$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/35e17b2d-e386-449d-8b46-4deb40b06ad8.roa File: 35e17b2d-e386-449d-8b46-4deb40b06ad8.roa (raw, json) Hash identifier: V4JYmGrIWQAVidN049T5qqXB+Dde7+JpfRjke3DZ5nY= Subject key identifier: 90:CE:66:0E:91:0B:A2:E4:EB:94:65:C3:10:51:29:89:D5:76:E6:5A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0EAB5589D699D746139C3D6E1D73B7B43363E385 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/35e17b2d-e386-449d-8b46-4deb40b06ad8.roa Signing time: Fri 08 May 2026 03:10:34 +0000 ROA not before: Fri 08 May 2026 03:10:34 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:60::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ab:55:89:d6:99:d7:46:13:9c:3d:6e:1d:73:b7:b4:33:63:e3:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 8 03:10:34 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=285e6b70c5363a78d3cbd880b6b8d1f23fa9a5e70684d91eb6971c48a759887b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:00:d6:c4:ee:f4:7c:8f:e0:d0:33:44:83:0b: 69:1c:21:64:fc:17:2e:48:8c:e1:d1:5e:8f:a7:0f: 27:ae:d7:6d:f7:6e:24:21:a2:f9:02:20:ae:b7:ab: 1b:cc:ba:e1:4f:3f:a2:8e:60:b4:ac:15:94:0f:83: 95:c3:73:f9:74:a7:99:87:48:b5:9d:6a:4b:ed:ed: 36:11:45:4e:60:55:ff:48:87:10:25:9b:9f:2f:bd: b0:0c:ca:ff:62:55:f9:93:96:1f:e9:f0:67:c3:70: 71:55:ed:49:6f:34:93:da:1e:e8:2c:0e:72:62:3d: e7:eb:9b:1a:d9:5f:25:3f:cc:0f:eb:80:df:da:5f: 66:19:4f:25:a1:b6:21:50:01:26:0b:6b:73:45:1f: 0b:67:bc:cf:e7:e2:7d:ed:ff:49:0d:fd:2c:25:e0: 23:c7:8b:2b:d7:ea:f0:76:c1:a1:73:08:66:c9:69: 50:f9:4e:cb:82:20:c5:7b:11:37:6f:d6:31:36:f0: 2a:3e:37:dc:f9:51:08:12:a9:ed:f8:e4:d3:7a:b2: 11:fc:ad:35:3c:33:b2:c7:de:5c:ab:5f:69:bb:a1: 2d:a9:c7:6c:9c:12:df:b7:17:28:34:3f:f7:03:9f: a5:76:f9:9c:74:f8:95:fe:08:69:6b:b1:83:5a:18: 71:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:CE:66:0E:91:0B:A2:E4:EB:94:65:C3:10:51:29:89:D5:76:E6:5A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/35e17b2d-e386-449d-8b46-4deb40b06ad8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:60::/44 Signature Algorithm: sha256WithRSAEncryption 22:27:65:db:cf:e0:87:0b:93:93:24:c6:b9:d1:2e:c4:9a:89: 60:75:06:7d:42:07:6c:91:3c:87:ae:18:3b:e4:fb:d2:49:b4: ab:63:87:f6:f5:a7:7c:58:3b:41:7c:49:64:97:af:40:f6:da: 43:41:66:a7:c1:2f:f1:08:7f:d0:9f:48:59:04:34:4b:8c:b7: 4d:84:c5:68:c2:1a:f4:91:57:69:f1:2a:f3:3d:aa:79:41:36: 0f:7b:fe:7a:95:35:35:93:e7:32:11:6a:27:2f:7f:09:ef:d0: dd:0e:7b:93:56:80:1d:7e:70:43:c3:59:b5:74:1d:56:33:9d: 20:ce:81:fb:8f:97:7b:31:3b:da:3e:33:35:4e:51:11:6d:04: 70:0c:e8:e7:2b:38:94:93:2d:34:87:20:bc:6e:59:63:95:d2: 84:d7:70:0b:cb:0b:d6:49:a3:ba:28:08:45:c8:82:d0:27:2b: 15:18:e2:89:de:9a:a6:10:c2:92:41:87:75:20:1c:8b:34:5c: fd:25:c1:68:8f:fc:8f:21:a6:59:cc:54:be:02:c3:81:af:5f: 15:a8:f7:13:75:72:52:15:92:ac:b8:cc:4b:d1:5a:41:c6:c9: 57:19:bb:78:f5:4f:4b:f2:cb:fd:39:08:22:07:09:67:17:b2: fe:95:84:cd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDqtVidaZ10YTnD1uHXO3tDNj44UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA4MDMxMDM0WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODVlNmI3MGM1MzYzYTc4ZDNjYmQ4ODBiNmI4ZDFmMjNm YTlhNWU3MDY4NGQ5MWViNjk3MWM0OGE3NTk4ODdiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJANbE7vR8j+DQM0SDC2kcIWT8Fy5IjOHRXo+nDyeu1233 biQhovkCIK63qxvMuuFPP6KOYLSsFZQPg5XDc/l0p5mHSLWdakvt7TYRRU5gVf9I hxAlm58vvbAMyv9iVfmTlh/p8GfDcHFV7UlvNJPaHugsDnJiPefrmxrZXyU/zA/r gN/aX2YZTyWhtiFQASYLa3NFHwtnvM/n4n3t/0kN/Swl4CPHiyvX6vB2waFzCGbJ aVD5TsuCIMV7ETdv1jE28Co+N9z5UQgSqe345NN6shH8rTU8M7LH3lyrX2m7oS2p x2ycEt+3Fyg0P/cDn6V2+Zx0+JX+CGlrsYNaGHHVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkM5mDpELouTrlGXDEFEpidV25lowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM1ZTE3YjJkLWUzODYtNDQ5ZC04YjQ2LTRkZWI0MGIwNmFkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAGAwDQYJKoZIhvcNAQELBQADggEBACInZdvP4IcLk5MkxrnRLsSa iWB1Bn1CB2yRPIeuGDvk+9JJtKtjh/b1p3xYO0F8SWSXr0D22kNBZqfBL/EIf9Cf SFkENEuMt02ExWjCGvSRV2nxKvM9qnlBNg97/nqVNTWT5zIRaicvfwnv0N0Oe5NW gB1+cEPDWbV0HVYznSDOgfuPl3sxO9o+MzVOURFtBHAM6OcrOJSTLTSHILxuWWOV 0oTXcAvLC9ZJo7ooCEXIgtAnKxUY4onemqYQwpJBh3UgHIs0XP0lwWiP/I8hplnM VL4Cw4GvXxWo9xN1clIVkqy4zEvRWkHGyVcZu3j1T0vyy/05CCIHCWcXsv6VhM0= -----END CERTIFICATE-----Generated at Wed May 13 01:25:35 2026 by rpki-client