$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa File: 0b456d9a-b78d-45ba-9949-b00a9581f118.roa (raw, json) Hash identifier: 5QQtyppIAUe1ttIYmAiEkZ1Lh96jUjNewBjABJ0z+3c= Subject key identifier: C4:73:44:45:A6:E1:DB:9E:60:2E:F2:57:5A:CD:92:FE:3F:94:23:E9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 546D67D1A5F1E107654AF7256796DAF9068E360C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa Signing time: Sat 28 Feb 2026 04:50:34 +0000 ROA not before: Sat 28 Feb 2026 04:50:34 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ec00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:6d:67:d1:a5:f1:e1:07:65:4a:f7:25:67:96:da:f9:06:8e:36:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 04:50:34 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=f437dd09b581f7803486ea69517d2c8c96f90c31c34b9a0085de4a71c6fff585, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b1:55:c8:d2:16:73:02:52:b7:d2:25:bb:bc: 8c:0c:04:65:a6:1d:53:b6:69:89:83:2f:1c:7b:86: 6a:56:40:2c:a3:06:df:30:a8:e3:ca:2b:62:fa:46: 47:ec:70:3b:4b:7c:6e:a0:28:b9:39:80:50:8f:b2: 31:55:0a:76:19:79:3d:1a:21:14:2f:1d:2b:50:04: 7d:db:03:93:97:04:63:76:8b:ef:c9:a3:e3:99:6c: 1c:80:d3:c3:ef:aa:ae:c1:11:b2:33:0e:a0:c7:d9: 84:bb:15:e6:f0:94:5e:f9:b4:23:4d:75:e1:0d:db: b5:d9:92:4a:19:8b:df:17:d2:e9:26:b9:70:3d:c5: 51:41:0e:ac:d9:08:aa:5a:5e:ab:a2:7a:00:48:fa: b5:32:e4:b5:4d:a0:3e:62:7d:ae:c6:0e:88:23:80: 5d:cf:6f:bf:70:84:32:b1:9e:79:5e:56:d0:38:05: 24:19:49:7b:25:08:ff:e3:32:30:25:5c:8a:d9:cf: 1d:e1:a5:9e:9a:9a:d9:f7:86:0c:ec:a8:df:ff:81: ba:fe:7c:2a:5e:fc:a4:2a:c4:8a:64:dc:73:b7:74: 07:27:5c:12:d4:67:e2:00:32:2d:64:17:7b:e2:29: 90:92:cb:73:c3:63:f2:7a:74:64:06:22:e0:6d:88: 2e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:73:44:45:A6:E1:DB:9E:60:2E:F2:57:5A:CD:92:FE:3F:94:23:E9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/42 Signature Algorithm: sha256WithRSAEncryption 3e:94:c8:d2:2e:47:e1:18:11:a6:bc:a3:19:86:8c:2e:75:a2: 0f:da:b2:05:e5:e5:54:0d:a1:67:91:28:db:2a:83:40:86:9e: 7f:89:7a:60:cf:ef:2e:bc:f2:ba:17:87:bd:a5:6c:17:a0:9a: c8:ff:f7:5d:28:34:dc:bf:5f:58:be:bc:ac:0f:5a:72:42:e5: 4f:49:87:e6:c6:ce:a6:c7:50:5e:de:b3:82:07:ca:ba:95:6d: 66:cc:bf:bd:e1:b8:0c:4f:d8:f3:5f:89:cb:f8:ce:9c:6a:9e: e8:09:70:69:6e:23:c9:f9:95:ba:8f:43:57:7e:9d:6c:ac:f4: 62:b8:f5:be:d9:4a:1e:02:37:ea:08:21:1c:0c:ff:fc:c0:e5: fa:ec:5b:79:56:67:c9:0a:92:1e:76:98:08:5e:9d:ef:b0:ca: b6:82:e1:6c:df:c3:f0:9f:e8:61:f1:dd:69:9f:81:7c:14:5e: fb:c6:a3:cd:b4:a2:72:aa:7d:5e:cc:22:4a:be:c9:93:37:e2: 90:fc:9e:b9:78:8c:e4:5e:9c:85:90:f9:e1:e7:0c:93:e5:83: 51:85:3a:60:3f:b9:37:b3:aa:da:55:dd:1a:c9:0a:4c:b0:a8: c4:58:7c:87:e5:a4:84:8f:a2:d9:0d:b7:83:76:f9:6a:18:39: b4:84:97:51 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVG1n0aXx4QdlSvclZ5ba+QaONgwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDQ1MDM0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDM3ZGQwOWI1ODFmNzgwMzQ4NmVhNjk1MTdkMmM4Yzk2 ZjkwYzMxYzM0YjlhMDA4NWRlNGE3MWM2ZmZmNTg1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTsVXI0hZzAlK30iW7vIwMBGWmHVO2aYmDLxx7hmpWQCyj Bt8wqOPKK2L6RkfscDtLfG6gKLk5gFCPsjFVCnYZeT0aIRQvHStQBH3bA5OXBGN2 i+/Jo+OZbByA08Pvqq7BEbIzDqDH2YS7FebwlF75tCNNdeEN27XZkkoZi98X0ukm uXA9xVFBDqzZCKpaXquiegBI+rUy5LVNoD5ifa7GDogjgF3Pb79whDKxnnleVtA4 BSQZSXslCP/jMjAlXIrZzx3hpZ6amtn3hgzsqN//gbr+fCpe/KQqxIpk3HO3dAcn XBLUZ+IAMi1kF3viKZCSy3PDY/J6dGQGIuBtiC7bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxHNERabh255gLvJXWs2S/j+UI+kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiNDU2ZDlhLWI3OGQtNDViYS05OTQ5LWIwMGE5NTgxZjExOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD77AAwDQYJKoZIhvcNAQELBQADggEBAD6UyNIuR+EYEaa8oxmGjC51 og/asgXl5VQNoWeRKNsqg0CGnn+JemDP7y688roXh72lbBegmsj/910oNNy/X1i+ vKwPWnJC5U9Jh+bGzqbHUF7es4IHyrqVbWbMv73huAxP2PNficv4zpxqnugJcGlu I8n5lbqPQ1d+nWys9GK49b7ZSh4CN+oIIRwM//zA5frsW3lWZ8kKkh52mAhene+w yraC4Wzfw/Cf6GHx3WmfgXwUXvvGo820onKqfV7MIkq+yZM34pD8nrl4jORenIWQ +eHnDJPlg1GFOmA/uTezqtpV3RrJCkywqMRYfIflpISPotkNt4N2+WoYObSEl1E= -----END CERTIFICATE-----Generated at Sun Mar 1 21:57:56 2026 by rpki-client