$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa File: 0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa (raw, json) Hash identifier: S6LzdNEzFwLA4gXcq2onCawF4XZYqqAex9vFzigBgh4= Subject key identifier: EB:65:98:A4:D7:05:45:80:97:E8:8D:B1:D2:FF:E8:D7:B7:F4:39:B7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5055F61BCE8F364663DB376CAA78A0A5624F92A4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa Signing time: Sat 28 Feb 2026 05:00:10 +0000 ROA not before: Sat 28 Feb 2026 05:00:10 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:55:f6:1b:ce:8f:36:46:63:db:37:6c:aa:78:a0:a5:62:4f:92:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:10 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=785eb93bd1a73872c654f053bba43265f91fe23bf077bcfba8057d810573b0f5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a2:e7:a9:fe:f9:be:0f:2b:02:79:fc:2b:aa: fa:1f:72:61:cb:bd:ec:c5:1d:7c:14:b2:74:f9:ca: a2:ef:d5:02:ee:46:2e:b3:2f:71:29:89:71:9f:23: 06:73:a3:65:81:81:2f:80:e0:7e:1c:9f:df:a3:52: 41:02:33:88:8e:98:d2:8f:47:9d:34:a1:61:9a:9d: c2:40:14:32:5f:8d:e2:84:cb:98:4b:8d:f9:1d:fd: df:5a:ab:82:b6:7e:dd:ee:00:12:5e:42:af:c4:65: db:20:47:74:42:07:11:3e:95:e6:fd:0b:5a:72:cb: d0:a1:1d:9e:d5:5f:6d:05:f7:02:87:04:6a:1d:c1: 05:91:02:1e:dd:6a:7f:b5:82:4e:00:8b:a9:dc:18: 35:ff:66:83:2d:99:46:3b:04:a7:a9:e4:ba:92:cf: d9:c9:11:16:84:47:40:43:c1:8e:7a:3e:87:5b:fa: 8a:93:01:02:c6:52:77:b8:b6:19:09:09:ad:19:e1: 82:99:66:57:b2:86:42:95:f7:7d:e5:94:13:89:a8: 8c:28:fa:35:a9:48:c4:08:dd:17:32:1e:5c:0f:a6: f2:8a:b1:e6:29:a0:63:01:b4:e2:66:c1:b7:78:01: ca:5d:bd:cc:89:10:7b:e4:2a:af:6a:71:5c:13:57: 85:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:65:98:A4:D7:05:45:80:97:E8:8D:B1:D2:FF:E8:D7:B7:F4:39:B7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:20::/48 Signature Algorithm: sha256WithRSAEncryption 68:23:c2:1e:7f:fc:61:1e:6a:51:5c:99:93:ca:81:0a:6e:11: 66:3f:59:3b:ea:49:28:77:79:24:b0:c9:a0:cf:82:70:0a:ee: 03:7f:ba:b0:86:5f:c6:c2:51:a1:89:1d:6b:b2:4e:e1:d4:b5: 70:f1:55:8a:74:11:a8:c4:07:a5:23:1a:3f:9e:61:a9:68:c9: 88:b8:3e:ef:86:75:c9:50:d4:47:e9:1d:33:d1:c4:7f:23:2f: 5b:76:f1:88:49:94:2b:34:ac:b7:2c:b7:ae:87:00:ff:0b:ae: 94:e3:08:0d:a8:60:41:d8:b7:ff:78:07:c8:26:12:58:01:64: ab:ad:e0:3a:99:3f:96:b2:90:43:38:c9:11:9d:55:61:27:5c: e0:6c:b3:61:84:19:74:f8:52:ce:12:a9:3f:4d:12:aa:a2:bf: 9d:26:7c:c6:a7:13:2e:c2:4c:f3:12:9f:6b:df:85:d2:db:84: 67:4d:8d:b3:bb:ec:e6:39:3a:f1:0d:79:96:b6:c6:b4:a1:88: aa:19:3a:31:70:ab:cc:bc:a5:9e:fe:49:80:5e:0a:6a:33:35: 04:cd:9e:2c:27:b1:92:f4:bb:9c:6b:03:2b:d0:91:dd:9a:b5: 92:cc:7c:dd:aa:49:62:8f:23:18:0f:ec:ba:55:fd:bd:b8:51: 2e:93:92:c2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUFX2G86PNkZj2zdsqnigpWJPkqQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDEwWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODVlYjkzYmQxYTczODcyYzY1NGYwNTNiYmE0MzI2NWY5 MWZlMjNiZjA3N2JjZmJhODA1N2Q4MTA1NzNiMGY1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmouep/vm+DysCefwrqvofcmHLvezFHXwUsnT5yqLv1QLu Ri6zL3EpiXGfIwZzo2WBgS+A4H4cn9+jUkECM4iOmNKPR500oWGancJAFDJfjeKE y5hLjfkd/d9aq4K2ft3uABJeQq/EZdsgR3RCBxE+leb9C1pyy9ChHZ7VX20F9wKH BGodwQWRAh7dan+1gk4Ai6ncGDX/ZoMtmUY7BKep5LqSz9nJERaER0BDwY56Podb +oqTAQLGUne4thkJCa0Z4YKZZleyhkKV933llBOJqIwo+jWpSMQI3RcyHlwPpvKK seYpoGMBtOJmwbd4AcpdvcyJEHvkKq9qcVwTV4XBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU62WYpNcFRYCX6I2x0v/o17f0ObcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiODljNGZlLTY3MzAtNGY2MC1iYzRjLWVhMTZiMTljMmMzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwACAwDQYJKoZIhvcNAQELBQADggEBAGgjwh5//GEealFcmZPKgQpu EWY/WTvqSSh3eSSwyaDPgnAK7gN/urCGX8bCUaGJHWuyTuHUtXDxVYp0EajEB6Uj Gj+eYaloyYi4Pu+GdclQ1EfpHTPRxH8jL1t28YhJlCs0rLcst66HAP8LrpTjCA2o YEHYt/94B8gmElgBZKut4DqZP5aykEM4yRGdVWEnXOBss2GEGXT4Us4SqT9NEqqi v50mfManEy7CTPMSn2vfhdLbhGdNjbO77OY5OvENeZa2xrShiKoZOjFwq8y8pZ7+ SYBeCmozNQTNniwnsZL0u5xrAyvQkd2atZLMfN2qSWKPIxgP7LpV/b24US6TksI= -----END CERTIFICATE-----Generated at Mon Mar 2 08:48:27 2026 by rpki-client