$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5b36f294-8f01-4fd4-8ed1-d96cdca16ac7.roa File: 5b36f294-8f01-4fd4-8ed1-d96cdca16ac7.roa (raw, json) Hash identifier: KanLRt0CDa9gy/4G9x38l9p5/LbnB/2CPv8tocLwDYk= Subject key identifier: C0:EE:E4:E1:FD:C7:25:59:5D:48:16:70:FB:C7:D0:58:31:51:8C:BE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6696CFF976B6A15BC5D0D594DD62504EFBA180AD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5b36f294-8f01-4fd4-8ed1-d96cdca16ac7.roa Signing time: Sat 11 Apr 2026 00:00:05 +0000 ROA not before: Sat 11 Apr 2026 00:00:05 +0000 ROA not after: Fri 10 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7028::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:96:cf:f9:76:b6:a1:5b:c5:d0:d5:94:dd:62:50:4e:fb:a1:80:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 11 00:00:05 2026 GMT Not After : Jul 10 23:59:59 2026 GMT Subject: serialNumber=2500a506fddc8692544cfa313667af72ab08301b15678dd375de051ef0b4c43e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f3:56:69:63:c1:a2:0d:71:7b:9b:8f:45:96: dd:d8:6c:5b:77:75:f5:55:79:4b:e6:d4:39:89:24: fc:80:d2:68:94:5a:ad:f9:f9:30:2d:f8:bf:45:0f: 89:c8:c7:d3:b7:f9:fb:d3:2b:e3:ea:24:e6:0b:7d: ca:d9:25:dc:91:47:89:0c:0e:3e:38:04:fa:56:6a: 07:71:f6:04:2c:b8:ba:fe:2c:87:9c:03:54:c8:70: 41:09:1e:64:63:7f:e4:c8:0e:17:dc:de:2b:72:f4: c8:ba:1c:13:03:fa:29:b8:e2:64:a2:9e:f4:db:7a: ef:ac:24:1a:7c:64:19:af:47:25:32:3a:b8:8d:57: d2:42:de:bc:56:5b:ab:17:56:ef:02:e3:f5:0f:c1: 70:0f:d9:4d:8c:10:ab:7f:b2:5f:0e:7d:78:9f:7b: d5:43:03:2b:b4:2c:cf:07:df:df:8a:c1:b1:b6:8b: 05:7e:6c:25:35:b3:a8:6f:f5:f1:fa:64:a2:6f:8e: 75:fd:95:f2:1c:9c:34:b1:60:5e:af:b6:7d:09:5f: 75:c9:4f:61:54:f0:60:85:23:b8:89:47:d0:2c:9e: ad:aa:ec:68:78:2f:f3:bf:6d:c4:a2:f7:b3:93:76: c9:72:d6:bd:bb:52:ad:46:18:a2:94:4c:7d:9a:ad: a1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:EE:E4:E1:FD:C7:25:59:5D:48:16:70:FB:C7:D0:58:31:51:8C:BE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5b36f294-8f01-4fd4-8ed1-d96cdca16ac7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7028::/48 Signature Algorithm: sha256WithRSAEncryption 6b:4a:25:0a:cb:db:40:e4:0a:00:60:ee:34:a3:68:1d:9c:6c: a7:91:87:b3:c8:54:a6:0b:81:24:47:6b:03:93:42:3e:8a:e1: ec:ae:94:79:68:7e:b7:fa:60:6f:16:0c:25:5e:58:7b:7c:d1: 2c:f6:0c:12:4e:ac:52:89:f6:79:81:37:db:aa:ae:b6:57:90: e7:9d:68:6e:f0:3b:cb:c4:95:dc:32:51:f7:6e:10:c7:a9:dc: f6:00:0d:7a:bf:61:37:37:93:49:f0:85:9e:6c:4d:cc:21:bc: b5:b3:32:d5:0a:8e:b0:70:bf:35:b0:e2:5f:bf:7d:a0:20:d2: 1e:3d:dd:02:a7:cc:bc:64:99:11:06:ad:8f:65:d8:15:22:d1: 42:10:9c:42:0b:26:ee:14:f3:41:d9:ee:c1:f9:68:62:7e:b6: b3:9f:c1:46:b5:cc:af:61:bc:42:45:9d:af:0d:7a:77:28:e2: 5d:17:c8:5e:00:eb:cc:34:a1:13:3a:e1:95:92:2e:9d:f1:14: 80:e6:b0:52:a6:b1:6c:d4:55:d6:a3:dc:e7:4b:c6:a6:e1:ec: d4:a4:67:5e:26:36:e2:05:1d:16:10:cc:3b:52:08:89:37:8f: c2:80:9b:df:9d:74:50:57:6c:d6:2d:15:d9:3f:d3:7a:1d:dd: 41:81:b3:2b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZpbP+Xa2oVvF0NWU3WJQTvuhgK0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDExMDAwMDA1WhcNMjYwNzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTAwYTUwNmZkZGM4NjkyNTQ0Y2ZhMzEzNjY3YWY3MmFi MDgzMDFiMTU2NzhkZDM3NWRlMDUxZWYwYjRjNDNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl81ZpY8GiDXF7m49Flt3YbFt3dfVVeUvm1DmJJPyA0miU Wq35+TAt+L9FD4nIx9O3+fvTK+PqJOYLfcrZJdyRR4kMDj44BPpWagdx9gQsuLr+ LIecA1TIcEEJHmRjf+TIDhfc3ity9Mi6HBMD+im44mSinvTbeu+sJBp8ZBmvRyUy OriNV9JC3rxWW6sXVu8C4/UPwXAP2U2MEKt/sl8OfXife9VDAyu0LM8H39+KwbG2 iwV+bCU1s6hv9fH6ZKJvjnX9lfIcnDSxYF6vtn0JX3XJT2FU8GCFI7iJR9Asnq2q 7Gh4L/O/bcSi97OTdsly1r27Uq1GGKKUTH2araF5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwO7k4f3HJVldSBZw+8fQWDFRjL4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzViMzZmMjk0LThmMDEtNGZkNC04ZWQxLWQ5NmNkY2ExNmFjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycCgwDQYJKoZIhvcNAQELBQADggEBAGtKJQrL20DkCgBg7jSjaB2c bKeRh7PIVKYLgSRHawOTQj6K4eyulHlofrf6YG8WDCVeWHt80Sz2DBJOrFKJ9nmB N9uqrrZXkOedaG7wO8vEldwyUfduEMep3PYADXq/YTc3k0nwhZ5sTcwhvLWzMtUK jrBwvzWw4l+/faAg0h493QKnzLxkmREGrY9l2BUi0UIQnEILJu4U80HZ7sH5aGJ+ trOfwUa1zK9hvEJFna8Nenco4l0XyF4A68w0oRM64ZWSLp3xFIDmsFKmsWzUVdaj 3OdLxqbh7NSkZ14mNuIFHRYQzDtSCIk3j8KAm9+ddFBXbNYtFdk/03od3UGBsys= -----END CERTIFICATE-----Generated at Fri Apr 17 09:32:23 2026 by rpki-client