$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/28dabfe2-3770-4fc6-a7a9-5b0a8edaf11b.roa File: 28dabfe2-3770-4fc6-a7a9-5b0a8edaf11b.roa (raw, json) Hash identifier: iSci5/8TkbuxKcpA7VBm2Gfm5jPLnL3j9ApGt6cmtqE= Subject key identifier: D7:64:93:29:EB:68:74:49:D2:FB:BE:EF:04:50:07:EB:91:BF:E3:6D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2B4014B5D5C8C1E01632F7A703148E345DE3FA00 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/28dabfe2-3770-4fc6-a7a9-5b0a8edaf11b.roa Signing time: Fri 01 May 2026 00:00:37 +0000 ROA not before: Fri 01 May 2026 00:00:37 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f2:7100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:40:14:b5:d5:c8:c1:e0:16:32:f7:a7:03:14:8e:34:5d:e3:fa:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 1 00:00:37 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=65c61d4a9718002504ff10b1c83e4e46af0adb072d1c8be2c7b9a7cb9f4191db, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:17:bc:7b:38:2e:f9:2f:35:2f:a0:67:8a:df: 09:d1:3d:2e:49:f5:ae:99:ef:1a:09:d8:0a:16:9d: 45:c9:bb:94:d3:15:40:28:23:e8:1f:2b:43:dd:35: c5:2f:82:d7:9a:ec:20:dd:50:2d:6e:5c:24:a8:a7: d1:88:41:ee:0b:67:66:46:c5:e2:02:e4:5c:74:ea: 24:80:80:e4:f4:30:b5:af:52:58:b0:9e:33:5e:7d: 7c:cd:05:2c:0b:45:ec:c1:8b:fa:f4:e0:f2:11:72: 3f:d1:2a:2f:51:1f:aa:b6:2c:72:ef:5e:ba:d0:ae: 5d:ea:5f:67:d1:b9:88:e6:46:e3:a0:1b:34:7a:37: 67:7a:22:94:73:4d:aa:77:fa:7c:9c:ff:8f:44:84: ff:99:81:87:a4:78:4d:51:56:94:0e:f5:1a:81:e5: 18:03:68:0b:df:25:2a:35:1d:13:dd:c9:5c:77:84: 8e:75:02:11:a5:15:bc:35:8e:3f:52:9c:b0:e5:17: a6:1f:52:17:27:5a:5d:01:87:8f:fa:e8:78:68:79: e3:98:83:55:aa:7d:89:13:7b:dd:bd:da:6b:21:c1: a1:23:76:5a:54:f0:03:e5:49:9e:66:d4:98:15:de: f9:b3:73:3b:24:85:33:68:49:c5:a0:7b:61:2d:b2: e7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:64:93:29:EB:68:74:49:D2:FB:BE:EF:04:50:07:EB:91:BF:E3:6D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/28dabfe2-3770-4fc6-a7a9-5b0a8edaf11b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7100::/40 Signature Algorithm: sha256WithRSAEncryption 4a:33:49:18:6a:28:41:a7:af:6a:86:4b:fb:39:39:30:c2:cf: 65:85:6a:81:03:69:d4:8b:50:c9:48:dd:2f:d4:81:57:a4:1c: 94:2a:da:b3:23:c3:5d:ad:01:58:5f:35:24:ea:d8:2c:44:17: 50:19:16:6c:2d:a0:83:69:85:c8:82:5b:b9:05:61:72:73:ba: 89:f7:47:a7:3a:5c:03:5f:81:9f:32:a3:b6:6a:f3:9c:e9:8d: c4:b0:a5:24:32:3f:7a:3b:73:06:5f:40:62:cb:c9:0e:82:ca: 43:1f:ce:30:05:38:12:45:85:0b:f6:07:4b:bd:fa:ba:f0:55: 7b:a8:81:9b:e6:ea:69:ee:99:03:b5:b5:06:e2:d2:1c:e2:66: 6c:5b:69:d2:34:25:16:60:ed:d8:e3:d9:cb:0d:c6:2c:9c:56: ba:e7:d6:bd:9a:1f:bc:e5:1c:25:90:b0:b8:c7:49:83:1d:d0: 8a:34:66:02:89:10:33:01:4b:b2:05:f0:b0:0b:08:71:80:97: fd:05:02:1c:74:9c:0e:b8:2e:6b:a8:de:11:d0:74:38:8a:c3: 89:13:2b:3c:6e:d0:db:9c:70:09:b1:a9:b3:f9:22:44:71:0f: 0a:ee:6e:ac:9a:d6:fa:36:b8:61:ad:30:6e:58:7d:fd:5f:db: 1b:fd:ef:d9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUK0AUtdXIweAWMvenAxSONF3j+gAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTAxMDAwMDM3WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWM2MWQ0YTk3MTgwMDI1MDRmZjEwYjFjODNlNGU0NmFm MGFkYjA3MmQxYzhiZTJjN2I5YTdjYjlmNDE5MWRiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxF7x7OC75LzUvoGeK3wnRPS5J9a6Z7xoJ2AoWnUXJu5TT FUAoI+gfK0PdNcUvgtea7CDdUC1uXCSop9GIQe4LZ2ZGxeIC5Fx06iSAgOT0MLWv UliwnjNefXzNBSwLRezBi/r04PIRcj/RKi9RH6q2LHLvXrrQrl3qX2fRuYjmRuOg GzR6N2d6IpRzTap3+nyc/49EhP+ZgYekeE1RVpQO9RqB5RgDaAvfJSo1HRPdyVx3 hI51AhGlFbw1jj9SnLDlF6YfUhcnWl0Bh4/66HhoeeOYg1WqfYkTe9292mshwaEj dlpU8APlSZ5m1JgV3vmzczskhTNoScWge2EtsueDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU12STKetodEnS+77vBFAH65G/420wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI4ZGFiZmUyLTM3NzAtNGZjNi1hN2E5LTViMGE4ZWRhZjExYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDycTANBgkqhkiG9w0BAQsFAAOCAQEASjNJGGooQaevaoZL+zk5MMLP ZYVqgQNp1ItQyUjdL9SBV6QclCrasyPDXa0BWF81JOrYLEQXUBkWbC2gg2mFyIJb uQVhcnO6ifdHpzpcA1+BnzKjtmrznOmNxLClJDI/ejtzBl9AYsvJDoLKQx/OMAU4 EkWFC/YHS736uvBVe6iBm+bqae6ZA7W1BuLSHOJmbFtp0jQlFmDt2OPZyw3GLJxW uufWvZofvOUcJZCwuMdJgx3QijRmAokQMwFLsgXwsAsIcYCX/QUCHHScDrgua6je EdB0OIrDiRMrPG7Q25xwCbGps/kiRHEPCu5urJrW+ja4Ya0wblh9/V/bG/3v2Q== -----END CERTIFICATE-----Generated at Tue May 12 23:34:35 2026 by rpki-client