$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13f667aa-a00c-4b6c-9646-0960f0960b3c.roa File: 13f667aa-a00c-4b6c-9646-0960f0960b3c.roa (raw, json) Hash identifier: GFXbfDnrCASZRRo5+l6tXK5J6Ibf57jGPYuvxT5bC54= Subject key identifier: 38:BA:32:7A:CB:77:E6:B8:8A:75:FD:D1:45:2D:52:80:3E:1F:84:4E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2DE5411C396F402B1990EB9462153A2FED4F7C37 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13f667aa-a00c-4b6c-9646-0960f0960b3c.roa Signing time: Thu 14 May 2026 01:40:08 +0000 ROA not before: Thu 14 May 2026 01:40:08 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5507::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:e5:41:1c:39:6f:40:2b:19:90:eb:94:62:15:3a:2f:ed:4f:7c:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 14 01:40:08 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=8ca438139c05f5ed91357cc93c30b75a4a4ec3c915a036f9a54a098ce48c76b4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:69:f3:e1:74:0d:bb:de:e1:04:5f:93:49:95: 19:22:40:5b:d7:ba:c8:13:e0:df:ca:db:1d:ea:7a: 96:2d:7c:00:62:51:28:3c:27:19:be:d3:c8:23:87: 2b:03:70:1f:5a:3a:4e:9f:09:ec:ab:6f:ff:48:44: 9e:4c:e2:9f:05:b9:95:00:64:1a:d9:3b:de:6c:f2: f2:cb:d3:6a:6b:1c:1b:4b:55:e2:e7:a3:72:57:89: 3c:f8:22:30:51:b1:4a:99:f2:9c:2c:1e:a6:e8:98: 44:b9:9e:c1:92:01:7d:6d:94:26:65:d3:bd:46:da: 02:f8:c2:b2:8a:cf:47:c7:94:04:99:f8:a8:dc:f1: 88:db:68:66:12:f4:a4:41:b3:47:55:80:04:cc:78: 52:ea:d8:77:74:68:3a:45:91:90:ff:6c:29:ed:5e: 9b:1f:79:04:a7:93:bd:57:71:9b:a1:3a:d8:bc:ee: 01:36:d9:98:16:2e:0e:32:02:4c:86:14:ac:bc:f7: 5d:84:f9:b8:0d:1e:aa:44:c6:ff:f5:bb:f5:c9:71: c1:ab:ee:ec:f9:f1:3d:6a:8a:cf:72:cd:d0:76:6e: 70:8f:9c:68:aa:73:3b:d1:5f:f0:61:6b:d4:b3:96: 0e:43:3d:77:03:1f:40:e6:ae:63:01:79:e1:4f:2a: 0d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:BA:32:7A:CB:77:E6:B8:8A:75:FD:D1:45:2D:52:80:3E:1F:84:4E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13f667aa-a00c-4b6c-9646-0960f0960b3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5507::/48 Signature Algorithm: sha256WithRSAEncryption 6b:2d:4e:0f:72:5d:2e:47:c1:0d:b7:3d:99:bb:ab:e7:cc:d1: b8:34:7e:6b:b9:86:da:c6:e1:9e:1f:bf:db:8d:b4:fd:d6:59: 38:88:23:36:bd:6b:28:cf:72:a7:ba:34:a5:5f:a0:77:10:03: d5:4f:b2:21:9e:cd:24:c4:a3:fa:e3:b8:80:4f:92:0c:f5:71: 61:ff:75:58:1d:80:02:27:b7:3b:2a:4c:8b:e1:fd:49:7c:71: b4:a3:ab:2f:bf:a6:7a:33:e8:f7:5c:46:9d:bc:34:4b:0d:05: 72:1a:84:2e:85:04:51:33:5c:88:2b:f1:56:8f:58:49:be:b1: 30:75:3e:cb:92:04:ad:76:bc:30:36:28:11:3d:02:c9:72:0b: 77:3a:f2:86:b8:63:68:ed:87:ea:c3:04:0b:d7:4b:bc:2c:96: 9f:11:ec:c5:87:a7:a0:42:c2:d0:6f:4e:2b:10:3b:71:c1:56: 65:c3:64:1e:00:34:53:75:cb:0c:88:c7:f1:31:72:28:f1:2a: ce:99:fc:db:f0:84:e4:13:bf:fd:8e:e3:56:f4:c0:5e:f5:6c: ed:57:20:89:90:dc:49:84:af:78:65:00:02:28:9e:6d:df:84: 5b:9c:32:3c:f3:07:0f:ef:b2:ab:d9:d1:69:67:08:5f:53:ff: 93:8f:c9:1c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULeVBHDlvQCsZkOuUYhU6L+1PfDcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE0MDE0MDA4WhcNMjYwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4Y2E0MzgxMzljMDVmNWVkOTEzNTdjYzkzYzMwYjc1YTRh NGVjM2M5MTVhMDM2ZjlhNTRhMDk4Y2U0OGM3NmI0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGafPhdA273uEEX5NJlRkiQFvXusgT4N/K2x3qepYtfABi USg8Jxm+08gjhysDcB9aOk6fCeyrb/9IRJ5M4p8FuZUAZBrZO95s8vLL02prHBtL VeLno3JXiTz4IjBRsUqZ8pwsHqbomES5nsGSAX1tlCZl071G2gL4wrKKz0fHlASZ +Kjc8YjbaGYS9KRBs0dVgATMeFLq2Hd0aDpFkZD/bCntXpsfeQSnk71XcZuhOti8 7gE22ZgWLg4yAkyGFKy8912E+bgNHqpExv/1u/XJccGr7uz58T1qis9yzdB2bnCP nGiqczvRX/Bha9Szlg5DPXcDH0DmrmMBeeFPKg0LAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOLoyest35riKdf3RRS1SgD4fhE4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzEzZjY2N2FhLWEwMGMtNGI2Yy05NjQ2LTA5NjBmMDk2MGIzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQcwDQYJKoZIhvcNAQELBQADggEBAGstTg9yXS5HwQ23PZm7q+fM 0bg0fmu5htrG4Z4fv9uNtP3WWTiIIza9ayjPcqe6NKVfoHcQA9VPsiGezSTEo/rj uIBPkgz1cWH/dVgdgAIntzsqTIvh/Ul8cbSjqy+/pnoz6PdcRp28NEsNBXIahC6F BFEzXIgr8VaPWEm+sTB1PsuSBK12vDA2KBE9AslyC3c68oa4Y2jth+rDBAvXS7ws lp8R7MWHp6BCwtBvTisQO3HBVmXDZB4ANFN1ywyIx/ExcijxKs6Z/NvwhOQTv/2O 41b0wF71bO1XIImQ3EmEr3hlAAIonm3fhFucMjzzBw/vsqvZ0WlnCF9T/5OPyRw= -----END CERTIFICATE-----Generated at Fri Jun 12 05:52:22 2026 by rpki-client