$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5fbd3b27-26aa-45ad-8f59-d53a6a248a88.roa File: 5fbd3b27-26aa-45ad-8f59-d53a6a248a88.roa (raw, json) Hash identifier: MoM2HkPqJPo7NPVdvHDPalDDJwA4Nli1XyC69ZAdvf4= Subject key identifier: 8A:E7:34:12:C6:77:84:44:95:FF:6E:8D:2C:DE:6E:D9:5A:4B:9F:86 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4E5ABA27025BD41B8DD40DCCEF9CDC2E642C8A0E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5fbd3b27-26aa-45ad-8f59-d53a6a248a88.roa Signing time: Mon 04 May 2026 15:10:38 +0000 ROA not before: Mon 04 May 2026 15:10:38 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:610c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:5a:ba:27:02:5b:d4:1b:8d:d4:0d:cc:ef:9c:dc:2e:64:2c:8a:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:38 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=aa296757ebd12f81a3f49a9049aad2ed16824e00d9e75e9e9c7e204b4d968828, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e7:de:cb:41:e7:0d:86:9a:d3:82:93:28:3a: fe:0a:11:14:19:b0:58:5a:72:75:3c:2d:c3:2d:83: 47:7c:11:44:dc:76:a6:41:a0:da:9d:12:25:34:3a: 60:83:2d:cb:d6:b4:f2:a3:61:ca:3f:b4:8c:10:05: e5:6d:88:45:bc:4f:2a:09:30:4a:17:5d:79:07:e5: 02:cf:24:9a:51:b6:43:6c:0c:0c:77:4c:13:66:b2: dd:0d:21:f4:9c:a0:af:b5:3a:8b:32:82:c2:03:de: 15:2f:15:17:ef:2b:7b:fb:16:ec:c7:9e:c9:48:3d: 11:79:f1:90:b6:9d:fa:d0:52:09:1c:7e:e2:0e:53: af:7f:bd:03:e3:86:a4:b8:61:89:88:5d:87:e8:1a: ee:76:08:dd:c9:8e:77:4c:90:fc:8c:bb:01:65:98: 8a:89:b1:1e:b9:68:ed:94:7b:4f:9e:7f:a3:68:82: be:0e:f3:4e:70:0c:e5:7a:b5:a3:2c:4b:e9:6e:d3: 64:4a:df:22:9d:83:56:4f:ea:76:4a:9f:ac:f3:9e: fb:18:bd:65:bb:66:9b:56:99:7f:45:f9:72:00:01: c3:f8:b4:0f:b8:5c:c7:a4:b2:93:21:d6:ac:32:1a: c5:d5:c9:be:1a:c8:42:f6:a0:11:c6:55:5f:57:63: 3a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E7:34:12:C6:77:84:44:95:FF:6E:8D:2C:DE:6E:D9:5A:4B:9F:86 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5fbd3b27-26aa-45ad-8f59-d53a6a248a88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610c::/48 Signature Algorithm: sha256WithRSAEncryption 39:8b:27:d5:62:ef:9d:67:5d:44:3e:96:74:65:39:08:aa:82: 11:b7:2d:eb:5a:5c:1e:27:ea:01:5a:e1:72:48:4b:82:78:ca: 3e:bc:68:76:13:ac:39:2f:a0:83:bc:bc:e6:57:7a:70:95:08: a0:50:db:5a:c4:c0:1b:33:d3:c8:e4:f0:b8:cc:cc:7c:34:d4: 93:c8:cf:18:05:f0:bd:48:3e:60:60:f9:28:f7:1d:7b:d2:ac: 42:ec:87:60:6c:f2:b8:89:de:75:c8:36:2f:84:ac:f1:77:a1: 65:8e:99:2f:76:5e:3b:c7:bd:2b:cc:b3:5e:47:b3:38:eb:73: e4:42:a8:20:fc:ec:03:04:23:65:2c:41:95:56:60:57:37:ff: b2:ab:d4:e4:82:b8:f8:4c:ef:cb:6a:6c:68:ab:56:b3:05:a6: a5:2a:20:bf:87:e0:5f:ce:38:d3:0f:6e:f2:45:01:fe:26:55: 03:27:0d:3b:82:bc:64:0a:c5:88:52:22:a0:ac:63:0e:c6:24: 10:ba:b3:45:0c:a2:00:1b:63:0f:27:f1:16:bb:43:a8:39:61: 70:fe:cd:1b:6f:47:37:13:93:8a:7b:ba:b5:e4:24:16:73:b6: 67:7d:ff:e5:c8:58:57:89:47:ca:e1:2f:17:82:f1:0f:59:e9: 3b:b3:f2:27 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTlq6JwJb1BuN1A3M75zcLmQsig4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDM4WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTI5Njc1N2ViZDEyZjgxYTNmNDlhOTA0OWFhZDJlZDE2 ODI0ZTAwZDllNzVlOWU5YzdlMjA0YjRkOTY4ODI4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG597LQecNhprTgpMoOv4KERQZsFhacnU8LcMtg0d8EUTc dqZBoNqdEiU0OmCDLcvWtPKjYco/tIwQBeVtiEW8TyoJMEoXXXkH5QLPJJpRtkNs DAx3TBNmst0NIfScoK+1OosygsID3hUvFRfvK3v7FuzHnslIPRF58ZC2nfrQUgkc fuIOU69/vQPjhqS4YYmIXYfoGu52CN3JjndMkPyMuwFlmIqJsR65aO2Ue0+ef6No gr4O805wDOV6taMsS+lu02RK3yKdg1ZP6nZKn6zznvsYvWW7ZptWmX9F+XIAAcP4 tA+4XMekspMh1qwyGsXVyb4ayEL2oBHGVV9XYzpxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUiuc0EsZ3hESV/26NLN5u2VpLn4YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzVmYmQzYjI3LTI2YWEtNDVhZC04ZjU5LWQ1M2E2YTI0OGE4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQwwDQYJKoZIhvcNAQELBQADggEBADmLJ9Vi751nXUQ+lnRlOQiq ghG3LetaXB4n6gFa4XJIS4J4yj68aHYTrDkvoIO8vOZXenCVCKBQ21rEwBsz08jk 8LjMzHw01JPIzxgF8L1IPmBg+Sj3HXvSrELsh2Bs8riJ3nXINi+ErPF3oWWOmS92 XjvHvSvMs15Hszjrc+RCqCD87AMEI2UsQZVWYFc3/7Kr1OSCuPhM78tqbGirVrMF pqUqIL+H4F/OONMPbvJFAf4mVQMnDTuCvGQKxYhSIqCsYw7GJBC6s0UMogAbYw8n 8Ra7Q6g5YXD+zRtvRzcTk4p7urXkJBZztmd9/+XIWFeJR8rhLxeC8Q9Z6Tuz8ic= -----END CERTIFICATE-----Generated at Tue May 12 23:40:42 2026 by rpki-client