$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa File: 0d414a18-fab9-4052-b9b5-07a662fab301.roa (raw, json) Hash identifier: 2kwLo45CPQvkFRszAqs4UYpBKP6KgWMV7qfEUpMtkks= Subject key identifier: 2F:29:5B:5E:AF:F7:3D:B1:07:FA:87:30:B5:FC:CD:8C:95:E2:9C:5F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7C2D9A0E2D24879B09B45060280D783F20DE3C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa Signing time: Fri 20 Feb 2026 01:30:12 +0000 ROA not before: Fri 20 Feb 2026 01:30:12 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8a00::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:2d:9a:0e:2d:24:87:9b:09:b4:50:60:28:0d:78:3f:20:de:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 20 01:30:12 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=13e4b13c5dd9b0813ffc9472c330ddbdf407a3238bff7a175440aa36d9d9c7c4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:da:a4:01:81:8b:2d:b4:86:e4:e5:19:e7:db: 51:79:ab:45:bb:93:e3:8b:95:a7:66:18:59:d6:87: 7f:1c:55:ef:a7:f8:67:8a:50:b5:a0:11:d1:f7:c9: 70:7d:44:05:25:31:5e:38:e2:e6:a8:91:dc:2a:6d: 01:6e:d9:4a:d2:e4:38:65:cb:a7:a8:31:f7:af:20: f5:47:12:e1:7f:9d:fd:a1:c8:67:b9:04:76:32:2b: 2b:f6:88:b9:1b:a6:48:dd:38:19:85:52:9c:85:a6: c2:cb:c8:34:93:ae:3c:d2:54:9f:32:4e:69:47:b3: bc:20:06:e0:08:79:dd:d5:18:6b:ff:dc:fd:ff:87: 09:9f:c7:e3:c9:25:d2:c9:d6:01:73:06:6e:82:85: 84:bb:9e:4b:29:3b:32:f0:10:f6:d8:61:97:c3:67: 1d:46:c5:cf:29:53:94:6a:da:16:5a:97:5b:90:dd: d2:f3:56:f6:5e:a8:09:8b:8a:8d:61:36:6a:5d:fe: c9:ce:08:59:c8:d2:0b:1f:2c:7c:b2:fa:08:ef:a4: d0:97:b2:93:2c:4e:e9:b6:2b:f1:c1:e4:fd:9b:aa: 2c:f4:a5:a6:5f:36:7c:10:a7:9a:7a:37:be:9c:ff: fb:d9:59:41:f3:98:f7:8a:b3:c0:fd:21:81:90:55: b1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:29:5B:5E:AF:F7:3D:B1:07:FA:87:30:B5:FC:CD:8C:95:E2:9C:5F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8a00::/39 Signature Algorithm: sha256WithRSAEncryption 86:26:8d:37:bd:98:0f:a4:5c:e7:e4:a0:97:22:ea:7a:e6:1a: f2:da:34:da:53:5f:18:4a:b4:32:d2:99:2d:24:b0:aa:69:8a: 11:dd:c0:af:66:4d:13:3d:71:fb:0f:be:7c:36:10:cb:7d:c5: 36:b4:f8:44:be:42:4e:90:fa:23:a2:35:84:b8:14:0c:09:86: b4:ec:8a:1e:d0:14:7d:cc:d4:7c:19:ed:c1:46:26:2d:29:33: 69:69:79:0d:64:c1:73:db:08:12:58:26:18:91:cd:b7:02:81: 4b:ee:34:df:5d:57:5d:9b:93:72:f4:0f:59:24:95:e4:f2:78: