$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16493254-23cd-454e-98e8-0cfbdb8f499f.roa File: 16493254-23cd-454e-98e8-0cfbdb8f499f.roa (raw, json) Hash identifier: 5RPuVKsHfWsKfzOns1zJio4V6XzsClq2NZnJfpCJxAg= Subject key identifier: 08:69:2C:1A:50:2F:99:94:BF:E5:92:F6:9D:43:27:1E:95:68:C7:06 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 522D980DE593CFD0532CB828916886F588919758 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16493254-23cd-454e-98e8-0cfbdb8f499f.roa Signing time: Mon 04 May 2026 15:00:09 +0000 ROA not before: Mon 04 May 2026 15:00:09 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:611f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:2d:98:0d:e5:93:cf:d0:53:2c:b8:28:91:68:86:f5:88:91:97:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:00:09 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=1b4dd7b062ab4c1f8ace851c4149d7871fabce5c6c61faf892875935910b9408, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:79:19:9f:53:21:45:20:46:07:6c:0d:61:5e: 92:61:42:dc:5e:32:0e:26:b9:a6:1e:58:ac:e1:dd: bd:77:32:93:12:00:e8:37:e3:ac:9f:10:2a:03:f7: 76:2a:b8:9f:57:a6:2c:70:ea:63:83:06:37:7c:96: 28:cc:d1:df:21:04:dc:b6:2e:f9:a6:12:fb:51:6e: c2:10:51:27:95:20:25:2c:b4:8f:c6:cb:83:6d:f5: e6:af:6f:72:0f:13:d3:af:11:a2:e2:2b:12:7e:63: 22:1d:86:6e:7f:d8:87:ff:30:7e:9a:e9:c8:48:5d: 96:58:2d:5d:32:fb:01:07:bd:18:a0:13:5c:f7:ec: 29:77:5f:74:f7:96:56:4e:2c:71:cf:5c:39:53:f6: c2:eb:5a:54:fd:99:3c:ef:48:41:dd:3f:cd:e9:4e: 62:17:aa:a4:1c:a8:c4:25:25:5e:64:ad:34:98:b6: 6a:93:13:94:57:6a:12:dd:1f:ee:48:5c:39:52:e4: 59:d1:92:0d:c9:41:4b:20:a5:ad:78:fb:4c:8a:a0: d3:d6:25:3a:76:42:3d:6f:e4:67:19:c0:fd:ea:f8: fb:e1:7d:e3:ec:33:c0:54:a6:55:07:e6:a9:8d:95: 72:88:b5:88:83:47:87:7f:67:81:5e:84:e3:bf:5e: f3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:69:2C:1A:50:2F:99:94:BF:E5:92:F6:9D:43:27:1E:95:68:C7:06 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16493254-23cd-454e-98e8-0cfbdb8f499f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611f::/48 Signature Algorithm: sha256WithRSAEncryption 38:1b:0b:d4:d4:45:d6:5f:7a:97:6b:02:9d:04:32:ff:0c:de: a8:fc:e7:9b:67:03:c7:5b:bb:34:61:84:82:f7:86:66:e7:da: 4f:b3:4e:c1:3c:ff:b8:b7:7e:9c:42:15:93:0a:2f:a3:10:d5: 04:76:b5:6a:b0:39:48:45:2b:a4:89:82:d8:5f:8a:e3:f9:e3: dd:75:63:91:96:3f:01:0f:b4:a8:25:18:fb:b8:44:b1:4a:67: cb:da:34:ee:36:0a:25:1f:43:4a:fa:fe:03:18:22:10:e4:8e: 3c:02:fb:00:23:c5:da:26:bd:89:0e:e9:5b:61:2e:21:d0:52: 2e:b2:3a:dd:ec:e6:8f:4a:bc:6f:68:bf:01:12:aa:b6:9f:af: a8:9e:3e:c4:ca:17:ca:5a:55:59:36:da:17:96:b6:0d:1f:a8: 45:40:87:b1:f0:b9:2d:ea:4b:9c:28:be:d4:4f:79:94:31:47: 70:c7:77:06:e4:49:be:10:4e:dc:b4:34:15:a3:6f:97:42:9b: dd:95:e7:e1:7b:f5:12:0a:8b:b3:0a:f6:e3:26:46:12:b1:87: e8:e1:9a:3b:68:1e:22:c1:14:cd:fd:ec:72:92:7f:34:13:94: 74:e0:24:4b:61:d7:90:79:ad:aa:a3:58:3e:73:a7:dc:c0:3f: 1f:7e:d6:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUi2YDeWTz9BTLLgokWiG9YiRl1gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUwMDA5WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjRkZDdiMDYyYWI0YzFmOGFjZTg1MWM0MTQ5ZDc4NzFm YWJjZTVjNmM2MWZhZjg5Mjg3NTkzNTkxMGI5NDA4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKeRmfUyFFIEYHbA1hXpJhQtxeMg4muaYeWKzh3b13MpMS AOg346yfECoD93YquJ9Xpixw6mODBjd8lijM0d8hBNy2LvmmEvtRbsIQUSeVICUs tI/Gy4Nt9eavb3IPE9OvEaLiKxJ+YyIdhm5/2If/MH6a6chIXZZYLV0y+wEHvRig E1z37Cl3X3T3llZOLHHPXDlT9sLrWlT9mTzvSEHdP83pTmIXqqQcqMQlJV5krTSY tmqTE5RXahLdH+5IXDlS5FnRkg3JQUsgpa14+0yKoNPWJTp2Qj1v5GcZwP3q+Pvh fePsM8BUplUH5qmNlXKItYiDR4d/Z4FehOO/XvOdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCGksGlAvmZS/5ZL2nUMnHpVoxwYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE2NDkzMjU0LTIzY2QtNDU0ZS05OGU4LTBjZmJkYjhmNDk5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYR8wDQYJKoZIhvcNAQELBQADggEBADgbC9TURdZfepdrAp0EMv8M 3qj855tnA8dbuzRhhIL3hmbn2k+zTsE8/7i3fpxCFZMKL6MQ1QR2tWqwOUhFK6SJ gthfiuP54911Y5GWPwEPtKglGPu4RLFKZ8vaNO42CiUfQ0r6/gMYIhDkjjwC+wAj xdomvYkO6VthLiHQUi6yOt3s5o9KvG9ovwESqrafr6iePsTKF8paVVk22heWtg0f qEVAh7HwuS3qS5wovtRPeZQxR3DHdwbkSb4QTty0NBWjb5dCm92V5+F79RIKi7MK 9uMmRhKxh+jhmjtoHiLBFM397HKSfzQTlHTgJEth15B5raqjWD5zp9zAPx9+1nI= -----END CERTIFICATE-----Generated at Wed May 13 01:32:18 2026 by rpki-client