$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2bd076f-38fe-414c-adae-9c6f359542b7.roa File: b2bd076f-38fe-414c-adae-9c6f359542b7.roa (raw, json) Hash identifier: 3rc48JMZAmjfkvRtM2yp3IN4iVJdaQoJa/hoS3fWUWA= Subject key identifier: 73:8F:A9:91:33:9D:93:93:20:5B:C1:3C:C3:0C:0D:08:C2:02:5D:0E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2DC6893A84C500F22D9F4E835E11137747AB86B0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2bd076f-38fe-414c-adae-9c6f359542b7.roa Signing time: Tue 19 May 2026 04:10:55 +0000 ROA not before: Tue 19 May 2026 04:10:55 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 28 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:c6:89:3a:84:c5:00:f2:2d:9f:4e:83:5e:11:13:77:47:ab:86:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:10:55 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=25002816f22e6a6c6487eb9eb4f3814837426e6b91b14eb700fb73eda27874bd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7e:75:a6:a6:91:f2:66:e6:29:ac:dd:1e:58: a3:36:7b:b7:08:55:04:58:c3:af:41:92:ab:01:3b: 69:4b:af:b9:af:c2:a0:34:bd:b5:29:d5:a1:2c:d8: 50:cf:31:ce:10:06:36:fb:63:75:0d:20:d8:e8:af: 22:93:ce:26:a9:14:d4:ac:43:05:bd:db:0f:4a:b4: a4:c9:68:c3:9a:3f:66:11:87:69:9c:7f:80:9d:9c: c8:ca:16:4c:d4:06:d2:3a:16:82:37:aa:8e:a9:28: 45:bd:ef:3a:95:ce:b4:91:bc:9c:83:77:8f:95:03: 61:5c:a8:e1:a1:dc:21:a7:3d:f3:5f:2b:9a:89:72: 6a:20:8e:7f:72:50:eb:d6:a0:44:b2:4e:7e:83:a2: 52:77:e5:29:28:7d:8a:91:99:a1:c8:e7:3d:cf:a6: 64:c4:2f:e0:f4:f2:62:a3:30:ad:ac:7e:66:cd:f2: 84:9d:5b:4a:75:3e:7c:6a:00:36:a9:28:4a:54:e8: 4a:78:94:d5:06:83:61:83:b7:7c:19:48:45:7f:e5: fa:7c:dc:f0:da:2e:59:a9:35:a2:2f:5e:f2:81:3b: 65:86:e7:de:7f:92:30:21:8c:3c:e2:51:5f:e7:3c: b1:6f:6f:1f:5d:7a:7e:98:94:f4:a4:df:7c:0c:e0: 19:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:8F:A9:91:33:9D:93:93:20:5B:C1:3C:C3:0C:0D:08:C2:02:5D:0E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2bd076f-38fe-414c-adae-9c6f359542b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/40 Signature Algorithm: sha256WithRSAEncryption 05:7b:13:1f:ab:19:32:12:90:64:d6:5a:0a:5c:31:76:84:f3: 4e:d6:43:f6:31:50:02:51:4b:4c:f6:d1:c3:bc:b3:61:ca:b0: 17:a2:61:e2:cf:dc:73:4a:31:5f:d8:fb:6b:0a:eb:02:e8:18: 13:bc:f9:2c:ff:e2:0c:4b:6c:19:e5:15:52:49:b1:44:7d:0d: 03:da:c0:6b:6a:eb:46:80:13:1f:55:f6:73:85:e7:71:17:b8: 95:43:78:b0:ba:6c:2b:2c:c8:7e:cc:36:1b:e8:c0:f8:f1:b5: 4d:6c:58:1d:a8:31:12:82:22:7a:6c:8f:6c:98:5b:0a:26:66: c0:42:eb:36:f0:6e:81:56:02:91:e1:cd:79:e8:1f:e1:6e:37: 12:e2:da:75:c8:f1:6f:ec:c1:ce:2b:c8:30:ce:77:65:c4:3a: f6:fb:9c:fc:8d:9f:21:3e:91:b4:ea:e5:95:b8:6e:bb:eb:69: be:0c:bb:9f:d0:d9:74:5a:2f:16:71:23:96:7e:8b:68:38:d6: a1:67:b2:36:ba:44:8c:2f:84:b0:98:46:a0:02:1d:19:d4:ed: 09:1d:4e:f3:54:a9:ff:e9:2e:1a:15:8b:e3:fc:02:b9:94:25: 39:38:08:c9:37:fe:22:f8:8b:17:aa:05:e5:5a:16:08:4e:0f: 47:e0:e8:9f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULcaJOoTFAPItn06DXhETd0erhrAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQxMDU1WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTAwMjgxNmYyMmU2YTZjNjQ4N2ViOWViNGYzODE0ODM3 NDI2ZTZiOTFiMTRlYjcwMGZiNzNlZGEyNzg3NGJkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzfnWmppHyZuYprN0eWKM2e7cIVQRYw69BkqsBO2lLr7mv wqA0vbUp1aEs2FDPMc4QBjb7Y3UNINjoryKTziapFNSsQwW92w9KtKTJaMOaP2YR h2mcf4CdnMjKFkzUBtI6FoI3qo6pKEW97zqVzrSRvJyDd4+VA2FcqOGh3CGnPfNf K5qJcmogjn9yUOvWoESyTn6DolJ35SkofYqRmaHI5z3PpmTEL+D08mKjMK2sfmbN 8oSdW0p1PnxqADapKEpU6Ep4lNUGg2GDt3wZSEV/5fp83PDaLlmpNaIvXvKBO2WG 595/kjAhjDziUV/nPLFvbx9den6YlPSk33wM4BmtAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUc4+pkTOdk5MgW8E8wwwNCMICXQ4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IyYmQwNzZmLTM4ZmUtNDE0Yy1hZGFlLTljNmYzNTk1NDJiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74zANBgkqhkiG9w0BAQsFAAOCAQEABXsTH6sZMhKQZNZaClwxdoTz TtZD9jFQAlFLTPbRw7yzYcqwF6Jh4s/cc0oxX9j7awrrAugYE7z5LP/iDEtsGeUV UkmxRH0NA9rAa2rrRoATH1X2c4XncRe4lUN4sLpsKyzIfsw2G+jA+PG1TWxYHagx EoIiemyPbJhbCiZmwELrNvBugVYCkeHNeegf4W43EuLadcjxb+zBzivIMM53ZcQ6 9vuc/I2fIT6RtOrllbhuu+tpvgy7n9DZdFovFnEjln6LaDjWoWeyNrpEjC+EsJhG oAIdGdTtCR1O81Sp/+kuGhWL4/wCuZQlOTgIyTf+IviLF6oF5VoWCE4PR+Donw== -----END CERTIFICATE-----Generated at Wed May 27 18:31:36 2026 by rpki-client