$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5549fdb0-617d-43e3-951f-9747f0d27829.roa File: 5549fdb0-617d-43e3-951f-9747f0d27829.roa (raw, json) Hash identifier: hap3djGefRCQLB6WqELTabAO4EkEbPx0EBl7s4cSyAs= Subject key identifier: EB:CC:C3:CC:3E:C6:44:9C:34:7C:A5:CC:AD:89:18:31:B4:B9:4B:51 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4B953699AEEC764FA97A4BD9598596DD5D434230 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5549fdb0-617d-43e3-951f-9747f0d27829.roa Signing time: Mon 27 Apr 2026 00:30:09 +0000 ROA not before: Mon 27 Apr 2026 00:30:09 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 28 Apr 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:95:36:99:ae:ec:76:4f:a9:7a:4b:d9:59:85:96:dd:5d:43:42:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 27 00:30:09 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=b272254b179757fb75a8b89f3168e40ad58a64894d6ec6b7eb4888676f2b92e6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:1d:a2:50:94:c2:28:1e:82:ed:30:b5:a8:66: 0f:e7:cb:14:71:8e:36:2c:02:1c:12:15:4b:fd:80: b0:90:0e:94:8c:df:7b:63:80:15:54:3c:75:39:a4: 94:aa:7a:b8:e3:eb:65:87:a7:29:e1:b9:4c:20:68: 74:63:5b:8a:fe:53:69:af:33:f1:af:e8:59:47:f0: a9:9d:c6:25:fa:9e:d6:42:fd:9b:93:b7:8f:27:9d: 98:9c:e2:67:61:04:c5:f6:da:41:65:3a:02:29:fa: fd:da:b7:a0:4e:ff:29:30:79:98:9d:ae:0b:24:55: 6f:ca:e2:1d:56:08:11:aa:bf:21:b2:3d:7a:c9:4f: 32:01:f0:8f:c7:e4:d1:db:89:5c:2b:f8:13:96:cf: d6:65:38:4e:4b:8d:60:aa:1e:37:2d:a1:37:bc:9a: 01:75:5d:94:34:86:09:ef:86:43:91:f9:bd:bb:b4: b2:4d:cc:b5:02:8c:f3:4e:28:20:15:a2:44:4d:69: 7f:d3:84:4e:96:d1:c9:ca:f1:7b:44:4f:a2:0c:37: ec:f6:40:6a:e5:d2:06:3a:99:43:ac:f7:59:21:35: b3:54:cd:15:81:04:9b:5f:08:2c:09:3a:be:92:d7: 32:d7:56:ee:90:b3:1f:d8:c5:ad:e0:fa:ca:b7:b3: 78:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:CC:C3:CC:3E:C6:44:9C:34:7C:A5:CC:AD:89:18:31:B4:B9:4B:51 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5549fdb0-617d-43e3-951f-9747f0d27829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4140::/48 Signature Algorithm: sha256WithRSAEncryption 2e:39:0d:45:fe:57:0f:ea:e8:e2:c4:1b:9d:29:e0:51:3b:d1: 58:2d:34:c2:cd:fd:d2:ec:8b:35:fd:3f:b1:75:26:70:69:ad: 71:1c:6b:4a:e8:b5:3a:32:00:73:bd:67:12:00:17:a6:ef:99: 59:31:1d:85:9e:74:9f:94:a7:d0:e2:bb:2b:6f:8f:0d:19:90: 3c:25:f2:69:82:c6:ab:8e:db:13:8b:ce:8c:19:35:68:8f:e7: 5f:91:39:11:d7:54:99:90:5c:2c:f0:aa:4c:09:e2:c6:35:01: ca:4a:b0:7c:05:8e:50:96:a7:89:e8:16:4a:ed:95:46:4c:7b: 08:e3:80:df:10:b3:dd:3a:a6:65:7a:73:3e:fb:4d:4e:4b:ab: c8:b0:82:a6:33:b9:48:52:28:48:57:44:47:3c:9a:93:f6:0c: 82:74:94:d8:01:e9:47:4d:1d:27:29:fa:f5:ed:40:56:12:8a: 50:79:10:94:32:a1:5f:94:e6:3c:ab:32:35:fd:d1:34:fe:77: 8f:54:49:a5:77:4b:2a:2d:d2:35:f8:54:da:93:16:df:68:7f: fd:e4:fb:87:57:07:98:92:1d:f6:82:91:e1:02:a4:9e:7f:a8: 38:c7:e6:ea:86:45:5e:d1:05:42:49:83:a3:9f:48:f0:48:18: 2d:bf:55:df -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS5U2ma7sdk+pekvZWYWW3V1DQjAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDI3MDAzMDA5WhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjcyMjU0YjE3OTc1N2ZiNzVhOGI4OWYzMTY4ZTQwYWQ1 OGE2NDg5NGQ2ZWM2YjdlYjQ4ODg2NzZmMmI5MmU2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVHaJQlMIoHoLtMLWoZg/nyxRxjjYsAhwSFUv9gLCQDpSM 33tjgBVUPHU5pJSqerjj62WHpynhuUwgaHRjW4r+U2mvM/Gv6FlH8KmdxiX6ntZC /ZuTt48nnZic4mdhBMX22kFlOgIp+v3at6BO/ykweZidrgskVW/K4h1WCBGqvyGy PXrJTzIB8I/H5NHbiVwr+BOWz9ZlOE5LjWCqHjctoTe8mgF1XZQ0hgnvhkOR+b27 tLJNzLUCjPNOKCAVokRNaX/ThE6W0cnK8XtET6IMN+z2QGrl0gY6mUOs91khNbNU zRWBBJtfCCwJOr6S1zLXVu6Qsx/Yxa3g+sq3s3g3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU68zDzD7GRJw0fKXMrYkYMbS5S1EwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU1NDlmZGIwLTYxN2QtNDNlMy05NTFmLTk3NDdmMGQyNzgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUAwDQYJKoZIhvcNAQELBQADggEBAC45DUX+Vw/q6OLEG50p4FE7 0VgtNMLN/dLsizX9P7F1JnBprXEca0rotToyAHO9ZxIAF6bvmVkxHYWedJ+Up9Di uytvjw0ZkDwl8mmCxquO2xOLzowZNWiP51+RORHXVJmQXCzwqkwJ4sY1AcpKsHwF jlCWp4noFkrtlUZMewjjgN8Qs906pmV6cz77TU5Lq8iwgqYzuUhSKEhXREc8mpP2 DIJ0lNgB6UdNHScp+vXtQFYSilB5EJQyoV+U5jyrMjX90TT+d49USaV3Syot0jX4 VNqTFt9of/3k+4dXB5iSHfaCkeECpJ5/qDjH5uqGRV7RBUJJg6OfSPBIGC2/Vd8= -----END CERTIFICATE-----Generated at Mon Apr 27 15:34:10 2026 by rpki-client