$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e9a4c690-0bd7-418d-a82c-90364d58e928.roa File: e9a4c690-0bd7-418d-a82c-90364d58e928.roa (raw, json) Hash identifier: LfrZTxrMIqiFA4TgITQuA8VMEsew24hAP/GawUtPL+8= Subject key identifier: B0:32:BE:E6:27:8C:22:6E:0F:AE:7D:98:ED:AC:0B:10:80:B1:FA:0A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0437AA27F16F4B78A3FA13FB8250DF5DF6A6D67B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e9a4c690-0bd7-418d-a82c-90364d58e928.roa Signing time: Mon 20 Apr 2026 00:00:04 +0000 ROA not before: Mon 20 Apr 2026 00:00:04 +0000 ROA not after: Sun 19 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8a10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 May 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:37:aa:27:f1:6f:4b:78:a3:fa:13:fb:82:50:df:5d:f6:a6:d6:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 20 00:00:04 2026 GMT Not After : Jul 19 23:59:59 2026 GMT Subject: serialNumber=e3939aa4d75e234490dfb5b5f7819a007483a9e1176d457bd5f4aee78782f7b7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3a:8c:6c:9e:e8:b5:fe:48:ce:4e:b2:09:02: 36:99:6a:b6:7c:b9:0c:8f:2f:98:59:e0:01:50:42: 3c:0f:67:08:04:51:a0:b6:e9:fd:3f:46:bb:fb:8a: 8e:ad:48:2b:8b:1f:03:23:77:d1:fc:a8:7f:4b:78: 7e:e9:bc:55:a8:f9:6a:2d:56:45:59:3d:fc:0e:54: 0f:1a:58:7f:94:dd:3d:85:a7:6a:c3:b7:bd:1e:b8: 6e:d4:03:5f:ae:33:a2:89:4f:83:0a:f8:fe:91:4b: 1d:9d:8a:29:ed:e3:41:8e:a1:67:b3:70:c6:78:85: 97:10:b2:d6:46:c0:a3:97:b9:88:2e:5a:a9:19:dc: c5:f3:6b:11:73:0d:d6:ce:d6:2e:50:3e:db:f6:b1: 36:1f:af:98:67:e8:65:78:f6:17:e5:b7:af:72:4d: 52:45:d2:52:63:95:ae:c3:ab:d4:f1:91:82:3c:4d: 5b:a4:4f:66:b6:31:d0:ef:75:0f:d4:88:00:6c:5b: cb:ea:ed:dc:d9:d9:65:da:6f:ed:94:e4:54:55:3d: c3:15:c3:d0:d8:93:74:dc:89:7a:b0:07:2c:ec:ae: 4f:e8:fe:33:f0:17:69:d1:b1:2f:7a:a4:c5:b2:26: 00:67:c7:b2:1b:ec:bc:16:3b:40:09:a8:f7:77:a0: 71:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:32:BE:E6:27:8C:22:6E:0F:AE:7D:98:ED:AC:0B:10:80:B1:FA:0A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e9a4c690-0bd7-418d-a82c-90364d58e928.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8a10::/48 Signature Algorithm: sha256WithRSAEncryption 4a:e8:94:c3:7e:f3:8a:b7:71:59:26:ca:cd:92:de:ab:f7:26: be:8e:3e:b4:bf:3b:ac:ac:db:55:d2:8f:28:06:d4:5a:61:49: b6:e2:95:7e:1f:27:5d:97:99:f7:9e:c7:0a:5e:0f:69:0e:22: 25:84:30:4c:82:e6:64:00:db:5b:1e:bf:ea:ca:09:a0:19:58: 6b:53:34:f1:7e:37:5e:07:68:a3:12:6e:4c:b3:84:d5:c5:ae: 35:2c:44:63:e9:1f:3a:c8:00:21:73:1e:12:f1:0e:60:f6:c8: b5:10:1f:85:63:4d:07:c3:69:f4:59:51:6b:a2:c1:e3:83:b6: ac:c4:bf:c6:fa:c5:d1:1b:4b:31:f0:93:37:9a:cd:7c:ba:20: 5f:df:50:60:46:38:39:2d:1e:15:5c:4b:f0:e4:b9:5d:b0:ba: 10:e8:57:52:9d:38:3a:40:16:52:c4:ea:28:db:a2:c6:98:a3: 6d:54:b9:40:b1:d0:5d:4d:4f:7f:0e:93:86:79:89:7a:82:4c: 3d:1c:36:d9:7d:a6:64:a5:62:40:22:92:8f:c8:1f:98:41:d6: f9:a2:36:c8:fb:37:ba:81:cb:88:45:03:e7:70:68:cf:6a:cf: ff:d9:27:1c:a2:f0:84:13:fb:28:eb:eb:bc:ff:60:4f:ee:60: d7:69:b5:26 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBDeqJ/FvS3ij+hP7glDfXfam1nswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDIwMDAwMDA0WhcNMjYwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzkzOWFhNGQ3NWUyMzQ0OTBkZmI1YjVmNzgxOWEwMDc0 ODNhOWUxMTc2ZDQ1N2JkNWY0YWVlNzg3ODJmN2I3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDOoxsnui1/kjOTrIJAjaZarZ8uQyPL5hZ4AFQQjwPZwgE UaC26f0/Rrv7io6tSCuLHwMjd9H8qH9LeH7pvFWo+WotVkVZPfwOVA8aWH+U3T2F p2rDt70euG7UA1+uM6KJT4MK+P6RSx2diint40GOoWezcMZ4hZcQstZGwKOXuYgu WqkZ3MXzaxFzDdbO1i5QPtv2sTYfr5hn6GV49hflt69yTVJF0lJjla7Dq9TxkYI8 TVukT2a2MdDvdQ/UiABsW8vq7dzZ2WXab+2U5FRVPcMVw9DYk3TciXqwByzsrk/o /jPwF2nRsS96pMWyJgBnx7Ib7LwWO0AJqPd3oHEhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsDK+5ieMIm4Prn2Y7awLEICx+gowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2U5YTRjNjkwLTBiZDctNDE4ZC1hODJjLTkwMzY0ZDU4ZTkyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxihAwDQYJKoZIhvcNAQELBQADggEBAErolMN+84q3cVkmys2S3qv3 Jr6OPrS/O6ys21XSjygG1FphSbbilX4fJ12XmfeexwpeD2kOIiWEMEyC5mQA21se v+rKCaAZWGtTNPF+N14HaKMSbkyzhNXFrjUsRGPpHzrIACFzHhLxDmD2yLUQH4Vj TQfDafRZUWuiweODtqzEv8b6xdEbSzHwkzeazXy6IF/fUGBGODktHhVcS/DkuV2w uhDoV1KdODpAFlLE6ijbosaYo21UuUCx0F1NT38Ok4Z5iXqCTD0cNtl9pmSlYkAi ko/IH5hB1vmiNsj7N7qBy4hFA+dwaM9qz//ZJxyi8IQT+yjr67z/YE/uYNdptSY= -----END CERTIFICATE-----Generated at Sun May 10 11:28:57 2026 by rpki-client