$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa File: 9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa (raw, json) Hash identifier: 90g4lHsAHT1NZNiR+tAWjLLRVp3MVZMrPbEnkPXWLqc= Subject key identifier: EE:30:B4:48:88:2F:46:A6:DC:9C:C7:FC:19:33:DE:DF:E3:98:C3:8F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4B7FD719C8E0CAEF5F82353D40157D21F7B56B8D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa Signing time: Mon 04 May 2026 15:10:05 +0000 ROA not before: Mon 04 May 2026 15:10:05 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:7f:d7:19:c8:e0:ca:ef:5f:82:35:3d:40:15:7d:21:f7:b5:6b:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:05 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=b8ef0eead3ba183049f87ec6ac60caa2dde362e73386727d0d001280cd6cf908, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:71:c7:6f:6b:df:64:78:b4:3f:46:6e:dc:8d: 1d:e3:e1:36:45:3c:1a:dc:3b:54:28:9a:cb:5b:eb: 41:47:00:24:19:ac:5f:3f:45:f4:af:39:43:b0:75: fb:2c:e4:53:fc:73:83:d2:47:97:c0:e9:25:7b:cb: 73:55:eb:48:0d:a2:f0:0a:2d:a8:7e:44:54:57:20: 17:08:f4:47:8b:6e:df:fa:98:2c:af:ac:8c:e3:5b: bf:fc:1e:fb:58:06:8a:60:26:48:74:ee:3b:e5:04: c3:e6:f8:56:3a:0d:61:66:45:1e:81:cd:28:74:da: 8c:a6:7f:c6:f5:6e:2a:4e:78:09:42:d5:09:af:db: be:da:88:2d:e3:5e:c1:7a:22:57:91:ec:80:36:b0: 87:39:a1:00:87:97:81:75:ed:58:4c:60:2b:d8:a9: f2:ef:ae:89:2d:f9:25:eb:5e:85:20:f3:5a:41:cf: 06:f3:d7:ff:a7:b1:8c:4c:df:0e:fa:76:9a:91:9e: 0e:19:05:f5:d9:68:46:6f:44:d8:14:2a:df:e0:7e: 2c:eb:c8:68:2b:e3:c4:24:bb:c1:c3:db:f6:11:00: ec:58:72:43:d0:84:d5:89:28:f1:93:38:83:ad:d4: 02:f6:9d:df:d7:58:9e:56:e0:e4:22:49:41:79:df: 11:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:30:B4:48:88:2F:46:A6:DC:9C:C7:FC:19:33:DE:DF:E3:98:C3:8F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 25:2e:ed:2e:44:55:6c:b3:aa:91:e9:2d:99:4c:2f:0d:c7:5c: a5:f3:6d:27:10:d9:49:3f:a7:30:2c:1f:dc:3d:ac:2c:d2:27: 9c:23:be:cd:52:df:cc:98:fc:ae:69:6b:73:1d:fd:93:b0:33: 8c:08:91:c0:13:6b:56:2f:0b:e6:11:ba:e1:fa:52:cb:2a:cf: 1e:4e:f8:0a:9a:6e:61:ec:a9:f8:f3:dd:77:a3:44:90:0e:2f: 8b:78:7b:8e:17:92:18:08:d6:a6:0d:9c:62:b0:12:0e:d9:fe: 24:bb:d4:28:83:59:cc:aa:33:9b:08:f2:b1:68:19:b4:c0:a9: 8d:bb:4f:9a:f4:03:56:c2:87:da:76:bc:67:aa:d4:6b:30:07: 3e:52:91:dd:5b:e5:d3:0b:f8:f8:48:9b:e9:93:d9:d9:5f:5b: 47:2a:66:14:c1:60:ee:17:4d:ef:ac:5d:c8:33:96:5e:a2:3c: ab:ad:f1:12:6b:ca:57:4a:fc:bc:c6:04:95:fe:25:fe:ce:df: 5d:83:94:b6:bb:8c:38:90:46:24:1d:0d:3b:33:71:15:c1:3f: f6:02:15:dd:82:c0:67:99:77:c1:e0:93:1a:b5:1f:91:f7:f2: e4:57:45:0a:7b:b5:01:5c:30:b9:9f:7d:59:97:02:ea:9b:2b: a6:83:39:08 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS3/XGcjgyu9fgjU9QBV9Ife1a40wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDA1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOGVmMGVlYWQzYmExODMwNDlmODdlYzZhYzYwY2FhMmRk ZTM2MmU3MzM4NjcyN2QwZDAwMTI4MGNkNmNmOTA4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzccdva99keLQ/Rm7cjR3j4TZFPBrcO1Qomstb60FHACQZ rF8/RfSvOUOwdfss5FP8c4PSR5fA6SV7y3NV60gNovAKLah+RFRXIBcI9EeLbt/6 mCyvrIzjW7/8HvtYBopgJkh07jvlBMPm+FY6DWFmRR6BzSh02oymf8b1bipOeAlC 1Qmv277aiC3jXsF6IleR7IA2sIc5oQCHl4F17VhMYCvYqfLvrokt+SXrXoUg81pB zwbz1/+nsYxM3w76dpqRng4ZBfXZaEZvRNgUKt/gfizryGgr48Qku8HD2/YRAOxY ckPQhNWJKPGTOIOt1AL2nd/XWJ5W4OQiSUF53xHRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7jC0SIgvRqbcnMf8GTPe3+OYw48wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3MzhiYjBkLTFhODQtNDYwMS1iYzZiLTI1YmE3ZjQ5YzcyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBACUu7S5EVWyzqpHpLZlMLw3H XKXzbScQ2Uk/pzAsH9w9rCzSJ5wjvs1S38yY/K5pa3Md/ZOwM4wIkcATa1YvC+YR uuH6Ussqzx5O+AqabmHsqfjz3XejRJAOL4t4e44XkhgI1qYNnGKwEg7Z/iS71CiD WcyqM5sI8rFoGbTAqY27T5r0A1bCh9p2vGeq1GswBz5Skd1b5dML+PhIm+mT2dlf W0cqZhTBYO4XTe+sXcgzll6iPKut8RJryldK/LzGBJX+Jf7O312DlLa7jDiQRiQd DTszcRXBP/YCFd2CwGeZd8Hgkxq1H5H38uRXRQp7tQFcMLmffVmXAuqbK6aDOQg= -----END CERTIFICATE-----Generated at Wed May 13 01:31:26 2026 by rpki-client