$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da111c82-234c-46a2-a1ef-e848103120cb.roa File: da111c82-234c-46a2-a1ef-e848103120cb.roa (raw, json) Hash identifier: 825/diCwjZU49FJ6ljT12I93nbjA1VLsKvV2jFARrj8= Subject key identifier: 84:20:87:2C:31:D3:CF:D1:C7:0D:4A:9D:0C:86:3A:14:2B:EE:0C:CF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1789C296D98D26E3D0B01552C3280D3B5C2F4C58 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da111c82-234c-46a2-a1ef-e848103120cb.roa Signing time: Sat 02 May 2026 00:20:03 +0000 ROA not before: Sat 02 May 2026 00:20:03 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:110::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:89:c2:96:d9:8d:26:e3:d0:b0:15:52:c3:28:0d:3b:5c:2f:4c:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 2 00:20:03 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=ff7717959cfa1cb0681c99110f1ec47d30a540e9c03c8030f8d15ddbc93c2a2c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:d2:9e:72:2a:93:27:ee:93:6f:19:57:04:fe: 1d:20:b4:04:57:b4:03:36:54:27:35:60:3f:85:52: 49:14:c6:0b:02:b4:43:13:d4:05:7b:1c:8e:65:de: eb:cb:12:d1:53:14:92:f3:dd:8d:e5:7c:1b:bb:24: 2b:9e:4a:7c:eb:2f:5f:9e:49:fc:c7:47:bd:a6:b4: da:b3:c9:cc:5f:f6:9b:05:a0:c9:a4:77:2c:01:be: d5:5f:88:bc:5b:c6:ac:5f:d3:2d:41:2c:2d:1d:3a: 41:79:f2:fc:47:f2:90:d5:68:93:b8:15:dd:bc:bb: 51:07:3c:b0:cb:82:30:fd:2b:f2:4d:c2:3a:fe:0f: b4:ec:c0:f3:05:d9:b1:ae:09:f2:1f:d6:5c:7a:e0: fb:a4:a0:dc:19:eb:97:ba:f4:26:3e:f4:bb:32:e8: 1f:8a:72:3e:b3:3f:95:26:8e:b9:20:21:96:40:2b: 63:ca:72:68:2d:b7:93:65:e4:cb:4a:9c:b1:6a:e3: 85:57:4c:30:51:7d:d7:f9:a1:e3:26:72:d2:88:42: a1:16:4c:17:97:e6:cf:96:8d:3b:90:c5:28:00:06: e5:9e:66:a1:b3:55:a1:7d:4b:ac:ec:8d:51:ed:e0: e9:d2:09:70:a1:91:7e:d2:22:f2:e8:3c:78:9c:c2: b9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:20:87:2C:31:D3:CF:D1:C7:0D:4A:9D:0C:86:3A:14:2B:EE:0C:CF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da111c82-234c-46a2-a1ef-e848103120cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:110::/47 Signature Algorithm: sha256WithRSAEncryption 8e:3d:83:fb:00:ae:70:63:43:5e:a7:89:12:48:9b:5b:ae:a6: e0:4b:31:25:dd:5a:b6:5b:b2:29:12:c2:d4:7d:6f:32:f1:94: e1:b1:e4:c6:42:ea:99:0d:a0:7e:2d:86:7a:c3:c3:60:26:10: 1b:a9:f3:55:7d:cf:ca:39:4b:1a:e0:64:22:39:8b:d2:c3:bc: c0:64:df:1d:04:cd:20:24:58:b8:50:5a:12:e7:9d:9d:b8:cc: f1:60:b2:3f:5b:0e:34:b7:45:4a:15:9e:b0:32:fc:4b:a2:26: ce:a3:91:2e:b5:17:3f:a5:9d:e9:0e:00:c4:73:63:ad:d0:45: 6d:62:06:32:89:03:dc:a8:45:05:67:eb:b1:b2:11:89:5f:bc: 76:fd:f4:5e:47:7b:68:e1:e6:4b:98:f5:0e:23:97:e5:07:b7: d0:c2:78:a9:55:7f:94:82:75:32:0b:c0:fa:05:63:79:bf:b2: 8f:f0:dc:4f:e1:ab:84:9e:e9:20:f2:37:30:28:8e:ad:eb:fd: 02:06:92:d5:df:18:97:da:e8:42:c2:c1:06:81:53:d5:11:b6: 71:72:4d:29:d1:dc:1c:23:b1:4f:dc:9c:a6:80:ac:c2:b2:a3: e1:9a:2d:46:a1:42:53:aa:40:a6:31:67:5f:aa:ba:10:5b:d8: b4:47:26:2f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUF4nCltmNJuPQsBVSwygNO1wvTFgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTAyMDAyMDAzWhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjc3MTc5NTljZmExY2IwNjgxYzk5MTEwZjFlYzQ3ZDMw YTU0MGU5YzAzYzgwMzBmOGQxNWRkYmM5M2MyYTJjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCL0p5yKpMn7pNvGVcE/h0gtARXtAM2VCc1YD+FUkkUxgsC tEMT1AV7HI5l3uvLEtFTFJLz3Y3lfBu7JCueSnzrL1+eSfzHR72mtNqzycxf9psF oMmkdywBvtVfiLxbxqxf0y1BLC0dOkF58vxH8pDVaJO4Fd28u1EHPLDLgjD9K/JN wjr+D7TswPMF2bGuCfIf1lx64PukoNwZ65e69CY+9Lsy6B+Kcj6zP5UmjrkgIZZA K2PKcmgtt5Nl5MtKnLFq44VXTDBRfdf5oeMmctKIQqEWTBeX5s+WjTuQxSgABuWe ZqGzVaF9S6zsjVHt4OnSCXChkX7SIvLoPHicwrm1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhCCHLDHTz9HHDUqdDIY6FCvuDM8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMTExYzgyLTIzNGMtNDZhMi1hMWVmLWU4NDgxMDMxMjBjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwARAwDQYJKoZIhvcNAQELBQADggEBAI49g/sArnBjQ16niRJIm1uu puBLMSXdWrZbsikSwtR9bzLxlOGx5MZC6pkNoH4thnrDw2AmEBup81V9z8o5Sxrg ZCI5i9LDvMBk3x0EzSAkWLhQWhLnnZ24zPFgsj9bDjS3RUoVnrAy/EuiJs6jkS61 Fz+lnekOAMRzY63QRW1iBjKJA9yoRQVn67GyEYlfvHb99F5He2jh5kuY9Q4jl+UH t9DCeKlVf5SCdTILwPoFY3m/so/w3E/hq4Se6SDyNzAojq3r/QIGktXfGJfa6ELC wQaBU9URtnFyTSnR3BwjsU/cnKaArMKyo+GaLUahQlOqQKYxZ1+quhBb2LRHJi8= -----END CERTIFICATE-----Generated at Wed May 13 01:25:29 2026 by rpki-client