$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa File: 0b0acdef-c848-447c-9624-6a4634464aaa.roa (raw, json) Hash identifier: xWiErUBA5+9T96AlyVuWO1kdschG1HJ4ZS3TMM5syiY= Subject key identifier: AA:E2:CD:C8:24:32:8E:1D:09:2C:1F:69:48:12:0F:B1:00:AA:79:10 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 42D052855EEB6C022CE2BEE6F8306A7A0821071B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa Signing time: Sat 28 Feb 2026 02:00:06 +0000 ROA not before: Sat 28 Feb 2026 02:00:06 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e800::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:d0:52:85:5e:eb:6c:02:2c:e2:be:e6:f8:30:6a:7a:08:21:07:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 02:00:06 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=734aabc20e8acb2e0b30bc33ebde2a8cdee928227a4c93444bf289a15c876929, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d1:1e:23:fc:eb:17:92:71:25:12:fe:eb:f4: e8:e8:81:b9:69:da:52:cb:75:40:07:8f:dd:f7:21: e0:55:eb:7a:3f:03:d0:c8:7f:db:0e:44:fd:3e:0f: db:37:85:75:7c:82:e2:89:c9:c5:de:d8:2c:90:c0: 63:40:ab:29:b7:bb:cd:f3:6c:b9:94:47:ed:6c:fe: 33:ea:f6:83:17:99:53:46:ac:fe:f2:05:d6:9e:30: 6c:ca:31:51:71:f5:b1:8a:21:16:05:a4:50:22:9b: 6e:cc:3b:d1:ee:49:04:4d:2e:08:d9:ef:5c:b5:56: ca:ba:e9:f7:ee:dd:89:26:68:de:ed:a6:df:08:c6: 88:81:03:a7:0f:22:59:a3:1a:26:73:72:40:10:1b: 8f:2c:29:f2:8c:03:58:64:de:0b:0c:3f:11:bd:d1: 8c:79:2f:22:1e:7c:89:ac:38:ca:3c:c7:4d:5a:c4: bf:95:93:46:42:f7:86:38:08:5a:be:81:f8:28:21: 33:4e:70:14:94:19:d3:af:21:7f:b6:9c:cd:28:af: ee:cb:29:3d:5b:43:49:4b:fb:66:2a:80:30:c7:ec: 47:08:61:59:f3:b9:bc:d1:4c:b2:4a:7b:4e:81:db: c8:8d:09:ed:0d:bc:f1:5b:e1:da:ed:4b:92:87:e9: e9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E2:CD:C8:24:32:8E:1D:09:2C:1F:69:48:12:0F:B1:00:AA:79:10 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e800::/42 Signature Algorithm: sha256WithRSAEncryption 01:8b:1a:e4:d1:b6:ac:ec:95:5e:79:71:29:aa:8e:19:c6:6a: 49:61:68:46:a7:e5:95:65:d3:c5:a9:bb:3f:f5:e0:c8:00:a2: 98:4a:17:b9:c3:e7:d5:c8:e0:85:b4:22:b6:b6:c1:6a:74:d4: 03:52:dc:45:5d:87:1d:bb:b0:87:2c:1a:5b:10:d7:bb:8d:b3: a4:3d:da:a2:a2:4e:b0:4f:54:1f:69:7c:44:6d:11:f0:ee:85: 25:84:ff:2c:12:c5:f9:6b:98:03:e8:1c:10:cd:bd:3a:6d:be: 95:1e:bb:73:f4:b5:00:2e:6b:f6:0d:60:d6:b6:ec:91:6d:74: 02:91:6a:3d:5e:1b:e3:ce:9d:6e:e7:5b:58:c8:99:e5:93:46: c8:18:f2:8a:3c:3d:c5:57:2f:3d:9a:43:86:37:cf:a9:1b:11: 9c:54:b2:e2:49:1e:68:a1:d7:87:e1:ca:3c:e2:8b:80:1a:ea: 4d:fb:3f:1b:03:e8:94:2f:d2:96:7b:8f:2c:06:d3:37:bd:ba: 80:79:0d:f1:12:39:7d:a1:36:70:1e:3c:d9:9d:11:11:fa:5d: 4c:b3:60:29:67:ad:79:63:c2:d4:93:58:69:0e:7d:05:c6:90: e9:cf:b2:ee:bf:72:47:86:21:1f:0e:04:70:13:64:7f:0b:7c: c0:78:7a:b6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQtBShV7rbAIs4r7m+DBqegghBxswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDIwMDA2WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzRhYWJjMjBlOGFjYjJlMGIzMGJjMzNlYmRlMmE4Y2Rl ZTkyODIyN2E0YzkzNDQ0YmYyODlhMTVjODc2OTI5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDs0R4j/OsXknElEv7r9Ojogblp2lLLdUAHj933IeBV63o/ A9DIf9sORP0+D9s3hXV8guKJycXe2CyQwGNAqym3u83zbLmUR+1s/jPq9oMXmVNG rP7yBdaeMGzKMVFx9bGKIRYFpFAim27MO9HuSQRNLgjZ71y1Vsq66ffu3YkmaN7t pt8IxoiBA6cPIlmjGiZzckAQG48sKfKMA1hk3gsMPxG90Yx5LyIefImsOMo8x01a xL+Vk0ZC94Y4CFq+gfgoITNOcBSUGdOvIX+2nM0or+7LKT1bQ0lL+2YqgDDH7EcI YVnzubzRTLJKe06B28iNCe0NvPFb4drtS5KH6enRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUquLNyCQyjh0JLB9pSBIPsQCqeRAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiMGFjZGVmLWM4NDgtNDQ3Yy05NjI0LTZhNDYzNDQ2NGFhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76AAwDQYJKoZIhvcNAQELBQADggEBAAGLGuTRtqzslV55cSmqjhnG aklhaEan5ZVl08Wpuz/14MgAophKF7nD59XI4IW0Ira2wWp01ANS3EVdhx27sIcs GlsQ17uNs6Q92qKiTrBPVB9pfERtEfDuhSWE/ywSxflrmAPoHBDNvTptvpUeu3P0 tQAua/YNYNa27JFtdAKRaj1eG+POnW7nW1jImeWTRsgY8oo8PcVXLz2aQ4Y3z6kb EZxUsuJJHmih14fhyjzii4Aa6k37PxsD6JQv0pZ7jywG0ze9uoB5DfESOX2hNnAe PNmdERH6XUyzYClnrXljwtSTWGkOfQXGkOnPsu6/ckeGIR8OBHATZH8LfMB4erY= -----END CERTIFICATE-----Generated at Sun Mar 1 22:07:49 2026 by rpki-client