$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa File: 0668f39a-0950-45e9-b174-8f7a83ff26e9.roa (raw, json) Hash identifier: 7jhG9ifFDEk5GQGDCSohjC5IjLuKNlrpRADaUJPalU8= Subject key identifier: 14:3B:E0:EA:D4:8F:0D:D9:DA:04:DE:7B:2B:CE:88:4F:30:E0:F2:83 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 26228FF1F4ECE34FD910F2550E1434EFF8671926 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa Signing time: Sat 28 Feb 2026 05:00:31 +0000 ROA not before: Sat 28 Feb 2026 05:00:31 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:22:8f:f1:f4:ec:e3:4f:d9:10:f2:55:0e:14:34:ef:f8:67:19:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:31 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=1c4a4102ebcf705849566f37ae415a07d6943579097ac77feab1ee22b0a91867, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c9:1c:46:d9:7c:1f:28:64:47:4d:06:48:18: ec:8a:0b:58:14:89:53:b3:98:82:79:be:1c:6a:c8: 6e:33:3d:34:ce:96:c2:72:8f:63:cd:e0:5f:e6:dc: 0d:d1:21:20:b3:33:df:98:5b:7e:c4:0e:8c:d9:a9: 51:af:4e:5f:5a:c7:dc:93:e6:66:65:4e:d1:76:8b: c8:41:5f:6c:9c:0e:fe:30:cb:a7:1d:3a:20:c7:4a: 24:be:45:48:91:16:d5:37:a3:80:b8:3c:d7:fb:a6: da:50:f4:bc:20:1a:18:fd:08:cb:c0:01:ac:87:ee: bd:0d:9d:be:a8:a0:2b:4e:5a:11:48:eb:f1:ff:f9: ab:cd:4e:33:af:c6:f9:80:70:c0:3e:cb:f4:db:0b: ca:30:04:4d:78:4b:fc:80:a1:2b:2c:61:43:4e:63: 49:e3:64:75:71:68:a1:08:44:0f:51:e4:bc:97:87: 9d:2c:b0:00:01:e2:87:8a:c6:db:40:33:9d:5c:15: c8:6d:03:1f:03:b3:be:f5:48:16:2a:ba:97:34:83: 7b:7d:28:cd:e8:0e:d6:00:56:78:8b:7d:b0:2d:36: b9:02:8c:0b:99:2e:1a:12:95:e6:17:03:0e:07:ca: 1e:bc:bf:1a:d8:97:c5:29:e2:3e:1d:b7:cb:5a:52: c3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3B:E0:EA:D4:8F:0D:D9:DA:04:DE:7B:2B:CE:88:4F:30:E0:F2:83 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0668f39a-0950-45e9-b174-8f7a83ff26e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/48 Signature Algorithm: sha256WithRSAEncryption a6:91:ca:27:a5:80:6a:cf:f0:a4:36:cb:ea:b0:6e:8a:13:bf: da:ac:82:0d:a9:75:e7:a5:0c:97:06:6e:44:3f:21:ab:65:bc: 55:cb:0e:7c:cb:60:50:9f:8e:5e:99:ad:e0:27:42:ed:07:06: cd:9e:e8:97:c7:71:3b:00:d8:11:60:1f:4e:34:01:20:5a:6d: 3d:35:c6:34:a2:2a:18:91:32:c4:8e:a5:fd:a3:f0:e3:f8:ef: 1a:9c:a3:ef:09:06:80:53:c4:20:6c:70:df:f7:41:51:e1:4b: 57:2f:ec:41:67:66:cc:51:d7:da:7f:c6:bb:fc:c9:c2:e7:50: 2e:7d:be:c2:f5:dc:45:fb:99:3a:5e:4f:a3:26:24:1a:3e:54: 64:15:4f:8c:4b:2a:3e:f2:51:8c:ff:a8:88:47:0e:07:f6:62: f9:5c:87:96:2e:a7:05:ef:99:d7:87:e9:46:7c:a4:c1:29:69: df:97:7e:1e:7f:b8:6b:2f:6d:4e:21:86:6d:ae:ec:e7:d3:38: de:f6:73:85:3e:5a:58:c7:f3:58:ee:e5:bd:2f:8d:27:f8:fa: 5b:10:51:c4:0b:76:97:9a:ff:4d:69:74:a8:f6:50:1c:79:44: 96:bd:e8:b8:3c:f9:c3:f9:99:47:c9:58:05:b3:9c:3d:d3:00: 0b:e2:fe:ed -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJiKP8fTs40/ZEPJVDhQ07/hnGSYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDMxWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzRhNDEwMmViY2Y3MDU4NDk1NjZmMzdhZTQxNWEwN2Q2 OTQzNTc5MDk3YWM3N2ZlYWIxZWUyMmIwYTkxODY3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyyRxG2XwfKGRHTQZIGOyKC1gUiVOzmIJ5vhxqyG4zPTTO lsJyj2PN4F/m3A3RISCzM9+YW37EDozZqVGvTl9ax9yT5mZlTtF2i8hBX2ycDv4w y6cdOiDHSiS+RUiRFtU3o4C4PNf7ptpQ9LwgGhj9CMvAAayH7r0Nnb6ooCtOWhFI 6/H/+avNTjOvxvmAcMA+y/TbC8owBE14S/yAoSssYUNOY0njZHVxaKEIRA9R5LyX h50ssAAB4oeKxttAM51cFchtAx8Ds771SBYqupc0g3t9KM3oDtYAVniLfbAtNrkC jAuZLhoSleYXAw4Hyh68vxrYl8Up4j4dt8taUsMrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFDvg6tSPDdnaBN57K86ITzDg8oMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA2NjhmMzlhLTA5NTAtNDVlOS1iMTc0LThmN2E4M2ZmMjZlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAKaRyielgGrP8KQ2y+qwbooT v9qsgg2pdeelDJcGbkQ/IatlvFXLDnzLYFCfjl6ZreAnQu0HBs2e6JfHcTsA2BFg H040ASBabT01xjSiKhiRMsSOpf2j8OP47xqco+8JBoBTxCBscN/3QVHhS1cv7EFn ZsxR19p/xrv8ycLnUC59vsL13EX7mTpeT6MmJBo+VGQVT4xLKj7yUYz/qIhHDgf2 Yvlch5YupwXvmdeH6UZ8pMEpad+Xfh5/uGsvbU4hhm2u7OfTON72c4U+WljH81ju 5b0vjSf4+lsQUcQLdpea/01pdKj2UBx5RJa96Lg8+cP5mUfJWAWznD3TAAvi/u0= -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:35 2026 by rpki-client