$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa File: ab860450-a818-47f3-a42f-5570594471c3.roa (raw, json) Hash identifier: 0qdbDUyEnmSd+LGNBo9SnXFHFqR3N52lXYxESfJRMf8= Subject key identifier: A5:D6:C7:B6:57:19:B5:68:D7:CD:07:69:18:2F:FD:33:A9:1C:E3:62 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2A3E0BB2B82AECC6923FDCBE4863251AD3594007 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa Signing time: Tue 19 May 2026 04:20:34 +0000 ROA not before: Tue 19 May 2026 04:20:34 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e900::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:3e:0b:b2:b8:2a:ec:c6:92:3f:dc:be:48:63:25:1a:d3:59:40:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:20:34 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=933509c576fa21a4e76c729b7921c4dd695e11967b337d80981873bf9f9ce41b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2b:9d:2f:bd:9a:83:d4:2e:23:33:64:1c:be: 02:0d:8f:2e:f5:21:7f:71:00:76:e8:14:10:ff:9e: 59:77:47:dd:69:fe:20:9f:66:d1:67:6c:51:74:41: f8:29:3e:17:89:ad:ab:32:53:c4:04:1d:5b:89:5a: 30:6d:a0:ea:ae:d4:5e:57:32:c9:fa:02:65:b8:bb: 7e:39:1f:fe:d4:ed:82:2b:6d:5e:4e:1e:57:70:ae: 2a:7a:1e:ad:ac:b9:44:0d:a3:13:ba:44:df:6e:23: c5:8b:ca:4f:f6:1b:fb:94:de:26:f8:96:2b:5c:63: 23:cf:a4:a2:6f:29:41:64:59:b8:57:dd:4a:4d:70: 48:18:93:fe:48:d9:f1:66:c4:44:96:a3:0f:48:6b: f0:3b:4e:08:a8:72:f5:58:1f:66:b1:cc:b0:22:57: 5a:e3:3d:03:5b:eb:58:8d:40:e7:9e:de:92:d4:c5: c8:6e:38:9b:87:19:31:bf:8d:44:ab:36:87:30:41: 34:66:c5:f0:78:4a:59:0a:47:2a:1a:78:58:fb:24: c3:3d:3f:81:3c:57:c5:61:3f:e0:22:83:19:c5:38: bb:56:21:5a:c4:8c:2b:c4:e9:38:ae:3a:26:c8:3f: ae:34:d1:d8:de:54:37:d8:50:97:bf:81:7f:73:c3: 76:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:D6:C7:B6:57:19:B5:68:D7:CD:07:69:18:2F:FD:33:A9:1C:E3:62 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/42 Signature Algorithm: sha256WithRSAEncryption 9f:6b:b7:e8:d1:ba:17:00:02:0e:5f:17:2a:65:c3:0f:df:56: cf:45:a1:79:14:c0:ec:5c:ff:56:8e:2d:0a:7b:9b:e1:93:79: 92:96:d6:31:8e:ba:b1:c9:b6:87:88:76:4b:a3:6f:bb:42:a1: f3:4a:63:49:70:99:56:0d:fb:2f:06:df:09:3c:34:2d:95:dc: 43:35:e6:50:0d:a8:d8:ea:7d:64:cb:a3:d2:82:14:4e:46:46: 93:3c:14:11:38:93:6c:6c:73:58:c9:1c:56:be:9f:60:49:23: f3:14:b6:46:66:98:56:87:d7:1b:a8:87:93:1c:f5:e9:33:3e: a8:31:b3:8d:2a:42:17:52:02:83:a4:d0:fe:ee:43:eb:6a:4e: 1e:21:fb:0b:51:4a:40:ca:22:f3:0d:72:f5:29:16:07:61:29: 43:0f:db:b2:02:93:1f:f6:e4:9b:7e:4a:cc:1b:aa:bd:ea:e6: 2c:41:90:f9:46:c8:50:e2:1a:24:28:fc:82:f2:9c:d8:1b:0d: 35:80:2c:2c:b9:df:e7:a4:c8:01:fe:f5:62:8d:a1:eb:7e:35: 43:84:0e:97:4e:7c:e8:b8:40:4c:bb:af:0d:c2:27:8e:e8:14: f2:02:64:d3:a4:e4:c5:ef:2c:71:13:c2:cd:df:31:12:05:96: f2:eb:d2:24 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKj4Lsrgq7MaSP9y+SGMlGtNZQAcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQyMDM0WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzM1MDljNTc2ZmEyMWE0ZTc2YzcyOWI3OTIxYzRkZDY5 NWUxMTk2N2IzMzdkODA5ODE4NzNiZjlmOWNlNDFiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgK50vvZqD1C4jM2QcvgINjy71IX9xAHboFBD/nll3R91p /iCfZtFnbFF0QfgpPheJrasyU8QEHVuJWjBtoOqu1F5XMsn6AmW4u345H/7U7YIr bV5OHldwrip6Hq2suUQNoxO6RN9uI8WLyk/2G/uU3ib4litcYyPPpKJvKUFkWbhX 3UpNcEgYk/5I2fFmxESWow9Ia/A7TgiocvVYH2axzLAiV1rjPQNb61iNQOee3pLU xchuOJuHGTG/jUSrNocwQTRmxfB4SlkKRyoaeFj7JMM9P4E8V8VhP+AigxnFOLtW IVrEjCvE6TiuOibIP6400djeVDfYUJe/gX9zw3YJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpdbHtlcZtWjXzQdpGC/9M6kc42IwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FiODYwNDUwLWE4MTgtNDdmMy1hNDJmLTU1NzA1OTQ0NzFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76QAwDQYJKoZIhvcNAQELBQADggEBAJ9rt+jRuhcAAg5fFyplww/f Vs9FoXkUwOxc/1aOLQp7m+GTeZKW1jGOurHJtoeIdkujb7tCofNKY0lwmVYN+y8G 3wk8NC2V3EM15lANqNjqfWTLo9KCFE5GRpM8FBE4k2xsc1jJHFa+n2BJI/MUtkZm mFaH1xuoh5Mc9ekzPqgxs40qQhdSAoOk0P7uQ+tqTh4h+wtRSkDKIvMNcvUpFgdh KUMP27ICkx/25Jt+Sswbqr3q5ixBkPlGyFDiGiQo/ILynNgbDTWALCy53+ekyAH+ 9WKNoet+NUOEDpdOfOi4QEy7rw3CJ47oFPICZNOk5MXvLHETws3fMRIFlvLr0iQ= -----END CERTIFICATE-----Generated at Fri Jun 12 05:52:43 2026 by rpki-client