$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/91b85db6-7428-422a-85f4-a3d6732ec01e.roa File: 91b85db6-7428-422a-85f4-a3d6732ec01e.roa (raw, json) Hash identifier: nN8ubHZpf9kVSvAkZif9qfcnkakuhsrIc5dlcs1z44Y= Subject key identifier: D8:A6:92:58:7A:31:A7:D8:0C:58:BA:17:BD:CF:5E:56:52:A3:E5:38 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 39893D03F8B96BDBD6EED7EBFCADDD879B2BCDAA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/91b85db6-7428-422a-85f4-a3d6732ec01e.roa Signing time: Wed 20 May 2026 00:40:29 +0000 ROA not before: Wed 20 May 2026 00:40:29 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f10e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:89:3d:03:f8:b9:6b:db:d6:ee:d7:eb:fc:ad:dd:87:9b:2b:cd:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 00:40:29 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=caac0a272eb15841ef71aea9c7f79a0b7687de32671b37053b78d8250cf2d169, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ee:ff:6c:43:41:68:a2:8c:a4:09:3f:de:1b: d2:87:7c:17:ae:16:a1:60:a7:65:2d:03:de:e3:07: 69:b0:5b:b2:6c:5a:e4:bc:b4:63:22:c2:2e:e6:9f: 92:6a:8e:f6:d3:de:1c:7b:e3:19:0e:f0:60:5f:c2: 3e:15:ba:71:ce:cd:e7:42:7c:49:d6:8e:a2:41:6a: bb:cc:05:37:70:d7:21:e7:18:2b:5b:80:3f:83:89: 63:7b:ef:21:3a:0c:c8:38:2c:01:19:56:20:bd:14: 60:a1:9b:fc:ae:f9:f2:e2:69:39:30:85:94:d0:a1: 1a:11:12:fc:30:8f:12:5d:5d:78:62:7a:5c:ec:2e: fa:26:1a:f8:d1:be:7c:85:14:40:64:9a:fe:94:a8: 88:32:5f:72:1e:fa:e4:06:fd:e4:65:60:11:1b:b7: 5a:46:7e:6a:2c:8e:f7:f4:5d:c7:3f:03:ff:3d:76: 56:64:b8:10:18:b0:e5:02:d3:f1:af:ee:69:52:48: 5f:d1:48:8b:f1:37:49:ce:3d:ff:ac:51:aa:dc:42: fa:ed:2b:a8:e1:ca:22:53:6c:a1:f6:ae:1e:e6:fc: 38:70:0e:63:8a:6e:f2:68:f4:39:10:0d:db:32:20: 02:72:86:f0:22:a7:57:4e:ad:3f:b4:01:9a:d1:d2: 53:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A6:92:58:7A:31:A7:D8:0C:58:BA:17:BD:CF:5E:56:52:A3:E5:38 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/91b85db6-7428-422a-85f4-a3d6732ec01e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10e::/48 Signature Algorithm: sha256WithRSAEncryption 82:0a:41:90:52:3c:e9:1b:c0:b6:eb:b6:6c:bd:d6:24:bf:0a: 48:36:69:14:82:f7:40:29:3b:5d:e4:bb:f0:a9:2c:12:5e:e4: 21:06:2c:95:6f:9b:71:b7:67:cb:19:3a:06:f8:11:ba:21:a2: ad:7c:2d:93:3f:c4:44:d4:a1:78:96:95:70:4a:13:1e:49:59: b6:ca:bd:51:3c:d7:07:80:54:aa:5a:db:a5:b8:a9:23:7a:98: f0:46:23:d2:7c:35:d3:b2:6e:13:0a:1e:50:ba:45:12:bb:01: 31:46:67:08:61:10:3d:d3:7e:9f:de:35:23:5f:75:4d:ae:6b: 1e:f6:d7:03:f1:57:1e:91:7f:6b:a7:95:3a:14:2a:d8:6b:eb: 25:9c:8f:4e:25:bd:8b:de:f2:e7:73:22:ca:f5:35:a2:e0:aa: 54:5f:f3:76:86:31:76:e8:59:3b:3f:07:96:6c:cb:4f:e8:bd: bb:fb:e9:53:e1:98:e3:14:c2:3e:17:67:65:73:91:4c:ea:63: ba:e3:8b:7b:86:3d:30:a2:72:e3:ff:75:34:67:13:2b:b7:80: 79:b1:4f:8f:89:62:2b:2a:07:ed:d1:5c:47:0b:7b:e0:6d:7c: f4:c0:09:a6:30:87:81:70:c1:3a:15:13:65:ab:33:52:65:1d: e7:27:d0:3e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOYk9A/i5a9vW7tfr/K3dh5srzaowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTIwMDA0MDI5WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWFjMGEyNzJlYjE1ODQxZWY3MWFlYTljN2Y3OWEwYjc2 ODdkZTMyNjcxYjM3MDUzYjc4ZDgyNTBjZjJkMTY5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCn7v9sQ0FoooykCT/eG9KHfBeuFqFgp2UtA97jB2mwW7Js WuS8tGMiwi7mn5JqjvbT3hx74xkO8GBfwj4VunHOzedCfEnWjqJBarvMBTdw1yHn GCtbgD+DiWN77yE6DMg4LAEZViC9FGChm/yu+fLiaTkwhZTQoRoREvwwjxJdXXhi elzsLvomGvjRvnyFFEBkmv6UqIgyX3Ie+uQG/eRlYBEbt1pGfmosjvf0Xcc/A/89 dlZkuBAYsOUC0/Gv7mlSSF/RSIvxN0nOPf+sUarcQvrtK6jhyiJTbKH2rh7m/Dhw DmOKbvJo9DkQDdsyIAJyhvAip1dOrT+0AZrR0lOhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2KaSWHoxp9gMWLoXvc9eVlKj5TgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzkxYjg1ZGI2LTc0MjgtNDIyYS04NWY0LWEzZDY3MzJlYzAxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78Q4wDQYJKoZIhvcNAQELBQADggEBAIIKQZBSPOkbwLbrtmy91iS/ Ckg2aRSC90ApO13ku/CpLBJe5CEGLJVvm3G3Z8sZOgb4Ebohoq18LZM/xETUoXiW lXBKEx5JWbbKvVE81weAVKpa26W4qSN6mPBGI9J8NdOybhMKHlC6RRK7ATFGZwhh ED3Tfp/eNSNfdU2uax721wPxVx6Rf2unlToUKthr6yWcj04lvYve8udzIsr1NaLg qlRf83aGMXboWTs/B5Zsy0/ovbv76VPhmOMUwj4XZ2VzkUzqY7rji3uGPTCicuP/ dTRnEyu3gHmxT4+JYisqB+3RXEcLe+BtfPTACaYwh4FwwToVE2WrM1JlHecn0D4= -----END CERTIFICATE-----Generated at Wed Jun 17 09:03:27 2026 by rpki-client