$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa File: 03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa (raw, json) Hash identifier: 2zTcrzahZme9l9zVFD4f6BBfXV1zpuUa5VEIPmtAEgI= Subject key identifier: C4:78:9D:22:49:AD:81:C0:85:36:54:C4:83:F7:CE:07:06:E0:C2:42 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7D07563C08F334A9E450062B76AAF33A1F2FD8DE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa Signing time: Sat 28 Feb 2026 05:00:45 +0000 ROA not before: Sat 28 Feb 2026 05:00:45 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:07:56:3c:08:f3:34:a9:e4:50:06:2b:76:aa:f3:3a:1f:2f:d8:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:45 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=053e79e563d4e788902b47acf7e25fa0872445efe94c40a9b95f1d3927dbcdea, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ef:4b:61:96:1f:18:b3:95:7b:04:64:b7:ca: 22:ca:1d:75:fe:34:62:39:69:3b:11:b7:3d:72:5a: e6:99:39:0c:f3:1c:c2:e7:76:20:0d:0b:1f:66:7e: be:e5:2b:6f:c9:1b:ec:fd:94:bc:9f:d8:20:e4:e0: 77:5c:ad:48:82:f7:b2:d6:5f:b7:84:9f:23:4f:a9: c0:67:73:13:24:3b:fd:df:3e:cc:9f:dd:8f:13:fd: 0d:79:d7:bf:e2:6e:81:34:30:0e:2c:d0:43:83:74: c2:6f:0a:ee:94:9c:35:2b:18:ed:12:06:eb:7c:af: 52:63:1f:80:8d:46:df:20:98:5d:4a:9f:96:56:10: 0f:30:be:b3:90:2c:45:6f:83:c6:fa:65:db:e5:3f: 8a:63:3a:ca:21:68:a7:67:3a:fc:3b:ed:23:8e:0e: 1d:8b:4b:e1:79:e7:da:54:c3:23:71:6e:78:e7:87: c9:31:0e:fb:cb:8c:82:00:b9:ae:e0:04:e2:b4:38: d9:64:06:2c:41:14:f2:82:98:7f:09:66:c7:7b:83: 9a:05:38:aa:3a:22:3c:c7:c7:2e:bd:f5:37:c6:d4: 0f:bc:0b:23:20:ff:85:33:a3:ed:5a:a8:8e:01:50: e2:81:a4:b0:7e:0e:cf:76:d4:10:7e:be:b9:b4:51: d0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:78:9D:22:49:AD:81:C0:85:36:54:C4:83:F7:CE:07:06:E0:C2:42 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption 4f:c3:81:92:99:01:4a:18:83:89:57:b2:1c:5b:88:5f:d6:dd: aa:4a:9f:18:39:f1:9b:3b:ea:cd:2c:d7:03:ae:88:f9:ee:90: be:17:af:00:20:01:02:b1:51:e2:4a:bb:b5:80:df:07:42:a2: 51:69:06:ae:23:07:5f:2c:5e:6c:3b:9b:71:5f:51:f7:2e:01: 45:64:43:19:60:c9:79:ae:99:bf:63:d0:7f:2d:61:c9:c7:25: 04:37:73:9e:55:3f:e0:ec:cf:80:1a:13:d0:f6:6a:82:91:ee: d0:5a:fc:17:fa:02:4d:2c:22:82:0f:84:f7:99:4b:62:8c:47: 24:fb:41:a5:b6:88:7b:2d:a2:32:f0:07:d9:6b:8b:ff:ef:cc: 52:5b:cf:5a:cb:0c:e5:a6:53:8f:ba:32:ec:f6:7a:7f:7c:4a: 52:94:c4:78:3b:9c:db:f8:95:39:46:6a:fb:d4:ea:cc:4d:46: 28:f1:c1:7b:af:97:89:fe:5d:3c:84:22:54:15:fe:0a:83:e3: 8a:fd:91:89:23:3c:ce:fa:60:7c:8f:b2:af:13:2d:18:47:72: 78:6b:87:fd:e5:78:ce:d3:b5:f7:a0:15:86:91:45:39:49:93: b2:11:b9:6e:75:2c:19:95:b2:24:df:4e:39:32:79:f2:07:4f: 42:12:48:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfQdWPAjzNKnkUAYrdqrzOh8v2N4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDQ1WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNTNlNzllNTYzZDRlNzg4OTAyYjQ3YWNmN2UyNWZhMDg3 MjQ0NWVmZTk0YzQwYTliOTVmMWQzOTI3ZGJjZGVhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB70thlh8Ys5V7BGS3yiLKHXX+NGI5aTsRtz1yWuaZOQzz HMLndiANCx9mfr7lK2/JG+z9lLyf2CDk4HdcrUiC97LWX7eEnyNPqcBncxMkO/3f Psyf3Y8T/Q1517/iboE0MA4s0EODdMJvCu6UnDUrGO0SBut8r1JjH4CNRt8gmF1K n5ZWEA8wvrOQLEVvg8b6ZdvlP4pjOsohaKdnOvw77SOODh2LS+F559pUwyNxbnjn h8kxDvvLjIIAua7gBOK0ONlkBixBFPKCmH8JZsd7g5oFOKo6IjzHxy699TfG1A+8 CyMg/4Uzo+1aqI4BUOKBpLB+Ds921BB+vrm0UdA3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxHidIkmtgcCFNlTEg/fOBwbgwkIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAzYjU5YTFlLTYyNjgtNDYwNy1hNmMxLTY5ZTZkZTgwY2Y0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAE/DgZKZAUoYg4lXshxbiF/W 3apKnxg58Zs76s0s1wOuiPnukL4XrwAgAQKxUeJKu7WA3wdColFpBq4jB18sXmw7 m3FfUfcuAUVkQxlgyXmumb9j0H8tYcnHJQQ3c55VP+Dsz4AaE9D2aoKR7tBa/Bf6 Ak0sIoIPhPeZS2KMRyT7QaW2iHstojLwB9lri//vzFJbz1rLDOWmU4+6Muz2en98 SlKUxHg7nNv4lTlGavvU6sxNRijxwXuvl4n+XTyEIlQV/gqD44r9kYkjPM76YHyP sq8TLRhHcnhrh/3leM7TtfegFYaRRTlJk7IRuW51LBmVsiTfTjkyefIHT0ISSNQ= -----END CERTIFICATE-----Generated at Sun Mar 1 22:08:11 2026 by rpki-client