$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa File: ec42dc47-0cc9-474a-9470-19700f756d36.roa (raw, json) Hash identifier: rpf5jpjvLJK+c9NzILT9UGa1k0eePXHrGcjKqwTRJ2s= Subject key identifier: 91:42:DE:55:F9:55:0B:59:75:82:32:4E:E2:52:BF:F8:D9:F9:B6:7B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7E21E99B0B6CDBDF6A387ACA50BEEBFCE68AEA25 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa Signing time: Tue 19 May 2026 04:10:07 +0000 ROA not before: Tue 19 May 2026 04:10:07 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:21:e9:9b:0b:6c:db:df:6a:38:7a:ca:50:be:eb:fc:e6:8a:ea:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:07 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=80da7d91428ac7efc7aa4c5691f5fee6d8d064210ae6ed0b347c1026685fe8af, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c5:99:1b:c9:2f:57:58:c6:cd:da:ad:df:8d: 88:81:7e:b9:8b:d2:0e:0c:79:f0:2c:56:95:72:b2: 84:4d:73:44:82:41:74:0c:01:96:c5:45:ae:63:fb: 56:5a:4a:5c:06:7f:b5:3d:60:bd:47:98:98:9a:e7: a5:83:a5:48:3a:4f:17:c8:10:a2:71:82:f0:49:40: 96:47:49:a2:84:bd:92:7a:d4:43:99:24:37:c2:62: bb:db:59:7f:71:a9:01:f7:67:7f:b1:ad:e8:ea:67: 14:be:1a:8b:bc:58:d4:66:a8:74:8b:30:b0:47:dd: 23:f9:07:3b:24:0d:7e:44:fc:80:4f:a4:f3:99:88: d7:1b:a2:1c:24:28:fe:1e:9f:0a:83:14:59:dc:ee: 2b:57:67:d0:a1:b6:00:a8:31:98:cb:72:2e:41:e7: 37:94:3c:80:c8:29:72:65:fc:85:ae:9b:e9:9a:6b: 23:12:96:6a:dc:43:9f:91:bf:b3:b4:30:66:fe:c7: 80:f2:c8:e3:b9:46:df:57:e0:f6:59:67:64:26:02: dc:a4:37:bb:04:a9:d1:26:d3:d0:ca:d3:5a:72:da: 87:4a:b1:93:2b:4b:f3:ec:b9:53:6c:56:ab:7b:8e: ba:82:28:98:f9:ea:f1:40:41:1f:ea:3e:91:45:88: 49:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:42:DE:55:F9:55:0B:59:75:82:32:4E:E2:52:BF:F8:D9:F9:B6:7B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 7c:4a:ce:76:6a:e1:01:56:67:c8:99:84:76:eb:51:68:95:3a: 8a:fa:a2:b0:32:c8:f2:f2:61:a4:a2:dd:29:aa:ba:8f:15:27: 2e:63:8e:0b:96:96:4f:4d:fb:a5:54:a9:fe:36:05:4a:66:db: 6e:31:99:5a:79:02:f9:85:14:0b:eb:87:1b:05:0e:78:49:f1: fe:f2:4a:5e:ae:aa:00:11:85:90:35:7c:33:46:29:d5:7a:5d: 45:d9:7f:e4:e4:b3:da:7a:0e:db:83:eb:57:d8:64:6a:07:aa: c7:9f:2b:ff:86:fc:22:82:ef:c2:e3:61:48:bc:6b:b8:f6:81: 9a:1e:a3:ab:62:c5:7d:43:e8:69:d8:60:7a:e1:b6:b6:ce:a6: ac:94:ac:ca:9d:4b:12:f7:8e:00:2e:88:03:7e:02:d2:aa:70: da:95:3e:f7:92:16:6a:30:31:f5:5d:1b:5b:10:6e:5c:cf:1c: f5:b8:a5:36:26:7f:c0:db:7a:51:2b:a5:34:fc:1a:f5:3d:bd: 4b:f1:64:15:d7:70:01:23:7e:e0:79:16:6a:98:8e:ec:60:4b: 5e:fc:a1:56:24:50:bd:a5:2a:a1:36:15:fa:97:0c:54:fe:ba: 24:e9:a9:3f:84:e8:71:df:49:74:b1:b3:c4:c2:4b:0f:cf:15: c0:d5:ed:64 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfiHpmwts299qOHrKUL7r/OaK6iUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDA3WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MGRhN2Q5MTQyOGFjN2VmYzdhYTRjNTY5MWY1ZmVlNmQ4 ZDA2NDIxMGFlNmVkMGIzNDdjMTAyNjY4NWZlOGFmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/xZkbyS9XWMbN2q3fjYiBfrmL0g4MefAsVpVysoRNc0SC QXQMAZbFRa5j+1ZaSlwGf7U9YL1HmJia56WDpUg6TxfIEKJxgvBJQJZHSaKEvZJ6 1EOZJDfCYrvbWX9xqQH3Z3+xrejqZxS+Gou8WNRmqHSLMLBH3SP5BzskDX5E/IBP pPOZiNcbohwkKP4enwqDFFnc7itXZ9ChtgCoMZjLci5B5zeUPIDIKXJl/IWum+ma ayMSlmrcQ5+Rv7O0MGb+x4DyyOO5Rt9X4PZZZ2QmAtykN7sEqdEm09DK01py2odK sZMrS/PsuVNsVqt7jrqCKJj56vFAQR/qPpFFiEn/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkULeVflVC1l1gjJO4lK/+Nn5tnswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VjNDJkYzQ3LTBjYzktNDc0YS05NDcwLTE5NzAwZjc1NmQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBAHxKznZq4QFWZ8iZhHbrUWiV Oor6orAyyPLyYaSi3Smquo8VJy5jjguWlk9N+6VUqf42BUpm224xmVp5AvmFFAvr hxsFDnhJ8f7ySl6uqgARhZA1fDNGKdV6XUXZf+Tks9p6DtuD61fYZGoHqsefK/+G /CKC78LjYUi8a7j2gZoeo6tixX1D6GnYYHrhtrbOpqyUrMqdSxL3jgAuiAN+AtKq cNqVPveSFmowMfVdG1sQblzPHPW4pTYmf8DbelErpTT8GvU9vUvxZBXXcAEjfuB5 FmqYjuxgS178oVYkUL2lKqE2FfqXDFT+uiTpqT+E6HHfSXSxs8TCSw/PFcDV7WQ= -----END CERTIFICATE-----Generated at Sat Jun 13 05:47:19 2026 by rpki-client