$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ecd4e407-1eb0-44f2-a3a7-d4714ca63aea.roa File: ecd4e407-1eb0-44f2-a3a7-d4714ca63aea.roa (raw, json) Hash identifier: 2JpE9jr0CB7Fxh4KY7/WR5slX+F0LZojbZxqaP1uFFo= Subject key identifier: 56:47:F6:2F:67:81:91:CB:4F:78:93:EE:8E:FB:57:23:7F:E6:EF:0E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4BF67B3B19C02303270E59B57540F0259E5A5359 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ecd4e407-1eb0-44f2-a3a7-d4714ca63aea.roa Signing time: Mon 04 May 2026 15:20:05 +0000 ROA not before: Mon 04 May 2026 15:20:05 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:108::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:f6:7b:3b:19:c0:23:03:27:0e:59:b5:75:40:f0:25:9e:5a:53:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:20:05 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=3774ca085a9ef7cabd41bdd73d8be75ee97f05d7ff3920bfe94651f483d74f13, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b9:da:42:ba:ca:c4:d4:13:95:85:23:87:3b: fe:1e:65:db:d0:e0:fa:a6:53:45:1c:d9:23:4a:3b: 4b:d4:48:7b:0e:65:6b:65:14:d3:36:51:25:77:02: 26:73:28:13:8b:bb:da:79:6e:be:ab:fe:d7:37:55: ea:33:f6:88:a9:d3:2b:d0:3f:c6:aa:2c:a2:40:1b: 5d:11:be:d2:8a:94:56:b9:47:bc:63:0d:bc:a9:e4: 5e:28:55:a9:39:68:a9:b6:5e:31:bc:68:c2:e3:ab: a3:20:05:2a:de:c6:8d:04:ae:0f:aa:49:b7:ec:c5: bf:35:d3:58:7c:79:01:83:f8:62:8c:4a:fc:b3:7a: 12:00:46:90:71:2f:98:4d:4e:fa:84:f8:b0:2c:00: 5c:57:fd:25:52:ef:a4:25:c8:f7:a8:14:a7:6c:79: 3d:a2:57:41:41:47:60:01:62:7c:45:aa:c9:15:1e: a5:1f:fc:fd:bf:71:76:a8:d7:c9:61:ac:5c:de:35: 03:73:af:69:a9:74:8f:cd:7f:c2:91:0f:e8:7e:65: 5a:14:73:01:0c:1a:e9:b9:33:7f:de:43:07:3a:a5: 30:7b:01:11:57:6c:f1:8a:77:a0:24:4f:d2:73:e8: 26:82:d9:55:51:48:2f:ff:0d:26:0b:19:99:95:50: 89:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:47:F6:2F:67:81:91:CB:4F:78:93:EE:8E:FB:57:23:7F:E6:EF:0E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ecd4e407-1eb0-44f2-a3a7-d4714ca63aea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:108::/47 Signature Algorithm: sha256WithRSAEncryption 5b:5e:94:da:19:c4:77:82:ff:ba:b8:1f:29:a9:d1:43:bd:ff: 88:ad:36:54:34:bb:3f:f6:8d:bf:bc:ad:ef:53:a3:6d:15:94: fc:8f:c1:a2:13:6a:ee:98:4f:e7:ce:df:1b:bc:0e:dc:de:4e: 10:f1:6e:c6:f9:a6:f3:8c:2e:60:2d:f5:24:6c:95:36:6e:d9: 8e:70:20:2e:2d:94:b2:4f:5f:8a:16:fb:62:eb:6d:ce:d4:09: b1:b0:9a:b9:2d:51:41:11:90:9c:fc:a3:40:e0:de:db:b8:2c: bc:87:6b:10:25:09:24:68:04:ba:d2:53:19:77:c9:dd:8f:20: 90:af:5e:76:76:a8:5a:32:b9:7d:72:63:83:d2:d9:c8:3d:32: e6:66:0e:3c:16:62:5d:60:bc:18:04:82:c8:bb:2a:a5:43:e6: ad:ed:a7:52:11:d1:d3:a4:31:85:dc:91:df:9a:e0:2a:9f:5b: 54:4d:ff:af:c9:0e:d8:08:6b:72:86:3a:67:8b:43:7b:e6:76: 06:91:d8:16:54:81:6a:59:71:5c:bd:f6:ce:2e:d0:7e:d7:56: 1a:df:92:ce:f0:ff:ed:26:f3:e2:9d:40:4e:7c:ba:d5:29:c9: 72:c3:96:06:59:60:6c:ac:37:78:51:41:53:55:dd:0a:85:d6: c7:63:fc:0d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS/Z7OxnAIwMnDlm1dUDwJZ5aU1kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUyMDA1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzc0Y2EwODVhOWVmN2NhYmQ0MWJkZDczZDhiZTc1ZWU5 N2YwNWQ3ZmYzOTIwYmZlOTQ2NTFmNDgzZDc0ZjEzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoudpCusrE1BOVhSOHO/4eZdvQ4PqmU0Uc2SNKO0vUSHsO ZWtlFNM2USV3AiZzKBOLu9p5br6r/tc3Veoz9oip0yvQP8aqLKJAG10RvtKKlFa5 R7xjDbyp5F4oVak5aKm2XjG8aMLjq6MgBSrexo0Erg+qSbfsxb8101h8eQGD+GKM SvyzehIARpBxL5hNTvqE+LAsAFxX/SVS76QlyPeoFKdseT2iV0FBR2ABYnxFqskV HqUf/P2/cXao18lhrFzeNQNzr2mpdI/Nf8KRD+h+ZVoUcwEMGum5M3/eQwc6pTB7 ARFXbPGKd6AkT9Jz6CaC2VVRSC//DSYLGZmVUImpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVkf2L2eBkctPeJPujvtXI3/m7w4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VjZDRlNDA3LTFlYjAtNDRmMi1hM2E3LWQ0NzE0Y2E2M2FlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQgwDQYJKoZIhvcNAQELBQADggEBAFtelNoZxHeC/7q4Hymp0UO9 /4itNlQ0uz/2jb+8re9To20VlPyPwaITau6YT+fO3xu8DtzeThDxbsb5pvOMLmAt 9SRslTZu2Y5wIC4tlLJPX4oW+2Lrbc7UCbGwmrktUUERkJz8o0Dg3tu4LLyHaxAl CSRoBLrSUxl3yd2PIJCvXnZ2qFoyuX1yY4PS2cg9MuZmDjwWYl1gvBgEgsi7KqVD 5q3tp1IR0dOkMYXckd+a4CqfW1RN/6/JDtgIa3KGOmeLQ3vmdgaR2BZUgWpZcVy9 9s4u0H7XVhrfks7w/+0m8+KdQE58utUpyXLDlgZZYGysN3hRQVNV3QqF1sdj/A0= -----END CERTIFICATE-----Generated at Wed May 13 00:09:48 2026 by rpki-client