50:17:b4:c4:e4:5a:33:b6: c5:b8:05:56:0a:1e:6a:e6:88:e3:22:cc:0d:c3:8e:b6:ad:0b: e7:1c:bd:e9:32:6f:ef:df:f4:db:4f:95:90:b3:96:12:ac:28: dc:5f:bd:cf:95:a3:a0:19:87:1e:30:d9:94:48:82:c5:b0:f7: c3:27:bf:94:c5:4c:4b:56:de:09:d9:68:b1:bb:dc:01:75:61: 38:5f:6f:cd:85:9d:c0:80:ba:c8:81:1e:22:ef:b4:af:46:82: dc:15:8a:6a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbQZUECOvAKQjSXSMnGMiI5VroAMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQzMDIxWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMWI4YTYwODk5M2M0ZDM2ZmJkMTM0N2YxMWY3M2EwYTFk NGM5MWE0OTA3YzNmNzU0ODJmNDcwMmFhMGIxOTRlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClrykH777d613u0mchj25IIyWUROSMFU20J2UvZuui8+Uf espEOYzqwpzRDdbkxAnBVkutzr0jXp+Hfce4uCmM52oF+cYR6z+Zk3NHwFdJbhWt 4q4FHdZLDsGERnVrsp4SeRXcFu/nKnnfKAylyXsb7KMIGVGzBDbhbNLHYS+0ePGR 1M5cSnmUVlwqO4kcNu0guKbu6usxiM0r9nRdBrceDrW331m0UEwDWmHLY29ci/ZZ Qs6ibFaWzR4/Sa+XfbIslR9pJ3DnfueIkN+bGtSz7srIvz2ii5aKrUxFH1YOzaG9 dZh39teaGuzrFcMkF0aArqZQM6dlwkr/UJmR2MXFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1udSPjQkMOOfTI28FkMcwBP6mewwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU2NTI3NzI3LTExMWQtNGQ0YS05ZGEzLTFlOGQ2OGUxNWE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAGMlo1i8REjAbDIvQ7w1g8Ox NRPxBFSmyjPDZWIQKZgJ7TpeQN0vcMbUgAMK+x7uIUfL5Nf/iPS2a0MmA+CUZnwA bMvi9VKk74UfclNTX1Cxq+WPFvXRKFz0LQYKTPmn9B8QH3y5d92LoO/xvULKqIl/ q0XKgUQ2koR9xWk9mt0DkrlUFP5/MPvrdlEzT/8Lh6rCgDpwSBMuu9FQF7TE5Foz tsW4BVYKHmrmiOMizA3DjratC+ccvekyb+/f9NtPlZCzlhKsKNxfvc+Vo6AZhx4w 2ZRIgsWw98Mnv5TFTEtW3gnZaLG73AF1YThfb82FncCAusiBHiLvtK9GgtwVimo= -----END CERTIFICATE-----Generated at Wed Jun 17 08:54:52 2026 by rpki-client