$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4ef3dcdf-2af4-4dfd-8667-18325556ef24.roa File: 4ef3dcdf-2af4-4dfd-8667-18325556ef24.roa (raw, json) Hash identifier: YKCVlw4skHK4hU2JpgqHhHX6Ub+HidCZrsXMPru4wZk= Subject key identifier: 0D:DE:68:9D:9D:23:52:1D:4E:F5:FD:68:59:4B:30:B0:5D:44:A2:0D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7E082AC658911B7D7BE439DB7135EC1213116196 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4ef3dcdf-2af4-4dfd-8667-18325556ef24.roa Signing time: Sun 10 May 2026 00:00:07 +0000 ROA not before: Sun 10 May 2026 00:00:07 +0000 ROA not after: Sat 08 Aug 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0fb:f000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:08:2a:c6:58:91:1b:7d:7b:e4:39:db:71:35:ec:12:13:11:61:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 10 00:00:07 2026 GMT Not After : Aug 8 23:59:59 2026 GMT Subject: serialNumber=2916696c45dcdc4b8e68a40e675eb326b6271830b7372c4a8487cd2506f44919, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:01:df:a1:8a:14:9e:79:16:89:59:a9:86:0e: 80:2d:57:f7:ed:9f:d7:c0:83:9f:22:91:1d:e5:23: cd:a4:6b:02:54:0d:c1:4a:46:a8:b0:11:fc:0a:f2: 54:a9:a7:97:d7:a1:96:1c:a4:22:32:59:b5:02:28: 43:63:14:81:c0:36:96:5d:fc:7e:98:6a:61:59:ae: bb:db:55:5f:aa:e5:cd:ac:94:c9:bd:5c:10:8d:44: 2c:8e:c4:8e:d6:5d:1c:ae:48:b0:1f:8a:21:9c:31: 68:cb:cb:5a:e7:4b:fb:0c:00:6a:c2:61:76:14:ef: 77:78:88:39:d8:17:aa:19:fa:78:b3:18:fe:43:91: 6a:ed:4b:5b:17:3b:ec:0c:b4:2f:25:9c:1a:b4:45: e2:91:95:d1:5d:88:8d:ce:d3:2c:91:8f:96:b5:f5: c2:ec:5f:ab:fa:cc:5e:ae:34:62:9d:df:73:d2:90: 5d:a7:10:b0:3b:44:88:a7:b3:c8:f2:57:a0:5f:e9: b0:76:25:cb:28:45:3f:fe:c8:40:a0:ae:2e:a4:f8: d3:5a:f3:39:46:5a:68:85:ea:06:fa:50:38:d1:38: b7:11:d8:4e:84:af:da:13:73:f5:1e:41:54:da:f2: 86:64:6f:b5:1d:5a:de:ec:a1:b2:37:39:83:20:74: e3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:DE:68:9D:9D:23:52:1D:4E:F5:FD:68:59:4B:30:B0:5D:44:A2:0D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4ef3dcdf-2af4-4dfd-8667-18325556ef24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 54:cb:4b:3c:06:db:68:6a:9d:e7:33:d2:09:f2:e4:91:cb:44: 68:be:a7:73:45:dd:f9:a8:00:0b:ab:ba:4f:33:5a:04:cb:f0: ef:a4:7d:d3:2d:be:f2:29:ab:da:3d:73:66:98:1c:3c:77:17: f7:f6:f6:46:a7:5d:5c:d3:e8:d4:7c:d7:70:c2:9d:ba:c9:5d: 69:fd:59:aa:04:96:16:d7:fb:d8:f8:c4:12:a6:19:57:33:a8: 8a:93:bf:e5:54:38:c9:be:a6:f7:67:ee:03:a5:22:2e:bc:66: e6:2c:82:e3:60:9d:71:c6:ab:29:a5:2f:f9:a9:f5:74:59:bc: ec:63:ad:20:e6:c7:bd:66:57:3c:6f:9c:d2:af:25:e6:76:95: cf:e6:a3:9c:2f:fd:20:9f:d9:7f:60:44:9a:e9:6e:eb:76:62: a9:51:cf:6e:b1:5c:9c:c1:b2:f8:94:ed:f7:3a:0c:11:ce:09: 1d:a0:58:e8:d7:a2:09:28:df:81:db:43:61:bf:b1:c5:24:03: ba:cf:32:62:f7:a7:7a:f6:8c:a7:50:64:8a:4e:2e:77:1d:0b: cf:c6:9e:c5:7d:85:db:47:30:93:72:73:65:66:21:7f:67:a7: 77:a2:37:9a:2c:e6:0b:af:cb:c5:48:86:76:7f:41:49:f4:17: 98:52:5f:2e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfggqxliRG3175DnbcTXsEhMRYZYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTEwMDAwMDA3WhcNMjYwODA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTE2Njk2YzQ1ZGNkYzRiOGU2OGE0MGU2NzVlYjMyNmI2 MjcxODMwYjczNzJjNGE4NDg3Y2QyNTA2ZjQ0OTE5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHAd+hihSeeRaJWamGDoAtV/ftn9fAg58ikR3lI82kawJU DcFKRqiwEfwK8lSpp5fXoZYcpCIyWbUCKENjFIHANpZd/H6YamFZrrvbVV+q5c2s lMm9XBCNRCyOxI7WXRyuSLAfiiGcMWjLy1rnS/sMAGrCYXYU73d4iDnYF6oZ+niz GP5DkWrtS1sXO+wMtC8lnBq0ReKRldFdiI3O0yyRj5a19cLsX6v6zF6uNGKd33PS kF2nELA7RIins8jyV6Bf6bB2JcsoRT/+yECgri6k+NNa8zlGWmiF6gb6UDjROLcR 2E6Er9oTc/UeQVTa8oZkb7UdWt7sobI3OYMgdOPvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDd5onZ0jUh1O9f1oWUswsF1Eog0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRlZjNkY2RmLTJhZjQtNGRmZC04NjY3LTE4MzI1NTU2ZWYyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBAFTLSzwG22hqnecz0gny5JHL RGi+p3NF3fmoAAuruk8zWgTL8O+kfdMtvvIpq9o9c2aYHDx3F/f29kanXVzT6NR8 13DCnbrJXWn9WaoElhbX+9j4xBKmGVczqIqTv+VUOMm+pvdn7gOlIi68ZuYsguNg nXHGqymlL/mp9XRZvOxjrSDmx71mVzxvnNKvJeZ2lc/mo5wv/SCf2X9gRJrpbut2 YqlRz26xXJzBsviU7fc6DBHOCR2gWOjXogko34HbQ2G/scUkA7rPMmL3p3r2jKdQ ZIpOLncdC8/GnsV9hdtHMJNyc2VmIX9np3eiN5os5guvy8VIhnZ/QUn0F5hSXy4= -----END CERTIFICATE-----Generated at Tue May 12 23:33:15 2026 by rpki-client