$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc882972-2da5-4c53-a9e6-a34bfb909ce0.roa File: fc882972-2da5-4c53-a9e6-a34bfb909ce0.roa (raw, json) Hash identifier: qXp/1zvmuTnbj4x/u/WszlQVDK6ZqcxqZa17+cvYwvw= Subject key identifier: B3:75:54:33:17:E8:DD:FD:A9:BC:A3:D0:CA:55:16:3D:D5:8D:1A:56 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0153F091E62F9E43D8F1EFB7C91BE480B69E01E2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc882972-2da5-4c53-a9e6-a34bfb909ce0.roa Signing time: Sat 09 May 2026 00:10:06 +0000 ROA not before: Sat 09 May 2026 00:10:06 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:53:f0:91:e6:2f:9e:43:d8:f1:ef:b7:c9:1b:e4:80:b6:9e:01:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 9 00:10:06 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=239889f71a64f71a93a500a7d3c42fd0474b7a8e414259f0ef52635a4c467120, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b1:36:b9:48:ba:d6:12:1a:d6:c0:bd:e3:6d: ae:3e:a7:ea:bb:38:e6:18:70:28:6c:76:d8:e1:49: b0:51:df:86:d2:c8:d3:64:2c:97:a2:15:f1:05:ab: b8:6d:fc:a2:00:4f:00:ca:51:45:ea:17:f7:09:73: c2:c3:eb:d8:a4:e7:a6:de:a2:f7:42:d2:6e:73:97: 76:35:ed:a6:6e:a1:18:21:27:7f:74:b5:51:21:bc: e7:43:96:3a:ff:88:d6:d0:c7:83:bf:59:bf:4b:2f: bc:98:55:55:72:50:88:de:55:d8:a5:12:65:39:b6: 38:2e:62:bd:ca:ba:d1:38:66:9d:71:41:aa:df:ad: b6:9e:ee:75:1d:a0:03:ba:25:74:cc:1d:d2:59:27: 23:f7:8b:52:1b:ac:ab:c2:a8:32:7c:e4:b3:29:bf: 72:51:52:5c:ee:ad:54:04:0f:0f:4c:1a:86:8f:c0: fb:b4:1f:f0:b3:5d:6a:45:40:5c:07:96:13:4f:67: 84:16:a4:3f:66:6d:32:76:b6:56:74:c9:eb:13:ec: bd:08:82:e2:26:23:db:19:f4:55:8a:83:91:51:67: e9:9a:4c:1a:98:85:cd:23:6a:02:cf:b4:d0:71:59: ac:a8:53:09:a3:d7:c7:ba:ea:5e:22:5d:c6:3e:61: 61:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:75:54:33:17:E8:DD:FD:A9:BC:A3:D0:CA:55:16:3D:D5:8D:1A:56 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc882972-2da5-4c53-a9e6-a34bfb909ce0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 43:b0:49:c5:a0:3f:ef:60:77:c8:c2:75:f4:a0:db:2b:f9:29: f7:1c:1f:8e:34:a3:a4:83:94:20:0b:95:1c:7b:a4:95:bf:f8: 70:76:84:93:ec:0f:c4:86:03:42:fb:4c:46:79:99:db:2e:19: 04:2a:9e:da:25:cc:b5:2d:a1:45:1f:74:ac:50:79:87:72:b1: 70:6a:7b:53:1f:75:fe:4a:be:88:6e:0b:36:97:51:6e:ca:1b: ee:80:7e:9e:16:25:ff:8e:75:18:38:6c:f7:8f:dc:b9:0b:a7: c1:ea:a9:d7:ee:33:73:19:ac:88:92:9a:cc:d2:cf:88:e9:10: d4:08:1a:22:1f:9b:7a:02:4e:5c:51:05:2e:e2:d5:b8:3b:df: bb:07:17:41:92:7e:02:93:7a:c2:51:8b:eb:40:bb:e1:7f:23: dc:db:c4:37:37:55:6c:bb:39:8d:e2:9c:6a:e4:78:b3:f2:f7: 1b:8a:cb:5e:9b:e6:a8:ec:85:c3:d4:c0:c2:77:ac:e7:64:38: e7:b1:75:d7:c9:b4:fb:94:35:28:d7:66:a5:9b:56:d5:eb:69: d1:70:ec:a5:14:20:80:31:1b:5f:4e:1c:dd:c3:33:b1:6e:68: 27:21:d8:44:87:3a:ce:43:59:b9:6d:98:56:b5:35:de:0c:01: 5e:2b:7f:6f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAVPwkeYvnkPY8e+3yRvkgLaeAeIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA5MDAxMDA2WhcNMjYwODA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzk4ODlmNzFhNjRmNzFhOTNhNTAwYTdkM2M0MmZkMDQ3 NGI3YThlNDE0MjU5ZjBlZjUyNjM1YTRjNDY3MTIwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2sTa5SLrWEhrWwL3jba4+p+q7OOYYcChsdtjhSbBR34bS yNNkLJeiFfEFq7ht/KIATwDKUUXqF/cJc8LD69ik56beovdC0m5zl3Y17aZuoRgh J390tVEhvOdDljr/iNbQx4O/Wb9LL7yYVVVyUIjeVdilEmU5tjguYr3KutE4Zp1x Qarfrbae7nUdoAO6JXTMHdJZJyP3i1IbrKvCqDJ85LMpv3JRUlzurVQEDw9MGoaP wPu0H/CzXWpFQFwHlhNPZ4QWpD9mbTJ2tlZ0yesT7L0IguImI9sZ9FWKg5FRZ+ma TBqYhc0jagLPtNBxWayoUwmj18e66l4iXcY+YWHHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUs3VUMxfo3f2pvKPQylUWPdWNGlYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjODgyOTcyLTJkYTUtNGM1My1hOWU2LWEzNGJmYjkwOWNlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAEOwScWgP+9gd8jCdfSg2yv5 KfccH440o6SDlCALlRx7pJW/+HB2hJPsD8SGA0L7TEZ5mdsuGQQqntolzLUtoUUf dKxQeYdysXBqe1Mfdf5KvohuCzaXUW7KG+6Afp4WJf+OdRg4bPeP3LkLp8Hqqdfu M3MZrIiSmszSz4jpENQIGiIfm3oCTlxRBS7i1bg737sHF0GSfgKTesJRi+tAu+F/ I9zbxDc3VWy7OY3inGrkeLPy9xuKy16b5qjshcPUwMJ3rOdkOOexddfJtPuUNSjX ZqWbVtXradFw7KUUIIAxG19OHN3DM7FuaCch2ESHOs5DWbltmFa1Nd4MAV4rf28= -----END CERTIFICATE-----Generated at Wed May 13 01:25:04 2026 by rpki-client