$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa File: 828860c7-04d3-410e-a0e6-5d8782c6c573.roa (raw, json) Hash identifier: jWNbR53fvJnIP1gwvqS/fJeYG1XxhggPjpQ5WQpjD2w= Subject key identifier: 9A:E7:36:DB:83:24:CD:B2:2C:A7:DF:D3:91:77:A6:4D:B6:E6:83:0F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 48389D1F6B104F7DB06435ABD0F4C170F78416C0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa Signing time: Mon 04 May 2026 15:10:24 +0000 ROA not before: Mon 04 May 2026 15:10:24 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10a::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 May 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:38:9d:1f:6b:10:4f:7d:b0:64:35:ab:d0:f4:c1:70:f7:84:16:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 4 15:10:24 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=3da3583cfe4367d8155fdd44707586cceb848e5e6b4cf7aec2889a51d494aae7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:46:f5:97:0d:ff:e9:79:e7:e8:31:11:79:ed: 04:b1:b1:c3:5e:4d:47:d2:3c:d3:06:4b:96:fb:46: 1b:04:69:71:ad:9d:64:86:f8:58:81:36:90:81:2b: 31:e4:a7:03:da:bb:5f:27:cd:e1:69:46:2f:02:3f: 8c:0d:b1:7d:3d:df:63:33:bc:49:6e:04:d6:6f:00: 4e:da:bb:ff:09:98:81:ef:be:72:4c:ce:9b:ee:c0: bf:9c:8e:c1:9e:52:ed:73:95:c4:4b:ba:ae:8b:e2: b0:87:cf:12:c9:03:74:7b:58:08:aa:b7:5a:81:3f: 8f:e3:7f:e5:b0:f8:48:5b:b2:29:d4:d0:76:98:82: f3:4a:9d:56:76:81:aa:21:ef:3e:cc:1c:ab:6c:eb: ce:ae:e0:4d:6b:3d:02:f7:f2:ee:74:82:15:42:6b: 78:22:9a:58:eb:39:39:dc:ea:b5:9e:88:27:1b:5a: 3c:a4:8d:5a:ad:41:aa:e8:a5:b3:82:de:b1:c0:fa: 85:cf:1e:56:a2:46:5d:c5:b9:85:0a:f9:3e:e5:72: 3b:29:62:75:0c:0d:4a:de:e4:c1:78:82:5b:48:b5: 30:00:85:55:07:f5:0a:09:98:59:1e:95:9f:6a:26: 1b:f5:3c:da:2d:7a:2e:01:c3:6c:ee:94:47:22:69: 62:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:E7:36:DB:83:24:CD:B2:2C:A7:DF:D3:91:77:A6:4D:B6:E6:83:0F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10a::/47 Signature Algorithm: sha256WithRSAEncryption 51:bf:a6:74:82:68:35:b5:bc:f3:a9:18:94:32:f7:cd:58:3d: c1:9e:d2:ad:41:bc:b4:81:55:5b:d5:aa:80:00:cd:ff:28:6a: d8:b4:5c:bb:7c:79:31:d7:a6:15:09:ae:cc:23:b0:ba:84:87: 35:97:28:27:f2:c5:45:94:48:9b:42:71:e5:e2:a1:aa:d7:53: 5f:d0:a2:0e:7a:29:fa:b7:2e:e9:75:b4:0a:44:48:41:00:f8: 24:55:f5:8b:c0:70:4e:9e:73:58:39:b8:c3:2b:4a:8a:b6:79: 0f:9d:30:fe:0d:6f:83:cc:d9:a9:83:a5:fb:0c:da:1c:ca:30: 2f:8f:d5:c3:37:9b:cf:37:66:4c:b6:64:5e:50:e1:55:d2:99: 0e:a9:02:93:0b:ed:56:06:e9:a3:49:c6:2b:1d:8f:34:82:3a: 6d:b6:1c:b7:ad:1e:bf:3a:46:ce:69:98:37:f2:e3:cf:cf:8d: 2a:93:dd:8c:0c:b2:14:fe:bf:c8:56:ff:00:83:65:c0:7e:8c: b7:f2:a7:cf:e7:8f:46:c8:29:ec:fb:93:67:2d:6b:05:60:26: de:e1:80:4b:a0:49:87:88:8f:67:53:24:eb:27:25:b0:a5:4f: ef:ed:bd:e7:11:45:9f:8f:2e:ed:69:75:93:90:e2:94:1b:e5: c9:9d:dc:a8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSDidH2sQT32wZDWr0PTBcPeEFsAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTA0MTUxMDI0WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZGEzNTgzY2ZlNDM2N2Q4MTU1ZmRkNDQ3MDc1ODZjY2Vi ODQ4ZTVlNmI0Y2Y3YWVjMjg4OWE1MWQ0OTRhYWU3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4RvWXDf/peefoMRF57QSxscNeTUfSPNMGS5b7RhsEaXGt nWSG+FiBNpCBKzHkpwPau18nzeFpRi8CP4wNsX0932MzvEluBNZvAE7au/8JmIHv vnJMzpvuwL+cjsGeUu1zlcRLuq6L4rCHzxLJA3R7WAiqt1qBP4/jf+Ww+EhbsinU 0HaYgvNKnVZ2gaoh7z7MHKts686u4E1rPQL38u50ghVCa3gimljrOTnc6rWeiCcb WjykjVqtQaropbOC3rHA+oXPHlaiRl3FuYUK+T7lcjspYnUMDUre5MF4gltItTAA hVUH9QoJmFkelZ9qJhv1PNotei4Bw2zulEciaWKzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmuc224MkzbIsp9/TkXemTbbmgw8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzgyODg2MGM3LTA0ZDMtNDEwZS1hMGU2LTVkODc4MmM2YzU3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQowDQYJKoZIhvcNAQELBQADggEBAFG/pnSCaDW1vPOpGJQy981Y PcGe0q1BvLSBVVvVqoAAzf8oati0XLt8eTHXphUJrswjsLqEhzWXKCfyxUWUSJtC ceXioarXU1/Qog56Kfq3Lul1tApESEEA+CRV9YvAcE6ec1g5uMMrSoq2eQ+dMP4N b4PM2amDpfsM2hzKMC+P1cM3m883Zky2ZF5Q4VXSmQ6pApML7VYG6aNJxisdjzSC Om22HLetHr86Rs5pmDfy48/PjSqT3YwMshT+v8hW/wCDZcB+jLfyp8/nj0bIKez7 k2ctawVgJt7hgEugSYeIj2dTJOsnJbClT+/tvecRRZ+PLu1pdZOQ4pQb5cmd3Kg= -----END CERTIFICATE-----Generated at Sun May 10 11:31:54 2026 by rpki-client