$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa File: 3562da89-c8ff-4159-8f92-365721d94405.roa (raw, json) Hash identifier: j0aQaUWGwA6u3nM9Wx6fOfVimk8p4YdDtqONpf43wD0= Subject key identifier: 47:B0:2B:30:A3:47:0B:30:14:DB:EC:15:66:0B:4A:67:C8:48:BD:0A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 59ECD11175FC945EAFACB6AEF52C0FFE71834BFA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa Signing time: Mon 04 May 2026 15:00:11 +0000 ROA not before: Mon 04 May 2026 15:00:11 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f030::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ec:d1:11:75:fc:94:5e:af:ac:b6:ae:f5:2c:0f:fe:71:83:4b:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:00:11 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=18d0c05c9b16de9226164355fcc9e8dabc0edfb318b1e34a5bd53fdf1831195e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:40:8e:af:c8:ab:49:03:c4:24:2e:81:72:91: e3:5a:49:88:fe:f1:e4:8e:05:7d:08:ea:30:9d:5c: 4e:25:26:ad:8a:3a:36:05:70:a3:e9:78:54:00:d7: da:20:2a:f6:b4:ae:a3:e3:b0:49:dd:c0:b7:2f:da: 2f:43:c9:0e:75:13:a7:b0:92:df:2f:3d:70:5d:b8: 99:79:6e:dc:6b:f8:76:04:c8:c3:a1:f9:2a:6e:c5: ac:ad:d9:5b:5f:63:4d:75:df:a0:cc:5a:87:98:9d: 10:1b:f4:3f:56:ff:06:1b:89:5e:b3:92:60:27:84: a3:5d:20:20:df:ee:d8:0e:98:80:40:67:31:fc:c0: 93:cd:08:7c:2e:3a:af:ce:88:d1:b0:34:f1:1f:38: e5:11:db:08:de:ad:0a:da:7a:04:2e:f7:d0:f5:5f: 5d:42:e8:bd:6d:aa:4e:57:25:d6:1f:14:35:58:ea: 2a:39:d9:99:28:a4:b4:19:b7:70:be:31:fc:bf:72: 8e:d0:1f:d6:1f:a0:99:85:d7:8a:a6:38:d0:6e:f3: d1:ce:55:d1:00:5d:7d:47:1d:d6:8b:52:5b:84:04: 27:c0:bd:8d:d7:6d:e8:0d:ff:d2:14:8a:69:3d:6d: 13:94:c4:f2:60:a3:f6:03:2a:d2:c2:69:d8:1e:a5: b8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B0:2B:30:A3:47:0B:30:14:DB:EC:15:66:0B:4A:67:C8:48:BD:0A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f030::/44 Signature Algorithm: sha256WithRSAEncryption 89:5d:13:9c:68:83:da:68:98:72:9f:e1:8f:81:b4:82:7a:fc: 9e:79:1b:a8:e9:a7:d9:84:9b:80:50:b1:7e:5d:01:c5:cb:5c: 7c:9f:9f:f5:de:18:f0:3f:02:fb:2b:12:a6:9b:11:a0:1e:d0: 45:cb:53:67:b4:d9:ff:28:21:e1:25:4a:a1:fc:57:d1:ac:c5: 26:2f:da:be:50:26:55:d3:56:46:8a:c9:23:b1:2b:3b:9a:0f: fd:dd:c5:ae:b9:6d:48:ed:fe:ab:8e:04:e3:49:38:44:9c:46: e3:5c:79:42:30:22:b1:14:19:2f:5e:90:4e:8a:f7:ab:15:d1: cb:c4:ee:60:19:0c:ee:ce:fa:97:85:87:a8:af:17:8d:be:4d: 79:86:38:09:5a:0a:b9:7d:41:fd:43:c3:b1:2c:7d:bc:55:83: c3:bf:a6:36:67:6b:e1:f1:b9:79:c8:e2:38:84:d7:53:be:5f: be:8f:df:95:d9:f2:a9:31:db:bd:64:cb:ea:88:29:54:0d:42: 5f:4d:94:51:cc:e0:b7:a7:98:01:bc:57:80:f4:6a:1c:b1:45: 66:13:25:42:ba:d9:69:86:66:1b:25:f6:05:d6:cf:a8:fd:1b: 07:5f:bf:2f:5d:a8:f9:46:63:3f:24:0a:17:9b:b0:3e:f9:dc: ca:4a:25:e5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWezREXX8lF6vrLau9SwP/nGDS/owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUwMDExWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGQwYzA1YzliMTZkZTkyMjYxNjQzNTVmY2M5ZThkYWJj MGVkZmIzMThiMWUzNGE1YmQ1M2ZkZjE4MzExOTVlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwQI6vyKtJA8QkLoFykeNaSYj+8eSOBX0I6jCdXE4lJq2K OjYFcKPpeFQA19ogKva0rqPjsEndwLcv2i9DyQ51E6ewkt8vPXBduJl5btxr+HYE yMOh+Spuxayt2VtfY01136DMWoeYnRAb9D9W/wYbiV6zkmAnhKNdICDf7tgOmIBA ZzH8wJPNCHwuOq/OiNGwNPEfOOUR2wjerQraegQu99D1X11C6L1tqk5XJdYfFDVY 6io52ZkopLQZt3C+Mfy/co7QH9YfoJmF14qmONBu89HOVdEAXX1HHdaLUluEBCfA vY3XbegN/9IUimk9bROUxPJgo/YDKtLCadgepbg/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUR7ArMKNHCzAU2+wVZgtKZ8hIvQowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM1NjJkYTg5LWM4ZmYtNDE1OS04ZjkyLTM2NTcyMWQ5NDQwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78DAwDQYJKoZIhvcNAQELBQADggEBAIldE5xog9pomHKf4Y+BtIJ6 /J55G6jpp9mEm4BQsX5dAcXLXHyfn/XeGPA/AvsrEqabEaAe0EXLU2e02f8oIeEl SqH8V9GsxSYv2r5QJlXTVkaKySOxKzuaD/3dxa65bUjt/quOBONJOEScRuNceUIw IrEUGS9ekE6K96sV0cvE7mAZDO7O+peFh6ivF42+TXmGOAlaCrl9Qf1Dw7EsfbxV g8O/pjZna+HxuXnI4jiE11O+X76P35XZ8qkx271ky+qIKVQNQl9NlFHM4LenmAG8 V4D0ahyxRWYTJUK62WmGZhsl9gXWz6j9Gwdfvy9dqPlGYz8kChebsD753MpKJeU= -----END CERTIFICATE-----Generated at Tue May 12 23:05:45 2026 by rpki-client