$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa File: 514fa870-df33-4dfe-a228-5ea96e0f3560.roa (raw, json) Hash identifier: fi9Gq+CKY/pddSkcpznmCPwhnLtEPHz/gko68u7aWYk= Subject key identifier: 35:33:1B:C9:34:1B:47:92:5C:D2:07:9A:6E:8F:D8:55:1E:92:07:B2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 418EBEB5AB183E4784D4A78A871EB7AB1D1FC590 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa Signing time: Tue 28 Apr 2026 00:10:08 +0000 ROA not before: Tue 28 Apr 2026 00:10:08 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:8e:be:b5:ab:18:3e:47:84:d4:a7:8a:87:1e:b7:ab:1d:1f:c5:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 28 00:10:08 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=8b14d06aadbd58f90a1332c6337ffe98c05e8547f613d13d3cc08dce1b41c313, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:6c:cb:23:63:ae:94:71:0e:26:61:b2:ae:69: 2e:b6:b5:e2:59:af:7f:a7:9e:6d:62:41:19:98:f3: d7:03:77:a9:b6:b0:c5:eb:36:99:ec:a0:60:fa:51: 7f:e9:17:52:7e:3d:d1:5a:4c:dc:38:7f:55:30:ac: 50:8e:c6:23:36:18:3a:62:3d:0d:7d:d4:49:be:58: 6c:25:a3:7d:03:a8:55:cc:db:cb:f3:14:e1:90:04: 89:f8:af:a2:00:d2:1f:f6:23:7d:fa:68:d6:6f:4c: 98:a1:50:f8:40:4f:b4:1e:77:c4:ef:7a:1d:85:ce: e6:49:08:35:06:ee:07:ae:77:5d:a7:41:88:dd:a2: ad:80:2b:49:a8:35:e7:6f:a4:91:b4:da:1c:f8:d2: 0a:23:27:f2:ef:f1:3e:62:62:4a:53:11:f3:65:04: 19:d5:fc:7f:cc:a3:00:f6:1e:a7:a2:42:fd:a0:09: 27:05:6d:cb:ee:11:02:fa:2b:50:e0:c2:c9:b0:7c: 92:16:70:3c:2d:1e:35:60:1a:15:3f:bb:c5:8b:10: a8:00:ca:80:28:b1:13:0d:15:58:52:03:cf:3c:f4: 75:dd:b7:1d:5a:9c:39:56:07:2d:29:d2:c5:6b:5a: 91:5d:8a:8e:b1:c3:2b:21:53:2e:f6:01:7d:c5:38: c9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:33:1B:C9:34:1B:47:92:5C:D2:07:9A:6E:8F:D8:55:1E:92:07:B2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 78:5b:97:9e:87:59:0d:ce:d0:27:3d:1f:fe:49:f9:54:0d:c6: 10:b1:10:d7:3d:3d:fa:0c:ed:f8:8e:15:7f:6e:0f:0c:d4:f4: 48:1f:40:a6:00:26:f9:4c:79:73:68:28:92:6f:5e:86:2a:08: 66:e2:19:fb:cf:65:ac:34:49:2b:10:8c:1e:43:b5:aa:ad:3a: 93:6e:67:8a:f0:8f:dc:a4:4d:bc:08:49:dd:b1:75:87:22:fa: b5:1b:aa:b5:8b:3b:51:38:15:df:04:74:51:f8:28:00:6e:4d: 71:5a:0c:0d:f6:93:5b:28:6c:e9:33:5d:c2:a2:0e:aa:73:1c: f9:ab:5f:16:50:84:21:a8:3b:d0:53:d3:cf:d3:3a:80:40:a5: 1f:d5:b4:ec:1f:86:0f:7c:51:20:42:62:78:58:3e:96:8a:c7: a0:11:cc:2b:8f:4a:5c:9e:a7:f4:9d:a2:4e:42:2d:6a:f1:a4: 60:6a:ca:fd:77:e5:8e:bc:9d:d4:02:d3:8a:14:75:23:77:52: 55:f5:38:5a:57:7b:94:a7:9d:e6:0a:4f:0b:5f:e1:0e:41:57: 1c:ef:34:7a:1b:1a:d7:88:e2:e4:6a:56:27:09:35:bb:70:78: 00:0b:90:71:b8:0e:e4:af:ee:16:0e:7e:a1:fd:86:3e:4e:65: ac:33:11:a1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQY6+tasYPkeE1KeKhx63qx0fxZAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDI4MDAxMDA4WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjE0ZDA2YWFkYmQ1OGY5MGExMzMyYzYzMzdmZmU5OGMw NWU4NTQ3ZjYxM2QxM2QzY2MwOGRjZTFiNDFjMzEzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfbMsjY66UcQ4mYbKuaS62teJZr3+nnm1iQRmY89cDd6m2 sMXrNpnsoGD6UX/pF1J+PdFaTNw4f1UwrFCOxiM2GDpiPQ191Em+WGwlo30DqFXM 28vzFOGQBIn4r6IA0h/2I336aNZvTJihUPhAT7Qed8Tveh2FzuZJCDUG7geud12n QYjdoq2AK0moNedvpJG02hz40gojJ/Lv8T5iYkpTEfNlBBnV/H/MowD2HqeiQv2g CScFbcvuEQL6K1DgwsmwfJIWcDwtHjVgGhU/u8WLEKgAyoAosRMNFVhSA8889HXd tx1anDlWBy0p0sVrWpFdio6xwyshUy72AX3FOMmBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNTMbyTQbR5Jc0geabo/YVR6SB7IwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUxNGZhODcwLWRmMzMtNGRmZS1hMjI4LTVlYTk2ZTBmMzU2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBAHhbl56HWQ3O0Cc9H/5J+VQN xhCxENc9PfoM7fiOFX9uDwzU9EgfQKYAJvlMeXNoKJJvXoYqCGbiGfvPZaw0SSsQ jB5DtaqtOpNuZ4rwj9ykTbwISd2xdYci+rUbqrWLO1E4Fd8EdFH4KABuTXFaDA32 k1sobOkzXcKiDqpzHPmrXxZQhCGoO9BT08/TOoBApR/VtOwfhg98USBCYnhYPpaK x6ARzCuPSlyep/Sdok5CLWrxpGBqyv135Y68ndQC04oUdSN3UlX1OFpXe5SnneYK Twtf4Q5BVxzvNHobGteI4uRqVicJNbtweAALkHG4DuSv7hYOfqH9hj5OZawzEaE= -----END CERTIFICATE-----Generated at Tue May 12 22:18:45 2026 by rpki-client