$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa File: 87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa (raw, json) Hash identifier: Izd6P6Ht9xhLqjPzGQ/rrsrL7pCQPCOzfP5Gs5HdFeI= Subject key identifier: E9:5D:02:A9:81:BD:B9:85:E5:17:4E:39:65:C4:06:F8:54:75:B8:8D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7C65159D04CA6DCB1828F3CEF2D9B592D6F677CB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa Signing time: Tue 19 May 2026 04:20:38 +0000 ROA not before: Tue 19 May 2026 04:20:38 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e500::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 28 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:65:15:9d:04:ca:6d:cb:18:28:f3:ce:f2:d9:b5:92:d6:f6:77:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:20:38 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=b8e74bb8f4e9a17ba8495e66fc6c8968f6787c609671c458ce5105fa21a89fe9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c8:27:ab:ea:10:3f:bd:ca:79:bf:89:2b:9f: 46:2f:8d:05:d3:cb:bb:bd:1c:8d:4c:84:c8:da:8b: d2:05:f1:28:5b:7d:e5:5f:a6:f0:b5:bd:bb:e5:84: 5f:21:5a:0f:86:07:1d:b5:bf:fe:8f:89:13:8f:f0: 63:77:08:d2:c2:3e:63:20:32:3a:35:0b:70:29:a3: ba:50:28:d9:16:6e:97:7a:4f:e5:ba:24:16:5d:e6: 44:10:44:ca:5a:cd:9b:c8:32:6c:4d:d9:36:dc:31: b5:f9:13:70:f3:1d:74:8c:d8:34:5a:2e:9f:d5:3a: ad:d4:a2:9d:e9:46:ef:3d:40:84:81:82:19:78:76: a2:31:b5:9a:0d:77:d2:24:fa:9b:c1:04:32:62:0b: 75:85:99:62:d1:7d:f8:0b:09:76:c6:dc:ce:b0:48: f0:e1:d2:89:46:db:92:51:ce:43:ff:53:2c:48:36: ed:42:4b:4c:10:12:07:e7:0b:3d:a9:e6:53:ba:de: 48:c6:16:ae:ed:6c:34:30:1f:6a:7d:c1:03:e1:d0: 28:ee:89:c6:ea:46:b9:7b:5a:e4:0e:0e:9d:31:8f: 63:7f:38:e2:d4:8e:df:00:d7:f6:24:e2:43:6e:cd: 4e:59:33:e7:80:2c:63:e5:9f:03:f3:1c:9e:25:d2: 18:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:5D:02:A9:81:BD:B9:85:E5:17:4E:39:65:C4:06:F8:54:75:B8:8D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/42 Signature Algorithm: sha256WithRSAEncryption 21:38:31:2c:bc:1e:ab:b0:d3:8d:18:a2:a0:c3:46:ff:26:fc: 74:a4:a4:3f:3a:04:32:4f:34:9a:be:dd:48:78:87:2f:e1:3d: 88:df:1d:fa:81:d3:98:20:ff:c3:6b:a0:53:a3:00:a4:90:1c: 62:fe:1b:1b:d2:72:b5:33:65:ed:d2:33:1a:fb:ce:c1:5a:15: 07:12:5b:dc:40:06:21:5b:14:8a:a1:81:bc:9b:b5:5d:d6:07: 2c:3f:19:3c:17:3b:18:e4:da:2e:8c:31:b1:b7:18:19:c2:91: 78:f5:71:ec:a0:f3:08:5e:fa:ce:cc:9f:04:c2:47:92:2d:5c: 82:ab:b7:00:fe:35:47:1f:8c:db:09:47:53:1e:1d:9b:25:76: c9:2d:57:78:8e:3e:86:d6:f5:8c:8f:c3:59:95:b9:de:34:56: a2:07:1f:12:e0:08:55:98:8a:6e:0a:81:17:f7:3a:22:26:96: b1:eb:21:fc:da:9e:48:9b:e8:22:39:0b:05:38:4e:0a:e9:ce: 15:65:10:ac:6d:2e:51:a1:27:5c:10:84:2c:32:46:1b:10:e6: da:87:25:ac:c7:c1:20:82:c4:8e:eb:ae:eb:71:fe:bb:9e:8b: e6:56:8d:04:d2:44:28:a7:53:ee:f6:a5:e0:77:c5:e0:d8:2a: 34:35:c8:57 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfGUVnQTKbcsYKPPO8tm1ktb2d8swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQyMDM4WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOGU3NGJiOGY0ZTlhMTdiYTg0OTVlNjZmYzZjODk2OGY2 Nzg3YzYwOTY3MWM0NThjZTUxMDVmYTIxYTg5ZmU5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1yCer6hA/vcp5v4krn0YvjQXTy7u9HI1MhMjai9IF8Shb feVfpvC1vbvlhF8hWg+GBx21v/6PiROP8GN3CNLCPmMgMjo1C3Apo7pQKNkWbpd6 T+W6JBZd5kQQRMpazZvIMmxN2TbcMbX5E3DzHXSM2DRaLp/VOq3Uop3pRu89QISB ghl4dqIxtZoNd9Ik+pvBBDJiC3WFmWLRffgLCXbG3M6wSPDh0olG25JRzkP/UyxI Nu1CS0wQEgfnCz2p5lO63kjGFq7tbDQwH2p9wQPh0CjuicbqRrl7WuQODp0xj2N/ OOLUjt8A1/Yk4kNuzU5ZM+eALGPlnwPzHJ4l0hghAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6V0CqYG9uYXlF045ZcQG+FR1uI0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg3YmFmYjBkLTdjZWMtNDMzMS04YTA5LTRhNGQ1NmFiZjdkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75QAwDQYJKoZIhvcNAQELBQADggEBACE4MSy8Hquw040YoqDDRv8m /HSkpD86BDJPNJq+3Uh4hy/hPYjfHfqB05gg/8NroFOjAKSQHGL+GxvScrUzZe3S Mxr7zsFaFQcSW9xABiFbFIqhgbybtV3WByw/GTwXOxjk2i6MMbG3GBnCkXj1ceyg 8whe+s7MnwTCR5ItXIKrtwD+NUcfjNsJR1MeHZsldsktV3iOPobW9YyPw1mVud40 VqIHHxLgCFWYim4KgRf3OiImlrHrIfzankib6CI5CwU4TgrpzhVlEKxtLlGhJ1wQ hCwyRhsQ5tqHJazHwSCCxI7rrutx/ruei+ZWjQTSRCinU+72peB3xeDYKjQ1yFc= -----END CERTIFICATE-----Generated at Wed May 27 18:29:26 2026 by rpki-client