$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d8d0179-9620-48f0-8db3-7307d39d202a.roa File: 8d8d0179-9620-48f0-8db3-7307d39d202a.roa (raw, json) Hash identifier: +xf9k5SGsFwEZpoB5Z1UtABs3fV0qx44HW65gJLZhZc= Subject key identifier: 9A:E4:BD:DE:EC:93:A8:21:43:72:04:4E:05:26:19:A7:78:2D:BB:ED Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1873A16D99EA0F930B9FA1B66F055E5F93FC0CC2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d8d0179-9620-48f0-8db3-7307d39d202a.roa Signing time: Fri 12 Jun 2026 19:02:16 +0000 ROA not before: Fri 12 Jun 2026 19:02:16 +0000 ROA not after: Thu 10 Sep 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:c100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 16 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:73:a1:6d:99:ea:0f:93:0b:9f:a1:b6:6f:05:5e:5f:93:fc:0c:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 12 19:02:16 2026 GMT Not After : Sep 10 23:59:59 2026 GMT Subject: serialNumber=3535905751aaa1b8a0d790f201974472dd05a3042089fb4533f2393540de02aa, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b5:c6:ee:8f:ed:4b:12:cc:e5:c1:4f:04:2d: 81:1f:fa:cf:57:08:14:af:80:e7:f1:06:4c:05:be: fd:53:57:29:b5:94:d7:d9:07:1c:f0:d6:89:77:21: 89:77:cf:7c:af:b9:7c:cb:82:d9:9d:91:8b:91:33: 1c:94:bc:88:49:02:f3:18:bb:31:7c:ba:a3:a8:2d: 3d:13:ff:96:27:b2:6f:45:b3:40:6f:2f:b4:3f:55: 8b:7b:d2:b4:0d:d8:57:9e:a7:76:26:94:ad:12:68: 72:0c:df:6c:39:50:75:54:7a:5e:8e:57:27:e9:65: 94:84:b1:de:fa:bb:24:87:bb:f9:26:cd:3d:55:48: ea:ca:d3:a6:db:80:70:ba:bb:1c:f4:61:bb:a5:f2: 45:f3:61:99:d5:e0:69:7d:7a:e3:5f:8a:8a:4d:bc: 2a:26:1c:43:36:4f:f4:5e:98:f9:7c:2b:79:6b:9e: d1:3f:ce:59:d3:bd:79:64:f6:b1:00:7d:d4:0a:00: cb:9e:85:47:a5:48:31:01:30:0e:b3:ca:ea:c5:8a: 75:e2:38:45:cc:04:a2:7e:31:29:d3:16:80:ab:84: be:c4:e9:f7:ed:a8:d9:0a:2b:b3:3b:27:d1:1f:ba: 32:5b:20:73:58:08:55:d1:df:02:d7:3b:ce:ac:bb: c5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:E4:BD:DE:EC:93:A8:21:43:72:04:4E:05:26:19:A7:78:2D:BB:ED X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d8d0179-9620-48f0-8db3-7307d39d202a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:c100::/40 Signature Algorithm: sha256WithRSAEncryption 4e:bc:bf:82:b4:55:01:f6:71:10:b9:bd:60:04:c2:4b:ca:e9: 75:68:4a:60:df:31:f1:bf:ef:1a:00:78:1a:bc:fa:11:5f:d7: 64:9e:eb:4c:a6:3f:c7:5b:dd:19:65:54:45:6f:d6:0f:3f:cf: 2e:0c:14:89:d3:6e:b9:12:dc:92:00:d3:43:2f:54:cb:0f:f9: b6:de:28:40:51:8d:23:f9:63:ca:68:44:0a:34:ce:de:50:85: 28:16:51:0d:1e:bf:18:1d:4d:de:09:36:5f:9a:dd:d8:8b:9d: 05:e0:a3:e5:6e:b1:4f:ec:0a:44:3f:72:50:7e:1e:07:3e:41: 5f:a5:26:09:cc:0d:5b:0a:50:c7:fe:86:53:ee:96:84:e9:31: 39:42:ba:8f:e5:c6:6f:51:bc:e6:94:e5:d3:e3:7d:e6:c9:2b: a4:1f:2a:4d:25:6d:5e:74:5b:95:93:d8:6b:d1:47:53:9d:a6: a8:0c:09:0d:97:cd:7c:31:5f:49:f3:94:14:4e:6f:02:92:9f: 53:b2:b8:85:90:3a:84:6f:f9:e9:94:8c:68:f2:e2:5a:86:7f: 6f:ec:77:c2:09:8a:60:8b:be:e5:bd:16:ed:77:bd:42:99:f9: 82:5b:0b:34:8f:bc:00:86:3a:e3:50:91:31:99:4d:6c:e7:b9: c7:94:7e:37 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGHOhbZnqD5MLn6G2bwVeX5P8DMIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNjEyMTkwMjE2WhcNMjYwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTM1OTA1NzUxYWFhMWI4YTBkNzkwZjIwMTk3NDQ3MmRk MDVhMzA0MjA4OWZiNDUzM2YyMzkzNTQwZGUwMmFhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCytcbuj+1LEszlwU8ELYEf+s9XCBSvgOfxBkwFvv1TVym1 lNfZBxzw1ol3IYl3z3yvuXzLgtmdkYuRMxyUvIhJAvMYuzF8uqOoLT0T/5Ynsm9F s0BvL7Q/VYt70rQN2Feep3YmlK0SaHIM32w5UHVUel6OVyfpZZSEsd76uySHu/km zT1VSOrK06bbgHC6uxz0Ybul8kXzYZnV4Gl9euNfiopNvComHEM2T/RemPl8K3lr ntE/zlnTvXlk9rEAfdQKAMuehUelSDEBMA6zyurFinXiOEXMBKJ+MSnTFoCrhL7E 6fftqNkKK7M7J9EfujJbIHNYCFXR3wLXO86su8XpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUmuS93uyTqCFDcgROBSYZp3gtu+0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhkOGQwMTc5LTk2MjAtNDhmMC04ZGIzLTczMDdkMzlkMjAyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwwTANBgkqhkiG9w0BAQsFAAOCAQEATry/grRVAfZxELm9YATCS8rp dWhKYN8x8b/vGgB4Grz6EV/XZJ7rTKY/x1vdGWVURW/WDz/PLgwUidNuuRLckgDT Qy9Uyw/5tt4oQFGNI/ljymhECjTO3lCFKBZRDR6/GB1N3gk2X5rd2IudBeCj5W6x T+wKRD9yUH4eBz5BX6UmCcwNWwpQx/6GU+6WhOkxOUK6j+XGb1G85pTl0+N95skr pB8qTSVtXnRblZPYa9FHU52mqAwJDZfNfDFfSfOUFE5vApKfU7K4hZA6hG/56ZSM aPLiWoZ/b+x3wgmKYIu+5b0W7Xe9Qpn5glsLNI+8AIY641CRMZlNbOe5x5R+Nw== -----END CERTIFICATE-----Generated at Mon Jun 15 07:18:20 2026 by rpki-client