$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c2285a2b-02bf-4f8a-a2eb-1ec5681aab50.roa File: c2285a2b-02bf-4f8a-a2eb-1ec5681aab50.roa (raw, json) Hash identifier: cO2qVi1v8unnt3W8oPCWR8fXB8jpEq7xWCicL75va48= Subject key identifier: A1:B6:09:71:E8:82:EE:F2:CC:28:3D:6B:85:7E:78:97:13:B8:65:43 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: B8E91D6A70D068A9DD750347F30A915FAA81D0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c2285a2b-02bf-4f8a-a2eb-1ec5681aab50.roa Signing time: Tue 16 Jun 2026 20:17:22 +0000 ROA not before: Tue 16 Jun 2026 20:17:22 +0000 ROA not after: Mon 14 Sep 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:c102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: b8:e9:1d:6a:70:d0:68:a9:dd:75:03:47:f3:0a:91:5f:aa:81:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 20:17:22 2026 GMT Not After : Sep 14 23:59:59 2026 GMT Subject: serialNumber=3131f6922f1b2ab4cb6ab4b8447a53d48cbb3dcc4fb7c927f8131f73130ad83a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f6:40:68:b0:f5:e6:1a:1f:67:c1:f9:e0:f1: f5:b5:07:05:8c:fb:dd:ac:df:2f:0d:a4:ae:35:8b: 04:c5:c8:62:bf:8b:da:87:ce:a9:f3:41:55:1e:59: 25:7f:bb:7f:fb:52:18:ab:4f:de:7a:6b:27:16:0f: e4:fc:1b:e6:57:6d:e1:66:5b:4f:62:5c:ba:de:aa: 3c:2e:f8:ad:f2:fd:8d:a9:81:dd:b3:f8:2a:38:c3: 69:35:02:32:a3:74:ce:ca:85:6c:83:dc:67:8c:65: 12:7c:96:44:57:43:c9:71:ef:b0:b9:1a:62:e0:53: 85:09:09:78:3c:02:49:7b:17:f9:0e:41:1c:8a:d9: 04:d0:aa:3b:9b:9c:84:39:ab:b1:35:72:3f:76:0c: fa:7d:b3:9c:5a:b8:c3:53:5d:12:b8:b4:53:da:d1: ca:8f:98:f8:8e:4a:8d:6e:93:68:66:e7:29:96:63: 21:e0:b0:6b:c2:90:7d:c3:74:11:b1:5e:68:bb:58: da:11:2e:ec:27:61:91:f9:f9:dd:57:fe:19:7c:2a: 54:01:5e:79:d4:bb:2c:a8:49:d5:a5:5b:41:3f:af: dc:38:4b:d6:b0:e0:7e:f9:2a:8b:e1:3f:34:58:53: 04:bd:73:50:55:9e:f0:c6:ec:1d:b4:10:ce:cb:9d: a8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B6:09:71:E8:82:EE:F2:CC:28:3D:6B:85:7E:78:97:13:B8:65:43 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c2285a2b-02bf-4f8a-a2eb-1ec5681aab50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:c102::/48 Signature Algorithm: sha256WithRSAEncryption 94:22:38:55:74:50:d5:4c:de:25:dc:88:9c:f4:4f:a0:d6:48: a9:ae:c1:82:37:6a:ad:5a:4c:68:a1:3c:83:15:1c:52:72:fc: c8:ed:9f:5d:4d:98:11:44:9c:94:6e:b7:95:a9:e0:47:5f:76: 6b:90:e8:d3:f9:61:f3:35:b2:9a:c1:16:85:43:da:55:0e:a4: 6c:3f:80:b2:a3:2c:0a:64:4f:b3:a9:f5:09:7c:1a:40:a2:7e: 3e:db:7a:ec:2d:3e:db:f6:4e:32:7c:b8:0e:fc:1e:5c:ac:0c: 78:1d:3a:66:84:a5:ae:43:4d:ce:f1:8c:cf:f6:bf:b3:e1:3a: d8:7b:93:16:dc:31:ee:6d:9f:cc:b8:93:90:de:74:48:81:a2: 6e:b7:53:54:c2:83:d6:9a:7a:06:0e:e2:df:19:88:6a:7b:a0: b8:98:7d:2b:52:2c:2e:c8:7e:e7:f3:12:f4:92:74:25:2b:50: 8d:4a:ed:cf:73:08:03:84:5b:5f:76:c5:14:31:43:19:c3:0e: 42:40:d9:4e:8b:10:bd:bb:27:02:fb:6d:a1:03:67:2d:f1:c6: e2:26:2a:ce:f6:09:45:45:c3:0b:e9:50:30:9a:18:c3:db:8c: fa:e1:9c:36:41:a8:e0:03:9e:09:91:2e:e9:37:01:d7:17:2e: 1b:af:37:d5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUALjpHWpw0Gip3XUDR/MKkV+qgdAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNjE2MjAxNzIyWhcNMjYwOTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTMxZjY5MjJmMWIyYWI0Y2I2YWI0Yjg0NDdhNTNkNDhj YmIzZGNjNGZiN2M5MjdmODEzMWY3MzEzMGFkODNhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC49kBosPXmGh9nwfng8fW1BwWM+92s3y8NpK41iwTFyGK/ i9qHzqnzQVUeWSV/u3/7UhirT956aycWD+T8G+ZXbeFmW09iXLreqjwu+K3y/Y2p gd2z+Co4w2k1AjKjdM7KhWyD3GeMZRJ8lkRXQ8lx77C5GmLgU4UJCXg8Akl7F/kO QRyK2QTQqjubnIQ5q7E1cj92DPp9s5xauMNTXRK4tFPa0cqPmPiOSo1uk2hm5ymW YyHgsGvCkH3DdBGxXmi7WNoRLuwnYZH5+d1X/hl8KlQBXnnUuyyoSdWlW0E/r9w4 S9aw4H75KovhPzRYUwS9c1BVnvDG7B20EM7LnagFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUobYJceiC7vLMKD1rhX54lxO4ZUMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MyMjg1YTJiLTAyYmYtNGY4YS1hMmViLTFlYzU2ODFhYWI1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwwQIwDQYJKoZIhvcNAQELBQADggEBAJQiOFV0UNVM3iXciJz0T6DW SKmuwYI3aq1aTGihPIMVHFJy/Mjtn11NmBFEnJRut5Wp4EdfdmuQ6NP5YfM1sprB FoVD2lUOpGw/gLKjLApkT7Op9Ql8GkCifj7beuwtPtv2TjJ8uA78HlysDHgdOmaE pa5DTc7xjM/2v7PhOth7kxbcMe5tn8y4k5DedEiBom63U1TCg9aaegYO4t8ZiGp7 oLiYfStSLC7IfufzEvSSdCUrUI1K7c9zCAOEW192xRQxQxnDDkJA2U6LEL27JwL7 baEDZy3xxuImKs72CUVFwwvpUDCaGMPbjPrhnDZBqOADngmRLuk3AdcXLhuvN9U= -----END CERTIFICATE-----Generated at Wed Jun 17 11:29:16 2026 by rpki-client