$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e5130f6a-90a1-43ff-b77c-c445dab7e20b.roa File: e5130f6a-90a1-43ff-b77c-c445dab7e20b.roa (raw, json) Hash identifier: w/LkghAUmhUfVgJCy32C7fCMC2hlhj9rj3bDzmmqPM8= Subject key identifier: 51:B6:FE:33:0C:0E:D7:E8:4D:FA:35:9D:D8:29:6A:00:90:B7:C1:73 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3FEB2AE812ABD84F457C5ADA3E8CE8B2620B564F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e5130f6a-90a1-43ff-b77c-c445dab7e20b.roa Signing time: Fri 08 May 2026 03:10:40 +0000 ROA not before: Fri 08 May 2026 03:10:40 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:400::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:eb:2a:e8:12:ab:d8:4f:45:7c:5a:da:3e:8c:e8:b2:62:0b:56:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 8 03:10:40 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=239f63ecc9015b0558780934c4faf5328d6a865af1892f8731ba2a4c824955bc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:19:96:57:19:bc:e3:a4:f3:18:02:ef:89:a6: 1d:71:99:a8:4b:f2:65:d5:5e:87:cb:c0:5e:32:6c: cc:53:8d:9e:ae:6b:37:99:fe:49:b9:dc:b3:05:b0: c6:c0:72:02:56:81:0e:46:5b:32:f5:23:5f:5c:82: 5d:26:23:b7:13:e9:c5:c0:37:d2:28:61:6f:a7:2b: 44:8b:f2:7c:4b:6f:df:23:ef:65:4b:32:4b:f9:cd: 62:ca:53:71:6d:01:89:dd:98:4a:2e:56:35:60:d6: d2:aa:40:63:96:6a:e2:9c:fe:99:50:17:ce:3c:9b: 8f:bc:45:7b:bb:4f:f6:4d:e9:07:07:2a:7c:e1:c6: 51:c8:f3:36:37:bd:8d:80:a9:b9:6f:c4:19:cd:11: 3e:06:f9:bc:9a:d2:20:7c:35:70:5d:d4:0b:dc:20: 82:9a:60:16:87:83:28:e7:29:56:f4:9a:d5:bb:59: ce:e4:41:29:47:31:ee:33:5d:f8:90:09:2f:6e:d9: d5:78:11:8d:d2:4f:b3:8b:b7:60:cb:45:fb:35:34: 62:b9:95:24:4f:7b:00:17:5d:d5:bf:bf:7e:01:9c: fd:b7:88:16:e9:45:36:82:c6:13:6e:db:e6:4d:49: 56:0b:5c:43:ae:de:64:fa:5f:25:e7:69:84:ca:69: 4f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B6:FE:33:0C:0E:D7:E8:4D:FA:35:9D:D8:29:6A:00:90:B7:C1:73 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e5130f6a-90a1-43ff-b77c-c445dab7e20b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:400::/47 Signature Algorithm: sha256WithRSAEncryption 89:0b:cd:f1:1c:1b:9d:59:cd:3d:ec:8f:81:79:54:82:fe:c8: c8:c6:3a:60:ee:62:4e:14:fb:e0:e1:cd:4a:b0:32:4e:14:35: 0e:f5:95:e3:e6:0c:3e:c7:8a:e5:84:13:17:20:24:0c:3d:bd: fc:74:d3:8d:6d:c8:ce:d4:dd:ad:a0:2c:c1:85:04:38:77:ad: a8:d9:e4:5a:bd:cc:09:fc:b4:78:19:01:1f:b9:7a:a5:2f:4d: 10:a9:a7:7d:de:98:f1:94:59:ef:48:43:c0:7b:68:be:e9:91: 62:04:a8:89:28:50:8c:cf:6e:58:0a:3a:d8:13:4a:9d:95:6b: 9a:4f:87:da:87:76:06:0a:dd:29:0c:fe:1a:6b:ba:bb:9a:ac: 56:08:8e:05:5e:59:e4:c0:5b:41:74:6f:9a:c5:9a:55:59:2f: 4d:6e:14:4b:39:6d:67:07:ba:f8:ea:62:20:7c:26:0c:4c:b6: eb:b0:1e:ed:5f:20:c1:25:b5:44:ba:8b:bf:4a:f7:b0:94:1a: 3b:07:84:80:a7:b8:4b:a4:a0:5b:fc:64:b4:52:4b:e7:28:70: 38:92:10:2b:f4:a3:e2:a0:d9:5d:93:18:2d:27:95:73:15:9b: 1f:c8:ce:1a:cb:14:54:35:35:c1:b9:a6:d1:bb:3c:40:55:76: a1:cd:a0:ec -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUP+sq6BKr2E9FfFraPozosmILVk8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA4MDMxMDQwWhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzlmNjNlY2M5MDE1YjA1NTg3ODA5MzRjNGZhZjUzMjhk NmE4NjVhZjE4OTJmODczMWJhMmE0YzgyNDk1NWJjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmGZZXGbzjpPMYAu+Jph1xmahL8mXVXofLwF4ybMxTjZ6u azeZ/km53LMFsMbAcgJWgQ5GWzL1I19cgl0mI7cT6cXAN9IoYW+nK0SL8nxLb98j 72VLMkv5zWLKU3FtAYndmEouVjVg1tKqQGOWauKc/plQF848m4+8RXu7T/ZN6QcH KnzhxlHI8zY3vY2AqblvxBnNET4G+bya0iB8NXBd1AvcIIKaYBaHgyjnKVb0mtW7 Wc7kQSlHMe4zXfiQCS9u2dV4EY3ST7OLt2DLRfs1NGK5lSRPewAXXdW/v34BnP23 iBbpRTaCxhNu2+ZNSVYLXEOu3mT6XyXnaYTKaU83AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUbb+MwwO1+hN+jWd2ClqAJC3wXMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2U1MTMwZjZhLTkwYTEtNDNmZi1iNzdjLWM0NDVkYWI3ZTIwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwBAAwDQYJKoZIhvcNAQELBQADggEBAIkLzfEcG51ZzT3sj4F5VIL+ yMjGOmDuYk4U++DhzUqwMk4UNQ71lePmDD7HiuWEExcgJAw9vfx0041tyM7U3a2g LMGFBDh3rajZ5Fq9zAn8tHgZAR+5eqUvTRCpp33emPGUWe9IQ8B7aL7pkWIEqIko UIzPblgKOtgTSp2Va5pPh9qHdgYK3SkM/hpruruarFYIjgVeWeTAW0F0b5rFmlVZ L01uFEs5bWcHuvjqYiB8JgxMtuuwHu1fIMEltUS6i79K97CUGjsHhICnuEukoFv8 ZLRSS+cocDiSECv0o+Kg2V2TGC0nlXMVmx/IzhrLFFQ1NcG5ptG7PEBVdqHNoOw= -----END CERTIFICATE-----Generated at Tue May 12 23:34:32 2026 by rpki-client