$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05fe134d-f0b1-433d-8104-34a111af6341.roa File: 05fe134d-f0b1-433d-8104-34a111af6341.roa (raw, json) Hash identifier: i7vdawxAtJU6TedMvB0iXgjpp8+1Aj2VJBrS0k4QYQQ= Subject key identifier: E4:07:0E:6C:3D:9A:F3:AC:AD:C8:9B:94:4A:C0:84:1D:DC:E9:6E:C4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4291EDF9B301F9E54AE6524665BE493E93E6DBB8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05fe134d-f0b1-433d-8104-34a111af6341.roa Signing time: Thu 26 Feb 2026 20:36:51 +0000 ROA not before: Thu 26 Feb 2026 20:36:51 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5505::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:91:ed:f9:b3:01:f9:e5:4a:e6:52:46:65:be:49:3e:93:e6:db:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 26 20:36:51 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=df8c4baec1d63d317759e7c4a5408f76a818928a8574be42c544cb4e87f3e207, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c8:ba:e9:c4:df:47:0b:af:0e:66:56:3f:c3: 56:c4:6a:88:58:98:7d:91:24:36:be:58:7b:3b:f1: 23:5c:e3:44:9d:ea:5d:bd:1d:67:e7:03:08:2b:f5: 48:88:42:51:b4:1a:4f:82:04:8c:a3:c8:6c:cc:2b: 4a:96:5c:6f:79:c0:41:10:a2:8f:ab:fd:b3:11:d3: e8:32:d1:41:7d:b6:3b:c8:52:e9:b4:a7:6e:05:ef: 29:e1:94:b3:a9:b2:6d:d6:62:0a:74:83:87:0d:75: 36:60:2c:de:a5:e5:ef:b4:5d:b6:fd:40:94:b6:08: fd:e7:d1:2f:0d:58:e0:71:bd:d4:30:87:3d:2d:5f: df:c9:4f:59:7f:bd:1a:b7:8b:ce:71:8f:0b:a8:fa: 6a:74:c6:8f:85:f7:38:e7:14:20:10:28:65:1a:38: 21:6d:6a:19:79:c2:6d:4d:f1:ae:d2:d7:1f:b0:05: 61:8a:53:57:43:8b:e2:ba:72:58:c2:4b:f1:b9:6f: 11:12:a4:63:8c:ed:66:03:35:88:57:5c:63:84:67: 23:6d:d3:00:24:dd:ef:4b:b8:70:39:8b:96:a5:c8: 2a:99:48:25:fa:12:14:a5:62:05:9c:78:2e:3c:79: a1:98:68:9f:68:5c:ba:c9:b7:62:6e:3b:a3:88:d6: 2f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:07:0E:6C:3D:9A:F3:AC:AD:C8:9B:94:4A:C0:84:1D:DC:E9:6E:C4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05fe134d-f0b1-433d-8104-34a111af6341.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5505::/48 Signature Algorithm: sha256WithRSAEncryption 45:00:58:30:43:cf:b1:ee:02:0c:08:36:1a:3c:3a:40:e7:58: ff:58:b2:12:93:f0:b2:0b:df:27:f6:d9:9b:8d:47:a4:52:7c: 1f:4f:ff:81:d8:c1:81:85:b6:96:c5:5c:36:ae:8d:80:24:dc: 06:1f:1b:f6:b0:57:8b:ec:c7:c4:c6:b9:d9:b6:15:f1:5c:10: 70:d3:39:7b:75:94:02:67:ee:fc:06:b8:4c:2e:15:24:43:d0: 3d:87:01:42:28:f4:ba:de:f3:28:ad:f2:9f:8a:35:88:ed:57: 29:3b:c5:2b:30:ff:e0:bb:d7:36:93:c9:d3:2e:08:1b:48:2f: 17:34:a2:19:e9:60:2c:f7:56:ca:5d:ad:2c:75:3a:b9:bf:42: b3:e8:62:d5:cd:11:a1:8c:b4:f1:78:ca:0f:82:9a:dd:f3:ed: 61:e2:b2:b9:38:0d:bb:ef:ee:9d:46:5f:e5:65:dd:34:4c:1c: 05:83:c1:f5:64:2d:7e:50:42:00:20:dd:86:c7:d7:73:c3:ca: 5b:6a:db:6d:09:c7:d6:27:b1:2b:44:c1:5d:3f:2f:8d:37:9f: 14:79:e2:1b:73:26:0d:f8:f6:24:03:b3:56:b5:92:fe:1d:9d: a2:f2:fd:1b:93:8e:76:f2:56:ac:38:ce:b6:dd:f3:2b:c2:9a: a1:a0:34:ef -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQpHt+bMB+eVK5lJGZb5JPpPm27gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI2MjAzNjUxWhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjhjNGJhZWMxZDYzZDMxNzc1OWU3YzRhNTQwOGY3NmE4 MTg5MjhhODU3NGJlNDJjNTQ0Y2I0ZTg3ZjNlMjA3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmyLrpxN9HC68OZlY/w1bEaohYmH2RJDa+WHs78SNc40Sd 6l29HWfnAwgr9UiIQlG0Gk+CBIyjyGzMK0qWXG95wEEQoo+r/bMR0+gy0UF9tjvI Uum0p24F7ynhlLOpsm3WYgp0g4cNdTZgLN6l5e+0Xbb9QJS2CP3n0S8NWOBxvdQw hz0tX9/JT1l/vRq3i85xjwuo+mp0xo+F9zjnFCAQKGUaOCFtahl5wm1N8a7S1x+w BWGKU1dDi+K6cljCS/G5bxESpGOM7WYDNYhXXGOEZyNt0wAk3e9LuHA5i5alyCqZ SCX6EhSlYgWceC48eaGYaJ9oXLrJt2JuO6OI1i99AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5AcObD2a86ytyJuUSsCEHdzpbsQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA1ZmUxMzRkLWYwYjEtNDMzZC04MTA0LTM0YTExMWFmNjM0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQUwDQYJKoZIhvcNAQELBQADggEBAEUAWDBDz7HuAgwINho8OkDn WP9YshKT8LIL3yf22ZuNR6RSfB9P/4HYwYGFtpbFXDaujYAk3AYfG/awV4vsx8TG udm2FfFcEHDTOXt1lAJn7vwGuEwuFSRD0D2HAUIo9Lre8yit8p+KNYjtVyk7xSsw /+C71zaTydMuCBtILxc0ohnpYCz3VspdrSx1Orm/QrPoYtXNEaGMtPF4yg+Cmt3z 7WHisrk4Dbvv7p1GX+Vl3TRMHAWDwfVkLX5QQgAg3YbH13PDyltq220Jx9YnsStE wV0/L403nxR54htzJg349iQDs1a1kv4dnaLy/RuTjnbyVqw4zrbd8yvCmqGgNO8= -----END CERTIFICATE-----Generated at Sun Mar 1 22:06:02 2026 by rpki-client