$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/02e80c9d-369f-46ba-87b8-e7748e7c9c90.roa File: 02e80c9d-369f-46ba-87b8-e7748e7c9c90.roa (raw, json) Hash identifier: rcsgMrzVT9yKCPPuIAu0/pmTRw6x0l4MtfnKWKRJ/T8= Subject key identifier: CC:41:9F:B6:92:71:82:77:43:F3:7A:AF:2B:33:EE:B6:71:2B:84:1D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1B81820AA7F5BE9F54E4FD6B22C3FBBDF9A06822 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/02e80c9d-369f-46ba-87b8-e7748e7c9c90.roa Signing time: Sat 28 Feb 2026 05:10:08 +0000 ROA not before: Sat 28 Feb 2026 05:10:08 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e700::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:81:82:0a:a7:f5:be:9f:54:e4:fd:6b:22:c3:fb:bd:f9:a0:68:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:10:08 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=8f3a68534b340fe939e94f5d85d1f1610634c58dd216c08b5f46f992d4102414, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:85:f6:97:59:12:a9:16:4a:79:83:67:fb:e4: b4:e4:12:6e:d3:fe:9e:15:53:13:e2:d9:4a:f7:ff: 9e:6b:fe:90:36:91:41:5a:78:a4:a7:35:91:58:f7: 78:fb:50:2f:0e:f8:56:30:04:b6:4d:22:12:ad:54: 3c:02:18:2e:b5:0c:8d:6b:77:ac:4a:74:33:e7:14: 0d:68:bd:71:33:74:cb:66:44:70:0c:97:b2:62:79: 57:a7:7b:98:7a:c5:3e:35:f9:52:dd:f8:df:50:08: 51:d1:fa:1a:03:ca:00:40:d0:7e:df:04:e3:f4:57: b0:61:bf:a4:07:0b:87:b4:a0:74:55:19:a2:3b:bf: 00:8b:1e:a1:d6:a7:53:d4:d2:99:52:fd:71:d5:21: e7:5d:d0:c8:45:e6:4c:1f:69:78:39:9b:c9:09:4a: 8e:b9:ca:16:23:f6:4e:c0:5e:69:ad:3d:42:d0:ba: e8:28:26:cc:c3:4d:28:79:74:48:fb:bb:cc:60:5a: 90:74:6e:96:85:c5:b2:33:5b:74:8a:01:ca:9f:fc: 32:fc:08:df:e0:04:29:44:e7:4e:d6:8f:44:54:4a: 77:bb:3a:2a:3f:e6:b5:66:e2:ba:fe:8e:c9:75:e1: 33:a3:6f:21:23:38:b7:b1:1b:ce:fd:e6:35:3d:c4: c5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:41:9F:B6:92:71:82:77:43:F3:7A:AF:2B:33:EE:B6:71:2B:84:1D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/02e80c9d-369f-46ba-87b8-e7748e7c9c90.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e700::/40 Signature Algorithm: sha256WithRSAEncryption 6d:a4:b4:1a:50:71:70:de:d5:4f:97:e7:6c:b1:c5:07:6e:e5: 93:f9:a1:18:5c:7c:93:df:65:cf:48:98:a2:58:f6:fe:a6:b1: a2:a2:d1:13:02:df:48:c0:38:2a:96:1f:db:4e:c5:c7:6c:8d: 0c:e1:1a:9e:28:ab:b4:55:c3:08:55:45:56:45:bd:0e:5d:73: 13:64:84:6c:6e:50:a2:ac:f2:ac:d3:3a:8c:03:f5:f6:3b:0c: df:c5:f8:91:29:3f:70:8b:66:61:ee:3c:1b:cb:af:07:c0:2d: 95:ae:ea:89:c8:e9:30:3b:d6:c1:d8:6d:d6:c5:71:54:4e:62: 53:b0:97:62:f0:aa:71:15:19:46:3d:8f:c5:4d:c6:18:0a:6e: 65:ad:cb:4d:06:a0:b2:f9:40:03:e4:ea:35:10:1b:12:be:f2: 72:17:b1:fd:db:0f:0d:d8:11:29:37:8e:93:ec:d6:d1:f6:5f: 93:b2:e2:a2:7a:f6:b4:dc:53:04:d9:f9:08:87:1d:31:0f:26: 6a:00:a9:23:3a:cd:eb:08:44:90:5f:8d:f1:c6:ac:46:ec:39: bf:ca:4a:c5:5a:d3:de:42:d4:ce:b9:c9:13:30:f3:a9:2b:3c: cd:06:43:e4:88:a9:4b:ba:1f:31:06:1a:7b:6b:3f:bb:81:36: cf:59:df:ea -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUG4GCCqf1vp9U5P1rIsP7vfmgaCIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUxMDA4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjNhNjg1MzRiMzQwZmU5MzllOTRmNWQ4NWQxZjE2MTA2 MzRjNThkZDIxNmMwOGI1ZjQ2Zjk5MmQ0MTAyNDE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwhfaXWRKpFkp5g2f75LTkEm7T/p4VUxPi2Ur3/55r/pA2 kUFaeKSnNZFY93j7UC8O+FYwBLZNIhKtVDwCGC61DI1rd6xKdDPnFA1ovXEzdMtm RHAMl7JieVene5h6xT41+VLd+N9QCFHR+hoDygBA0H7fBOP0V7Bhv6QHC4e0oHRV GaI7vwCLHqHWp1PU0plS/XHVIedd0MhF5kwfaXg5m8kJSo65yhYj9k7AXmmtPULQ uugoJszDTSh5dEj7u8xgWpB0bpaFxbIzW3SKAcqf/DL8CN/gBClE507Wj0RUSne7 Oio/5rVm4rr+jsl14TOjbyEjOLexG8795jU9xMVDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUzEGftpJxgndD83qvKzPutnErhB0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAyZTgwYzlkLTM2OWYtNDZiYS04N2I4LWU3NzQ4ZTdjOWM5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75zANBgkqhkiG9w0BAQsFAAOCAQEAbaS0GlBxcN7VT5fnbLHFB27l k/mhGFx8k99lz0iYolj2/qaxoqLREwLfSMA4KpYf207Fx2yNDOEaniirtFXDCFVF VkW9Dl1zE2SEbG5QoqzyrNM6jAP19jsM38X4kSk/cItmYe48G8uvB8Atla7qicjp MDvWwdht1sVxVE5iU7CXYvCqcRUZRj2PxU3GGApuZa3LTQagsvlAA+TqNRAbEr7y chex/dsPDdgRKTeOk+zW0fZfk7Lionr2tNxTBNn5CIcdMQ8magCpIzrN6whEkF+N 8casRuw5v8pKxVrT3kLUzrnJEzDzqSs8zQZD5IipS7ofMQYae2s/u4E2z1nf6g== -----END CERTIFICATE-----Generated at Sun Mar 1 21:54:36 2026 by rpki-client