$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa File: a1083a01-360a-4b23-a3a3-630df82536fc.roa (raw, json) Hash identifier: ojinT8mZM8cuaSBJwLv1Kcxn7GlSZB0pL17H4v+29Gc= Subject key identifier: BB:40:78:AB:F9:C0:59:0D:24:99:D1:F9:5C:DB:5A:D0:09:92:63:55 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2F27D96D30961F8D8CC2E47DD708D9B7BABD29FE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa Signing time: Tue 19 May 2026 04:10:11 +0000 ROA not before: Tue 19 May 2026 04:10:11 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:27:d9:6d:30:96:1f:8d:8c:c2:e4:7d:d7:08:d9:b7:ba:bd:29:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:11 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=086eca05138e4642f8e94a14c61e83d1bcb1e044e1e90f3f0f9a9e83c3fade9c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e1:0f:00:2e:18:de:a6:f7:f0:3e:2b:a6:c1: e9:1b:cd:6a:a9:22:af:cc:de:4f:25:01:da:42:d4: 15:85:74:4c:d0:07:79:0d:b8:e2:6c:d2:be:cf:1d: dc:bb:74:91:80:42:51:c4:b8:56:b2:a5:83:de:de: 40:ce:95:2d:c7:2e:17:cf:54:cc:e1:60:17:43:05: 8c:c2:a2:18:03:78:d0:66:08:72:ec:e4:da:84:3e: 32:9b:41:0e:b1:64:b6:3d:d0:be:df:ae:f9:50:9a: a6:1d:25:65:88:f0:4b:f4:e4:90:6e:a7:16:ef:e5: 52:88:ef:54:f6:97:fa:a7:34:3b:61:0d:05:61:8b: fd:72:2d:7a:73:9f:57:a3:52:9c:f9:2e:0b:84:60: 0a:89:40:00:6e:01:2e:d4:9e:17:10:0e:6d:9b:b2: e2:66:9a:7b:bb:5d:21:79:d3:ab:fc:77:21:ed:d0: d5:59:bf:79:a1:3a:a8:d2:83:5b:04:34:cc:b8:c8: 2f:7c:5f:31:96:8a:c4:f0:81:0a:de:85:f1:07:5a: 68:32:b7:09:fe:3c:20:cc:46:ce:b6:e9:7a:5a:53: 18:b0:04:cd:f0:42:60:8b:8a:68:92:15:14:ad:07: 1a:a4:7c:d0:8f:51:c4:14:89:16:7b:6e:d3:a3:b3: 90:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:40:78:AB:F9:C0:59:0D:24:99:D1:F9:5C:DB:5A:D0:09:92:63:55 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 1f:fd:b6:7b:d6:24:e2:04:e3:8b:87:f7:69:7d:f5:d3:94:bc: eb:bd:b3:ec:c7:70:1e:7f:7a:2a:2e:0c:82:fc:c6:e2:44:8b: b2:05:9b:e5:76:55:26:ad:dd:38:23:cd:cc:13:3a:ea:08:6f: 85:84:26:05:4d:57:b3:1f:61:bb:1d:31:f2:51:d2:7e:9f:7f: 43:78:75:89:f0:cb:a3:5c:97:1d:a4:f9:f8:a6:23:c3:fd:d7: 9d:b0:62:85:69:14:9a:b9:aa:5f:02:82:89:5f:5b:40:96:e4: 99:45:fd:d2:23:a9:fa:40:5b:f2:27:1e:d8:ea:79:0b:aa:de: 1b:26:31:cd:6a:12:78:67:c1:3d:fc:5e:6a:1e:8b:8d:37:64: 63:f7:1b:a5:cb:9e:fc:cd:89:91:0a:29:7e:38:49:70:44:6c: c2:f5:13:a0:47:14:67:91:60:b7:13:e7:2c:b8:7a:06:fe:a4: 20:28:99:c3:77:de:61:54:26:b8:66:a9:fc:71:98:48:0d:d1: 04:ba:e6:63:23:b3:ac:60:eb:28:ea:46:da:24:71:59:bf:59: 2e:ae:32:30:74:be:99:6f:93:f7:c8:5f:a3:a5:c0:6e:db:35: 80:8e:29:e1:38:7e:03:1b:cd:9a:5b:43:88:62:15:b9:12:be: be:0e:af:3e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULyfZbTCWH42MwuR91wjZt7q9Kf4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDExWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwODZlY2EwNTEzOGU0NjQyZjhlOTRhMTRjNjFlODNkMWJj YjFlMDQ0ZTFlOTBmM2YwZjlhOWU4M2MzZmFkZTljMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm4Q8ALhjepvfwPiumwekbzWqpIq/M3k8lAdpC1BWFdEzQ B3kNuOJs0r7PHdy7dJGAQlHEuFaypYPe3kDOlS3HLhfPVMzhYBdDBYzCohgDeNBm CHLs5NqEPjKbQQ6xZLY90L7frvlQmqYdJWWI8Ev05JBupxbv5VKI71T2l/qnNDth DQVhi/1yLXpzn1ejUpz5LguEYAqJQABuAS7UnhcQDm2bsuJmmnu7XSF506v8dyHt 0NVZv3mhOqjSg1sENMy4yC98XzGWisTwgQrehfEHWmgytwn+PCDMRs626XpaUxiw BM3wQmCLimiSFRStBxqkfNCPUcQUiRZ7btOjs5DvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUu0B4q/nAWQ0kmdH5XNta0AmSY1UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExMDgzYTAxLTM2MGEtNGIyMy1hM2EzLTYzMGRmODI1MzZmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAB/9tnvWJOIE44uH92l99dOU vOu9s+zHcB5/eiouDIL8xuJEi7IFm+V2VSat3TgjzcwTOuoIb4WEJgVNV7MfYbsd MfJR0n6ff0N4dYnwy6Nclx2k+fimI8P9152wYoVpFJq5ql8CgolfW0CW5JlF/dIj qfpAW/InHtjqeQuq3hsmMc1qEnhnwT38Xmoei403ZGP3G6XLnvzNiZEKKX44SXBE bML1E6BHFGeRYLcT5yy4egb+pCAomcN33mFUJrhmqfxxmEgN0QS65mMjs6xg6yjq RtokcVm/WS6uMjB0vplvk/fIX6OlwG7bNYCOKeE4fgMbzZpbQ4hiFbkSvr4Orz4= -----END CERTIFICATE-----Generated at Wed Jun 17 09:04:45 2026 by rpki-client