$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c95d920e-7e95-4907-9edf-29509d14ad36.roa File: c95d920e-7e95-4907-9edf-29509d14ad36.roa (raw, json) Hash identifier: sBUU1oX9vGmxIyG1zFiIUa5Ud2RttqD1TlJfm/c4VZg= Subject key identifier: DF:88:C0:FE:97:78:C2:C8:AE:8A:8D:00:52:AD:F9:36:36:81:72:86 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2FDB71F70915FA65E1A574FF19437967675A7330 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c95d920e-7e95-4907-9edf-29509d14ad36.roa Signing time: Tue 19 May 2026 04:20:36 +0000 ROA not before: Tue 19 May 2026 04:20:36 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:eb00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 28 May 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:db:71:f7:09:15:fa:65:e1:a5:74:ff:19:43:79:67:67:5a:73:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:20:36 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=d158d1a2406579fbab2b51abd7e41c30e0827a1b61ee8fa8cc76070d7a8d822a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:65:76:54:4d:2e:56:de:32:a4:fc:6a:68:2f: 99:b7:c4:7b:3e:61:6f:84:3b:2a:43:ac:d9:92:f0: bf:71:e8:6d:e2:59:ab:6b:19:33:62:ff:b4:78:78: 6e:b8:fe:73:bd:ac:34:7e:8d:be:24:7a:8f:4a:52: 1f:1f:3d:78:15:1e:13:39:59:19:b5:39:97:74:56: d1:f7:5c:1c:03:7f:f5:ea:d2:dd:4e:1d:3b:4f:51: 4f:59:3b:ed:76:e3:ad:28:73:80:5e:bb:92:b7:34: cc:bc:cf:0f:4c:b9:9c:0c:55:73:9d:22:6a:87:ac: 2b:20:8f:76:3a:05:b8:68:29:f8:25:f6:b1:b6:9f: 34:75:a6:2c:69:22:c7:f4:3d:f5:bb:c2:ad:a8:26: 6a:14:97:0e:4e:60:5d:a4:3a:0c:a5:8e:6e:93:01: e9:ca:f1:5b:30:3b:bc:a0:5d:76:25:2f:07:36:d2: 20:46:75:c7:6f:75:ab:4e:08:9c:3d:76:c5:0a:ee: 0a:7b:83:ef:7f:51:b6:61:bf:f9:cb:86:9c:1a:46: 62:bb:24:bb:9e:08:40:ad:00:69:ed:7f:a1:b1:64: 81:ef:ae:d5:fe:1e:6f:ce:3c:92:1c:4f:69:4f:9d: 4f:5c:5d:85:2e:c1:4d:7c:ae:af:24:80:fb:85:3e: 00:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:88:C0:FE:97:78:C2:C8:AE:8A:8D:00:52:AD:F9:36:36:81:72:86 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c95d920e-7e95-4907-9edf-29509d14ad36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/42 Signature Algorithm: sha256WithRSAEncryption 7f:5b:58:25:ab:7e:40:2c:c2:0b:1f:a7:5b:ca:e2:a1:03:c7: 7a:35:eb:90:08:0e:43:0d:98:b5:59:87:5c:3f:2e:9d:1d:dc: 22:7f:df:83:06:d2:6d:47:d4:16:98:3e:a4:0a:d2:93:51:14: 3a:1c:cd:4c:1a:0b:98:37:4a:4d:94:16:cd:d9:68:60:7b:e8: f9:64:8a:e4:b7:da:04:0a:57:ce:41:21:26:25:9a:3e:ae:47: 7d:6c:ed:d6:03:f4:15:27:e0:28:8f:4d:4c:b1:c7:d3:a8:87: f5:66:23:d5:2e:7a:a5:b5:97:88:be:b3:ad:96:bd:88:4e:2c: 98:9b:6c:11:8e:3f:d7:93:22:0e:86:b8:ad:3b:f5:85:16:68: 42:7d:c9:d9:d8:31:de:f3:2e:68:c4:cc:76:57:03:58:6a:ea: 0d:2e:07:d5:ca:c3:5c:10:70:95:fc:d4:6e:ad:05:3a:37:c7: d3:f8:3e:43:97:b0:b7:63:a2:06:28:8f:5f:ba:bc:ee:6c:53: 47:99:cd:42:14:8a:53:c0:1d:dc:c6:0c:d3:fe:c9:7f:e9:5e: f3:07:fb:75:49:fc:58:16:b2:f0:40:9d:06:d1:38:f3:8f:b4: bc:ab:f3:f9:60:aa:43:09:82:9a:f3:cd:a6:20:1b:63:c0:6b: 3a:21:1a:15 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUL9tx9wkV+mXhpXT/GUN5Z2daczAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQyMDM2WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTU4ZDFhMjQwNjU3OWZiYWIyYjUxYWJkN2U0MWMzMGUw ODI3YTFiNjFlZThmYThjYzc2MDcwZDdhOGQ4MjJhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdZXZUTS5W3jKk/GpoL5m3xHs+YW+EOypDrNmS8L9x6G3i WatrGTNi/7R4eG64/nO9rDR+jb4keo9KUh8fPXgVHhM5WRm1OZd0VtH3XBwDf/Xq 0t1OHTtPUU9ZO+12460oc4Beu5K3NMy8zw9MuZwMVXOdImqHrCsgj3Y6BbhoKfgl 9rG2nzR1pixpIsf0PfW7wq2oJmoUlw5OYF2kOgyljm6TAenK8VswO7ygXXYlLwc2 0iBGdcdvdatOCJw9dsUK7gp7g+9/UbZhv/nLhpwaRmK7JLueCECtAGntf6GxZIHv rtX+Hm/OPJIcT2lPnU9cXYUuwU18rq8kgPuFPgCHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU34jA/pd4wsiuio0AUq35NjaBcoYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5NWQ5MjBlLTdlOTUtNDkwNy05ZWRmLTI5NTA5ZDE0YWQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76wAwDQYJKoZIhvcNAQELBQADggEBAH9bWCWrfkAswgsfp1vK4qED x3o165AIDkMNmLVZh1w/Lp0d3CJ/34MG0m1H1BaYPqQK0pNRFDoczUwaC5g3Sk2U Fs3ZaGB76PlkiuS32gQKV85BISYlmj6uR31s7dYD9BUn4CiPTUyxx9Ooh/VmI9Uu eqW1l4i+s62WvYhOLJibbBGOP9eTIg6GuK079YUWaEJ9ydnYMd7zLmjEzHZXA1hq 6g0uB9XKw1wQcJX81G6tBTo3x9P4PkOXsLdjogYoj1+6vO5sU0eZzUIUilPAHdzG DNP+yX/pXvMH+3VJ/FgWsvBAnQbROPOPtLyr8/lgqkMJgprzzaYgG2PAazohGhU= -----END CERTIFICATE-----Generated at Wed May 27 18:30:57 2026 by rpki-client