$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa File: ee2c3586-4c23-4045-b98b-d28000a3bd55.roa (raw, json) Hash identifier: /yOzY2Bx5PsSqEv8USwMV11nMp6DiTXKRkYQh+1Cn48= Subject key identifier: 29:37:FE:FA:40:BB:A5:9A:7D:86:42:DF:37:AD:B3:07:51:85:91:D3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3AA2086683013133E16ACD6E0AFE4D88AEB8D4EF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa Signing time: Mon 04 May 2026 15:10:05 +0000 ROA not before: Mon 04 May 2026 15:10:05 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:a2:08:66:83:01:31:33:e1:6a:cd:6e:0a:fe:4d:88:ae:b8:d4:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:05 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=ac48cc8f3a105a476b18741c6261514405cdec34dc0e8b6ad41dc71fd4159daf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a3:2c:e3:50:23:5f:14:a8:cd:15:2e:e3:7d: 38:9e:30:39:fe:7b:65:ff:76:cf:d2:2a:75:1f:c0: c1:d5:41:d5:de:2b:c0:73:ab:14:63:35:1c:74:4a: 67:4c:94:8e:d9:0a:7c:7c:47:88:72:d9:87:77:3e: 95:b9:cb:d4:0b:e1:9f:37:31:a7:ca:80:d0:e3:f3: 2d:db:44:ec:d9:62:54:f3:fc:7e:5f:34:47:a2:97: ea:87:b4:8a:a0:a6:01:e4:12:0d:1b:b1:4e:f4:09: 29:25:5a:58:62:f8:96:52:26:ab:2a:db:79:53:e5: 9a:5c:87:5e:63:35:7f:a8:42:1e:bb:4f:53:f2:ab: fd:fa:09:5a:9a:ce:bc:af:17:ba:ce:ad:0d:7a:d0: 0c:72:7c:52:d7:76:97:fd:c4:d0:47:78:9a:27:d0: f7:d3:cd:35:0d:0f:13:fd:6a:09:fa:3b:09:55:bb: 87:b5:e8:db:86:f9:6d:c1:de:01:01:05:0f:ef:57: 8d:b4:cb:b6:49:9e:eb:c3:94:d5:3f:2b:56:d1:b4: a4:83:f8:f4:1b:76:94:24:0a:f0:70:31:3e:2e:0d: db:19:44:18:59:e4:4c:38:fd:35:f0:56:ce:d3:c5: 67:3b:18:2b:47:23:b4:07:73:e5:53:3a:9d:e4:7a: 23:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:37:FE:FA:40:BB:A5:9A:7D:86:42:DF:37:AD:B3:07:51:85:91:D3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 47:4c:6d:db:f6:b5:85:01:31:39:74:30:25:6b:45:1a:4f:f9: 64:20:8e:34:bb:93:82:12:3a:ae:69:7e:0d:dc:39:24:9e:fb: d4:70:7d:e9:21:4e:a8:a8:03:58:47:0f:da:01:89:17:e8:21: d4:6f:86:db:22:8b:76:a7:68:4c:a2:87:14:85:3e:a9:3f:7e: ed:6a:92:da:25:72:c0:1f:72:75:cc:ec:ef:f5:4b:b6:96:2a: c3:7d:cd:52:da:b9:ed:16:eb:7e:17:35:e6:d2:96:2e:e0:60: 03:ea:15:7b:e2:b6:c8:4f:e5:4b:27:4f:ed:95:a2:f7:6e:03: ec:04:4a:ba:17:7b:cd:66:72:a6:17:53:4c:5e:54:b2:57:52: 94:02:4a:f2:3f:c0:0a:bf:4b:74:ba:08:e9:b5:7f:e2:75:3b: 16:39:2f:9a:77:b4:3f:20:48:b5:12:5d:c2:af:70:43:4e:87: fe:04:b5:61:7e:49:8a:0e:94:49:5d:55:b0:45:1a:6e:c4:f2: d8:fb:ad:ac:ab:be:05:33:99:8f:24:c9:db:25:31:12:cb:90: 07:e8:16:9a:62:1f:8c:de:c3:38:3c:d3:4a:0c:ad:77:7a:b4: 81:ad:24:ae:dc:83:e1:d9:ee:83:77:01:07:59:9c:71:e4:a8: f1:3c:08:73 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOqIIZoMBMTPhas1uCv5NiK641O8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDA1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzQ4Y2M4ZjNhMTA1YTQ3NmIxODc0MWM2MjYxNTE0NDA1 Y2RlYzM0ZGMwZThiNmFkNDFkYzcxZmQ0MTU5ZGFmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDToyzjUCNfFKjNFS7jfTieMDn+e2X/ds/SKnUfwMHVQdXe K8BzqxRjNRx0SmdMlI7ZCnx8R4hy2Yd3PpW5y9QL4Z83MafKgNDj8y3bROzZYlTz /H5fNEeil+qHtIqgpgHkEg0bsU70CSklWlhi+JZSJqsq23lT5Zpch15jNX+oQh67 T1Pyq/36CVqazryvF7rOrQ160AxyfFLXdpf9xNBHeJon0PfTzTUNDxP9agn6OwlV u4e16NuG+W3B3gEBBQ/vV420y7ZJnuvDlNU/K1bRtKSD+PQbdpQkCvBwMT4uDdsZ RBhZ5Ew4/TXwVs7TxWc7GCtHI7QHc+VTOp3keiNJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKTf++kC7pZp9hkLfN62zB1GFkdMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VlMmMzNTg2LTRjMjMtNDA0NS1iOThiLWQyODAwMGEzYmQ1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBAEdMbdv2tYUBMTl0MCVrRRpP +WQgjjS7k4ISOq5pfg3cOSSe+9RwfekhTqioA1hHD9oBiRfoIdRvhtsii3anaEyi hxSFPqk/fu1qktolcsAfcnXM7O/1S7aWKsN9zVLaue0W634XNebSli7gYAPqFXvi tshP5UsnT+2VovduA+wESroXe81mcqYXU0xeVLJXUpQCSvI/wAq/S3S6COm1f+J1 OxY5L5p3tD8gSLUSXcKvcENOh/4EtWF+SYoOlEldVbBFGm7E8tj7rayrvgUzmY8k ydslMRLLkAfoFppiH4zewzg800oMrXd6tIGtJK7cg+HZ7oN3AQdZnHHkqPE8CHM= -----END CERTIFICATE-----Generated at Tue May 12 23:05:39 2026 by rpki-client