$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ed489dd8-33df-4b42-9bde-ace356f6114a.roa File: ed489dd8-33df-4b42-9bde-ace356f6114a.roa (raw, json) Hash identifier: yGodMApR72+14SQ2u/YvMy7Q+9FAs8pU4JQuFtwRFUc= Subject key identifier: A9:63:E9:56:BF:EF:4C:4A:48:62:63:9E:1A:5E:D0:A5:46:73:C8:7F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5F954D49D740A415FD5A732B337A46F695A0852B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ed489dd8-33df-4b42-9bde-ace356f6114a.roa Signing time: Wed 20 May 2026 00:50:07 +0000 ROA not before: Wed 20 May 2026 00:50:07 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:95:4d:49:d7:40:a4:15:fd:5a:73:2b:33:7a:46:f6:95:a0:85:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 20 00:50:07 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=7121eeae2e7e2d5cf2295f7926fc3458fa1ef6bbac62ea01c29f627cce7cf267, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c9:d0:c7:01:44:0d:10:ef:cf:14:7f:e6:e2: 30:51:a1:44:aa:88:80:5e:df:0e:7e:95:24:03:ba: 62:84:b2:3d:2c:78:14:de:57:11:51:52:22:c6:62: 4f:3f:a2:71:62:91:97:79:b8:a7:c0:8f:ed:f0:01: a7:01:4c:62:9c:6e:52:e5:64:0b:20:6b:fd:5d:cf: 40:06:cc:28:4a:89:68:b6:28:d9:22:a6:3f:2e:5b: db:c0:79:cc:e3:a4:d1:7c:52:16:78:dd:f2:37:87: 04:9e:87:d8:d3:b9:bb:5d:9c:06:89:69:c9:b6:10: 7d:51:4b:a9:74:cb:de:60:33:6d:01:45:7a:4a:d1: 7a:e8:f9:ef:71:db:6e:f8:01:a1:f9:4e:0e:db:d0: 02:cf:3a:b6:c1:46:39:87:b2:ce:7c:70:52:fc:fd: 10:86:94:f4:58:3a:cb:c7:8f:fb:ca:2d:48:b9:fb: bf:b4:94:c5:34:4c:88:cf:76:bb:42:87:70:d8:c8: f7:62:d7:74:0c:a6:e5:61:c1:12:23:55:9c:12:66: 42:3d:ba:f0:91:01:8d:c2:71:7f:3f:f0:18:08:eb: 8e:bd:ca:dc:30:3b:66:67:32:92:79:53:9a:fb:d4: e4:40:66:74:2a:bc:9a:d5:34:9d:54:d2:35:fe:19: 4c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:63:E9:56:BF:EF:4C:4A:48:62:63:9E:1A:5E:D0:A5:46:73:C8:7F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ed489dd8-33df-4b42-9bde-ace356f6114a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f102::/48 Signature Algorithm: sha256WithRSAEncryption 20:c3:c4:c9:11:4b:1d:0c:98:3b:06:04:5a:1c:8f:c1:8d:a4: 3f:8d:4b:79:e7:e2:9b:90:e7:77:f0:6a:c7:08:6c:a1:b7:bf: 40:82:b6:8d:4c:6e:e3:4f:13:02:38:87:c5:75:89:8e:ba:3e: 6c:c6:3d:8e:34:aa:46:08:be:65:f6:7e:11:87:2d:a6:43:02: 1b:4f:b5:c1:49:c6:e5:77:82:1c:8f:6f:74:69:55:2b:c9:aa: 75:82:85:2c:f7:a7:ab:4c:66:a6:17:d8:de:47:de:77:25:29: f3:22:6f:df:a2:03:b4:82:18:09:a0:ca:66:cc:87:21:0e:81: 7e:62:43:3a:44:2a:e3:74:d4:8f:69:36:8d:ed:be:78:13:e6: 95:b0:9f:4b:c1:ab:97:29:b1:26:7f:11:80:fb:b2:a7:34:e9: e0:09:fc:8c:a6:77:69:37:b5:e7:0c:11:81:c6:f3:bc:3a:12: c9:0e:15:bb:53:93:5b:0d:ae:11:63:87:d6:3d:50:23:22:2d: a5:d1:dc:fe:c3:e7:1a:1d:67:0e:9a:39:94:d8:07:be:d7:00: 2c:c9:73:02:15:a3:db:5e:8e:3d:89:19:dd:d5:d8:b5:2b:c4: cc:13:a7:28:8a:b7:ea:aa:33:a5:6e:78:03:76:7f:d0:26:fc: db:99:e8:ae -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUX5VNSddApBX9WnMrM3pG9pWghSswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwNTIwMDA1MDA3WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTIxZWVhZTJlN2UyZDVjZjIyOTVmNzkyNmZjMzQ1OGZh MWVmNmJiYWM2MmVhMDFjMjlmNjI3Y2NlN2NmMjY3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsydDHAUQNEO/PFH/m4jBRoUSqiIBe3w5+lSQDumKEsj0s eBTeVxFRUiLGYk8/onFikZd5uKfAj+3wAacBTGKcblLlZAsga/1dz0AGzChKiWi2 KNkipj8uW9vAeczjpNF8UhZ43fI3hwSeh9jTubtdnAaJacm2EH1RS6l0y95gM20B RXpK0Xro+e9x2274AaH5Tg7b0ALPOrbBRjmHss58cFL8/RCGlPRYOsvHj/vKLUi5 +7+0lMU0TIjPdrtCh3DYyPdi13QMpuVhwRIjVZwSZkI9uvCRAY3CcX8/8BgI6469 ytwwO2ZnMpJ5U5r71ORAZnQqvJrVNJ1U0jX+GUyVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqWPpVr/vTEpIYmOeGl7QpUZzyH8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VkNDg5ZGQ4LTMzZGYtNGI0Mi05YmRlLWFjZTM1NmY2MTE0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QIwDQYJKoZIhvcNAQELBQADggEBACDDxMkRSx0MmDsGBFocj8GN pD+NS3nn4puQ53fwascIbKG3v0CCto1MbuNPEwI4h8V1iY66PmzGPY40qkYIvmX2 fhGHLaZDAhtPtcFJxuV3ghyPb3RpVSvJqnWChSz3p6tMZqYX2N5H3nclKfMib9+i A7SCGAmgymbMhyEOgX5iQzpEKuN01I9pNo3tvngT5pWwn0vBq5cpsSZ/EYD7sqc0 6eAJ/Iymd2k3tecMEYHG87w6EskOFbtTk1sNrhFjh9Y9UCMiLaXR3P7D5xodZw6a OZTYB77XACzJcwIVo9tejj2JGd3V2LUrxMwTpyiKt+qqM6VueAN2f9Am/NuZ6K4= -----END CERTIFICATE-----Generated at Wed Jun 17 09:11:22 2026 by rpki-client