$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa File: bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa (raw, json) Hash identifier: mUJjfjkjDmYFW3ulB3WM8hd1H6HzTqTdKjS9z7JoqdY= Subject key identifier: 69:65:FA:28:E2:47:3D:52:AA:30:A9:3E:4F:77:BA:FE:49:7B:1A:45 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2DE57F63F0A11CAA0FCB51EA7A95CBA5C35F19BF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa Signing time: Tue 19 May 2026 04:30:16 +0000 ROA not before: Tue 19 May 2026 04:30:16 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5519::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:e5:7f:63:f0:a1:1c:aa:0f:cb:51:ea:7a:95:cb:a5:c3:5f:19:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 19 04:30:16 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=7d6c945481e991cbc074639e12c8b92d9236af1cb7484cfb1b7543434357be07, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ee:05:c3:3f:6c:4a:83:e2:ac:db:18:8f:25: 4f:1a:d6:9b:59:76:ae:ff:ac:35:2c:37:c5:33:ca: f4:f3:9b:44:d5:0b:86:8b:13:7e:0f:8e:54:1f:10: ec:9f:49:1a:ea:2e:6a:1f:a0:0b:c3:64:da:4d:fa: 27:d8:35:c2:66:e3:2e:5a:ad:51:03:d6:42:86:85: 90:57:bd:df:f8:f2:98:24:41:af:e8:9b:7d:19:f0: de:15:eb:80:e5:99:b3:a0:de:0d:4d:1f:d9:10:a6: 94:de:fa:b2:82:9d:11:ee:96:7d:1d:6c:d9:0d:fd: bf:54:88:7b:dd:9f:9e:60:d4:05:48:fd:67:dd:0a: 81:bd:ed:19:a1:a6:e9:40:a0:b8:56:25:f0:1d:13: a8:20:41:ff:af:54:f0:05:71:70:b6:c6:9e:76:57: 88:59:3b:46:7e:4a:f6:91:3d:54:f7:82:bd:c9:3d: 3e:78:c6:df:c1:c1:85:a5:61:db:7b:d4:ff:e0:4b: 3b:33:6b:f2:e9:ca:22:a3:8a:0e:54:a3:0a:8a:fe: 87:f1:37:3a:79:b2:51:81:bf:3f:d5:3e:40:90:6d: ca:5e:22:01:88:c0:81:2e:f6:68:59:c4:ae:29:ed: 03:c1:a0:fe:72:3a:e9:0e:4f:ec:38:e7:b7:b7:81: a9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:65:FA:28:E2:47:3D:52:AA:30:A9:3E:4F:77:BA:FE:49:7B:1A:45 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5519::/48 Signature Algorithm: sha256WithRSAEncryption 90:6e:89:c6:1e:b3:c5:8c:4a:a1:9e:bf:a5:96:10:2a:ae:4b: d0:8f:d0:e7:5a:af:8e:65:a5:df:39:12:32:d1:7a:d8:80:bc: 41:50:76:f4:49:9c:dc:62:77:70:f1:d5:12:35:bf:ee:e5:7c: ce:2d:a4:27:40:9b:a2:97:a3:01:89:e7:e6:f3:e0:45:65:ea: 5a:1c:34:7f:ff:d1:6d:c1:4f:f5:a3:dd:f6:fc:f5:97:7e:84: 76:b4:6a:44:8d:9a:a0:d0:07:b2:47:3d:ca:9d:ee:85:8e:e4: 90:9c:ef:47:cd:f1:65:38:e8:a2:63:6d:c4:75:3c:0a:9a:41: 90:1a:c3:34:5e:16:4b:1e:97:5e:34:2d:d4:69:1a:5c:cc:94: 8f:07:ef:e4:93:4b:09:aa:9b:01:f2:29:cf:e8:6d:e9:91:ef: 48:c2:b1:fb:ed:1f:20:51:5f:8a:e9:cd:d0:62:74:b9:80:20: 28:b2:b8:05:87:16:82:9e:80:b0:68:31:59:64:17:fb:2b:73: 4c:22:e6:c5:c4:34:7e:09:d6:6a:5e:77:73:8f:2f:e0:b6:ff: 66:19:99:f3:b6:3e:ea:d8:95:0e:1a:a0:24:94:f5:19:8e:30: 3f:3d:8f:42:94:ea:e6:94:55:7d:01:4c:98:0f:9a:20:89:fb: fa:17:59:2d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULeV/Y/ChHKoPy1HqepXLpcNfGb8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTE5MDQzMDE2WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDZjOTQ1NDgxZTk5MWNiYzA3NDYzOWUxMmM4YjkyZDky MzZhZjFjYjc0ODRjZmIxYjc1NDM0MzQzNTdiZTA3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf7gXDP2xKg+Ks2xiPJU8a1ptZdq7/rDUsN8UzyvTzm0TV C4aLE34PjlQfEOyfSRrqLmofoAvDZNpN+ifYNcJm4y5arVED1kKGhZBXvd/48pgk Qa/om30Z8N4V64DlmbOg3g1NH9kQppTe+rKCnRHuln0dbNkN/b9UiHvdn55g1AVI /WfdCoG97RmhpulAoLhWJfAdE6ggQf+vVPAFcXC2xp52V4hZO0Z+SvaRPVT3gr3J PT54xt/BwYWlYdt71P/gSzsza/LpyiKjig5UowqK/ofxNzp5slGBvz/VPkCQbcpe IgGIwIEu9mhZxK4p7QPBoP5yOukOT+w457e3gal3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUaWX6KOJHPVKqMKk+T3e6/kl7GkUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JkYTMzODAwLTEwOGQtNGViNy1iYmM4LWYxZjNhNWEwODhlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRkwDQYJKoZIhvcNAQELBQADggEBAJBuicYes8WMSqGev6WWECqu S9CP0Odar45lpd85EjLRetiAvEFQdvRJnNxid3Dx1RI1v+7lfM4tpCdAm6KXowGJ 5+bz4EVl6locNH//0W3BT/Wj3fb89Zd+hHa0akSNmqDQB7JHPcqd7oWO5JCc70fN 8WU46KJjbcR1PAqaQZAawzReFksel140LdRpGlzMlI8H7+STSwmqmwHyKc/obemR 70jCsfvtHyBRX4rpzdBidLmAICiyuAWHFoKegLBoMVlkF/src0wi5sXENH4J1mpe d3OPL+C2/2YZmfO2PurYlQ4aoCSU9RmOMD89j0KU6uaUVX0BTJgPmiCJ+/oXWS0= -----END CERTIFICATE-----Generated at Sat Jun 13 07:04:34 2026 by rpki-client