$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/868fe5a3-3c18-4d2a-bf96-0e0a840118e0.roa File: 868fe5a3-3c18-4d2a-bf96-0e0a840118e0.roa (raw, json) Hash identifier: 1Ia4S7IR6c8GGelmfS+0FBzBewYMJZct/lVobd/mB7w= Subject key identifier: C8:8D:07:A8:BE:14:49:C8:C7:39:B5:A2:9E:51:D4:ED:DB:FF:51:CD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 61ED4900787CEA6EC7E3F0D6F5FB9E9363CDA364 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/868fe5a3-3c18-4d2a-bf96-0e0a840118e0.roa Signing time: Wed 20 May 2026 00:40:33 +0000 ROA not before: Wed 20 May 2026 00:40:33 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f105::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:ed:49:00:78:7c:ea:6e:c7:e3:f0:d6:f5:fb:9e:93:63:cd:a3:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 00:40:33 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=2586fe8db7942d9c3fa762b0075bd5f2fb42c3fe2e8a1b07e398a11698ec29cc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e4:93:90:bb:14:4e:ca:de:01:93:8d:d2:17: ee:63:46:d5:3c:1f:bf:8c:77:19:ac:ed:7f:32:54: 12:91:1b:ad:9f:bf:75:02:87:4b:5d:78:2a:a4:3b: 40:ec:90:d3:d0:35:0b:95:8c:24:bd:77:2a:31:de: c8:ee:0d:71:ac:29:71:18:df:ad:5d:cd:fc:f7:ca: f0:65:2f:a2:bf:62:ae:ec:4d:ae:df:bd:83:1a:e7: 46:72:5c:50:30:15:48:25:ea:46:8e:31:eb:14:1e: b5:70:49:74:ff:42:55:cc:e3:56:5a:cd:51:e9:df: 68:27:12:ef:05:a7:b6:21:b0:7c:46:a0:e3:95:e2: 3e:08:94:cf:e2:85:1f:81:49:e9:2f:8d:27:fe:2b: b6:d9:e2:32:99:2b:07:01:a0:af:a9:28:a8:f3:94: b0:32:1f:9a:11:a5:be:9c:13:a6:62:35:fd:0a:a2: 20:d7:08:08:55:82:c3:9c:8b:2d:cf:3e:23:61:81: 91:c6:b7:60:ea:8b:28:8e:4f:e6:38:06:0b:1d:0e: 21:71:9d:2b:ec:58:95:16:fd:a7:52:b4:82:2d:d1: 53:b3:a9:0c:a8:70:d4:db:d6:d0:04:81:83:2f:7a: 39:70:0c:05:b4:87:12:a6:3f:3f:f6:62:c4:45:6a: 5d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8D:07:A8:BE:14:49:C8:C7:39:B5:A2:9E:51:D4:ED:DB:FF:51:CD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/868fe5a3-3c18-4d2a-bf96-0e0a840118e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f105::/48 Signature Algorithm: sha256WithRSAEncryption 28:a5:2e:79:f1:67:ed:dc:47:75:0b:dc:da:dc:7e:61:e3:16: c2:07:a6:7c:52:10:7c:4e:76:2b:5f:c8:26:4b:68:36:5f:de: 41:20:50:05:98:2e:af:0d:0c:fe:95:96:48:28:0f:28:32:b0: 5e:04:58:50:80:00:09:dc:86:07:d0:16:23:bb:72:59:13:3c: 44:6f:fe:34:9a:e5:e3:5f:b5:7c:1e:61:d2:47:eb:28:6f:72: 52:c9:18:dd:50:3b:5b:cd:4f:07:1b:55:99:db:57:ff:26:ca: c0:2f:02:de:62:8e:48:be:62:7e:1b:03:48:33:c6:0e:9d:c7: 49:03:34:7d:5e:e2:df:bb:c8:70:0e:31:eb:10:50:11:8f:44: 90:41:ba:97:a0:b7:b3:31:e8:a3:d8:91:7f:e3:ae:be:62:0e: 42:d0:08:24:2e:95:40:7b:f8:e0:73:75:44:0e:cb:30:03:61: 54:5e:1e:0d:14:f3:ad:26:bb:e6:07:d3:d9:21:a4:70:77:14: 6a:b7:ba:d9:cb:40:62:a8:46:de:18:da:e2:57:4e:13:81:c1: de:52:84:1b:db:aa:89:5b:7c:1a:13:b5:a9:59:05:e0:9e:e4: a9:ac:22:e9:56:c4:67:e6:08:62:51:bd:84:ca:cb:79:21:cf: 53:c4:f9:80 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYe1JAHh86m7H4/DW9fuek2PNo2QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTIwMDA0MDMzWhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTg2ZmU4ZGI3OTQyZDljM2ZhNzYyYjAwNzViZDVmMmZi NDJjM2ZlMmU4YTFiMDdlMzk4YTExNjk4ZWMyOWNjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC05JOQuxROyt4Bk43SF+5jRtU8H7+Mdxms7X8yVBKRG62f v3UCh0tdeCqkO0DskNPQNQuVjCS9dyox3sjuDXGsKXEY361dzfz3yvBlL6K/Yq7s Ta7fvYMa50ZyXFAwFUgl6kaOMesUHrVwSXT/QlXM41ZazVHp32gnEu8Fp7YhsHxG oOOV4j4IlM/ihR+BSekvjSf+K7bZ4jKZKwcBoK+pKKjzlLAyH5oRpb6cE6ZiNf0K oiDXCAhVgsOciy3PPiNhgZHGt2DqiyiOT+Y4BgsdDiFxnSvsWJUW/adStIIt0VOz qQyocNTb1tAEgYMvejlwDAW0hxKmPz/2YsRFal3DAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyI0HqL4UScjHObWinlHU7dv/Uc0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg2OGZlNWEzLTNjMTgtNGQyYS1iZjk2LTBlMGE4NDAxMThlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QUwDQYJKoZIhvcNAQELBQADggEBACilLnnxZ+3cR3UL3NrcfmHj FsIHpnxSEHxOditfyCZLaDZf3kEgUAWYLq8NDP6VlkgoDygysF4EWFCAAAnchgfQ FiO7clkTPERv/jSa5eNftXweYdJH6yhvclLJGN1QO1vNTwcbVZnbV/8mysAvAt5i jki+Yn4bA0gzxg6dx0kDNH1e4t+7yHAOMesQUBGPRJBBupegt7Mx6KPYkX/jrr5i DkLQCCQulUB7+OBzdUQOyzADYVReHg0U860mu+YH09khpHB3FGq3utnLQGKoRt4Y 2uJXThOBwd5ShBvbqolbfBoTtalZBeCe5KmsIulWxGfmCGJRvYTKy3khz1PE+YA= -----END CERTIFICATE-----Generated at Wed Jun 17 08:56:42 2026 by rpki-client