$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa File: ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa (raw, json) Hash identifier: XMlT4NHunCuWvoUx1NSJsgyWTdNJi6qTZ2KY9F1/g0I= Subject key identifier: 4C:62:E6:3C:14:E3:72:50:40:26:40:CF:DE:DE:54:35:B7:07:97:7A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 14CBFE284DB08E7DCF688C51241DE01711352069 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa Signing time: Tue 19 May 2026 04:30:22 +0000 ROA not before: Tue 19 May 2026 04:30:22 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e300::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:cb:fe:28:4d:b0:8e:7d:cf:68:8c:51:24:1d:e0:17:11:35:20:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:30:22 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=bcbdb1baebc65a0160b80e1011fb310405fa12cbd5c066a6d6cf4fd62aadbb1a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6a:33:e1:db:b1:df:2a:4b:a4:6c:3c:49:c1: 61:81:62:b0:a9:c3:f0:71:76:3b:d2:b5:29:ba:c9: 72:3b:22:e0:f5:5b:28:58:ab:16:ee:6b:02:68:34: 8f:4a:86:f3:e7:cc:4b:a2:e4:d1:8c:a3:54:02:9e: 03:07:99:2e:14:d0:0e:fa:f0:28:5e:97:a4:f9:f2: 0a:a6:c0:a3:9c:5b:0f:a8:33:f2:7e:7e:d7:cf:8c: 3a:1c:ba:f2:88:c8:ab:6d:09:a8:6c:f6:39:e5:7d: 42:d3:d9:58:2b:72:f7:a4:33:07:a2:2d:d8:fa:cd: 2b:05:a8:ad:44:b7:98:5f:fc:fc:50:56:47:a2:58: ff:75:f1:ea:59:52:9b:8f:a8:e3:32:c6:b1:f8:b4: cd:ce:48:24:ca:80:44:b3:e1:3b:ff:e4:5c:21:00: bf:d6:f0:9a:b5:48:75:69:8d:3d:e3:0f:e3:5d:ad: 9d:df:81:cd:94:7e:43:bc:1a:6b:b9:b3:a8:1d:34: f3:2f:6b:15:73:e0:bb:02:0a:5a:e7:37:32:89:77: 46:b3:10:67:af:9b:b9:d4:9e:6b:11:5e:d7:4c:e2: f4:2d:fa:18:1c:2e:fa:bf:51:3e:a7:ae:89:1a:b7: fa:f3:65:6a:29:cc:be:dc:4d:53:24:c6:f4:44:1d: 19:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:62:E6:3C:14:E3:72:50:40:26:40:CF:DE:DE:54:35:B7:07:97:7A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/42 Signature Algorithm: sha256WithRSAEncryption 53:ba:13:69:4c:ee:58:2a:19:75:c9:58:4d:43:9b:d1:84:b6: 9b:cf:fd:07:b7:94:59:64:e8:47:2d:78:f9:83:57:b5:72:7f: 7a:31:72:c0:1c:04:06:92:fa:cd:b6:30:a3:13:fe:8c:eb:34: ae:9f:ea:0d:da:45:8d:ae:06:bb:c4:0c:55:bf:6e:30:57:ef: fd:88:39:f3:32:ce:7b:69:39:2b:17:00:73:04:70:9c:58:00: b7:e2:0e:10:e5:3c:83:25:18:ed:83:2b:55:59:dc:fb:95:20: ee:60:93:57:a6:24:cc:3b:c2:d5:07:6f:d7:d4:f3:f9:72:5d: 35:b1:29:86:c9:ba:6d:92:2e:fc:0e:0a:72:59:cc:48:37:80: 7f:80:68:c6:3c:62:f2:57:51:e8:d4:36:23:66:1c:0e:b1:ae: 35:d7:7c:4e:94:93:1e:4e:d2:f8:f6:d9:cd:69:b3:f3:b5:43: 5d:1f:0b:0e:de:2d:53:ab:ca:37:11:7d:5d:5e:e9:bd:02:10: fc:bc:3d:f8:5b:ab:e1:12:a6:75:57:97:6e:d3:1e:92:52:00: 69:0f:38:9d:50:f3:54:6d:b6:26:41:5f:92:ab:17:3b:78:5a: 71:c3:2a:7d:e3:0b:56:f7:96:73:68:57:c5:0c:e9:f5:ac:2c: cb:98:5a:4f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFMv+KE2wjn3PaIxRJB3gFxE1IGkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQzMDIyWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2JkYjFiYWViYzY1YTAxNjBiODBlMTAxMWZiMzEwNDA1 ZmExMmNiZDVjMDY2YTZkNmNmNGZkNjJhYWRiYjFhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwajPh27HfKkukbDxJwWGBYrCpw/BxdjvStSm6yXI7IuD1 WyhYqxbuawJoNI9KhvPnzEui5NGMo1QCngMHmS4U0A768Chel6T58gqmwKOcWw+o M/J+ftfPjDocuvKIyKttCahs9jnlfULT2VgrcvekMweiLdj6zSsFqK1Et5hf/PxQ VkeiWP918epZUpuPqOMyxrH4tM3OSCTKgESz4Tv/5FwhAL/W8Jq1SHVpjT3jD+Nd rZ3fgc2UfkO8Gmu5s6gdNPMvaxVz4LsCClrnNzKJd0azEGevm7nUnmsRXtdM4vQt +hgcLvq/UT6nrokat/rzZWopzL7cTVMkxvREHRlBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTGLmPBTjclBAJkDP3t5UNbcHl3owHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VmNDkyNDdmLWUxYmItNGUwZS05ZGYwLTZlZGI5NzQwNGY5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74wAwDQYJKoZIhvcNAQELBQADggEBAFO6E2lM7lgqGXXJWE1Dm9GE tpvP/Qe3lFlk6EctePmDV7Vyf3oxcsAcBAaS+s22MKMT/ozrNK6f6g3aRY2uBrvE DFW/bjBX7/2IOfMyzntpOSsXAHMEcJxYALfiDhDlPIMlGO2DK1VZ3PuVIO5gk1em JMw7wtUHb9fU8/lyXTWxKYbJum2SLvwOCnJZzEg3gH+AaMY8YvJXUejUNiNmHA6x rjXXfE6Ukx5O0vj22c1ps/O1Q10fCw7eLVOryjcRfV1e6b0CEPy8Pfhbq+ESpnVX l27THpJSAGkPOJ1Q81RttiZBX5KrFzt4WnHDKn3jC1b3lnNoV8UM6fWsLMuYWk8= -----END CERTIFICATE-----Generated at Wed Jun 17 08:33:00 2026 by rpki-client