$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1935c49d-401e-4cd4-8328-421b86afc75d.roa File: 1935c49d-401e-4cd4-8328-421b86afc75d.roa (raw, json) Hash identifier: ReYppvoHx3aN8Xhxhhho2JZMXjced1dyEYU/1Sfx0/Y= Subject key identifier: AC:5E:EA:E5:1D:C8:A2:ED:70:FB:FD:8A:25:20:A1:DD:92:67:F2:3B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 37BDA7052F5EB891B291580A5D584103D1BB1FA6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1935c49d-401e-4cd4-8328-421b86afc75d.roa Signing time: Thu 23 Apr 2026 00:00:09 +0000 ROA not before: Thu 23 Apr 2026 00:00:09 +0000 ROA not after: Wed 22 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5504::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 May 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:bd:a7:05:2f:5e:b8:91:b2:91:58:0a:5d:58:41:03:d1:bb:1f:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 23 00:00:09 2026 GMT Not After : Jul 22 23:59:59 2026 GMT Subject: serialNumber=896b53993865662b086e7de96d6917e91e386f47256ea82239ce9535ab2744df, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:38:5f:b8:c3:4a:c0:18:2f:c9:00:c2:73:1c: 34:78:57:cc:5f:a9:43:2a:17:18:9c:6a:df:58:f4: b6:dc:2f:46:4b:81:ce:37:08:cb:4e:01:04:fc:17: 1a:97:bb:f6:a7:ff:bc:33:0f:c8:bf:7d:01:f6:4c: 32:7c:7f:77:16:1c:13:40:49:ab:4b:6d:e8:ae:c4: 59:f1:05:c8:2b:6d:2c:93:63:fc:e6:c1:c7:81:59: f4:d0:a6:08:da:dc:ef:1c:49:d9:21:12:3c:a8:51: 75:be:1e:71:a6:aa:5b:a6:30:ea:13:ba:d1:68:e0: af:79:21:3c:1f:7c:34:5a:17:bb:13:35:f9:c9:66: 01:fd:41:c6:0c:ba:8f:1d:a4:64:80:82:48:24:db: 98:72:a3:03:13:77:8b:b2:37:f6:28:56:36:70:84: c6:77:12:3e:2a:77:4e:b3:6b:73:aa:dc:90:19:cc: e0:0a:81:40:2f:0e:05:eb:cc:4d:65:4e:ca:65:6f: 8f:7c:31:cf:2d:b8:f7:43:82:bb:78:67:1b:8e:9e: 57:b7:1a:98:03:70:e5:19:33:e0:37:69:08:91:35: 7b:38:2a:0d:8c:e8:75:99:05:c4:1f:3c:ef:97:9a: e5:bd:3a:f9:0a:f2:8e:99:3d:3b:84:e4:32:07:84: d1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:5E:EA:E5:1D:C8:A2:ED:70:FB:FD:8A:25:20:A1:DD:92:67:F2:3B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1935c49d-401e-4cd4-8328-421b86afc75d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5504::/48 Signature Algorithm: sha256WithRSAEncryption 85:ef:2e:3f:b1:ab:e6:62:ea:6e:34:bc:65:c3:eb:9c:2f:1b: 46:49:d2:92:a8:5d:fc:52:bd:cd:e1:49:0c:20:4b:24:d9:93: 93:cd:d8:f8:1e:8a:5a:96:48:16:ac:14:5f:eb:4b:9d:03:21: 1c:f4:c8:23:19:b0:32:e6:51:e6:11:07:49:60:59:f3:09:05: 99:ee:26:6f:16:48:ad:c6:92:c2:d3:d5:91:f4:4a:31:84:20: 93:1a:d8:c0:b1:b9:2e:58:09:04:29:a7:42:8d:bf:c2:de:63: e2:26:46:26:36:fd:28:51:a6:ee:82:64:ac:3c:6a:10:72:b8: 07:e0:d5:61:17:4d:ba:dd:8a:f1:03:69:57:74:59:b8:88:da: e2:4a:2c:f7:82:cb:83:43:48:b4:67:51:c6:df:c3:67:e0:ce: a2:2f:03:ef:08:d9:92:7b:3b:0c:75:e4:0a:ca:60:33:b8:2b: 00:2c:84:33:0d:f4:cb:b7:33:37:8c:cb:a7:16:3f:1f:d0:6a: dc:0f:b7:df:d7:cb:90:84:75:5b:ce:39:e2:39:b5:4d:80:63: a6:83:60:ef:d9:1b:ae:69:e7:bb:ab:41:32:cd:bc:5b:7c:01: 0e:cc:62:05:20:56:a7:ec:dc:fa:47:9e:cf:19:b8:f1:34:53: 65:2a:7c:37 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUN72nBS9euJGykVgKXVhBA9G7H6YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDIzMDAwMDA5WhcNMjYwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTZiNTM5OTM4NjU2NjJiMDg2ZTdkZTk2ZDY5MTdlOTFl Mzg2ZjQ3MjU2ZWE4MjIzOWNlOTUzNWFiMjc0NGRmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaOF+4w0rAGC/JAMJzHDR4V8xfqUMqFxicat9Y9LbcL0ZL gc43CMtOAQT8FxqXu/an/7wzD8i/fQH2TDJ8f3cWHBNASatLbeiuxFnxBcgrbSyT Y/zmwceBWfTQpgja3O8cSdkhEjyoUXW+HnGmqlumMOoTutFo4K95ITwffDRaF7sT NfnJZgH9QcYMuo8dpGSAgkgk25hyowMTd4uyN/YoVjZwhMZ3Ej4qd06za3Oq3JAZ zOAKgUAvDgXrzE1lTsplb498Mc8tuPdDgrt4ZxuOnle3GpgDcOUZM+A3aQiRNXs4 Kg2M6HWZBcQfPO+XmuW9OvkK8o6ZPTuE5DIHhNGdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUrF7q5R3Iou1w+/2KJSCh3ZJn8jswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE5MzVjNDlkLTQwMWUtNGNkNC04MzI4LTQyMWI4NmFmYzc1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQQwDQYJKoZIhvcNAQELBQADggEBAIXvLj+xq+Zi6m40vGXD65wv G0ZJ0pKoXfxSvc3hSQwgSyTZk5PN2PgeilqWSBasFF/rS50DIRz0yCMZsDLmUeYR B0lgWfMJBZnuJm8WSK3GksLT1ZH0SjGEIJMa2MCxuS5YCQQpp0KNv8LeY+ImRiY2 /ShRpu6CZKw8ahByuAfg1WEXTbrdivEDaVd0WbiI2uJKLPeCy4NDSLRnUcbfw2fg zqIvA+8I2ZJ7Owx15ArKYDO4KwAshDMN9Mu3MzeMy6cWPx/QatwPt9/Xy5CEdVvO OeI5tU2AY6aDYO/ZG65p57urQTLNvFt8AQ7MYgUgVqfs3PpHns8ZuPE0U2UqfDc= -----END CERTIFICATE-----Generated at Sun May 10 11:28:57 2026 by rpki-client