$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8118e9e-4da8-4d2a-bf13-2faef4f132df.roa File: f8118e9e-4da8-4d2a-bf13-2faef4f132df.roa (raw, json) Hash identifier: 0dR17VZkreLKSTBJraR2SGDpzHfyhisvc0ONY6Kdoow= Subject key identifier: 85:5D:BC:BD:CE:50:AD:12:9B:6D:F2:FB:02:2A:68:DE:7F:5A:AE:BA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 77F4B8C3A71A6FD7882F6A9360A2FFCB6E5A153D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8118e9e-4da8-4d2a-bf13-2faef4f132df.roa Signing time: Mon 04 May 2026 15:10:09 +0000 ROA not before: Mon 04 May 2026 15:10:09 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:610e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:f4:b8:c3:a7:1a:6f:d7:88:2f:6a:93:60:a2:ff:cb:6e:5a:15:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:09 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=db12a99c508e2f93d44f72f6aecf38aefe12ff024655126e903c59b5332fe35c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f6:5f:06:43:89:67:5f:73:e4:6c:16:4b:20: 10:4d:a9:f6:8e:db:67:38:4a:78:8e:71:d6:ad:b3: e1:8c:ca:ec:c5:e5:9d:0d:5a:75:59:05:31:ac:6c: 11:67:50:4b:31:3b:68:60:f7:51:22:65:b7:d3:aa: e4:2e:ed:e0:99:10:30:98:96:58:94:1b:09:85:d1: eb:ba:a0:41:26:4d:9b:ff:3e:aa:f2:89:40:f7:14: ff:be:4d:86:f3:3f:24:3b:10:0d:f6:15:ee:ba:e5: eb:8e:dc:36:84:8c:7f:d5:b9:cf:7c:1e:5d:8f:33: 54:c1:58:f5:9d:e6:67:1b:17:a2:71:3d:a3:27:45: f5:b4:ad:c7:d0:86:5a:04:8b:84:4e:39:c2:74:c8: 42:3a:a7:6c:ef:4c:0b:30:c6:78:c8:b7:e5:b7:30: c0:5a:0a:89:26:39:c0:e5:f1:81:9e:3f:d1:db:02: 95:a3:5b:34:22:51:21:88:62:3e:97:6c:bf:18:9e: c8:15:ec:65:88:ff:53:d1:78:a4:f8:47:3b:3a:7f: 7a:54:be:9f:47:be:10:f9:b9:17:07:e4:45:5e:eb: 5b:31:d8:8c:d5:02:be:70:1c:82:67:df:8c:d2:e5: 23:83:bb:49:94:a8:9d:3e:11:f8:33:d5:7b:f4:a1: 2b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:5D:BC:BD:CE:50:AD:12:9B:6D:F2:FB:02:2A:68:DE:7F:5A:AE:BA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8118e9e-4da8-4d2a-bf13-2faef4f132df.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610e::/48 Signature Algorithm: sha256WithRSAEncryption 44:8c:a1:06:14:4d:5f:0b:09:2e:ac:2b:27:0b:8e:ef:d7:07: a4:1f:00:8b:30:e0:f7:0e:db:0c:e9:ec:38:20:ad:1c:69:bf: a3:92:b9:c9:3f:c7:47:79:ab:77:50:32:e8:dd:fd:27:1d:8d: a7:b3:4d:78:e6:f0:bb:da:a8:e8:11:8f:8c:42:f2:47:99:98: e5:7d:2b:24:bf:45:c6:f0:29:af:aa:cf:41:03:05:e1:b7:10: af:2a:08:54:3e:83:8c:9a:90:3c:a3:82:69:95:e6:26:7d:43: 3a:c6:6d:e4:db:3e:fa:c0:0a:4b:4d:24:86:79:7f:d6:55:c5: 10:9f:6c:99:ac:11:64:bc:74:22:0e:66:c6:52:68:9e:86:42: 22:df:46:a9:a5:70:16:3f:c0:73:04:f4:96:2a:2c:38:42:31: a8:0c:a5:1a:f1:a4:d4:d9:4d:04:b3:f9:cf:77:e7:24:e8:6b: 2e:63:35:c0:de:f5:32:d0:85:5a:5e:e3:6c:eb:ef:0e:9e:81: 31:fb:a9:e3:c0:85:0a:7f:85:eb:c9:ec:2d:6e:31:dc:a7:3f: d9:84:f3:bb:74:e6:24:fc:9f:dc:cb:6d:d5:0c:f5:19:4a:07: e7:c7:fc:36:80:07:0f:0d:9c:a7:c9:45:8d:42:25:0c:7c:d5: 97:95:84:02 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUd/S4w6cab9eIL2qTYKL/y25aFT0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDA5WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjEyYTk5YzUwOGUyZjkzZDQ0ZjcyZjZhZWNmMzhhZWZl MTJmZjAyNDY1NTEyNmU5MDNjNTliNTMzMmZlMzVjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI9l8GQ4lnX3PkbBZLIBBNqfaO22c4SniOcdats+GMyuzF 5Z0NWnVZBTGsbBFnUEsxO2hg91EiZbfTquQu7eCZEDCYlliUGwmF0eu6oEEmTZv/ PqryiUD3FP++TYbzPyQ7EA32Fe665euO3DaEjH/Vuc98Hl2PM1TBWPWd5mcbF6Jx PaMnRfW0rcfQhloEi4ROOcJ0yEI6p2zvTAswxnjIt+W3MMBaCokmOcDl8YGeP9Hb ApWjWzQiUSGIYj6XbL8YnsgV7GWI/1PReKT4Rzs6f3pUvp9HvhD5uRcH5EVe61sx 2IzVAr5wHIJn34zS5SODu0mUqJ0+Efgz1Xv0oSubAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhV28vc5QrRKbbfL7Aipo3n9arrowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y4MTE4ZTllLTRkYTgtNGQyYS1iZjEzLTJmYWVmNGYxMzJkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQ4wDQYJKoZIhvcNAQELBQADggEBAESMoQYUTV8LCS6sKycLju/X B6QfAIsw4PcO2wzp7DggrRxpv6OSuck/x0d5q3dQMujd/ScdjaezTXjm8LvaqOgR j4xC8keZmOV9KyS/RcbwKa+qz0EDBeG3EK8qCFQ+g4yakDyjgmmV5iZ9QzrGbeTb PvrACktNJIZ5f9ZVxRCfbJmsEWS8dCIOZsZSaJ6GQiLfRqmlcBY/wHME9JYqLDhC MagMpRrxpNTZTQSz+c935yToay5jNcDe9TLQhVpe42zr7w6egTH7qePAhQp/hevJ 7C1uMdynP9mE87t05iT8n9zLbdUM9RlKB+fH/DaABw8NnKfJRY1CJQx81ZeVhAI= -----END CERTIFICATE-----Generated at Wed May 13 01:25:49 2026 by rpki-client