$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa File: c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa (raw, json) Hash identifier: 63s3hCls3xRmArZyj2yj3qgt74YihucCyiLH9NSwXgU= Subject key identifier: 6A:92:37:6F:9C:E9:0D:FE:F8:A9:7C:DE:20:A8:11:82:C3:88:82:A0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4123CED35EBFAA137304C3C766538E2DF0D4AA1B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa Signing time: Mon 04 May 2026 15:10:05 +0000 ROA not before: Mon 04 May 2026 15:10:05 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:23:ce:d3:5e:bf:aa:13:73:04:c3:c7:66:53:8e:2d:f0:d4:aa:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:05 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=4df39498269e516e26cd880b5065755b79acb48bc44727dfc9e27aeed6140f35, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:45:6e:e7:60:bd:97:3d:1d:03:1a:0e:f8:ef: 55:e4:2b:84:50:59:22:41:1f:0c:0f:a4:1f:f6:db: 24:f8:68:a4:b8:1d:73:ea:b9:34:16:58:f0:87:69: cd:00:36:91:fa:7b:86:f5:ca:6b:35:bc:19:55:b6: 00:43:a3:8c:4c:f2:77:2c:1e:af:c5:ee:aa:79:2a: d6:b8:04:cc:60:14:7c:4b:24:66:30:5b:42:c9:f7: 4c:4e:43:f4:f9:b8:6b:14:59:c6:73:0c:8a:2a:f2: 80:e1:8c:ab:6e:b2:32:a2:a3:41:7e:e0:cc:9b:be: 8d:18:c9:75:53:42:d4:75:9d:ad:03:dd:ed:c2:d8: 59:59:4b:49:ae:54:10:ef:75:a8:1b:fa:a0:23:0e: f4:4f:ba:87:d7:70:50:e3:62:14:fa:4b:f4:56:f5: 87:d9:ee:c4:aa:66:ad:51:e5:8f:61:4a:5d:94:df: e7:92:12:ec:e2:67:6d:e5:a5:20:b6:f9:65:0a:bf: e0:df:05:d8:18:d6:92:b8:af:b6:21:fe:b7:22:10: 95:46:2f:c9:d0:32:20:26:de:71:12:e7:4e:8d:c3: fd:d0:24:d9:fd:54:65:74:fb:37:6b:dd:07:81:5e: 0b:7d:2f:15:11:eb:d5:dd:df:fa:d4:52:20:88:a6: 47:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:92:37:6F:9C:E9:0D:FE:F8:A9:7C:DE:20:A8:11:82:C3:88:82:A0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:100::/40 Signature Algorithm: sha256WithRSAEncryption 65:95:ec:2a:54:89:29:23:47:fc:63:ab:f8:bb:2e:5b:ac:95: 4d:2d:37:a3:77:88:2a:4b:ca:1b:ab:f3:e8:03:34:60:25:1f: 4d:9d:3c:74:ca:18:b5:5b:14:1a:f3:77:d2:0c:ff:67:8f:d7: 5a:e8:d7:49:de:c0:a2:39:c1:b9:b8:32:9f:eb:06:dd:9f:7e: a9:ed:75:44:ef:4d:a0:d3:c9:4f:cc:cf:85:08:11:4b:41:70: c4:d2:94:96:fa:7f:db:24:27:3d:5a:46:9b:22:de:82:81:64: d2:03:20:a4:e1:f9:25:2c:2b:1f:84:0b:c6:3b:3a:04:92:bc: 1f:f0:db:ac:aa:fc:6a:00:32:04:4a:bd:09:e7:52:c2:43:3d: 51:bd:61:a0:b5:d8:ae:34:d3:1b:28:33:7b:c9:6f:87:f5:3e: ed:4a:57:ad:1c:c2:81:58:cd:58:1a:7f:cc:25:29:5a:f0:2c: ed:d8:6d:8b:ed:e9:60:2c:c4:a6:e1:ba:e0:d2:3f:31:5b:53: ab:fb:50:48:24:04:06:ed:7e:3c:41:9b:35:7b:82:de:33:df: e7:0e:50:91:ae:43:fd:b6:ae:ca:a7:95:a9:7d:ad:dc:da:2d: fa:de:0e:b8:01:c7:8f:be:fa:92:f3:bb:89:3a:58:13:54:af: 14:e9:58:59 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQSPO016/qhNzBMPHZlOOLfDUqhswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDA1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZGYzOTQ5ODI2OWU1MTZlMjZjZDg4MGI1MDY1NzU1Yjc5 YWNiNDhiYzQ0NzI3ZGZjOWUyN2FlZWQ2MTQwZjM1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3RW7nYL2XPR0DGg7471XkK4RQWSJBHwwPpB/22yT4aKS4 HXPquTQWWPCHac0ANpH6e4b1yms1vBlVtgBDo4xM8ncsHq/F7qp5Kta4BMxgFHxL JGYwW0LJ90xOQ/T5uGsUWcZzDIoq8oDhjKtusjKio0F+4Mybvo0YyXVTQtR1na0D 3e3C2FlZS0muVBDvdagb+qAjDvRPuofXcFDjYhT6S/RW9YfZ7sSqZq1R5Y9hSl2U 3+eSEuziZ23lpSC2+WUKv+DfBdgY1pK4r7Yh/rciEJVGL8nQMiAm3nES506Nw/3Q JNn9VGV0+zdr3QeBXgt9LxUR69Xd3/rUUiCIpkcHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUapI3b5zpDf74qXzeIKgRgsOIgqAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5MWRjMTEwLWU0ZDYtNGE3OC05MGRjLTk0ZTRkMjA4M2M4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwATANBgkqhkiG9w0BAQsFAAOCAQEAZZXsKlSJKSNH/GOr+LsuW6yV TS03o3eIKkvKG6vz6AM0YCUfTZ08dMoYtVsUGvN30gz/Z4/XWujXSd7AojnBubgy n+sG3Z9+qe11RO9NoNPJT8zPhQgRS0FwxNKUlvp/2yQnPVpGmyLegoFk0gMgpOH5 JSwrH4QLxjs6BJK8H/DbrKr8agAyBEq9CedSwkM9Ub1hoLXYrjTTGygze8lvh/U+ 7UpXrRzCgVjNWBp/zCUpWvAs7dhti+3pYCzEpuG64NI/MVtTq/tQSCQEBu1+PEGb NXuC3jPf5w5Qka5D/bauyqeVqX2t3Not+t4OuAHHj776kvO7iTpYE1SvFOlYWQ== -----END CERTIFICATE-----Generated at Wed May 13 01:25:20 2026 by rpki-client