$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa File: 7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa (raw, json) Hash identifier: CXvEhBjYbrUk0bEEP4LtlSm28zfIaA1lxxGZ/olcZHo= Subject key identifier: C5:B2:3D:FC:07:A1:BD:FB:E0:6A:AE:AE:88:F9:D1:E5:5F:B0:D7:A6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 596743AB4FD38B8357C20FD970BE0E4A6DE65C96 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa Signing time: Mon 04 May 2026 15:00:12 +0000 ROA not before: Mon 04 May 2026 15:00:12 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:67:43:ab:4f:d3:8b:83:57:c2:0f:d9:70:be:0e:4a:6d:e6:5c:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:00:12 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=98db3ca8a0c09833a38434bebd199e2684de392e3531a3fde142cddd828d26c4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7d:3e:e2:51:2f:2b:4d:66:91:21:7a:44:50: fa:86:f6:a4:ef:ee:c3:b0:5d:e8:2f:31:72:fe:f3: 90:e0:11:a9:2e:4a:c9:65:65:5f:03:82:5b:74:02: c8:4f:51:f3:b1:15:44:42:10:0f:b6:06:15:b4:fd: 7d:06:2a:da:72:c5:5e:47:e0:43:7c:04:20:b9:a5: 15:89:c4:b1:1a:14:c0:c1:2d:74:70:25:f8:27:92: 16:18:90:2e:f9:27:ba:ed:20:c3:39:eb:cb:65:49: d8:51:56:51:bf:76:9f:d4:3c:11:0d:7f:03:da:e1: 40:a3:ef:04:6f:1b:ee:14:e2:80:d8:9d:38:16:e6: e6:9f:00:a1:4e:10:ed:7e:13:e8:df:bf:22:61:b1: f8:f3:ec:64:39:d0:2c:a8:0c:8e:7f:e4:53:7d:29: b2:28:0f:6f:7c:fe:d6:4e:b5:09:2f:30:d5:59:0b: f2:72:04:c5:2a:8b:5d:df:94:b3:8d:ea:4f:11:ba: 88:14:fa:04:35:9d:48:ad:f4:e6:bc:76:94:e0:90: f3:a7:e4:af:aa:18:08:19:ba:e3:94:bf:a0:7d:ca: 35:68:1a:b6:7d:58:da:f2:48:f0:02:4d:5b:b4:74: 70:39:48:8d:f7:de:2c:ff:0f:b7:1d:68:50:88:39: 7a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B2:3D:FC:07:A1:BD:FB:E0:6A:AE:AE:88:F9:D1:E5:5F:B0:D7:A6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:a::/47 Signature Algorithm: sha256WithRSAEncryption 4b:8d:9f:d6:67:09:c0:29:fa:83:94:00:f6:d8:ac:fd:24:1f: ee:24:a7:71:87:6e:31:75:70:50:94:f3:08:1e:32:e0:b0:b4: 3a:0c:66:8b:06:fd:e1:fa:7f:2d:3c:08:9c:1b:f2:31:17:5d: b8:68:d8:d1:c0:47:e6:49:77:28:1d:65:8b:5d:a6:36:4c:29: 78:5b:d5:72:4d:8b:b5:50:91:78:75:e0:b0:c4:f5:b0:16:09: f8:8c:93:d8:77:a1:ac:66:91:18:06:93:58:63:b4:87:99:73: 0a:5a:09:ff:0d:4c:dc:c7:ad:65:6a:23:e1:0d:24:08:0d:3c: e8:fc:90:08:df:bf:0a:b5:a1:e1:77:77:f4:a2:88:cf:87:5b: f4:6e:2c:ad:d0:7d:5d:3a:78:27:a2:57:d4:61:7c:d4:ae:63: 8d:c6:ca:04:e1:74:d5:0b:95:49:4e:65:17:bf:6c:0a:0c:cc: e8:52:36:43:68:b2:99:eb:be:12:2e:f5:be:41:74:8b:f5:35: 8c:b0:c6:01:79:1b:3b:a0:6a:8b:5b:ca:16:bc:3b:dd:1f:6b: c3:62:bb:59:53:13:9f:f9:e8:6e:b6:ef:7b:fd:e1:68:2a:18: 57:92:6f:8f:c5:b0:96:e2:b8:a6:99:9e:7a:f4:73:a2:58:91: e0:1b:b8:2c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWWdDq0/Ti4NXwg/ZcL4OSm3mXJYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUwMDEyWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OGRiM2NhOGEwYzA5ODMzYTM4NDM0YmViZDE5OWUyNjg0 ZGUzOTJlMzUzMWEzZmRlMTQyY2RkZDgyOGQyNmM0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkfT7iUS8rTWaRIXpEUPqG9qTv7sOwXegvMXL+85DgEaku SsllZV8Dglt0AshPUfOxFURCEA+2BhW0/X0GKtpyxV5H4EN8BCC5pRWJxLEaFMDB LXRwJfgnkhYYkC75J7rtIMM568tlSdhRVlG/dp/UPBENfwPa4UCj7wRvG+4U4oDY nTgW5uafAKFOEO1+E+jfvyJhsfjz7GQ50CyoDI5/5FN9KbIoD298/tZOtQkvMNVZ C/JyBMUqi13flLON6k8RuogU+gQ1nUit9Oa8dpTgkPOn5K+qGAgZuuOUv6B9yjVo GrZ9WNrySPACTVu0dHA5SI333iz/D7cdaFCIOXpNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxbI9/Aehvfvgaq6uiPnR5V+w16YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc5ODBkMmE5LTlhZDAtNDg3Yy04MmE1LTgzNGVjNWFmMGEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAAowDQYJKoZIhvcNAQELBQADggEBAEuNn9ZnCcAp+oOUAPbYrP0k H+4kp3GHbjF1cFCU8wgeMuCwtDoMZosG/eH6fy08CJwb8jEXXbho2NHAR+ZJdygd ZYtdpjZMKXhb1XJNi7VQkXh14LDE9bAWCfiMk9h3oaxmkRgGk1hjtIeZcwpaCf8N TNzHrWVqI+ENJAgNPOj8kAjfvwq1oeF3d/SiiM+HW/RuLK3QfV06eCeiV9RhfNSu Y43GygThdNULlUlOZRe/bAoMzOhSNkNospnrvhIu9b5BdIv1NYywxgF5Gzugaotb yha8O90fa8Niu1lTE5/56G6273v94WgqGFeSb4/FsJbiuKaZnnr0c6JYkeAbuCw= -----END CERTIFICATE-----Generated at Wed May 13 01:46:12 2026 by rpki-client