$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa File: e1f114b0-d940-4fa0-8376-bac93d2868fc.roa (raw, json) Hash identifier: JWfRR2+2naMrvt/D2WAOh5DcFbUcdUnswbYGPUE2RMQ= Subject key identifier: 03:E4:E7:FE:B3:7D:48:51:8B:77:10:EB:00:69:BD:9A:B0:04:B5:BD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 316AC9C2AD097DAADA09445F8BBD1B05B0B9B294 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa Signing time: Mon 27 Apr 2026 00:30:11 +0000 ROA not before: Mon 27 Apr 2026 00:30:11 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 May 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:6a:c9:c2:ad:09:7d:aa:da:09:44:5f:8b:bd:1b:05:b0:b9:b2:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 27 00:30:11 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=50d61f812d99cfa41d89a98cfe47f1e08cfd95f2211d236c62bbaa4157a0732e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:eb:94:85:e4:da:d9:f0:38:a5:74:ae:b1:ff: 03:d0:c2:e0:37:e5:4a:4a:f0:ea:20:63:cc:26:df: f1:5c:0a:de:95:5c:9c:2c:c2:d9:97:b5:ac:0b:28: ca:98:2f:0d:37:33:2c:c3:be:2a:b1:7a:bd:9e:ea: d9:f8:d8:61:f0:d1:ef:a3:6c:ad:29:55:de:76:33: c3:99:90:3f:ab:93:2b:b3:44:dc:c3:84:91:1b:92: 31:e7:dd:b7:a3:c0:86:b6:bd:4c:d3:f5:25:c2:2b: c1:e9:ad:a3:18:34:32:2d:0d:aa:30:3a:b0:02:08: c4:09:cd:07:3b:c4:78:df:11:6d:bd:6c:8e:e1:f2: a6:3f:7b:6b:d9:6f:70:58:14:78:e3:90:a9:47:15: 15:05:02:98:f1:74:11:47:7d:7a:df:5e:a0:58:1f: 88:c9:4f:38:a1:ca:05:98:ba:10:30:09:72:c8:71: a3:54:2f:c6:92:77:cf:db:f6:75:16:a4:0e:15:2f: af:3a:b9:6a:ee:9a:7b:fe:5f:20:54:d8:80:89:14: 3a:cb:05:a7:20:87:d3:b1:50:f7:7b:3e:b7:8a:5d: c4:c4:15:78:83:7e:9c:f4:1b:d9:78:46:82:68:73: 63:04:95:61:c9:65:5f:a3:75:81:df:7c:72:28:20: 1b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E4:E7:FE:B3:7D:48:51:8B:77:10:EB:00:69:BD:9A:B0:04:B5:BD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 2b:35:6d:6c:4f:48:87:10:8e:31:8b:6d:53:75:ff:93:39:2c: 46:4e:d1:94:30:ac:3b:92:dc:1f:b9:46:dd:ea:b1:02:7b:9f: ab:f8:01:07:7a:11:4d:e0:a5:69:04:01:5b:86:96:c2:c6:e6: f7:3b:d3:2b:50:8c:54:7e:e1:02:ca:7f:2c:f2:e9:bc:15:e1: 8e:68:02:32:30:47:c1:43:a9:c2:70:59:a4:4a:d3:b6:30:9f: aa:ea:37:7d:23:93:02:28:ae:02:cd:a6:9e:18:8b:16:1d:3b: 25:4a:0b:d6:65:66:63:ec:80:93:80:39:24:d6:26:6d:9c:12: 8c:22:31:f7:98:2e:8e:b1:e5:00:ff:80:df:c9:4f:c1:d9:82: 18:9e:7a:58:d0:f2:98:3e:cb:bf:a4:35:ff:39:ae:39:eb:ae: 4e:82:e5:8a:b9:57:e0:5d:fb:16:91:2e:90:83:c6:17:87:82: cf:ac:90:b7:9b:5a:75:52:ab:fd:22:56:b1:ca:eb:26:00:27: da:10:0e:0b:31:96:91:a7:8a:9c:9c:85:b3:63:d9:56:ac:ac: 36:5a:1d:bd:af:d7:5b:a3:8e:fe:8c:e7:ce:98:65:fe:7a:96: 80:8a:0a:7c:2f:5b:91:ff:b5:b6:17:97:06:b0:b5:c3:a4:f2: cd:03:68:3e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMWrJwq0JfaraCURfi70bBbC5spQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDI3MDAzMDExWhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MGQ2MWY4MTJkOTljZmE0MWQ4OWE5OGNmZTQ3ZjFlMDhj ZmQ5NWYyMjExZDIzNmM2MmJiYWE0MTU3YTA3MzJlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw65SF5NrZ8DildK6x/wPQwuA35UpK8OogY8wm3/FcCt6V XJwswtmXtawLKMqYLw03MyzDviqxer2e6tn42GHw0e+jbK0pVd52M8OZkD+rkyuz RNzDhJEbkjHn3bejwIa2vUzT9SXCK8HpraMYNDItDaowOrACCMQJzQc7xHjfEW29 bI7h8qY/e2vZb3BYFHjjkKlHFRUFApjxdBFHfXrfXqBYH4jJTzihygWYuhAwCXLI caNUL8aSd8/b9nUWpA4VL686uWrumnv+XyBU2ICJFDrLBacgh9OxUPd7PreKXcTE FXiDfpz0G9l4RoJoc2MElWHJZV+jdYHffHIoIBvXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUA+Tn/rN9SFGLdxDrAGm9mrAEtb0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UxZjExNGIwLWQ5NDAtNGZhMC04Mzc2LWJhYzkzZDI4NjhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAKzVtbE9IhxCOMYttU3X/kzks Rk7RlDCsO5LcH7lG3eqxAnufq/gBB3oRTeClaQQBW4aWwsbm9zvTK1CMVH7hAsp/ LPLpvBXhjmgCMjBHwUOpwnBZpErTtjCfquo3fSOTAiiuAs2mnhiLFh07JUoL1mVm Y+yAk4A5JNYmbZwSjCIx95gujrHlAP+A38lPwdmCGJ56WNDymD7Lv6Q1/zmuOeuu ToLlirlX4F37FpEukIPGF4eCz6yQt5tadVKr/SJWscrrJgAn2hAOCzGWkaeKnJyF s2PZVqysNlodva/XW6OO/oznzphl/nqWgIoKfC9bkf+1theXBrC1w6TyzQNoPg== -----END CERTIFICATE-----Generated at Sun May 10 11:29:51 2026 by rpki-client