$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa File: 765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa (raw, json) Hash identifier: HGCythrawYMz+zD7gdaxVqAzCODc0c5KfsJGhUDJh6I= Subject key identifier: 8C:60:75:09:BE:77:98:09:3F:4C:1E:DC:BC:51:EA:16:91:EC:97:C0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 18541A826A6BCC1916827C96E689D0A77927B16D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa Signing time: Tue 19 May 2026 04:30:17 +0000 ROA not before: Tue 19 May 2026 04:30:17 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:54:1a:82:6a:6b:cc:19:16:82:7c:96:e6:89:d0:a7:79:27:b1:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:30:17 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=8bf352b3abbdfadf272de2124067b2e5c1862d6f3ad3032d84a65bfc60e2b1c1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1c:ff:fd:36:a1:63:e4:bb:35:da:da:08:0c: bc:d8:90:fc:a4:59:5b:0a:6f:41:e0:2e:7b:d7:ae: 75:da:69:45:95:53:24:bb:c1:9e:80:49:db:cf:a3: 74:5b:fa:78:8e:b0:1d:63:59:48:b6:30:81:77:39: 10:b2:74:97:2f:8a:89:2e:74:a0:13:34:44:20:18: 0b:4c:7b:91:03:1d:85:92:23:b3:2e:bd:75:31:41: 65:f1:94:6e:97:89:1f:aa:68:28:82:fa:d3:0e:55: b3:67:1d:ca:7e:0e:ae:42:eb:e7:99:09:f7:66:60: 7e:20:b2:4b:e4:58:72:50:9b:36:0f:f9:17:42:59: c5:8c:f6:ef:6b:de:9d:4c:11:ce:e8:b4:d3:d3:af: 6d:d7:23:48:78:65:0e:19:0f:92:df:14:25:fb:27: 3a:76:87:5e:a0:1a:ed:6f:1b:dd:53:99:3b:c7:33: cb:ae:69:50:a3:6d:c3:62:aa:a0:f5:56:b4:8c:7d: 49:3a:a7:2c:15:2e:c0:6c:44:92:a1:16:14:18:85: da:bd:1a:bc:b6:6b:5d:78:8d:e6:0e:a1:21:07:82: f5:20:40:87:2b:f5:88:32:5a:d4:64:d0:f6:93:f6: 5d:52:03:74:64:b4:49:e1:d2:92:92:55:bb:07:03: 89:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:60:75:09:BE:77:98:09:3F:4C:1E:DC:BC:51:EA:16:91:EC:97:C0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:8::/48 Signature Algorithm: sha256WithRSAEncryption 9b:7e:f3:b4:93:9c:8c:7f:7b:2e:7b:cf:73:bf:a2:9f:ec:1b: 8d:f0:e7:3d:a6:3e:8f:2b:e9:8f:09:07:05:c3:a8:41:b8:30: 72:1d:fd:fc:fe:39:db:fa:96:50:01:0a:b3:e6:c0:2d:70:9b: 81:f4:80:14:09:be:3c:a6:fe:54:de:13:0a:84:2c:03:73:3d: 73:b7:3d:bd:a3:cd:47:a2:a1:fd:48:78:53:36:91:87:eb:5e: 73:ea:07:28:1d:99:6c:ea:db:98:b8:0f:25:56:af:13:10:cc: fd:2c:ca:74:bc:df:b7:c1:7c:9f:42:f6:86:71:a7:98:7e:92: 2e:b1:a6:76:0a:68:8b:71:36:0a:70:73:a2:e3:cd:04:68:c4: 41:ad:69:42:18:2d:c6:c2:30:ca:78:11:f0:c7:89:9b:fa:94: 2a:d9:03:38:ae:e7:f5:07:9f:c0:4d:6e:95:41:d4:f4:92:1b: c3:40:d2:aa:39:5d:7c:ee:d9:51:da:52:71:ce:1f:e5:38:98: 20:e3:1c:e0:51:b0:40:77:71:35:1a:ef:97:07:4b:15:d5:0f: c9:71:4a:5a:9f:53:73:0a:65:1b:a2:33:84:65:54:0d:2a:79: 9e:14:ba:54:50:b9:6b:65:3f:70:c4:b8:51:c0:6a:d4:44:ec: c4:30:d3:93 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGFQagmprzBkWgnyW5onQp3knsW0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQzMDE3WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YmYzNTJiM2FiYmRmYWRmMjcyZGUyMTI0MDY3YjJlNWMx ODYyZDZmM2FkMzAzMmQ4NGE2NWJmYzYwZTJiMWMxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmHP/9NqFj5Ls12toIDLzYkPykWVsKb0HgLnvXrnXaaUWV UyS7wZ6ASdvPo3Rb+niOsB1jWUi2MIF3ORCydJcviokudKATNEQgGAtMe5EDHYWS I7MuvXUxQWXxlG6XiR+qaCiC+tMOVbNnHcp+Dq5C6+eZCfdmYH4gskvkWHJQmzYP +RdCWcWM9u9r3p1MEc7otNPTr23XI0h4ZQ4ZD5LfFCX7Jzp2h16gGu1vG91TmTvH M8uuaVCjbcNiqqD1VrSMfUk6pywVLsBsRJKhFhQYhdq9Gry2a114jeYOoSEHgvUg QIcr9YgyWtRk0PaT9l1SA3RktEnh0pKSVbsHA4lxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjGB1Cb53mAk/TB7cvFHqFpHsl8AwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc2NWRmYTZjLTM1ZDEtNDJjZi1iYTg5LWVhZjg4NTc3ZTRmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAgwDQYJKoZIhvcNAQELBQADggEBAJt+87STnIx/ey57z3O/op/s G43w5z2mPo8r6Y8JBwXDqEG4MHId/fz+Odv6llABCrPmwC1wm4H0gBQJvjym/lTe EwqELANzPXO3Pb2jzUeiof1IeFM2kYfrXnPqBygdmWzq25i4DyVWrxMQzP0synS8 37fBfJ9C9oZxp5h+ki6xpnYKaItxNgpwc6LjzQRoxEGtaUIYLcbCMMp4EfDHiZv6 lCrZAziu5/UHn8BNbpVB1PSSG8NA0qo5XXzu2VHaUnHOH+U4mCDjHOBRsEB3cTUa 75cHSxXVD8lxSlqfU3MKZRuiM4RlVA0qeZ4UulRQuWtlP3DEuFHAatRE7MQw05M= -----END CERTIFICATE-----Generated at Wed Jun 17 08:52:33 2026 by rpki-client