$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8ab6b03e-85d2-47d7-b8bd-c2c49d5994ed.roa File: 8ab6b03e-85d2-47d7-b8bd-c2c49d5994ed.roa (raw, json) Hash identifier: BhKuakUoCtJ5EHMtQpqMLl4HF1pOJxJzz1JXRk+6eDo= Subject key identifier: 9C:0D:E3:6B:E7:59:CB:92:16:98:1B:15:88:0B:04:80:3B:88:AA:39 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 511F7661E1937017405888E75BC9A29ED6317548 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8ab6b03e-85d2-47d7-b8bd-c2c49d5994ed.roa Signing time: Mon 20 Apr 2026 19:02:00 +0000 ROA not before: Mon 20 Apr 2026 19:02:00 +0000 ROA not after: Sun 19 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:90::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Apr 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:1f:76:61:e1:93:70:17:40:58:88:e7:5b:c9:a2:9e:d6:31:75:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 20 19:02:00 2026 GMT Not After : Jul 19 23:59:59 2026 GMT Subject: serialNumber=860b0c5c7329798ef29c668c531e4426f5c862aee68f8c86c246f65ea49175ef, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:33:12:df:f3:c5:5e:50:d7:ce:30:a5:81:90: bd:bc:be:55:dd:f7:0b:ad:b2:82:9a:ca:a1:8a:cd: eb:96:be:86:ec:46:3c:60:ab:33:6a:db:53:2c:8f: f1:f9:fe:97:53:66:8c:4e:d5:bd:a8:63:a6:6e:fc: dc:05:49:73:4f:84:21:3b:d8:85:66:ad:c8:49:44: 80:bc:80:13:13:e7:bd:ef:64:b3:54:ef:0a:8a:07: 33:a8:60:28:28:80:a9:89:33:a6:44:2f:78:4a:c3: 6f:03:70:1c:44:73:ef:cf:17:70:0b:b9:f5:7c:38: c7:50:54:49:d8:9e:dd:3a:ec:5b:02:c1:5d:36:ae: 16:53:9f:32:67:36:f5:10:00:34:52:7b:09:74:0b: 21:10:d0:1e:20:fc:bb:d4:2c:7f:ff:70:ac:84:b0: 31:7f:14:5c:94:08:3e:dc:c7:ca:7d:cf:b6:53:f4: a5:8b:9b:38:4e:46:c7:59:75:36:eb:16:53:7c:4e: d9:43:4a:74:6e:72:b4:a8:7e:ba:a8:0e:31:04:f8: 63:b2:64:7c:a0:7c:2c:ff:00:50:10:94:87:4c:46: c5:b3:04:21:36:b2:82:e8:58:ec:be:e4:29:60:46: 7f:a6:b3:17:bc:88:80:e4:80:e0:0c:f8:45:0b:8d: 42:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:0D:E3:6B:E7:59:CB:92:16:98:1B:15:88:0B:04:80:3B:88:AA:39 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8ab6b03e-85d2-47d7-b8bd-c2c49d5994ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:90::/44 Signature Algorithm: sha256WithRSAEncryption a3:d6:66:5f:82:06:13:53:ae:5f:4c:0c:c0:9c:18:39:97:73: be:f1:84:25:40:a3:9f:ba:43:9a:5c:29:5f:78:17:3e:de:69: d6:14:f5:69:9a:e2:0e:ce:cf:06:a8:4c:6b:f9:c5:77:0f:5b: 1a:7b:56:71:37:9f:0e:23:c2:7f:02:53:13:65:25:b2:83:a9: 6f:81:a1:d9:43:3d:ca:18:4e:7e:d0:01:9e:93:3e:18:4b:68: 10:ab:70:07:c0:a7:5d:f9:3f:96:5e:26:c0:67:8e:69:fa:87: bc:eb:a8:16:5b:e4:25:6f:9f:5a:33:d1:39:87:b4:3c:56:10: b0:ef:8f:fe:91:a8:1d:41:d8:e3:f3:08:94:10:cb:c0:60:59: 5a:9c:99:3a:f2:a1:4c:41:31:9f:e0:63:4a:25:37:a4:14:6b: ae:a2:fc:21:ea:20:87:83:8b:e4:6a:b3:3d:d7:53:34:f2:51: 89:74:5a:bd:3a:65:92:bf:3f:93:d9:23:e5:f6:99:ec:66:55: ac:dd:e0:26:08:6d:ce:4c:6b:7f:e5:2a:cd:a3:a5:fa:51:bf: b4:b8:bf:27:84:69:96:f3:07:22:67:6c:1b:66:35:11:87:f6: 52:92:1f:be:c4:4b:34:d7:75:d1:cc:8a:a2:41:52:d6:16:a5: 1c:ff:bf:fd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUR92YeGTcBdAWIjnW8mintYxdUgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDIwMTkwMjAwWhcNMjYwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjBiMGM1YzczMjk3OThlZjI5YzY2OGM1MzFlNDQyNmY1 Yzg2MmFlZTY4ZjhjODZjMjQ2ZjY1ZWE0OTE3NWVmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfMxLf88VeUNfOMKWBkL28vlXd9wutsoKayqGKzeuWvobs RjxgqzNq21Msj/H5/pdTZoxO1b2oY6Zu/NwFSXNPhCE72IVmrchJRIC8gBMT573v ZLNU7wqKBzOoYCgogKmJM6ZEL3hKw28DcBxEc+/PF3ALufV8OMdQVEnYnt067FsC wV02rhZTnzJnNvUQADRSewl0CyEQ0B4g/LvULH//cKyEsDF/FFyUCD7cx8p9z7ZT 9KWLmzhORsdZdTbrFlN8TtlDSnRucrSofrqoDjEE+GOyZHygfCz/AFAQlIdMRsWz BCE2soLoWOy+5ClgRn+msxe8iIDkgOAM+EULjUIVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnA3ja+dZy5IWmBsViAsEgDuIqjkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhhYjZiMDNlLTg1ZDItNDdkNy1iOGJkLWMyYzQ5ZDU5OTRlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDxAJAwDQYJKoZIhvcNAQELBQADggEBAKPWZl+CBhNTrl9MDMCcGDmX c77xhCVAo5+6Q5pcKV94Fz7eadYU9Wma4g7OzwaoTGv5xXcPWxp7VnE3nw4jwn8C UxNlJbKDqW+BodlDPcoYTn7QAZ6TPhhLaBCrcAfAp135P5ZeJsBnjmn6h7zrqBZb 5CVvn1oz0TmHtDxWELDvj/6RqB1B2OPzCJQQy8BgWVqcmTryoUxBMZ/gY0olN6QU a66i/CHqIIeDi+Rqsz3XUzTyUYl0Wr06ZZK/P5PZI+X2mexmVazd4CYIbc5Ma3/l Ks2jpfpRv7S4vyeEaZbzByJnbBtmNRGH9lKSH77ESzTXddHMiqJBUtYWpRz/v/0= -----END CERTIFICATE-----Generated at Tue Apr 21 15:25:42 2026 by rpki-client