$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d914165-a3e7-48af-b624-8691c64e5360.roa File: 8d914165-a3e7-48af-b624-8691c64e5360.roa (raw, json) Hash identifier: kbODQOSjWLVB7YUIMQQ9bSScgpNwaUNIGld4wnlltkY= Subject key identifier: 82:D8:C6:1F:59:B9:FE:72:8C:44:5A:A4:2E:CF:4A:99:C4:D5:E5:E5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 44569935219D79655349026A8E763E8DBE67C822 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d914165-a3e7-48af-b624-8691c64e5360.roa Signing time: Tue 19 May 2026 04:30:21 +0000 ROA not before: Tue 19 May 2026 04:30:21 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/28 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:56:99:35:21:9d:79:65:53:49:02:6a:8e:76:3e:8d:be:67:c8:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:30:21 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=eb4abc6ef8a2cfc76a97b995e5fb0851baf7f3f8f22b988c773ee4cea3ac6afd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c0:78:70:7c:01:6e:8c:5c:21:37:17:a1:7e: 92:8e:2a:57:f8:59:9c:9e:42:10:b2:5b:5a:36:b5: 93:3e:cd:56:56:cd:1d:33:45:17:f0:f8:da:55:be: 21:97:9c:8f:7d:d1:a2:57:d1:97:0e:47:f1:0d:3c: c7:24:a5:2a:17:03:bb:60:a3:72:08:2e:ab:ae:9a: 54:09:91:b8:0b:eb:b5:50:29:32:34:c0:fe:a8:28: c7:d6:25:d6:89:b2:14:bc:1a:c5:9d:93:f9:2d:54: fa:b8:00:3f:a1:21:8c:9b:b5:81:5e:e1:c8:1d:2b: a8:72:68:52:3b:50:1c:b8:ff:c7:ff:df:fd:a2:2e: 98:01:08:40:ba:ad:e9:57:de:66:88:f6:34:57:a9: c8:dd:48:f5:f8:18:ce:6a:21:33:7a:95:2a:47:2e: b9:bb:de:71:2d:5b:fc:4f:af:92:7c:8c:56:2a:ff: 0c:ca:04:b8:ea:01:0e:db:42:85:71:93:33:05:48: 63:a6:70:a6:02:65:41:33:b6:07:d6:f8:25:bf:4d: 72:48:cf:10:44:4e:1f:63:97:89:57:f5:93:f7:66: c6:5b:1d:d8:ca:24:fc:ad:68:c8:ba:13:9b:48:5a: 0b:40:4f:a4:5f:c5:93:7d:08:31:b2:f4:44:be:87: ce:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:D8:C6:1F:59:B9:FE:72:8C:44:5A:A4:2E:CF:4A:99:C4:D5:E5:E5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d914165-a3e7-48af-b624-8691c64e5360.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/28 Signature Algorithm: sha256WithRSAEncryption 7f:71:2a:82:d5:a7:c9:84:8c:fe:0e:1d:f9:8c:0d:b0:e3:58: 15:4a:59:57:c2:8f:4a:15:c2:44:dd:70:3b:9a:f3:42:24:f3: 99:2a:18:78:75:3c:8b:03:12:cf:47:55:8b:b4:a2:aa:88:22: 65:a9:0b:d0:82:08:39:e3:e0:82:fd:0f:67:1b:c7:1e:f4:f5: d0:ca:8d:86:53:1c:9c:d4:3b:56:f4:83:5d:4b:c8:3d:0f:8b: 53:30:50:85:1c:14:d5:29:c1:4b:a1:fd:2d:f1:e7:5c:e3:dd: 27:2d:18:1f:08:fb:fa:cf:d8:b8:76:85:35:e0:9f:2b:46:27: a7:cb:99:3c:5b:dc:95:d4:13:eb:8e:6b:ba:9d:aa:b0:86:88: 16:11:b7:ed:6c:b3:7a:43:77:f0:68:0b:f1:69:30:12:d3:f4: 6b:2b:60:ea:0f:51:c7:0f:66:06:19:cd:0e:94:bc:d7:04:f1: 23:cb:c9:e1:1b:01:71:4f:6d:6b:d5:03:53:b0:3f:cf:02:7f: de:03:45:4b:a2:c8:6f:19:e5:7a:21:b0:13:40:46:b3:ff:f4: dd:15:4d:85:a7:a9:d6:07:93:bf:bf:05:ef:8a:f5:5d:d7:3c: ec:8e:d4:32:02:b6:79:2e:d1:48:80:bc:16:79:d1:3a:3b:22: 01:1c:32:c3 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIURFaZNSGdeWVTSQJqjnY+jb5nyCIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQzMDIxWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjRhYmM2ZWY4YTJjZmM3NmE5N2I5OTVlNWZiMDg1MWJh ZjdmM2Y4ZjIyYjk4OGM3NzNlZTRjZWEzYWM2YWZkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkwHhwfAFujFwhNxehfpKOKlf4WZyeQhCyW1o2tZM+zVZW zR0zRRfw+NpVviGXnI990aJX0ZcOR/ENPMckpSoXA7tgo3IILquumlQJkbgL67VQ KTI0wP6oKMfWJdaJshS8GsWdk/ktVPq4AD+hIYybtYFe4cgdK6hyaFI7UBy4/8f/ 3/2iLpgBCEC6relX3maI9jRXqcjdSPX4GM5qITN6lSpHLrm73nEtW/xPr5J8jFYq /wzKBLjqAQ7bQoVxkzMFSGOmcKYCZUEztgfW+CW/TXJIzxBETh9jl4lX9ZP3ZsZb HdjKJPytaMi6E5tIWgtAT6RfxZN9CDGy9ES+h85FAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUgtjGH1m5/nKMRFqkLs9KmcTV5eUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhkOTE0MTY1LWEzZTctNDhhZi1iNjI0LTg2OTFjNjRlNTM2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAPAAMA0GCSqGSIb3DQEBCwUAA4IBAQB/cSqC1afJhIz+Dh35jA2w41gV SllXwo9KFcJE3XA7mvNCJPOZKhh4dTyLAxLPR1WLtKKqiCJlqQvQggg54+CC/Q9n G8ce9PXQyo2GUxyc1DtW9INdS8g9D4tTMFCFHBTVKcFLof0t8edc490nLRgfCPv6 z9i4doU14J8rRieny5k8W9yV1BPrjmu6naqwhogWEbftbLN6Q3fwaAvxaTAS0/Rr K2DqD1HHD2YGGc0OlLzXBPEjy8nhGwFxT21r1QNTsD/PAn/eA0VLoshvGeV6IbAT QEaz//TdFU2Fp6nWB5O/vwXvivVd1zzsjtQyArZ5LtFIgLwWedE6OyIBHDLD -----END CERTIFICATE-----Generated at Wed Jun 17 11:19:18 2026 by rpki-client