$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa File: f6cf58cb-08de-4e22-be98-43e3537a793b.roa (raw, json) Hash identifier: LLeKIWrsI091acih0B7xB0D4chFyNegn3QMRYJ+QAq4= Subject key identifier: 30:89:F5:2A:DD:DF:F8:76:F9:43:07:4E:B7:4D:36:AD:46:8B:C1:2D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 68D748B0A381264FE8C3CE4371EED3A4902891C0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa Signing time: Tue 19 May 2026 04:10:39 +0000 ROA not before: Tue 19 May 2026 04:10:39 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d7:48:b0:a3:81:26:4f:e8:c3:ce:43:71:ee:d3:a4:90:28:91:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:39 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=3d589dc9a69088a4b4b9651f497e27fbe59a8ea1fdb7c2b58e95b11c59f32673, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d9:b8:c7:c2:c4:f9:86:fd:e3:2d:8b:84:c8: 97:64:40:81:70:3b:1b:5b:86:11:b4:43:34:d3:2e: 53:94:2d:55:57:85:e6:0e:43:a0:77:1e:c2:99:30: 6c:19:fa:2d:a6:6e:94:ca:08:ab:c3:7a:9e:ad:bf: 0b:c9:40:7b:97:e2:d8:47:3a:c1:ef:96:4d:de:66: 2f:0b:32:6e:b6:67:2c:d8:95:16:ca:ac:e4:55:54: 68:70:8b:96:6f:48:6a:01:c4:bc:71:24:75:64:19: bc:5f:dc:6f:26:d0:9a:ea:2f:fe:79:a5:6a:19:db: 34:38:07:33:af:ca:09:aa:b9:7d:14:85:b2:d7:65: 6d:2d:d0:a5:d3:0c:73:ef:ce:d2:ac:70:d7:16:cd: 04:21:52:a5:4c:8f:9c:cf:86:35:ee:19:37:6e:83: d1:25:9c:4f:0e:64:fe:7c:c3:41:a2:36:70:b5:66: a5:68:34:dd:88:52:18:f2:d7:f1:30:de:21:ec:4d: a6:25:57:55:06:3b:92:29:0e:bf:4e:e2:af:e8:ab: a7:61:15:3d:64:80:8d:9b:8c:5b:84:0d:6e:10:f2: 9a:de:f7:2f:b4:a6:77:8a:f6:44:de:0c:81:66:a0: e0:24:84:9b:53:1e:0e:31:ef:40:03:14:d7:b2:8f: 76:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:89:F5:2A:DD:DF:F8:76:F9:43:07:4E:B7:4D:36:AD:46:8B:C1:2D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/40 Signature Algorithm: sha256WithRSAEncryption 28:f6:49:b8:5a:51:44:e0:8e:10:6d:df:34:e0:cd:13:d1:09: e9:b7:b0:34:a3:f3:32:42:fa:50:31:19:50:58:a9:18:12:f8: 3d:a5:f9:d2:92:87:ab:c7:83:7d:55:63:ae:bc:77:82:2b:11: 04:ba:b5:d3:9e:5f:49:d9:5f:1c:6b:15:98:01:a8:4a:81:66: d2:2f:74:d6:8a:39:41:46:b4:23:c6:7b:40:73:43:cf:d8:68: be:d9:6d:ac:36:a4:52:1a:5f:72:6c:eb:ee:76:c5:2e:92:f1: 38:49:dc:a8:6b:e9:9a:77:f3:6b:84:c8:72:d5:4c:79:aa:39: ff:35:43:1b:3a:f1:94:23:28:6a:39:33:b5:e9:e5:82:c6:ad: 2b:7c:08:d7:b2:53:2f:68:2d:71:89:01:a0:c0:e8:8c:90:fc: 60:d3:22:20:5e:39:95:0d:1a:d9:0e:9a:95:7b:31:1b:f3:14: ab:4d:ae:80:e7:d0:6b:f4:f7:e5:fa:26:c4:2c:9c:ab:f0:49: 80:2d:50:7f:26:01:88:3c:79:3a:cc:26:09:bf:78:9f:6d:2a: ab:7e:3c:55:66:e3:93:13:5b:e8:a5:48:21:4d:b1:be:b2:e0: 5d:4e:ab:e6:fe:54:b6:d5:50:ab:aa:fe:20:1f:ee:62:31:75: 78:c3:17:1b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaNdIsKOBJk/ow85Dce7TpJAokcAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDM5WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDU4OWRjOWE2OTA4OGE0YjRiOTY1MWY0OTdlMjdmYmU1 OWE4ZWExZmRiN2MyYjU4ZTk1YjExYzU5ZjMyNjczMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD2bjHwsT5hv3jLYuEyJdkQIFwOxtbhhG0QzTTLlOULVVX heYOQ6B3HsKZMGwZ+i2mbpTKCKvDep6tvwvJQHuX4thHOsHvlk3eZi8LMm62ZyzY lRbKrORVVGhwi5ZvSGoBxLxxJHVkGbxf3G8m0JrqL/55pWoZ2zQ4BzOvygmquX0U hbLXZW0t0KXTDHPvztKscNcWzQQhUqVMj5zPhjXuGTdug9ElnE8OZP58w0GiNnC1 ZqVoNN2IUhjy1/Ew3iHsTaYlV1UGO5IpDr9O4q/oq6dhFT1kgI2bjFuEDW4Q8pre 9y+0pneK9kTeDIFmoOAkhJtTHg4x70ADFNeyj3bhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMIn1Kt3f+Hb5QwdOt002rUaLwS0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y2Y2Y1OGNiLTA4ZGUtNGUyMi1iZTk4LTQzZTM1MzdhNzkzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74TANBgkqhkiG9w0BAQsFAAOCAQEAKPZJuFpRROCOEG3fNODNE9EJ 6bewNKPzMkL6UDEZUFipGBL4PaX50pKHq8eDfVVjrrx3gisRBLq1055fSdlfHGsV mAGoSoFm0i901oo5QUa0I8Z7QHNDz9hovtltrDakUhpfcmzr7nbFLpLxOEncqGvp mnfza4TIctVMeao5/zVDGzrxlCMoajkztenlgsatK3wI17JTL2gtcYkBoMDojJD8 YNMiIF45lQ0a2Q6alXsxG/MUq02ugOfQa/T35fomxCycq/BJgC1QfyYBiDx5Oswm Cb94n20qq348VWbjkxNb6KVIIU2xvrLgXU6r5v5UttVQq6r+IB/uYjF1eMMXGw== -----END CERTIFICATE-----Generated at Wed Jun 17 08:40:25 2026 by rpki-client