$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/02705a78-c949-405b-9b73-0ec922410e1e.roa File: 02705a78-c949-405b-9b73-0ec922410e1e.roa (raw, json) Hash identifier: L6Kf13e+zcH4T4aQyLPig6YI2cCtMa2bm9ybpIrg5N8= Subject key identifier: CF:8A:96:50:3D:13:8B:1F:73:E2:4C:42:1A:BB:12:87:85:8E:1F:E1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1DF1E692138BDA5F698D242B9158D6D5DB174D1A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/02705a78-c949-405b-9b73-0ec922410e1e.roa Signing time: Wed 25 Feb 2026 00:00:41 +0000 ROA not before: Wed 25 Feb 2026 00:00:41 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:f1:e6:92:13:8b:da:5f:69:8d:24:2b:91:58:d6:d5:db:17:4d:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 25 00:00:41 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=23a7b849d15baa97be1831909e87d706e1915a799ccee63c2f3b2d4c66d8168d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:21:dc:51:ae:97:ce:10:bf:63:48:f1:6a:9f: 6a:55:a8:73:53:bb:94:f0:7b:32:ae:97:2f:9d:90: 92:ef:29:50:ef:27:67:b5:d0:d9:05:80:c3:68:e5: 2d:48:9e:c7:05:0d:6c:6b:06:b0:db:a7:fc:1e:8e: 4a:8e:6c:ac:d6:92:38:9d:ee:ba:d0:13:51:36:98: d1:f3:af:7b:2d:ac:78:a4:da:a2:ca:08:c2:dc:90: 0d:9e:6c:4b:a0:70:aa:ed:43:5e:b6:b5:af:9b:de: d7:e5:3f:b7:7d:eb:37:b9:ba:3f:c9:df:0e:29:5d: 11:35:4e:f2:62:a6:d2:c8:af:5e:69:a8:9c:9a:d9: d1:0d:cd:4e:ca:2f:be:1f:b9:05:ee:9f:68:00:bc: f6:c7:22:06:0d:bb:92:70:84:13:e0:46:df:2a:5e: 0a:84:1c:f6:4f:98:74:9c:3a:fd:86:3d:21:70:f0: a6:05:32:89:21:8d:8b:94:77:13:fe:ba:a2:c3:88: 4f:25:9d:e0:90:35:5b:95:21:5d:5d:05:cc:4c:7e: c3:2a:73:86:94:86:f8:76:bf:b2:12:68:74:54:60: 40:eb:cc:21:c6:7f:9e:c8:44:55:25:51:99:3b:90: 29:4f:13:5e:cc:45:2d:32:5f:33:82:67:33:f5:c5: 29:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:8A:96:50:3D:13:8B:1F:73:E2:4C:42:1A:BB:12:87:85:8E:1F:E1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/02705a78-c949-405b-9b73-0ec922410e1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f100::/40 Signature Algorithm: sha256WithRSAEncryption 60:08:0a:8a:79:0f:81:c6:11:9e:27:ba:0a:b7:b2:e6:89:ee: ea:db:e9:69:09:33:bb:f3:e4:6e:ec:aa:b9:08:a7:c4:10:09: 2b:76:77:89:2d:29:e4:9d:17:b3:29:5f:39:46:a5:14:1e:84: c3:3b:be:10:ff:53:9d:b9:58:68:36:37:34:2a:a6:0c:10:6d: f9:1c:ac:02:0b:78:bc:61:c9:c0:53:c4:26:77:02:56:f6:cf: 71:7c:d3:d3:88:10:3a:4d:90:a9:5e:74:07:91:fc:a7:23:3b: cc:58:d3:39:10:31:84:c2:a8:25:86:c1:bf:32:48:73:c7:65: 59:57:89:c0:76:63:d9:18:f0:02:4d:a4:76:22:85:44:89:1f: 8e:ec:3c:20:87:aa:86:1b:18:a6:22:cc:2f:a2:73:87:6a:35: 9e:4f:17:8c:d4:bd:bc:4d:95:37:19:e6:29:19:d6:df:1a:2d: 90:12:c5:0d:19:ac:39:6d:3e:b5:c4:c8:f8:b2:3e:6b:6e:23: a4:90:11:72:20:c3:81:61:77:01:9c:aa:46:fc:14:5a:2e:2c: 70:4d:a8:52:7c:39:b5:f7:8a:91:9b:20:f3:e1:8a:8e:3f:1c: a5:05:89:52:e8:a6:39:a5:75:e6:26:0a:fa:4b:6b:06:8c:a4: cb:7c:0c:17 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHfHmkhOL2l9pjSQrkVjW1dsXTRowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI1MDAwMDQxWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2E3Yjg0OWQxNWJhYTk3YmUxODMxOTA5ZTg3ZDcwNmUx OTE1YTc5OWNjZWU2M2MyZjNiMmQ0YzY2ZDgxNjhkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCIdxRrpfOEL9jSPFqn2pVqHNTu5TwezKuly+dkJLvKVDv J2e10NkFgMNo5S1InscFDWxrBrDbp/wejkqObKzWkjid7rrQE1E2mNHzr3strHik 2qLKCMLckA2ebEugcKrtQ162ta+b3tflP7d96ze5uj/J3w4pXRE1TvJiptLIr15p qJya2dENzU7KL74fuQXun2gAvPbHIgYNu5JwhBPgRt8qXgqEHPZPmHScOv2GPSFw 8KYFMokhjYuUdxP+uqLDiE8lneCQNVuVIV1dBcxMfsMqc4aUhvh2v7ISaHRUYEDr zCHGf57IRFUlUZk7kClPE17MRS0yXzOCZzP1xSmPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUz4qWUD0Tix9z4kxCGrsSh4WOH+EwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAyNzA1YTc4LWM5NDktNDA1Yi05YjczLTBlYzkyMjQxMGUxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDz8TANBgkqhkiG9w0BAQsFAAOCAQEAYAgKinkPgcYRnie6Crey5onu 6tvpaQkzu/PkbuyquQinxBAJK3Z3iS0p5J0XsylfOUalFB6Ewzu+EP9TnblYaDY3 NCqmDBBt+RysAgt4vGHJwFPEJncCVvbPcXzT04gQOk2QqV50B5H8pyM7zFjTORAx hMKoJYbBvzJIc8dlWVeJwHZj2RjwAk2kdiKFRIkfjuw8IIeqhhsYpiLML6Jzh2o1 nk8XjNS9vE2VNxnmKRnW3xotkBLFDRmsOW0+tcTI+LI+a24jpJARciDDgWF3AZyq RvwUWi4scE2oUnw5tfeKkZsg8+GKjj8cpQWJUuimOaV15iYK+ktrBoyky3wMFw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:16 2026 by rpki-client