$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8937b5f0-d9e0-41bc-ab89-c61a14eb3df1.roa File: 8937b5f0-d9e0-41bc-ab89-c61a14eb3df1.roa (raw, json) Hash identifier: KafHmr5R2G0sDlxpwgd1J1FhGT0sYWiAW+mRbgNMJG0= Subject key identifier: 02:43:14:12:6C:6D:13:B2:CA:98:D3:18:3A:19:37:EB:16:66:8A:B2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 52A0DE0980C32C5FC04CBA9C3857A7EF0FAD9913 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8937b5f0-d9e0-41bc-ab89-c61a14eb3df1.roa Signing time: Fri 03 Apr 2026 02:30:12 +0000 ROA not before: Fri 03 Apr 2026 02:30:12 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:e0d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:a0:de:09:80:c3:2c:5f:c0:4c:ba:9c:38:57:a7:ef:0f:ad:99:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 3 02:30:12 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=cbd1afae1e3504ffb2f0698fdaf9155a3c5cc2b56db2d9093069451cae1e20f0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:16:ac:00:69:24:cc:e7:4c:32:d6:e8:40:f1: 45:3b:bf:db:dc:60:c9:c6:b8:50:87:78:e8:e0:87: 97:74:83:57:b6:51:53:3f:97:b0:e8:ed:79:60:6c: 77:c2:6c:fc:40:42:0b:17:8f:41:21:0e:41:88:8c: 13:e1:08:27:f6:e8:48:0b:29:74:ef:1c:79:89:8d: 83:33:92:29:ec:0a:64:46:76:40:bf:01:84:2d:6d: ff:a5:ff:be:71:e2:8a:02:ce:f5:47:70:2a:38:b2: d8:d9:a7:45:44:83:c5:57:e6:ba:6b:31:ae:35:81: b9:ce:f6:bb:bc:ef:b7:a3:76:62:8e:ed:70:2e:75: cd:4b:29:bd:b1:f0:02:04:db:40:81:7c:fd:2d:87: 47:bc:3d:56:fd:26:98:1c:11:93:b6:36:3c:e4:6a: 06:8d:c4:04:74:f2:0d:c8:73:81:27:fc:34:07:fa: cf:22:fa:94:aa:53:5e:78:ea:c2:9f:4f:89:1c:d3: 5b:c1:be:32:1d:9c:41:d9:10:39:eb:8e:55:da:bc: a5:52:2a:90:3b:b5:21:bd:12:e9:cd:36:29:17:17: 1d:a2:18:3d:1f:d7:b5:39:d8:9f:51:9c:12:3d:fb: fc:67:fe:2b:d3:7c:2e:0a:e9:60:ca:69:7c:5b:38: 8b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:43:14:12:6C:6D:13:B2:CA:98:D3:18:3A:19:37:EB:16:66:8A:B2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8937b5f0-d9e0-41bc-ab89-c61a14eb3df1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:e0d::/48 Signature Algorithm: sha256WithRSAEncryption 0f:2d:3d:e3:1d:20:d5:f7:e5:be:4c:54:5c:7e:3a:56:85:7a: b4:9c:77:1c:37:58:44:15:d8:d9:fb:b0:a8:ff:ea:64:77:8f: 00:e1:94:eb:0d:f0:7c:8a:25:2f:59:31:bf:23:1f:cf:7f:a4: 6a:f8:d6:a3:55:d9:f3:19:bd:bd:f5:b3:75:8c:3d:1a:44:aa: 5d:08:e8:17:ce:71:06:c9:ac:07:9a:36:b8:2d:a7:71:34:df: 7b:31:0d:ce:69:44:ed:65:57:e2:8b:e6:6e:9d:1c:16:27:7b: 07:44:8a:ab:3a:d6:c1:ec:49:72:e7:36:28:82:8f:ab:a4:83: b1:5d:23:98:34:14:0d:4e:56:b8:ef:21:89:54:fb:14:83:a6: 89:ec:13:44:14:86:00:f0:7d:4b:d6:54:d2:fa:34:1f:d9:d4: 0f:78:21:23:b7:7d:74:ba:14:82:4c:6c:1e:65:73:56:cd:23: ec:38:23:0c:67:c5:7c:cd:fb:22:09:e9:b9:22:b6:21:89:d9: 85:0e:68:86:be:a8:4d:76:56:cf:17:f4:08:2a:e5:80:9b:83: 45:06:10:fa:73:a5:d6:f7:f7:9a:d5:28:a9:a3:a8:a2:0f:a4: bb:dd:82:ae:7f:51:7f:75:bd:42:56:2e:8a:43:d6:4a:96:73: 84:8b:d0:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUqDeCYDDLF/ATLqcOFen7w+tmRMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNDAzMDIzMDEyWhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYmQxYWZhZTFlMzUwNGZmYjJmMDY5OGZkYWY5MTU1YTNj NWNjMmI1NmRiMmQ5MDkzMDY5NDUxY2FlMWUyMGYwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCCFqwAaSTM50wy1uhA8UU7v9vcYMnGuFCHeOjgh5d0g1e2 UVM/l7Do7XlgbHfCbPxAQgsXj0EhDkGIjBPhCCf26EgLKXTvHHmJjYMzkinsCmRG dkC/AYQtbf+l/75x4ooCzvVHcCo4stjZp0VEg8VX5rprMa41gbnO9ru877ejdmKO 7XAudc1LKb2x8AIE20CBfP0th0e8PVb9JpgcEZO2NjzkagaNxAR08g3Ic4En/DQH +s8i+pSqU1546sKfT4kc01vBvjIdnEHZEDnrjlXavKVSKpA7tSG9EunNNikXFx2i GD0f17U52J9RnBI9+/xn/ivTfC4K6WDKaXxbOIvRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAkMUEmxtE7LKmNMYOhk36xZmirIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg5MzdiNWYwLWQ5ZTAtNDFiYy1hYjg5LWM2MWExNGViM2RmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwDg0wDQYJKoZIhvcNAQELBQADggEBAA8tPeMdINX35b5MVFx+OlaF erScdxw3WEQV2Nn7sKj/6mR3jwDhlOsN8HyKJS9ZMb8jH89/pGr41qNV2fMZvb31 s3WMPRpEql0I6BfOcQbJrAeaNrgtp3E033sxDc5pRO1lV+KL5m6dHBYnewdEiqs6 1sHsSXLnNiiCj6ukg7FdI5g0FA1OVrjvIYlU+xSDponsE0QUhgDwfUvWVNL6NB/Z 1A94ISO3fXS6FIJMbB5lc1bNI+w4IwxnxXzN+yIJ6bkitiGJ2YUOaIa+qE12Vs8X 9Agq5YCbg0UGEPpzpdb395rVKKmjqKIPpLvdgq5/UX91vUJWLopD1kqWc4SL0Ks= -----END CERTIFICATE-----Generated at Fri Apr 17 08:20:20 2026 by rpki-client