$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6111698a-a1ca-4926-9100-dc8b03884aea.roa File: 6111698a-a1ca-4926-9100-dc8b03884aea.roa (raw, json) Hash identifier: iZUQT94sADOS+5tgt2+Xpa0GeGJI00H3smtnWGR+jiY= Subject key identifier: DE:56:0C:CD:0E:70:57:FF:D6:9D:0D:82:32:A1:5B:6C:AC:EB:C1:A6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5C896D9DA09EAEFD9D6BDF59DBE2CD43B8950EF7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6111698a-a1ca-4926-9100-dc8b03884aea.roa Signing time: Fri 03 Apr 2026 02:30:10 +0000 ROA not before: Fri 03 Apr 2026 02:30:10 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:e0f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:89:6d:9d:a0:9e:ae:fd:9d:6b:df:59:db:e2:cd:43:b8:95:0e:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 3 02:30:10 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=8eaa0b148dfda32b30a99593cb2aac23a641958bd10a1c2b85231c35923896a1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a0:d8:7d:5b:aa:05:55:14:e0:86:42:16:37: 10:2b:be:92:9e:83:ea:76:b7:c7:32:ef:04:92:1b: a2:9f:45:cf:b7:4c:58:3a:06:71:21:4c:07:f3:12: 32:7d:52:0e:98:c4:3f:eb:77:46:8c:bf:6f:4d:53: 4c:82:dd:bd:fc:f1:ad:31:12:90:23:4b:e9:82:5f: e1:79:55:3b:e5:40:fa:dd:55:e6:3c:39:47:41:c0: 32:ab:76:ac:5a:c1:1a:19:ca:00:61:bd:65:13:13: 93:41:48:83:9f:52:0c:c0:06:64:46:ab:7a:80:19: 32:89:86:7c:bb:0a:07:08:11:f9:d0:cb:bb:1b:cf: 05:38:c5:10:9c:0f:55:e7:86:9e:58:0c:da:10:d7: 84:91:fb:1c:fa:88:63:85:08:0c:29:56:bf:9c:60: 43:c6:f4:d3:27:51:56:e0:89:e9:66:04:8d:35:5e: 42:64:29:54:b7:05:b0:39:ad:0b:56:9d:29:bc:58: 8f:43:ff:26:0f:72:af:fb:23:fd:4c:62:65:b9:86: 38:2a:a9:c3:d7:35:03:dc:95:d4:e1:1d:28:8b:9b: b9:80:cb:f8:72:06:70:61:74:77:3e:94:02:6e:d7: ad:2b:8c:e8:97:34:64:38:85:2f:16:ff:3a:dc:59: 1a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:56:0C:CD:0E:70:57:FF:D6:9D:0D:82:32:A1:5B:6C:AC:EB:C1:A6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6111698a-a1ca-4926-9100-dc8b03884aea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:e0f::/48 Signature Algorithm: sha256WithRSAEncryption 70:d6:de:4c:d1:e8:be:42:a2:35:0e:01:75:25:f8:f4:f5:09: 02:f8:3d:df:73:ef:be:43:e5:50:48:54:da:9c:b0:59:db:49: c2:b2:ae:8d:c5:93:0e:ca:fa:ae:7f:1d:2d:66:c2:28:83:c3: 8f:05:c9:4e:81:92:c7:a5:21:d2:4a:e1:7d:63:59:f4:a9:84: eb:e7:5c:4f:3e:c1:e3:d2:0c:8b:1f:00:90:03:f3:77:e7:dc: fa:a2:42:8a:89:2e:53:33:f9:2d:fd:1b:dc:8c:60:2f:b3:80: 53:5c:53:fe:d4:98:d7:4c:ec:0a:45:1e:16:ef:d6:7a:7b:02: 94:bc:d6:eb:3e:75:9a:3c:ef:d0:dc:21:c8:a8:18:aa:de:ba: 2d:4c:fc:54:7d:08:f5:38:a9:f7:27:13:c2:ff:f0:04:d9:2e: 24:07:e7:ac:9a:6f:6a:38:e4:43:10:72:66:7d:f5:f3:22:83: fa:ca:ad:01:89:cf:71:e5:f0:52:98:f7:d5:55:99:a8:ee:92: f7:e8:ba:2b:f6:d3:77:3b:5c:c6:94:36:8e:b8:12:f5:70:a0: 4b:1c:6f:b0:f7:e5:92:45:1a:27:0b:72:9c:a0:3e:e8:c0:5e: 46:ab:df:2f:29:66:80:c2:b2:5e:08:d5:9b:cb:97:fa:94:bc: 94:e0:dc:28 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXIltnaCerv2da99Z2+LNQ7iVDvcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDAzMDIzMDEwWhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZWFhMGIxNDhkZmRhMzJiMzBhOTk1OTNjYjJhYWMyM2E2 NDE5NThiZDEwYTFjMmI4NTIzMWMzNTkyMzg5NmExMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYoNh9W6oFVRTghkIWNxArvpKeg+p2t8cy7wSSG6KfRc+3 TFg6BnEhTAfzEjJ9Ug6YxD/rd0aMv29NU0yC3b388a0xEpAjS+mCX+F5VTvlQPrd VeY8OUdBwDKrdqxawRoZygBhvWUTE5NBSIOfUgzABmRGq3qAGTKJhny7CgcIEfnQ y7sbzwU4xRCcD1Xnhp5YDNoQ14SR+xz6iGOFCAwpVr+cYEPG9NMnUVbgielmBI01 XkJkKVS3BbA5rQtWnSm8WI9D/yYPcq/7I/1MYmW5hjgqqcPXNQPcldThHSiLm7mA y/hyBnBhdHc+lAJu160rjOiXNGQ4hS8W/zrcWRq/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3lYMzQ5wV//WnQ2CMqFbbKzrwaYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzYxMTE2OThhLWExY2EtNDkyNi05MTAwLWRjOGIwMzg4NGFlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwDg8wDQYJKoZIhvcNAQELBQADggEBAHDW3kzR6L5CojUOAXUl+PT1 CQL4Pd9z775D5VBIVNqcsFnbScKyro3Fkw7K+q5/HS1mwiiDw48FyU6BkselIdJK 4X1jWfSphOvnXE8+wePSDIsfAJAD83fn3PqiQoqJLlMz+S39G9yMYC+zgFNcU/7U mNdM7ApFHhbv1np7ApS81us+dZo879DcIcioGKreui1M/FR9CPU4qfcnE8L/8ATZ LiQH56yab2o45EMQcmZ99fMig/rKrQGJz3Hl8FKY99VVmajukvfouiv203c7XMaU No64EvVwoEscb7D35ZJFGicLcpygPujAXkar3y8pZoDCsl4I1ZvLl/qUvJTg3Cg= -----END CERTIFICATE-----Generated at Fri Apr 17 06:28:34 2026 by rpki-client