$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f94a5fae-d0a5-450a-95d7-7dca4b33ba7d.roa File: f94a5fae-d0a5-450a-95d7-7dca4b33ba7d.roa (raw, json) Hash identifier: UD+SEEu1C9Zwyolp//ZEj8FnzFyvutkriKxfifMsILg= Subject key identifier: DA:51:24:7C:43:90:99:B2:95:BE:D9:61:95:31:E8:F8:51:F2:5A:56 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 433DB31B74FC1C28C9DD80D0E1D3DA62BDE23C96 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f94a5fae-d0a5-450a-95d7-7dca4b33ba7d.roa Signing time: Mon 04 May 2026 15:20:07 +0000 ROA not before: Mon 04 May 2026 15:20:07 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6118::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:3d:b3:1b:74:fc:1c:28:c9:dd:80:d0:e1:d3:da:62:bd:e2:3c:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:20:07 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=42aadb45a5c13428878550ca09dd7516a60cafad53240bf6e93f0bdcab365647, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a2:c1:05:e2:ab:0b:e3:5c:39:fb:4d:87:86: 7b:3e:2f:08:ea:18:f7:5f:cc:13:ac:33:12:53:33: 4b:5e:be:d7:df:3e:69:9a:e5:53:d2:7d:c2:6d:37: 5a:11:6c:15:41:f5:67:b2:16:49:4e:31:ad:24:cb: f4:55:f7:ef:39:5f:d4:3b:02:b0:d9:21:45:60:47: a7:1d:4b:7b:1d:ab:09:5f:9a:2b:a7:38:28:4e:41: c4:0d:30:67:d6:1b:6f:f2:d2:6a:72:a4:0d:6f:33: 0e:f3:af:53:7f:02:98:ec:54:09:04:3d:a0:5b:5e: 3e:63:f1:26:b2:7a:c9:4a:ba:e2:27:86:e4:0d:b8: 5a:df:47:2d:9a:58:b4:4b:dd:8b:fb:a6:ad:36:d3: 65:a5:f2:0a:c8:94:33:c6:96:8e:2f:b0:0b:65:28: f7:5c:62:4c:9a:26:e1:df:a0:2e:cb:12:c9:cf:06: 80:0d:9b:17:cb:75:57:f6:58:34:d8:3b:22:d0:63: 57:14:b1:08:fe:fc:4a:0d:d2:49:7c:8b:9b:0f:f1: d8:89:6f:c5:23:1f:b1:06:dd:55:f8:3c:5a:97:e6: 26:cf:d7:ee:9d:2d:53:7c:a9:ae:c5:40:51:d4:77: cd:32:5f:1b:0e:46:39:fe:a7:2e:67:3f:60:37:fe: d0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:51:24:7C:43:90:99:B2:95:BE:D9:61:95:31:E8:F8:51:F2:5A:56 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f94a5fae-d0a5-450a-95d7-7dca4b33ba7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6118::/48 Signature Algorithm: sha256WithRSAEncryption 1f:b5:65:e0:cd:7c:51:82:b1:8d:28:44:6f:8b:b8:3d:54:41: 72:59:8d:e5:dd:f6:5e:65:b0:27:32:cb:dc:1d:06:23:fa:e2: 3f:b8:c1:7e:1e:a4:54:4f:36:0d:43:e8:51:47:fa:5c:39:0d: da:d4:7c:eb:9f:1f:dd:e1:e8:8f:5e:aa:1f:17:31:5f:73:24: 39:ec:86:44:11:21:3b:e4:21:1b:e9:7e:c1:e0:66:3a:fc:fa: 3e:07:32:44:c9:84:d9:6c:b8:a7:b8:2e:2a:84:25:cb:c8:c1: 3f:91:3d:5f:99:7f:18:42:47:4e:23:95:71:43:5d:0c:46:0a: 0b:95:2e:4b:ca:65:e6:1e:44:d7:ff:c4:7c:d1:7e:1f:d8:66: 4c:4d:f8:0b:8a:df:84:1a:90:16:0b:68:52:5b:3c:20:a5:10: 23:09:49:4e:3d:6a:fc:5b:49:af:a9:8f:13:4c:9e:3d:87:5e: 3b:4c:17:41:4c:79:23:d2:c2:ae:f4:6f:96:c1:29:4d:3a:6f: dd:ac:34:93:23:af:af:70:45:59:2b:45:e1:18:bf:af:28:a4: ef:13:9d:33:f7:0e:87:eb:e2:4e:50:41:e8:1d:df:35:52:fd: 4d:df:09:5c:54:fe:0a:28:8f:60:f6:c2:d4:a4:ca:5f:9d:cf: 68:ac:38:e0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQz2zG3T8HCjJ3YDQ4dPaYr3iPJYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUyMDA3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MmFhZGI0NWE1YzEzNDI4ODc4NTUwY2EwOWRkNzUxNmE2 MGNhZmFkNTMyNDBiZjZlOTNmMGJkY2FiMzY1NjQ3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvosEF4qsL41w5+02Hhns+LwjqGPdfzBOsMxJTM0tevtff Pmma5VPSfcJtN1oRbBVB9WeyFklOMa0ky/RV9+85X9Q7ArDZIUVgR6cdS3sdqwlf miunOChOQcQNMGfWG2/y0mpypA1vMw7zr1N/ApjsVAkEPaBbXj5j8SayeslKuuIn huQNuFrfRy2aWLRL3Yv7pq0202Wl8grIlDPGlo4vsAtlKPdcYkyaJuHfoC7LEsnP BoANmxfLdVf2WDTYOyLQY1cUsQj+/EoN0kl8i5sP8diJb8UjH7EG3VX4PFqX5ibP 1+6dLVN8qa7FQFHUd80yXxsORjn+py5nP2A3/tAhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2lEkfEOQmbKVvtlhlTHo+FHyWlYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y5NGE1ZmFlLWQwYTUtNDUwYS05NWQ3LTdkY2E0YjMzYmE3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRgwDQYJKoZIhvcNAQELBQADggEBAB+1ZeDNfFGCsY0oRG+LuD1U QXJZjeXd9l5lsCcyy9wdBiP64j+4wX4epFRPNg1D6FFH+lw5DdrUfOufH93h6I9e qh8XMV9zJDnshkQRITvkIRvpfsHgZjr8+j4HMkTJhNlsuKe4LiqEJcvIwT+RPV+Z fxhCR04jlXFDXQxGCguVLkvKZeYeRNf/xHzRfh/YZkxN+AuK34QakBYLaFJbPCCl ECMJSU49avxbSa+pjxNMnj2HXjtMF0FMeSPSwq70b5bBKU06b92sNJMjr69wRVkr ReEYv68opO8TnTP3Dofr4k5QQegd3zVS/U3fCVxU/gooj2D2wtSkyl+dz2isOOA= -----END CERTIFICATE-----Generated at Wed May 13 01:25:31 2026 by rpki-client