$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8e5237ea-75ca-4cdd-8c2f-e73681a3af5e.roa File: 8e5237ea-75ca-4cdd-8c2f-e73681a3af5e.roa (raw, json) Hash identifier: pphb0eQnu1+sYe2tN3HkYI1r/x1eTU1TeLYuKcKrMR4= Subject key identifier: DF:8E:0A:AF:0C:CA:6A:BE:8C:35:CE:4F:F6:B8:D1:1C:09:54:90:20 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 266246EA697E3F2EAB8F0BB73551CA87DFE80A84 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8e5237ea-75ca-4cdd-8c2f-e73681a3af5e.roa Signing time: Tue 28 Apr 2026 00:10:09 +0000 ROA not before: Tue 28 Apr 2026 00:10:09 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f2:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:62:46:ea:69:7e:3f:2e:ab:8f:0b:b7:35:51:ca:87:df:e8:0a:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 28 00:10:09 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=c4f55a1938f3abca3d25dd451e82d4f7a46fc9bfa39111ed20729a030f48d5b2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e4:dc:5e:72:25:97:be:0b:9c:86:d8:00:06: 98:75:0a:eb:ae:75:d0:e9:74:17:a8:4b:02:53:3e: ef:55:b7:cc:d5:f2:08:a2:a3:ee:08:36:42:ca:6d: 88:15:0a:9e:92:20:cd:cd:81:13:35:b6:e6:39:49: bc:ee:10:70:71:43:8d:31:7c:2e:c5:a8:c3:89:5d: 88:e7:e6:cc:be:7b:18:d4:31:ef:90:ef:87:59:8d: 37:d6:ac:76:98:a7:c6:ce:23:53:2b:20:74:e1:5e: 57:c9:30:19:25:ff:63:06:aa:b4:db:c3:ee:b4:3c: 5b:7e:9a:52:66:a5:8e:b0:d0:40:6b:4c:6d:f2:93: e3:5e:dc:d8:54:95:a3:d2:5d:0e:b1:87:26:78:78: 24:60:d6:f9:45:b3:2d:cc:69:9e:ac:26:81:1f:21: 7e:34:f6:24:91:07:5e:b9:84:9e:2c:27:4e:74:a0: 6c:6a:44:9b:c1:aa:7f:11:b8:c8:c3:13:d3:68:2e: 01:2c:86:00:49:c1:e9:66:5f:b5:a3:36:45:e7:fc: 83:c1:4e:ce:41:45:83:87:ad:0a:df:f1:15:62:09: fb:bd:3e:b3:4c:c4:54:ad:9f:68:25:b4:56:d6:2c: ca:52:79:e2:0c:04:0d:e3:9c:8e:2b:b7:67:19:32: 6d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:8E:0A:AF:0C:CA:6A:BE:8C:35:CE:4F:F6:B8:D1:1C:09:54:90:20 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8e5237ea-75ca-4cdd-8c2f-e73681a3af5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7140::/48 Signature Algorithm: sha256WithRSAEncryption 80:fb:24:9c:b6:e3:3e:fd:04:c0:db:92:e8:30:ff:15:c6:3b: ee:db:09:f5:09:5a:61:fa:4c:30:97:14:44:28:7f:ca:19:42: 00:72:dd:ef:d2:32:df:62:77:69:3f:42:d9:f7:e4:36:ef:dd: 95:61:0d:37:ee:79:bd:a7:fd:e7:f0:4a:f0:8e:09:85:c2:b0: d5:61:5b:0b:0a:12:ad:66:36:f4:8c:68:41:66:bd:03:73:94: fc:ea:e6:3b:09:61:e1:78:d1:dd:9f:83:e6:d9:c1:71:8b:3d: 51:6f:78:cc:6e:95:66:b9:5a:fe:36:2d:c2:f9:ef:14:7f:d9: 61:d5:0c:b0:92:06:d5:87:01:bb:f6:f5:bd:b5:2b:8a:53:30: 6c:c9:39:a8:50:fa:a9:28:af:3a:16:44:84:91:de:84:13:4c: 46:8c:74:26:bc:e7:af:ec:08:8e:17:dd:6f:a7:39:f0:09:86: f7:eb:f7:c1:a8:99:a8:9a:37:1a:f5:46:5b:11:4c:58:4e:5c: 29:b5:c2:68:aa:09:71:12:c6:bb:4e:7e:fe:bb:af:13:fb:1b: 35:c2:69:b7:90:82:e2:1c:da:ca:ca:a6:0a:a2:a4:5f:ae:59: fb:88:09:31:a4:cc:35:fe:08:51:f4:8b:01:05:dd:4f:cf:15: 30:df:e5:2f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJmJG6ml+Py6rjwu3NVHKh9/oCoQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDI4MDAxMDA5WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNGY1NWExOTM4ZjNhYmNhM2QyNWRkNDUxZTgyZDRmN2E0 NmZjOWJmYTM5MTExZWQyMDcyOWEwMzBmNDhkNWIyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC45NxeciWXvguchtgABph1CuuuddDpdBeoSwJTPu9Vt8zV 8giio+4INkLKbYgVCp6SIM3NgRM1tuY5SbzuEHBxQ40xfC7FqMOJXYjn5sy+exjU Me+Q74dZjTfWrHaYp8bOI1MrIHThXlfJMBkl/2MGqrTbw+60PFt+mlJmpY6w0EBr TG3yk+Ne3NhUlaPSXQ6xhyZ4eCRg1vlFsy3MaZ6sJoEfIX409iSRB165hJ4sJ050 oGxqRJvBqn8RuMjDE9NoLgEshgBJwelmX7WjNkXn/IPBTs5BRYOHrQrf8RViCfu9 PrNMxFStn2gltFbWLMpSeeIMBA3jnI4rt2cZMm1TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU344KrwzKar6MNc5P9rjRHAlUkCAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhlNTIzN2VhLTc1Y2EtNGNkZC04YzJmLWU3MzY4MWEzYWY1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycUAwDQYJKoZIhvcNAQELBQADggEBAID7JJy24z79BMDbkugw/xXG O+7bCfUJWmH6TDCXFEQof8oZQgBy3e/SMt9id2k/Qtn35Dbv3ZVhDTfueb2n/efw SvCOCYXCsNVhWwsKEq1mNvSMaEFmvQNzlPzq5jsJYeF40d2fg+bZwXGLPVFveMxu lWa5Wv42LcL57xR/2WHVDLCSBtWHAbv29b21K4pTMGzJOahQ+qkorzoWRISR3oQT TEaMdCa856/sCI4X3W+nOfAJhvfr98GomaiaNxr1RlsRTFhOXCm1wmiqCXESxrtO fv67rxP7GzXCabeQguIc2srKpgqipF+uWfuICTGkzDX+CFH0iwEF3U/PFTDf5S8= -----END CERTIFICATE-----Generated at Wed May 13 00:38:45 2026 by rpki-client