$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2125684d-f88e-48b1-9091-d6b4c68c5748.roa File: 2125684d-f88e-48b1-9091-d6b4c68c5748.roa (raw, json) Hash identifier: i1CKZ5VsE+gRn155IvlferytcGrMC53XxEBXvhfxUfg= Subject key identifier: DA:00:E3:9E:AD:25:52:70:C0:7A:64:B2:8D:63:C7:0A:49:7F:B1:2E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 48D4B022C08E528A5D314376A67197E9E2D62EA6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2125684d-f88e-48b1-9091-d6b4c68c5748.roa Signing time: Sun 10 May 2026 00:00:06 +0000 ROA not before: Sun 10 May 2026 00:00:06 +0000 ROA not after: Sat 08 Aug 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0fb:f000::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:d4:b0:22:c0:8e:52:8a:5d:31:43:76:a6:71:97:e9:e2:d6:2e:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 10 00:00:06 2026 GMT Not After : Aug 8 23:59:59 2026 GMT Subject: serialNumber=4591011529f99856573cc7d64974cee01790d23d25ca0621904f0e5323c7a45b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:82:50:e2:1e:bc:ff:c8:14:56:36:13:a9:94: 5c:58:44:92:71:8a:35:57:4b:5e:b3:af:44:ea:87: 2b:f6:3c:9b:fc:fe:10:05:4c:ac:e7:9d:9a:1a:50: 6a:9a:ab:90:bb:d7:dd:db:8b:5c:7c:8a:ca:b6:98: cf:7a:f0:36:25:58:e6:48:28:03:c3:5f:0d:2d:10: f7:20:5a:4b:12:43:c2:dc:cb:ca:f6:60:9d:3d:0e: fe:69:6c:a6:a2:37:ca:c9:cc:7b:9e:ca:5c:c6:49: f7:70:15:ab:bf:05:7e:cc:3c:21:5c:1a:5a:cf:28: e2:6c:e4:5b:79:13:c5:b4:9d:b5:49:17:4f:58:9c: 12:02:20:b2:bf:67:bf:9f:74:ab:25:7e:84:7d:e6: 5c:27:e2:8f:7e:66:3a:c0:a0:12:84:eb:05:5a:f6: 18:66:5b:cd:a1:50:4b:6a:4b:9f:55:d8:72:52:40: 27:50:3d:eb:5c:df:a7:43:12:ce:a7:88:37:76:03: 9e:33:4a:61:6a:3b:dd:76:f9:b7:c4:a6:e4:73:8e: 95:82:03:9f:05:c6:13:9e:8f:b6:51:49:2a:11:f9: 99:92:a3:c7:67:b6:3a:4e:34:4c:7a:c8:76:91:0d: c4:85:9e:76:01:ed:15:69:d8:d5:1e:ab:dd:e0:90: d5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:00:E3:9E:AD:25:52:70:C0:7A:64:B2:8D:63:C7:0A:49:7F:B1:2E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2125684d-f88e-48b1-9091-d6b4c68c5748.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/47 Signature Algorithm: sha256WithRSAEncryption 7b:81:bf:57:37:dd:96:d5:e4:fb:3c:02:ea:2d:00:37:8f:2a: 13:cf:49:f7:26:9f:3e:f8:08:e6:e0:c3:9b:5b:7b:1a:b6:79: 15:2c:0a:1e:d5:73:1c:2c:a8:f0:cb:a9:78:bf:a5:e4:2d:f6: c0:aa:b4:8d:37:b4:b3:d9:73:ca:a5:5b:35:ae:04:2d:fb:5f: 30:e8:ec:ac:d9:0b:4a:bd:55:ce:52:31:cd:46:a6:fd:ff:dd: 0c:01:c7:4a:df:81:0e:c5:20:87:43:e5:80:2c:f1:dc:c6:49: 4f:30:38:03:6d:01:89:e1:e5:97:2a:77:2c:4d:af:5b:8a:67: b6:d1:9c:01:61:4c:a0:91:cc:e1:d6:1d:07:f5:1b:c2:94:5d: 14:d8:8e:f2:62:29:bd:33:ce:9c:d2:9f:2b:9f:14:53:00:9e: 1f:f1:cb:c2:c9:00:90:c2:06:d1:28:78:b0:ac:90:27:b4:88: b8:e5:dd:3c:39:d2:17:47:59:e2:b7:4f:fc:d9:03:2a:5d:e4: 2f:bd:62:e4:f0:4e:c4:ff:a2:7b:5e:28:e2:4d:12:74:f0:bd: e6:93:46:64:7d:2b:d1:d1:c1:5c:3c:f9:44:4e:e5:81:73:56: f9:9b:dd:e0:c6:bf:c3:ea:4e:cb:e9:7f:1f:4f:14:b1:12:e2: bc:65:6a:47 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSNSwIsCOUopdMUN2pnGX6eLWLqYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTEwMDAwMDA2WhcNMjYwODA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTkxMDExNTI5Zjk5ODU2NTczY2M3ZDY0OTc0Y2VlMDE3 OTBkMjNkMjVjYTA2MjE5MDRmMGU1MzIzYzdhNDViMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPglDiHrz/yBRWNhOplFxYRJJxijVXS16zr0Tqhyv2PJv8 /hAFTKznnZoaUGqaq5C7193bi1x8isq2mM968DYlWOZIKAPDXw0tEPcgWksSQ8Lc y8r2YJ09Dv5pbKaiN8rJzHueylzGSfdwFau/BX7MPCFcGlrPKOJs5Ft5E8W0nbVJ F09YnBICILK/Z7+fdKslfoR95lwn4o9+ZjrAoBKE6wVa9hhmW82hUEtqS59V2HJS QCdQPetc36dDEs6niDd2A54zSmFqO912+bfEpuRzjpWCA58FxhOej7ZRSSoR+ZmS o8dntjpONEx6yHaRDcSFnnYB7RVp2NUeq93gkNUHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2gDjnq0lUnDAemSyjWPHCkl/sS4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIxMjU2ODRkLWY4OGUtNDhiMS05MDkxLWQ2YjRjNjhjNTc0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPD78AAwDQYJKoZIhvcNAQELBQADggEBAHuBv1c33ZbV5Ps8AuotADeP KhPPSfcmnz74CObgw5tbexq2eRUsCh7VcxwsqPDLqXi/peQt9sCqtI03tLPZc8ql WzWuBC37XzDo7KzZC0q9Vc5SMc1Gpv3/3QwBx0rfgQ7FIIdD5YAs8dzGSU8wOANt AYnh5ZcqdyxNr1uKZ7bRnAFhTKCRzOHWHQf1G8KUXRTYjvJiKb0zzpzSnyufFFMA nh/xy8LJAJDCBtEoeLCskCe0iLjl3Tw50hdHWeK3T/zZAypd5C+9YuTwTsT/onte KOJNEnTwveaTRmR9K9HRwVw8+URO5YFzVvmb3eDGv8PqTsvpfx9PFLES4rxlakc= -----END CERTIFICATE-----Generated at Wed May 13 02:24:38 2026 by rpki-client