d2:68:97:2c:2c:bf:ac:1c:15:4b:e2:5f:e0:c3:5e:20:7f:52: 70:d2:07:a1:c5:45:3d:86:b9:96:7a:1f:41:a1:1f:70:37:9e: 4c:6d:fb:af:e9:2d:14:e7:f4:40:a8:bd:62:19:f5:7d:bf:6a: 94:34:1e:4a:89:2f:b2:6d:de:4a:64:10:0c:75:d6:c3:ec:e3: b2:30:a9:ea:df:9f:41:da:cb:37:2e:d0:9d:71:e9:6d:94:72: 93:d5:44:9e:28:ed:fe:b3:4a:29:4c:75:2c:35:0e:cf:6f:62: 77:bf:27:d3:70:4a:ac:e4:f2:b7:59:bc:58:6a:85:d2:6d:bd: 5d:5b:92:f6 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITfC2aDi0kh5sJtFBgKA14PyDePDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJiNTg0NWMzMDdkMGJmNjFiMTM0YjhhYjcxMTU0NTgyNmIx NzA3ZmQ1ZjBhZjg0ZGEwODAeFw0yNjAyMjAwMTMwMTJaFw0yNjA1MjEyMzU5NTla MHoxSTBHBgNVBAUTQDEzZTRiMTNjNWRkOWIwODEzZmZjOTQ3MmMzMzBkZGJkZjQw N2EzMjM4YmZmN2ExNzU0NDBhYTM2ZDlkOWM3YzQxLTArBgNVBAMTJGZiYjI3NTc2 LWNhYzItNDM4MS05YTUzLTZjMTVlMGRjMjZmZjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJfapAGBiy20huTlGefbUXmrRbuT44uVp2YYWdaHfxxV76f4 Z4pQtaAR0ffJcH1EBSUxXjji5qiR3CptAW7ZStLkOGXLp6gx968g9UcS4X+d/aHI Z7kEdjIrK/aIuRumSN04GYVSnIWmwsvINJOuPNJUnzJOaUezvCAG4Ah53dUYa//c /f+HCZ/H48kl0snWAXMGboKFhLueSyk7MvAQ9thhl8NnHUbFzylTlGraFlqXW5Dd 0vNW9l6oCYuKjWE2al3+yc4IWcjSCx8sfLL6CO+k0JeykyxO6bYr8cHk/ZuqLPSl pl82fBCnmno3vpz/+9lZQfOY94qzwP0hgZBVsQ0CAwEAAaOCArMwggKvMB0GA1Ud DgQWBBQvKVter/c9sQf6hzC1/M2MleKcXzAfBgNVHSMEGDAWgBQuGOIIoYJXGwl9 0iOnFp5A6+mJPTAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv NTIxZWIzM2YtOTY3Mi00Y2Q5LWFjY2UtMTM3MjI3ZTk3MWFjLzZhOTUzN2E4LWE2 ODUtNGI0OC05ZmE4LTgzNjJlNGZjNDdhZS9iNTg0NWMzMDdkMGJmNjFiMTM0Yjhh YjcxMTU0NTgyNmIxNzA3ZmQ1ZjBhZjg0ZGEwOC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS81MTdmM2VkNy01OGI1LTQ3OTYtYmUzNy0xNGQ2 MmU0OGYwNTYvMGQ0MTRhMTgtZmFiOS00MDUyLWI5YjUtMDdhNjYyZmFiMzAxLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzct MTRkNjJlNDhmMDU2L0NfWWJFMHVLdHhGVVdDYXhjSF9WOEstRTJnZy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGASYA8PGKMA0GCSqGSIb3DQEBCwUAA4IBAQCGJo03vZgPpFzn5KCXIup65hry 2jTaU18YSrQy0pktJLCqaYoR3cCvZk0TPXH7D758NhDLfcU2tPhEvkJOkPojojWE uBQMCYa07Ioe0BR9zNR8Ge3BRiYtKTNpaXkNZMFz2wgSWCYYkc23AoFL7jTfXVdd m5Ny9A9ZJJXk8njSaJcsLL+sHBVL4l/gw14gf1Jw0gehxUU9hrmWeh9BoR9wN55M bfuv6S0U5/RAqL1iGfV9v2qUNB5KiS+ybd5KZBAMddbD7OOyMKnq359B2ss3LtCd celtlHKT1USeKO3+s0opTHUsNQ7Pb2J3vyfTcEqs5PK3WbxYaoXSbb1dW5L2 -----END CERTIFICATE-----Generated at Sun Mar 1 22:08:48 2026 by rpki-client