$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1a5323d-810c-4209-a36d-e85d1d062c2e.roa File: a1a5323d-810c-4209-a36d-e85d1d062c2e.roa (raw, json) Hash identifier: xsTEewCL8lKeYDjspnFVe1lXe6HryyMm+fTNLmFMwsU= Subject key identifier: E1:4F:DB:3C:DF:A1:C8:4B:B7:88:97:5E:6D:D9:F7:0B:D3:15:31:70 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 60F73EDF747987BEFFBCEFFF1F47442947DB3198 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1a5323d-810c-4209-a36d-e85d1d062c2e.roa Signing time: Wed 20 May 2026 00:50:08 +0000 ROA not before: Wed 20 May 2026 00:50:08 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f10a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:f7:3e:df:74:79:87:be:ff:bc:ef:ff:1f:47:44:29:47:db:31:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 00:50:08 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=1f99a9cd4985c95b7f10d4fb18583c049a679947b1e43f4e13b87a15f18a9a19, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:37:a1:24:94:b0:08:fa:b5:96:51:61:73:36: dd:3d:8e:81:5f:a1:2d:a4:ae:52:d2:6e:4a:e8:19: 31:fd:33:7f:69:65:7c:4b:51:10:37:b2:4e:af:f7: 73:a1:a1:79:09:7d:13:58:83:4b:de:e7:8e:1b:64: 23:13:b8:b8:06:d4:6c:b6:d8:49:f4:9d:84:ec:bb: 43:64:3f:ee:c9:14:96:ac:3f:b8:34:de:2d:bb:3b: 49:ff:5f:e4:60:62:b9:aa:97:9c:81:28:bd:6b:bf: a2:12:fc:4c:34:e6:b7:af:82:67:99:b7:67:21:86: 9a:00:9f:45:e3:30:57:c7:6a:63:1d:d6:5d:06:fe: 8a:0f:ca:fd:24:b2:40:b4:f6:e0:ac:ac:49:b6:44: a8:80:eb:85:53:b6:1d:fd:6a:31:6d:1e:02:c3:54: 8b:4d:e3:76:9e:2d:c2:63:42:f4:86:0f:ec:15:31: bd:e3:18:1a:92:56:96:50:22:48:61:c1:eb:bd:e9: ab:46:b3:6c:81:d5:3e:2d:4d:05:30:16:22:02:e2: 93:5d:95:0a:2e:d8:6c:39:f4:ac:21:69:91:09:10: f1:4c:7b:fb:3c:ee:e6:35:84:2b:e8:fc:ec:93:fa: 43:ae:e9:37:3e:53:c9:b3:4d:e8:a7:73:17:33:ca: 8f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4F:DB:3C:DF:A1:C8:4B:B7:88:97:5E:6D:D9:F7:0B:D3:15:31:70 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1a5323d-810c-4209-a36d-e85d1d062c2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10a::/48 Signature Algorithm: sha256WithRSAEncryption 91:8a:de:43:fd:b2:23:68:8d:c0:6a:3d:4f:cc:6f:9c:07:68: 9e:d0:7d:6f:18:f0:c2:ff:85:6c:37:62:1a:60:e5:ac:a1:cb: 52:f8:be:0e:18:0c:f8:f9:0a:77:90:e2:34:31:c0:72:ff:d3: b7:65:7b:8e:40:f1:58:10:f0:76:e5:f8:90:fe:d0:a9:35:7b: cf:03:d8:14:07:5d:57:6c:7f:33:ae:e6:a7:3e:12:50:10:d3: 78:ea:8e:c1:32:1f:63:0c:a2:26:87:14:1d:6d:f1:71:40:51: 92:43:1e:b4:8e:e6:c2:a2:10:14:76:4e:79:7e:cc:11:8a:6b: cf:38:fc:9a:db:ee:bb:9f:3a:c7:4c:18:46:cd:86:05:6a:ba: 17:2e:c5:84:41:d0:2c:5c:c0:48:65:f2:95:a4:93:5c:0b:56: 8d:66:b2:39:96:e9:90:12:1f:63:86:8d:11:7d:4a:e8:06:d4: 9f:17:20:60:e3:e3:8f:20:8f:16:e2:44:90:c0:f8:9f:98:5b: 54:79:4e:39:f5:b9:d0:39:d8:4b:e3:e2:1e:ce:bf:c1:62:67: f4:dd:e9:7e:8d:cf:64:0e:55:49:f4:9e:60:9a:bc:a3:aa:83: 8c:d4:9a:82:ad:d5:e6:53:a5:0b:59:6c:3a:c7:5d:47:75:0c: e2:21:6b:ac -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYPc+33R5h77/vO//H0dEKUfbMZgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTIwMDA1MDA4WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjk5YTljZDQ5ODVjOTViN2YxMGQ0ZmIxODU4M2MwNDlh Njc5OTQ3YjFlNDNmNGUxM2I4N2ExNWYxOGE5YTE5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6N6EklLAI+rWWUWFzNt09joFfoS2krlLSbkroGTH9M39p ZXxLURA3sk6v93OhoXkJfRNYg0ve544bZCMTuLgG1Gy22En0nYTsu0NkP+7JFJas P7g03i27O0n/X+RgYrmql5yBKL1rv6IS/Ew05revgmeZt2chhpoAn0XjMFfHamMd 1l0G/ooPyv0kskC09uCsrEm2RKiA64VTth39ajFtHgLDVItN43aeLcJjQvSGD+wV Mb3jGBqSVpZQIkhhweu96atGs2yB1T4tTQUwFiIC4pNdlQou2Gw59KwhaZEJEPFM e/s87uY1hCvo/OyT+kOu6Tc+U8mzTeincxczyo9fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4U/bPN+hyEu3iJdebdn3C9MVMXAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExYTUzMjNkLTgxMGMtNDIwOS1hMzZkLWU4NWQxZDA2MmMyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QowDQYJKoZIhvcNAQELBQADggEBAJGK3kP9siNojcBqPU/Mb5wH aJ7QfW8Y8ML/hWw3Yhpg5ayhy1L4vg4YDPj5CneQ4jQxwHL/07dle45A8VgQ8Hbl +JD+0Kk1e88D2BQHXVdsfzOu5qc+ElAQ03jqjsEyH2MMoiaHFB1t8XFAUZJDHrSO 5sKiEBR2Tnl+zBGKa884/Jrb7rufOsdMGEbNhgVquhcuxYRB0CxcwEhl8pWkk1wL Vo1msjmW6ZASH2OGjRF9SugG1J8XIGDj448gjxbiRJDA+J+YW1R5Tjn1udA52Evj 4h7Ov8FiZ/Td6X6Nz2QOVUn0nmCavKOqg4zUmoKt1eZTpQtZbDrHXUd1DOIha6w= -----END CERTIFICATE-----Generated at Sat Jun 13 06:45:59 2026 by rpki-client