$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa File: 455cc001-6d98-49b1-ab73-9a1e06726f9f.roa (raw, json) Hash identifier: LniZx+OgW5N0J2ULQirMrHltGoZGgA6/lQCL6WtDoHM= Subject key identifier: BE:9E:9D:E5:17:51:AF:FD:45:3C:AD:58:DC:AC:81:91:87:7B:CC:F1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 588A0AC5EF32A63862FD10DD15750AE2B902F1F9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa Signing time: Fri 08 May 2026 03:10:36 +0000 ROA not before: Fri 08 May 2026 03:10:36 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:8a:0a:c5:ef:32:a6:38:62:fd:10:dd:15:75:0a:e2:b9:02:f1:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 8 03:10:36 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=b68bb7347ff3563983d89b9ae857ff5013a62370a33d2eb00fa1e5c18a743ef1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:14:02:52:7c:87:33:e0:8d:eb:90:cf:53:30: 77:2b:c5:5e:80:80:37:49:d9:8a:cf:07:47:07:78: ae:3d:0b:41:66:ac:f0:06:e6:0c:96:27:35:5f:bf: 6b:e3:5f:c2:32:a8:ee:ad:a8:2f:16:8e:59:6b:5a: 71:ff:f5:46:ad:64:8b:57:40:5d:d3:15:2e:b4:c4: 07:4a:03:c7:5a:b7:a3:48:10:01:02:db:eb:65:a1: 77:47:be:fd:1a:52:6f:f4:7c:7d:15:bd:e4:15:08: e8:28:a7:e5:2f:42:a0:fc:e1:8f:b7:44:5e:54:de: de:ba:8c:23:60:cc:44:29:8b:ac:8f:ae:4c:32:e2: e7:15:6e:19:8e:b7:8e:d1:83:44:07:08:9a:65:24: 06:18:46:49:bd:3d:19:ac:61:89:0d:e8:cd:54:f0: ee:60:60:e8:b0:44:44:fd:2e:d7:51:c8:1c:2c:a8: 5d:eb:27:fe:88:b3:07:8d:94:ca:76:34:b5:d1:f8: 71:c2:54:4e:86:2b:da:f7:fd:d9:9a:93:2c:a1:92: f4:55:0d:b1:bb:26:fc:bc:b9:79:e9:65:eb:fd:dd: 5f:34:82:56:c0:a0:11:82:50:13:bc:b4:ea:8d:3d: 84:94:60:09:d6:c3:d3:c4:5c:46:42:da:97:a8:cb: 49:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9E:9D:E5:17:51:AF:FD:45:3C:AD:58:DC:AC:81:91:87:7B:CC:F1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 00:dc:dd:62:44:a6:de:0c:ab:9e:6f:b3:f3:36:94:18:e0:28: 0e:ae:d0:c0:37:ee:5f:4a:c0:2c:4b:81:5c:64:da:77:d3:50: e4:55:47:ba:d4:93:d0:32:3f:c3:b4:49:9a:0c:f7:37:4c:35: b5:75:d8:9b:51:68:61:9a:57:78:94:12:76:55:84:fb:dd:c8: d3:aa:d5:22:52:38:71:89:b9:36:e0:3f:69:ba:d4:6b:2f:b1: 4b:57:0c:ce:72:e1:8e:ef:de:11:75:0b:14:ae:cf:cd:9a:ba: 05:a6:ee:cf:c4:71:a2:9d:4d:96:a0:c1:75:a9:39:d0:3d:91: aa:7d:08:c1:41:b2:76:d4:69:b1:fd:8d:80:4b:05:08:aa:14: 84:a0:a1:89:3c:d6:88:eb:80:53:44:f1:bf:80:f4:16:3e:cf: e5:a5:35:b3:f8:3f:45:f6:26:c6:c0:cb:ca:be:91:a3:32:15: 64:49:b2:ba:aa:66:a3:47:c2:0c:93:9d:30:f6:e0:d4:24:f0: 62:a2:4b:da:49:5a:f3:60:54:e6:ea:e5:11:b3:02:a9:8e:26: df:d4:fd:5f:6e:2a:49:55:00:a2:b9:fe:4c:f0:a4:d5:ce:42: 3f:93:bb:2a:a5:4d:97:ee:f5:ce:76:08:c9:3b:69:13:ae:61: 0d:7d:b0:2c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWIoKxe8ypjhi/RDdFXUK4rkC8fkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA4MDMxMDM2WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjhiYjczNDdmZjM1NjM5ODNkODliOWFlODU3ZmY1MDEz YTYyMzcwYTMzZDJlYjAwZmExZTVjMThhNzQzZWYxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkFAJSfIcz4I3rkM9TMHcrxV6AgDdJ2YrPB0cHeK49C0Fm rPAG5gyWJzVfv2vjX8IyqO6tqC8WjllrWnH/9UatZItXQF3TFS60xAdKA8dat6NI EAEC2+tloXdHvv0aUm/0fH0VveQVCOgop+UvQqD84Y+3RF5U3t66jCNgzEQpi6yP rkwy4ucVbhmOt47Rg0QHCJplJAYYRkm9PRmsYYkN6M1U8O5gYOiwRET9LtdRyBws qF3rJ/6IsweNlMp2NLXR+HHCVE6GK9r3/dmakyyhkvRVDbG7Jvy8uXnpZev93V80 glbAoBGCUBO8tOqNPYSUYAnWw9PEXEZC2peoy0lrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvp6d5RdRr/1FPK1Y3KyBkYd7zPEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ1NWNjMDAxLTZkOTgtNDliMS1hYjczLTlhMWUwNjcyNmY5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAADc3WJEpt4Mq55vs/M2lBjg KA6u0MA37l9KwCxLgVxk2nfTUORVR7rUk9AyP8O0SZoM9zdMNbV12JtRaGGaV3iU EnZVhPvdyNOq1SJSOHGJuTbgP2m61GsvsUtXDM5y4Y7v3hF1CxSuz82augWm7s/E caKdTZagwXWpOdA9kap9CMFBsnbUabH9jYBLBQiqFISgoYk81ojrgFNE8b+A9BY+ z+WlNbP4P0X2JsbAy8q+kaMyFWRJsrqqZqNHwgyTnTD24NQk8GKiS9pJWvNgVObq 5RGzAqmOJt/U/V9uKklVAKK5/kzwpNXOQj+TuyqlTZfu9c52CMk7aROuYQ19sCw= -----END CERTIFICATE-----Generated at Wed May 13 01:18:50 2026 by rpki-client