$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2c005aeb-f132-4bb2-a865-90077d8d5e49.roa File: 2c005aeb-f132-4bb2-a865-90077d8d5e49.roa (raw, json) Hash identifier: MifoxDEIZMExTg1cddLbRK36kEhc8ZMpvS82NRBZd+o= Subject key identifier: E2:4B:0F:75:80:08:D8:AC:BC:15:5B:82:79:FE:A7:1E:DA:AB:7C:21 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6910BF259743E825A3015732FCA60872461CC8C0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2c005aeb-f132-4bb2-a865-90077d8d5e49.roa Signing time: Mon 04 May 2026 15:10:25 +0000 ROA not before: Mon 04 May 2026 15:10:25 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:10a::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:10:bf:25:97:43:e8:25:a3:01:57:32:fc:a6:08:72:46:1c:c8:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:25 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=4b9a7114050990e1f86d328d3ff6a3002330ed3b87a7a968b05e575e618a2d3f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c4:f5:4f:62:4b:9a:f0:a4:c7:08:da:fd:09: a2:37:01:01:f9:37:78:32:77:e2:1a:0c:3c:2a:b5: 36:77:4c:cb:a4:3e:25:24:d5:22:b5:8c:a8:a9:2f: fd:c2:d0:c7:39:3a:e8:96:db:33:ec:3a:fe:ea:cb: ef:5c:ba:15:d0:27:20:74:3f:06:0e:73:6c:ee:26: e4:44:a9:b1:a2:61:8c:34:e2:7e:58:17:c1:ed:75: 28:c2:e5:86:18:e9:f9:5f:bb:0d:51:b5:e6:44:5d: d9:28:44:8c:24:14:6c:99:5d:4d:63:82:06:18:c0: 00:06:af:42:ef:85:dc:fa:b0:8d:35:04:c0:a0:fe: 1d:78:ba:e5:80:7f:f4:97:bc:66:fa:ee:a7:93:0f: 9c:d0:0b:44:55:5d:78:f2:e6:00:eb:28:cb:11:ae: 13:4e:7e:f1:b2:79:eb:84:94:92:df:e0:74:c2:63: 59:ca:91:39:69:83:c7:f3:09:58:5a:ad:8c:c3:dc: db:5f:8d:e8:59:be:c3:b5:10:d9:9d:4a:a0:89:10: 07:60:a4:71:26:a1:1a:c3:56:ff:d8:bb:8a:39:c0: 45:31:6f:62:2e:96:e8:e2:00:01:71:32:4d:f5:cf: ed:4c:ad:e6:ed:76:ed:90:cc:fb:97:52:c3:dc:b9: 64:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:4B:0F:75:80:08:D8:AC:BC:15:5B:82:79:FE:A7:1E:DA:AB:7C:21 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2c005aeb-f132-4bb2-a865-90077d8d5e49.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10a::/47 Signature Algorithm: sha256WithRSAEncryption 6b:eb:f3:a9:9f:17:05:5b:f5:30:ab:c5:b2:7c:7d:c3:29:31: 98:c0:16:c6:0a:79:af:c5:0a:6f:f4:b1:90:61:f7:42:5a:ea: f6:e9:6b:8e:8a:f3:cb:d7:0e:21:03:f8:91:a4:dc:a5:27:63: 40:a3:6d:5d:c5:15:29:2a:a1:1b:19:c0:1d:bd:64:84:9f:e6: 5f:cb:47:07:5b:c3:3b:15:1b:a0:a9:e4:bc:ac:65:cb:ac:b6: 2e:1e:54:c1:56:ae:a5:02:c5:62:8d:4a:62:e8:bb:9a:85:3e: 2f:ab:b0:45:8e:5f:bf:0c:e5:6c:90:7a:f5:67:a7:e4:82:73: 03:2f:b5:e6:0e:32:dc:26:30:35:66:59:f5:56:6b:17:e2:c1: 0c:46:55:47:5c:ea:e1:7a:a7:a6:8e:0b:cc:9d:39:22:7a:33: 4d:d7:a9:1a:f7:f0:20:c1:34:a2:20:40:c1:e4:75:52:2b:51: 5f:a8:f4:78:5d:51:f9:c4:20:e4:71:9c:e2:d0:ef:0f:4f:73: da:f6:df:9d:04:17:e3:83:08:bb:63:39:64:a2:25:69:7b:d3: 49:38:86:a1:38:a9:ef:5e:24:da:3d:75:4b:95:5c:50:a9:5c: d5:2d:50:84:20:c2:22:a8:1f:09:4e:2d:c6:07:20:30:9e:10: 5c:87:62:1f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaRC/JZdD6CWjAVcy/KYIckYcyMAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDI1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjlhNzExNDA1MDk5MGUxZjg2ZDMyOGQzZmY2YTMwMDIz MzBlZDNiODdhN2E5NjhiMDVlNTc1ZTYxOGEyZDNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4xPVPYkua8KTHCNr9CaI3AQH5N3gyd+IaDDwqtTZ3TMuk PiUk1SK1jKipL/3C0Mc5OuiW2zPsOv7qy+9cuhXQJyB0PwYOc2zuJuREqbGiYYw0 4n5YF8HtdSjC5YYY6flfuw1RteZEXdkoRIwkFGyZXU1jggYYwAAGr0Lvhdz6sI01 BMCg/h14uuWAf/SXvGb67qeTD5zQC0RVXXjy5gDrKMsRrhNOfvGyeeuElJLf4HTC Y1nKkTlpg8fzCVharYzD3NtfjehZvsO1ENmdSqCJEAdgpHEmoRrDVv/Yu4o5wEUx b2IulujiAAFxMk31z+1Mrebtdu2QzPuXUsPcuWS5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4ksPdYAI2Ky8FVuCef6nHtqrfCEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzJjMDA1YWViLWYxMzItNGJiMi1hODY1LTkwMDc3ZDhkNWU0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQowDQYJKoZIhvcNAQELBQADggEBAGvr86mfFwVb9TCrxbJ8fcMp MZjAFsYKea/FCm/0sZBh90Ja6vbpa46K88vXDiED+JGk3KUnY0CjbV3FFSkqoRsZ wB29ZISf5l/LRwdbwzsVG6Cp5LysZcusti4eVMFWrqUCxWKNSmLou5qFPi+rsEWO X78M5WyQevVnp+SCcwMvteYOMtwmMDVmWfVWaxfiwQxGVUdc6uF6p6aOC8ydOSJ6 M03XqRr38CDBNKIgQMHkdVIrUV+o9HhdUfnEIORxnOLQ7w9Pc9r2350EF+ODCLtj OWSiJWl700k4hqE4qe9eJNo9dUuVXFCpXNUtUIQgwiKoHwlOLcYHIDCeEFyHYh8= -----END CERTIFICATE-----Generated at Tue May 12 23:43:10 2026 by rpki-client