$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5f9da082-c31f-421c-897d-e746677541ef.roa File: 5f9da082-c31f-421c-897d-e746677541ef.roa (raw, json) Hash identifier: Si+rYuup5tcjHAJtGaDCMyrkj8rBQR+yCdYl3+omYYs= Subject key identifier: 67:8C:39:6F:9A:85:C0:76:75:39:E6:C2:4D:B0:25:F9:ED:48:B9:05 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5BF36B3A7FBC882DCD36BD6FD75E67F0C988B540 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5f9da082-c31f-421c-897d-e746677541ef.roa Signing time: Fri 08 May 2026 03:10:38 +0000 ROA not before: Fri 08 May 2026 03:10:38 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:400::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:f3:6b:3a:7f:bc:88:2d:cd:36:bd:6f:d7:5e:67:f0:c9:88:b5:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 8 03:10:38 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=fd8a63218ba2b66bb7f8ea8db157a84c8349a9522ee81f830790fed7884b9694, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:4f:17:18:a4:77:6e:45:e4:06:19:97:9d:85: f1:65:d6:a3:6f:d8:e3:10:34:d2:db:08:ac:b2:cc: a4:f8:eb:fe:19:1b:a6:d7:28:d9:12:7d:d5:42:0e: 02:9f:0d:ff:e0:ef:25:ac:f9:82:aa:3c:c4:d5:8e: 1d:11:2f:55:45:1c:f7:94:5b:0c:1b:8b:20:8f:b7: f7:e6:5b:24:97:f1:63:5d:ec:a7:45:a8:8d:67:82: e1:c2:ac:36:99:69:a4:cf:ca:66:44:ad:f8:45:a7: 6f:2d:6a:69:83:3a:4f:f4:75:47:21:7c:7a:2a:b8: 4e:b5:dc:3d:8d:97:63:d0:f9:c5:be:64:f0:b4:0d: 33:ea:a2:b1:37:47:44:60:b2:8b:dd:cf:57:0e:c9: 26:5e:08:b4:59:c5:61:d4:a3:76:f0:39:b0:f5:33: 85:6e:00:1a:9e:ed:0d:55:b3:95:e0:15:58:1c:71: c0:d1:2c:72:b4:97:2a:26:c6:01:0a:ed:01:fa:66: ab:71:77:f8:93:5e:5c:bd:f6:06:e1:79:08:51:64: 41:11:0e:1a:5d:2e:2c:71:bf:47:d1:c9:4e:58:b2: 27:58:0a:ce:88:5d:d9:fc:29:a7:96:c7:39:0a:ff: a1:b1:92:43:b1:31:af:5d:99:3d:60:aa:e8:da:6a: bc:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:8C:39:6F:9A:85:C0:76:75:39:E6:C2:4D:B0:25:F9:ED:48:B9:05 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5f9da082-c31f-421c-897d-e746677541ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:400::/44 Signature Algorithm: sha256WithRSAEncryption 46:da:58:3b:f5:34:8d:6d:40:cc:28:e8:3a:06:84:bf:c1:e1: f5:b9:c2:57:72:ba:e0:c4:ee:c6:0d:dc:09:3a:36:25:92:ef: 14:1e:bd:a0:04:bc:92:e1:34:1c:5d:b3:60:6e:31:da:20:93: a3:28:16:99:7a:eb:50:5c:8f:6c:43:c4:93:06:8d:d7:d4:30: 69:24:2e:4a:8a:34:77:93:a8:0d:84:a1:5f:1f:fc:cd:39:4f: 50:30:78:16:36:0d:aa:2b:e4:79:1e:92:e4:5d:39:5b:b3:81: 21:2e:29:c8:af:25:b6:62:ab:b2:d5:1b:32:81:9c:3b:e5:40: cf:ac:fd:9e:9f:6f:3e:cb:61:6b:b3:03:ee:ea:22:55:87:d5: 26:cb:00:76:2a:9c:4b:16:8c:6a:55:0a:92:e8:e1:e1:e2:50: dd:64:ec:11:ba:f7:2b:24:0f:d1:8a:14:f2:61:dd:cb:99:c2: d3:78:72:56:f8:d0:ba:bd:82:a1:2c:26:20:6d:35:ff:3b:d0: dd:1e:61:24:73:bb:84:9b:91:c7:40:35:bc:fb:e2:a3:0e:0f: 04:c8:ab:37:68:7d:74:df:5d:54:17:07:b8:01:98:02:2f:20: d0:a4:cf:61:66:40:99:a4:e9:25:ba:3c:98:c2:88:88:90:19: 8b:3f:52:78 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW/NrOn+8iC3NNr1v115n8MmItUAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA4MDMxMDM4WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDhhNjMyMThiYTJiNjZiYjdmOGVhOGRiMTU3YTg0Yzgz NDlhOTUyMmVlODFmODMwNzkwZmVkNzg4NGI5Njk0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjTxcYpHduReQGGZedhfFl1qNv2OMQNNLbCKyyzKT46/4Z G6bXKNkSfdVCDgKfDf/g7yWs+YKqPMTVjh0RL1VFHPeUWwwbiyCPt/fmWySX8WNd 7KdFqI1nguHCrDaZaaTPymZErfhFp28tammDOk/0dUchfHoquE613D2Nl2PQ+cW+ ZPC0DTPqorE3R0Rgsovdz1cOySZeCLRZxWHUo3bwObD1M4VuABqe7Q1Vs5XgFVgc ccDRLHK0lyomxgEK7QH6Zqtxd/iTXly99gbheQhRZEERDhpdLixxv0fRyU5YsidY Cs6IXdn8KaeWxzkK/6GxkkOxMa9dmT1gqujaarzBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZ4w5b5qFwHZ1OebCTbAl+e1IuQUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzVmOWRhMDgyLWMzMWYtNDIxYy04OTdkLWU3NDY2Nzc1NDFlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwBAAwDQYJKoZIhvcNAQELBQADggEBAEbaWDv1NI1tQMwo6DoGhL/B 4fW5wldyuuDE7sYN3Ak6NiWS7xQevaAEvJLhNBxds2BuMdogk6MoFpl661Bcj2xD xJMGjdfUMGkkLkqKNHeTqA2EoV8f/M05T1AweBY2Daor5HkekuRdOVuzgSEuKciv JbZiq7LVGzKBnDvlQM+s/Z6fbz7LYWuzA+7qIlWH1SbLAHYqnEsWjGpVCpLo4eHi UN1k7BG69yskD9GKFPJh3cuZwtN4clb40Lq9gqEsJiBtNf870N0eYSRzu4SbkcdA Nbz74qMODwTIqzdofXTfXVQXB7gBmAIvINCkz2FmQJmk6SW6PJjCiIiQGYs/Ung= -----END CERTIFICATE-----Generated at Wed May 13 01:33:03 2026 by rpki-client