$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa File: 7ef9d80d-500c-4762-aefe-0aa07f82b263.roa (raw, json) Hash identifier: XIcNRYk0gR1tu7w3XLaJPX1NjMwbCSHFPWgWFc6Ef/4= Subject key identifier: 0E:C6:C5:00:8C:90:A4:9F:BC:57:CD:83:94:B1:F0:1A:3A:F0:E9:74 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 094875BD27A8CC367A0E3FAEED21F3FDA6FEB2A0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa Signing time: Tue 19 May 2026 04:20:05 +0000 ROA not before: Tue 19 May 2026 04:20:05 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:48:75:bd:27:a8:cc:36:7a:0e:3f:ae:ed:21:f3:fd:a6:fe:b2:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:20:05 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=9b47e991c8b9d34177a73a18175f80f8bd0a38ee90073615d0f1ee5932cf5d27, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2b:74:ec:46:2e:19:cf:68:b9:c3:c6:43:b0: d9:05:dd:59:a3:b9:d0:92:c2:b2:09:96:f8:29:16: bd:53:47:00:95:a3:96:4c:27:84:85:33:63:3e:91: 97:67:6a:ba:76:4f:b4:42:8c:54:01:90:a4:a1:67: 3d:0a:ac:87:2b:4d:f1:b7:0f:89:e9:32:a8:66:98: 8d:ee:78:be:ac:f3:d0:31:f8:50:fc:d0:3a:6c:19: c9:28:8e:78:68:bf:2c:b0:e8:b9:19:70:a4:91:76: bf:b8:2e:3a:3c:e3:29:5b:b5:82:c7:26:a8:7f:ae: b7:cb:49:ce:42:54:9b:ae:b5:94:28:01:4c:3a:1f: 60:10:b8:38:46:83:75:1c:4b:f5:7c:31:17:ee:7e: 36:19:80:24:73:9c:86:41:72:88:6f:e5:a0:75:42: 0d:78:a6:69:aa:17:08:d5:73:63:c5:dd:5d:0d:8e: 08:43:09:52:24:c0:9d:f6:76:f4:d0:7d:68:30:ae: 27:7f:45:f8:d2:ad:4f:68:2e:bf:39:68:56:7f:78: 92:eb:d2:8c:54:89:ce:e1:e1:0f:80:b5:02:87:cc: 2e:2f:e8:d7:46:c2:d9:01:49:5c:1e:d5:dd:43:8c: 21:47:59:48:ce:d7:41:b1:6a:a9:81:39:4a:e6:25: e5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:C6:C5:00:8C:90:A4:9F:BC:57:CD:83:94:B1:F0:1A:3A:F0:E9:74 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e400::/40 Signature Algorithm: sha256WithRSAEncryption 96:44:c1:a6:6b:a2:66:f1:d4:4a:e9:03:bf:7f:c0:f2:ad:d9: 6c:1f:7c:8d:91:d6:f7:ec:91:35:48:e5:5a:be:cc:45:5a:f7: ea:8b:87:2d:68:5f:f7:6b:e4:69:a2:9e:c0:70:8c:97:e0:df: ce:47:d9:98:50:d9:e5:00:46:da:ce:2b:57:ac:ea:e7:47:d2: 9e:db:4d:82:de:c2:75:37:95:c8:3b:eb:7b:e1:8b:60:73:6d: 54:20:a3:64:8b:98:ec:e3:6f:b2:da:83:30:d0:14:97:ce:9f: d2:2e:54:df:0b:66:0b:20:85:aa:5d:13:14:38:e1:a1:52:9e: 93:40:8e:a7:9d:ad:94:ac:cc:6e:1c:70:3e:d4:4e:6e:7d:49: 84:0d:41:0e:2d:04:61:d4:b7:4b:b3:11:fd:e8:db:31:25:57: 27:a0:91:a9:62:bc:4f:da:b6:a6:85:40:f7:e9:82:41:47:6d: 16:1e:55:1f:60:db:ba:4a:17:bc:74:53:af:c1:1a:1e:20:03: 24:e9:93:43:dd:45:96:55:93:cf:f9:1b:cd:c3:80:c2:d7:5c: 8d:5b:e6:49:25:20:38:36:54:f2:a8:1c:6a:bb:ce:ac:ef:28: 6d:4d:97:ea:4f:98:e3:8c:67:28:5c:67:59:5b:b9:bc:3b:d9: 02:49:2f:6c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCUh1vSeozDZ6Dj+u7SHz/ab+sqAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQyMDA1WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YjQ3ZTk5MWM4YjlkMzQxNzdhNzNhMTgxNzVmODBmOGJk MGEzOGVlOTAwNzM2MTVkMGYxZWU1OTMyY2Y1ZDI3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeK3TsRi4Zz2i5w8ZDsNkF3VmjudCSwrIJlvgpFr1TRwCV o5ZMJ4SFM2M+kZdnarp2T7RCjFQBkKShZz0KrIcrTfG3D4npMqhmmI3ueL6s89Ax +FD80DpsGckojnhovyyw6LkZcKSRdr+4Ljo84ylbtYLHJqh/rrfLSc5CVJuutZQo AUw6H2AQuDhGg3UcS/V8MRfufjYZgCRznIZBcohv5aB1Qg14pmmqFwjVc2PF3V0N jghDCVIkwJ32dvTQfWgwrid/RfjSrU9oLr85aFZ/eJLr0oxUic7h4Q+AtQKHzC4v 6NdGwtkBSVwe1d1DjCFHWUjO10GxaqmBOUrmJeVRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUDsbFAIyQpJ+8V82DlLHwGjrw6XQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdlZjlkODBkLTUwMGMtNDc2Mi1hZWZlLTBhYTA3ZjgyYjI2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75DANBgkqhkiG9w0BAQsFAAOCAQEAlkTBpmuiZvHUSukDv3/A8q3Z bB98jZHW9+yRNUjlWr7MRVr36ouHLWhf92vkaaKewHCMl+DfzkfZmFDZ5QBG2s4r V6zq50fSnttNgt7CdTeVyDvre+GLYHNtVCCjZIuY7ONvstqDMNAUl86f0i5U3wtm CyCFql0TFDjhoVKek0COp52tlKzMbhxwPtRObn1JhA1BDi0EYdS3S7MR/ejbMSVX J6CRqWK8T9q2poVA9+mCQUdtFh5VH2DbukoXvHRTr8EaHiADJOmTQ91FllWTz/kb zcOAwtdcjVvmSSUgODZU8qgcarvOrO8obU2X6k+Y44xnKFxnWVu5vDvZAkkvbA== -----END CERTIFICATE-----Generated at Wed Jun 17 08:59:59 2026 by rpki-client