$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05876e04-6a48-47f9-a53a-40496713d9ab.roa File: 05876e04-6a48-47f9-a53a-40496713d9ab.roa (raw, json) Hash identifier: ITvEREwHFIRdbaxbqS+1IM3HzNZYcV49eVSWKoG6TVs= Subject key identifier: FE:B4:72:C3:F0:5A:1B:DE:6F:48:C9:2E:12:AA:3E:34:BD:F4:0D:3B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6F003E9AF6C368991AB83DF003306B22895676FE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05876e04-6a48-47f9-a53a-40496713d9ab.roa Signing time: Sun 01 Mar 2026 01:00:36 +0000 ROA not before: Sun 01 Mar 2026 01:00:36 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:00:3e:9a:f6:c3:68:99:1a:b8:3d:f0:03:30:6b:22:89:56:76:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 01:00:36 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=c096f9485d9f19ed32b4783723ef46fe44bf4204433a6dd2c9132b7c2b3b0f0b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:81:5c:88:43:65:78:75:17:ba:cd:6c:bf:4d: cb:4f:58:89:0c:c0:6c:76:84:a1:7a:52:a3:4b:23: f9:e0:83:9e:28:bc:df:99:db:3c:4f:de:8c:fd:d6: 1c:90:36:e2:51:2a:08:68:d0:95:91:45:41:60:cc: b1:e8:52:22:cb:85:5c:dd:d5:4b:d2:f2:58:36:1c: 9f:31:a5:07:47:c4:52:26:27:85:1d:9a:1b:0c:e5: 89:09:cd:85:eb:29:76:d1:d3:6a:c1:79:0a:ff:56: 17:17:1e:03:c7:9f:2b:19:4d:a9:cc:fe:41:2b:3b: 80:d8:f0:5f:0b:f5:5c:38:5d:9c:fe:42:5f:2b:68: 63:fa:9b:26:32:98:3f:80:3b:82:62:7c:d0:22:91: 9a:c1:e8:cf:42:5c:e8:3c:b2:86:05:e4:39:0b:7e: 30:1e:f4:21:ce:23:b6:7b:33:2b:02:fe:77:56:e9: ac:b4:8d:4e:ca:b7:43:eb:01:96:5f:27:31:4f:4a: a2:7c:20:0b:bd:a4:c4:b3:79:8e:fd:ba:c8:a7:3f: db:9f:23:9e:1e:44:5b:99:a6:79:13:1e:df:40:3f: 2f:43:85:15:c8:a7:37:8e:f9:34:c9:d6:ac:90:01: 31:5f:03:6b:7f:11:ac:f9:b1:ee:25:9e:f9:b1:58: 0f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:B4:72:C3:F0:5A:1B:DE:6F:48:C9:2E:12:AA:3E:34:BD:F4:0D:3B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05876e04-6a48-47f9-a53a-40496713d9ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f100::/40 Signature Algorithm: sha256WithRSAEncryption 23:74:38:b5:c0:af:17:6e:cf:1d:1f:b4:dd:ae:bd:1b:06:c8: 32:fb:e9:18:be:01:a3:50:ff:e6:c9:53:8d:b9:85:5c:b4:e8: 52:2c:67:4b:11:f1:eb:4d:dd:83:e3:95:b9:71:ce:a3:62:da: 57:d7:c2:f1:b4:cc:85:cb:05:be:4e:a9:bd:85:1e:2b:d6:01: 15:61:13:e2:71:3b:74:39:db:cb:04:f1:32:cb:e2:87:ec:da: d8:da:3e:f9:bd:36:bd:1f:11:b8:83:3d:6e:d0:8e:59:ed:d2: 1f:80:69:4b:26:15:40:e1:4b:fe:7c:13:ea:56:c5:ff:5c:33: d4:b9:c5:97:ff:2d:10:5d:1c:af:fb:96:eb:4b:1d:dc:20:d1: 74:47:3a:26:60:32:88:13:7d:46:69:0c:ec:28:aa:fa:a2:03: 8f:c1:ad:eb:31:93:44:65:a4:e0:f0:af:cb:e2:1d:4b:86:13: e8:34:2a:38:ee:58:ee:28:e4:2e:9a:87:d7:f7:d0:25:c8:f6: eb:d0:9c:6a:bc:1a:81:a4:c3:cc:97:70:81:76:18:d9:0a:4c: 0f:a6:00:08:88:b7:b3:3c:12:7f:6a:12:0d:2a:d2:f5:70:e2: 64:4d:8e:27:e8:ad:a2:aa:73:87:8e:08:f3:e7:30:cc:54:88: 72:24:92:f7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbwA+mvbDaJkauD3wAzBrIolWdv4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDEwMDM2WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDk2Zjk0ODVkOWYxOWVkMzJiNDc4MzcyM2VmNDZmZTQ0 YmY0MjA0NDMzYTZkZDJjOTEzMmI3YzJiM2IwZjBiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqgVyIQ2V4dRe6zWy/TctPWIkMwGx2hKF6UqNLI/ngg54o vN+Z2zxP3oz91hyQNuJRKgho0JWRRUFgzLHoUiLLhVzd1UvS8lg2HJ8xpQdHxFIm J4UdmhsM5YkJzYXrKXbR02rBeQr/VhcXHgPHnysZTanM/kErO4DY8F8L9Vw4XZz+ Ql8raGP6myYymD+AO4JifNAikZrB6M9CXOg8soYF5DkLfjAe9CHOI7Z7MysC/ndW 6ay0jU7Kt0PrAZZfJzFPSqJ8IAu9pMSzeY79usinP9ufI54eRFuZpnkTHt9APy9D hRXIpzeO+TTJ1qyQATFfA2t/Eaz5se4lnvmxWA8fAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU/rRyw/BaG95vSMkuEqo+NL30DTswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA1ODc2ZTA0LTZhNDgtNDdmOS1hNTNhLTQwNDk2NzEzZDlhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD78TANBgkqhkiG9w0BAQsFAAOCAQEAI3Q4tcCvF27PHR+03a69GwbI MvvpGL4Bo1D/5slTjbmFXLToUixnSxHx603dg+OVuXHOo2LaV9fC8bTMhcsFvk6p vYUeK9YBFWET4nE7dDnbywTxMsvih+za2No++b02vR8RuIM9btCOWe3SH4BpSyYV QOFL/nwT6lbF/1wz1LnFl/8tEF0cr/uW60sd3CDRdEc6JmAyiBN9RmkM7Ciq+qID j8Gt6zGTRGWk4PCvy+IdS4YT6DQqOO5Y7ijkLpqH1/fQJcj269CcarwagaTDzJdw gXYY2QpMD6YACIi3szwSf2oSDSrS9XDiZE2OJ+itoqpzh44I8+cwzFSIciSS9w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:54 2026 by rpki-client