$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa File: 657ed07e-fe87-4071-8960-e0b18e49fe3c.roa (raw, json) Hash identifier: wk0boxYgh5G81WHIMYnpKW/v74mHXRhUAqJtaFb1eYY= Subject key identifier: 45:7F:CB:BD:DD:3C:A3:5D:9C:72:7C:18:48:1B:5D:8C:D4:F4:41:68 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7E149CF0203E806D95706BF91ED5914704FBEAD5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa Signing time: Mon 27 Apr 2026 00:30:10 +0000 ROA not before: Mon 27 Apr 2026 00:30:10 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:14:9c:f0:20:3e:80:6d:95:70:6b:f9:1e:d5:91:47:04:fb:ea:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 27 00:30:10 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=5380188d4585e9061a33a2d4bff9577352c8766e4b69e06591552d330b15e8cf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:9e:32:bd:71:81:99:38:05:e5:95:33:e6:04: 66:f2:04:9f:9b:e7:4a:46:a8:d5:d4:cc:07:e4:55: 33:ee:4e:b7:75:fb:09:c2:7e:3e:20:92:b5:39:f4: a0:76:83:e6:00:33:6a:eb:97:b1:bb:d0:f3:a3:ad: a6:be:bd:81:e6:bf:76:a8:69:80:d5:fe:90:9b:04: 65:9b:51:9c:d4:ba:29:76:d5:75:49:d9:89:02:8c: 10:ad:10:50:da:d2:fc:ed:61:16:9f:3a:0f:2c:d2: e6:68:81:9c:c4:fd:dd:fa:a8:12:31:c2:0a:11:d6: 17:58:a6:b0:eb:55:7b:e7:36:0d:65:76:af:9c:2e: fd:93:94:ef:db:20:51:4f:ee:4e:58:33:c1:9a:73: a7:93:c3:18:a5:f1:75:ac:1c:f1:92:39:29:5b:57: a2:41:6a:f3:6b:29:66:fc:c0:be:e4:79:e5:f8:03: de:83:e9:58:d9:c4:be:95:0c:73:23:19:2e:19:57: ea:56:78:c2:a6:90:a7:e2:38:60:b4:9e:83:d8:7e: 38:81:e7:e4:be:02:c4:d2:77:d7:07:22:98:00:05: 60:cf:f9:0f:7e:0a:c4:eb:02:cd:97:90:7d:98:e0: af:a1:26:39:01:56:8d:08:82:1a:7c:69:5a:ab:48: ca:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:7F:CB:BD:DD:3C:A3:5D:9C:72:7C:18:48:1B:5D:8C:D4:F4:41:68 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 56:f5:46:18:82:6c:8a:cd:ed:05:25:9b:e0:8e:04:b3:ec:96: 2a:3f:c1:e1:62:12:6e:da:0b:50:be:da:0c:e4:17:c1:9c:9d: a1:15:4a:63:92:e4:2b:da:9e:94:18:7f:b6:09:5f:c8:8a:6d: b6:6c:c1:91:36:ad:ff:7d:0b:19:53:09:33:45:fe:55:02:d3: 05:dd:6b:b5:08:79:d5:0b:b7:28:dc:e8:f8:7a:0b:cc:04:7e: ef:2a:76:70:1c:83:da:74:b1:37:64:49:f9:ac:6d:04:a6:44: 18:fa:ef:e2:25:be:d7:52:ad:64:94:cd:bb:fd:50:c5:b5:ca: fb:f7:6e:30:60:e2:26:56:68:33:3d:19:48:da:bf:7d:9a:41: a9:5f:be:59:00:fa:b6:24:ae:aa:b1:98:04:29:1e:b5:25:1c: 00:84:8b:75:28:ad:7c:fb:3a:f7:d4:0b:37:2d:4b:e3:d6:6c: df:f5:41:47:3e:2f:b3:af:59:35:89:43:a4:91:42:e8:49:37: 1b:39:bd:6e:d9:8f:cb:4e:7e:73:0a:b6:4a:77:84:15:f4:f0: a7:24:19:d4:59:1c:c2:ac:49:56:ef:3a:43:82:06:69:d5:4e: 27:09:9a:26:7c:f9:83:c6:23:33:7c:f5:11:aa:3d:98:d5:eb: 5b:cc:2e:fd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfhSc8CA+gG2VcGv5HtWRRwT76tUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDI3MDAzMDEwWhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MzgwMTg4ZDQ1ODVlOTA2MWEzM2EyZDRiZmY5NTc3MzUy Yzg3NjZlNGI2OWUwNjU5MTU1MmQzMzBiMTVlOGNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWnjK9cYGZOAXllTPmBGbyBJ+b50pGqNXUzAfkVTPuTrd1 +wnCfj4gkrU59KB2g+YAM2rrl7G70POjraa+vYHmv3aoaYDV/pCbBGWbUZzUuil2 1XVJ2YkCjBCtEFDa0vztYRafOg8s0uZogZzE/d36qBIxwgoR1hdYprDrVXvnNg1l dq+cLv2TlO/bIFFP7k5YM8Gac6eTwxil8XWsHPGSOSlbV6JBavNrKWb8wL7keeX4 A96D6VjZxL6VDHMjGS4ZV+pWeMKmkKfiOGC0noPYfjiB5+S+AsTSd9cHIpgABWDP +Q9+CsTrAs2XkH2Y4K+hJjkBVo0Ighp8aVqrSMqjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURX/Lvd08o12ccnwYSBtdjNT0QWgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY1N2VkMDdlLWZlODctNDA3MS04OTYwLWUwYjE4ZTQ5ZmUzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAVvVGGIJsis3tBSWb4I4Es+yW Kj/B4WISbtoLUL7aDOQXwZydoRVKY5LkK9qelBh/tglfyIpttmzBkTat/30LGVMJ M0X+VQLTBd1rtQh51Qu3KNzo+HoLzAR+7yp2cByD2nSxN2RJ+axtBKZEGPrv4iW+ 11KtZJTNu/1QxbXK+/duMGDiJlZoMz0ZSNq/fZpBqV++WQD6tiSuqrGYBCketSUc AISLdSitfPs699QLNy1L49Zs3/VBRz4vs69ZNYlDpJFC6Ek3Gzm9btmPy05+cwq2 SneEFfTwpyQZ1FkcwqxJVu86Q4IGadVOJwmaJnz5g8YjM3z1Eao9mNXrW8wu/Q== -----END CERTIFICATE-----Generated at Tue May 12 23:52:39 2026 by rpki-client