$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/038bfc14-70d0-4845-80d9-ef20d84714c7.roa File: 038bfc14-70d0-4845-80d9-ef20d84714c7.roa (raw, json) Hash identifier: awPiytW3hgozAPUwSjzJYoyHLDa6TVvzqe0UDU4eeBc= Subject key identifier: 49:63:2E:C0:73:43:D6:D7:F6:87:99:22:CE:90:E6:AA:EC:14:31:1B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 61817E9C652624321974C1356292353DE294C5A2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/038bfc14-70d0-4845-80d9-ef20d84714c7.roa Signing time: Sun 01 Mar 2026 00:50:21 +0000 ROA not before: Sun 01 Mar 2026 00:50:21 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f10f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:81:7e:9c:65:26:24:32:19:74:c1:35:62:92:35:3d:e2:94:c5:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 00:50:21 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=2d324b6aa9baa8625a25d3faa9814ddc7a96fa3d48930cc0fe3bc086aecbc1a4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:97:f7:4c:7b:5f:71:2f:d6:54:02:ee:9c:b6: eb:d2:9b:3d:ef:4f:98:cd:30:ce:46:74:c1:81:bf: 61:55:61:6b:cf:e6:8f:5c:65:37:04:86:c1:e0:82: 64:bc:29:fb:18:b9:63:a3:e3:5d:3a:36:22:3c:5a: b6:fc:8a:b6:5d:6b:da:10:9c:a1:70:ea:68:bd:64: d3:d3:60:1f:c6:39:61:ed:34:20:bf:83:80:a4:80: 80:80:66:da:88:cb:0a:02:f5:3b:db:1f:60:19:2d: a1:a4:c2:4d:f9:10:21:e0:cb:ba:33:af:63:85:0e: 4e:99:fb:5d:f6:9f:5c:be:dc:ee:0c:19:a4:d8:e3: c3:d4:9f:ea:5a:5f:79:71:0d:27:b2:10:7f:07:ca: ee:90:0c:76:cc:89:fc:0d:ec:9d:a4:e2:c8:d6:fa: 64:ee:1b:d1:09:c8:dd:c8:42:36:a8:a2:fd:26:99: 94:58:d9:af:d1:b8:3f:d3:dc:46:57:30:98:21:dc: 70:af:f1:a1:74:1f:4d:68:ba:cc:17:e5:85:b9:d1: 60:bc:5b:f1:28:42:82:32:27:2d:55:55:fa:40:87: 9f:4a:4d:bd:b7:9d:a5:3d:8a:18:2a:30:cb:1c:d3: 43:a8:36:71:3a:a3:8f:af:54:bc:1d:83:6c:fd:e0: e8:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:63:2E:C0:73:43:D6:D7:F6:87:99:22:CE:90:E6:AA:EC:14:31:1B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/038bfc14-70d0-4845-80d9-ef20d84714c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10f::/48 Signature Algorithm: sha256WithRSAEncryption 7a:2b:31:cb:b0:b4:13:a7:98:06:ca:67:b7:1e:22:1c:15:99: e0:96:cf:e7:cd:0f:1a:4d:19:6c:37:2c:96:53:18:15:ee:79: 81:3e:fc:f6:32:22:bb:06:99:60:c2:d0:57:61:0f:31:76:0c: 88:c5:7e:a7:b5:d1:38:1f:e2:9d:db:17:85:01:1d:01:d6:bb: d7:17:18:8c:29:ff:70:17:45:5d:1b:61:54:28:63:52:30:bc: 51:a8:0e:93:81:8c:86:e3:1a:ad:a2:a9:8a:1d:11:74:27:b5: 4d:05:a9:37:4d:48:ac:a8:b5:e0:92:d2:6a:cc:16:9c:e9:5a: 8e:92:b0:38:95:4b:c5:59:d2:cc:57:8e:40:f7:16:4c:bb:96: 29:f6:a6:0a:c9:93:f8:bc:19:55:8a:fb:bf:64:12:fd:96:88: 6b:c6:93:ee:4d:32:40:ce:a9:e8:24:57:7a:4a:e6:27:31:2b: 18:49:af:28:74:68:d6:cf:64:f5:fa:60:80:62:72:22:d6:6b: 68:db:9e:44:82:b2:01:bb:a3:7c:89:ce:53:98:7f:3b:ce:56: c0:c7:f4:08:9b:5d:b7:78:a5:8c:94:5f:41:de:b6:60:13:66: f2:6d:ca:2a:e5:2f:04:dc:e2:ea:9a:34:11:41:31:70:55:4b: 61:b5:a2:e2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYYF+nGUmJDIZdME1YpI1PeKUxaIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDA1MDIxWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDMyNGI2YWE5YmFhODYyNWEyNWQzZmFhOTgxNGRkYzdh OTZmYTNkNDg5MzBjYzBmZTNiYzA4NmFlY2JjMWE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOl/dMe19xL9ZUAu6ctuvSmz3vT5jNMM5GdMGBv2FVYWvP 5o9cZTcEhsHggmS8KfsYuWOj4106NiI8Wrb8irZda9oQnKFw6mi9ZNPTYB/GOWHt NCC/g4CkgICAZtqIywoC9TvbH2AZLaGkwk35ECHgy7ozr2OFDk6Z+132n1y+3O4M GaTY48PUn+paX3lxDSeyEH8Hyu6QDHbMifwN7J2k4sjW+mTuG9EJyN3IQjaoov0m mZRY2a/RuD/T3EZXMJgh3HCv8aF0H01ouswX5YW50WC8W/EoQoIyJy1VVfpAh59K Tb23naU9ihgqMMsc00OoNnE6o4+vVLwdg2z94OgPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSWMuwHND1tf2h5kizpDmquwUMRswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAzOGJmYzE0LTcwZDAtNDg0NS04MGQ5LWVmMjBkODQ3MTRjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78Q8wDQYJKoZIhvcNAQELBQADggEBAHorMcuwtBOnmAbKZ7ceIhwV meCWz+fNDxpNGWw3LJZTGBXueYE+/PYyIrsGmWDC0FdhDzF2DIjFfqe10Tgf4p3b F4UBHQHWu9cXGIwp/3AXRV0bYVQoY1IwvFGoDpOBjIbjGq2iqYodEXQntU0FqTdN SKyoteCS0mrMFpzpWo6SsDiVS8VZ0sxXjkD3Fky7lin2pgrJk/i8GVWK+79kEv2W iGvGk+5NMkDOqegkV3pK5icxKxhJryh0aNbPZPX6YIBiciLWa2jbnkSCsgG7o3yJ zlOYfzvOVsDH9AibXbd4pYyUX0HetmATZvJtyirlLwTc4uqaNBFBMXBVS2G1ouI= -----END CERTIFICATE-----Generated at Sun Mar 1 22:08:35 2026 by rpki-client