$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e0ccd54-23cc-4939-b5be-1cf1c8ab6154.roa File: 1e0ccd54-23cc-4939-b5be-1cf1c8ab6154.roa (raw, json) Hash identifier: jD8lWullJ+1v3UdZ+PkMJ2NNFxghRleFd/i55OfMA7A= Subject key identifier: E2:4B:BD:DE:AB:95:0D:B0:6D:A3:1E:47:9C:9B:52:26:A9:88:97:03 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 485B3889C58ACA2655843784F0DB3D29918039C9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e0ccd54-23cc-4939-b5be-1cf1c8ab6154.roa Signing time: Fri 01 May 2026 00:00:40 +0000 ROA not before: Fri 01 May 2026 00:00:40 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:5b:38:89:c5:8a:ca:26:55:84:37:84:f0:db:3d:29:91:80:39:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 1 00:00:40 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=00287ccad2358debcbdd63eedf5065609daa3f60a8d9298da3aef70342eb1009, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:da:72:7b:53:43:46:8d:61:88:0c:55:1d:1a: 33:59:8a:ae:76:eb:8e:e5:17:42:58:6d:ad:c8:7b: 1f:76:f5:73:0e:6a:1b:a7:05:f4:f1:8c:3a:a5:df: 63:1c:2d:62:f4:6a:4b:62:fb:a7:e1:71:96:60:95: 01:f6:de:fc:08:54:64:5c:11:47:32:28:d9:9e:67: 93:70:85:ce:c8:6f:d9:ab:64:ff:5e:70:43:79:1f: 8b:ce:b7:e1:3f:66:5a:3a:55:f9:13:04:5c:78:ff: 3c:01:e1:79:12:e3:20:bd:a3:3c:ad:ac:82:6a:19: a5:ed:f5:b1:90:6d:7b:4f:30:6d:0b:87:33:75:11: bf:b5:e5:50:d4:ef:b0:ee:0c:2d:1a:76:ce:fc:a5: f4:4c:e2:4e:4c:3a:d4:ab:80:2e:7f:3d:36:83:fc: d1:1a:bd:ff:8a:3d:0f:f1:23:5a:67:88:46:8a:61: df:ee:ac:f4:ea:af:17:a8:9a:c3:4c:01:9c:8f:c4: 89:6c:8f:56:01:3e:20:89:58:c0:11:56:f0:05:85: 63:70:1e:52:f5:69:c1:64:82:f5:52:e6:1c:ce:0d: 03:9a:d7:6e:46:91:70:18:92:40:67:8b:0e:93:28: 6e:ce:c6:7a:f8:64:d2:40:6b:1b:58:e9:b6:63:35: 72:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:4B:BD:DE:AB:95:0D:B0:6D:A3:1E:47:9C:9B:52:26:A9:88:97:03 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e0ccd54-23cc-4939-b5be-1cf1c8ab6154.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6102::/48 Signature Algorithm: sha256WithRSAEncryption 3a:bd:c6:3c:2d:84:38:85:68:f8:5b:ff:24:73:37:ad:ed:73: dc:32:df:27:f8:ce:a5:79:e6:a9:f0:3f:9b:73:6a:ef:6b:98: 90:0f:e2:50:2d:80:c6:ae:3b:78:15:28:47:33:1a:76:0e:b3: 67:31:25:d7:c5:d1:eb:c6:a0:09:1b:99:15:56:83:58:e0:12: 66:ef:a8:e1:3a:c7:94:fd:92:03:28:77:b8:c4:59:51:27:9b: 84:87:b3:14:dd:cb:2a:36:a6:53:c9:17:5c:f3:08:38:55:94: 7b:a1:12:28:bb:72:43:9a:20:fb:5c:0c:20:20:54:e6:36:af: 8c:d5:97:9d:3d:d3:cb:67:51:b0:db:37:5e:70:5e:e6:50:87: 7a:c3:fc:06:aa:01:a0:f0:45:61:4d:47:06:33:b5:11:ff:a9: df:be:9a:0c:d6:04:20:56:2d:7c:bf:20:fe:db:1b:48:43:38: f1:b5:b2:d7:26:d5:64:40:57:98:0a:08:20:8b:01:09:5a:ea: 5b:73:ae:b1:11:45:5e:73:22:41:27:3b:77:70:66:f0:8e:c3: 28:19:4b:5b:50:dd:0c:6f:a1:2b:00:fb:80:12:43:45:39:f8: f3:35:5b:8f:69:13:38:03:67:90:de:a7:71:e7:3e:03:54:3a: c3:cf:f4:ed -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSFs4icWKyiZVhDeE8Ns9KZGAOckwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTAxMDAwMDQwWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDI4N2NjYWQyMzU4ZGViY2JkZDYzZWVkZjUwNjU2MDlk YWEzZjYwYThkOTI5OGRhM2FlZjcwMzQyZWIxMDA5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDY2nJ7U0NGjWGIDFUdGjNZiq52647lF0JYba3Iex929XMO ahunBfTxjDql32McLWL0akti+6fhcZZglQH23vwIVGRcEUcyKNmeZ5Nwhc7Ib9mr ZP9ecEN5H4vOt+E/Zlo6VfkTBFx4/zwB4XkS4yC9ozytrIJqGaXt9bGQbXtPMG0L hzN1Eb+15VDU77DuDC0ads78pfRM4k5MOtSrgC5/PTaD/NEavf+KPQ/xI1pniEaK Yd/urPTqrxeomsNMAZyPxIlsj1YBPiCJWMARVvAFhWNwHlL1acFkgvVS5hzODQOa 125GkXAYkkBniw6TKG7Oxnr4ZNJAaxtY6bZjNXIxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4ku93quVDbBtox5HnJtSJqmIlwMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFlMGNjZDU0LTIzY2MtNDkzOS1iNWJlLTFjZjFjOGFiNjE1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQIwDQYJKoZIhvcNAQELBQADggEBADq9xjwthDiFaPhb/yRzN63t c9wy3yf4zqV55qnwP5tzau9rmJAP4lAtgMauO3gVKEczGnYOs2cxJdfF0evGoAkb mRVWg1jgEmbvqOE6x5T9kgMod7jEWVEnm4SHsxTdyyo2plPJF1zzCDhVlHuhEii7 ckOaIPtcDCAgVOY2r4zVl50908tnUbDbN15wXuZQh3rD/AaqAaDwRWFNRwYztRH/ qd++mgzWBCBWLXy/IP7bG0hDOPG1stcm1WRAV5gKCCCLAQla6ltzrrERRV5zIkEn O3dwZvCOwygZS1tQ3QxvoSsA+4ASQ0U5+PM1W49pEzgDZ5Dep3HnPgNUOsPP9O0= -----END CERTIFICATE-----Generated at Wed May 13 01:24:46 2026 by rpki-client