$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0e25ff6b-b800-47bd-b202-1ffe5f44d9fe.roa File: 0e25ff6b-b800-47bd-b202-1ffe5f44d9fe.roa (raw, json) Hash identifier: KAxVmXL2MatRjguvBsfhalDf7ZYwwgtPRjnKvMiuoQQ= Subject key identifier: 76:6F:22:90:2A:88:91:E3:A4:22:0A:11:D4:5D:00:49:60:20:EB:49 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3B710D7554F44E01145C2D08CEA1CB3E65B9DEB8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0e25ff6b-b800-47bd-b202-1ffe5f44d9fe.roa Signing time: Sun 01 Mar 2026 01:00:11 +0000 ROA not before: Sun 01 Mar 2026 01:00:11 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f103::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:71:0d:75:54:f4:4e:01:14:5c:2d:08:ce:a1:cb:3e:65:b9:de:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 01:00:11 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=f5cd630d473b92ac4204bf81014f5bf31d82d77c152211757979e5d2d8e7a919, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7a:da:9b:16:ef:19:8c:bb:3f:24:1f:75:74: 80:e5:4b:b8:84:8f:ca:7c:2e:cf:a5:47:83:05:85: 2c:d4:ce:a4:0d:cb:9d:46:27:4d:4e:2f:72:6b:99: c0:a4:65:b7:fe:51:33:1f:75:b4:ff:b9:17:7b:4d: a3:ca:5a:ba:d6:3d:b6:23:c9:72:27:f3:14:48:ea: 4d:2c:2e:3d:c6:1a:8e:aa:d2:fd:ae:a9:fb:68:a7: 4b:56:e0:1b:05:0e:59:bc:57:80:e5:21:d8:7b:51: 6d:f7:f1:ee:f3:99:3b:c3:dd:93:72:c9:d9:ce:82: a7:51:b5:14:ed:cb:72:ab:93:9c:4b:9c:a7:a2:07: 27:f2:50:73:fd:8e:af:1c:ae:66:33:d5:82:cf:75: 85:5c:4e:37:db:df:91:d2:47:61:61:dc:f3:90:fb: 78:4f:88:d3:c8:e8:ea:1a:cf:e4:05:be:41:80:ef: ea:cb:f0:ca:1b:a8:16:59:cb:38:7f:86:2c:7b:24: 1c:32:4e:d6:d4:13:f3:15:c5:29:fb:e3:60:86:41: 2a:25:8d:97:d8:20:f5:5d:ab:25:c8:52:6f:71:47: 30:fc:26:f1:73:11:41:cb:1c:2e:fb:7c:87:4d:f2: e1:93:81:c3:ee:5f:95:3d:2f:6e:2a:04:84:dc:91: fc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:6F:22:90:2A:88:91:E3:A4:22:0A:11:D4:5D:00:49:60:20:EB:49 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0e25ff6b-b800-47bd-b202-1ffe5f44d9fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f103::/48 Signature Algorithm: sha256WithRSAEncryption 8a:d7:28:21:37:b4:a2:e7:a4:07:98:85:12:75:6a:7b:9b:ce: e8:28:03:6c:d0:6c:1e:49:d3:12:ae:46:fb:cd:8b:bf:35:78: 6d:13:28:6e:59:53:90:20:95:6d:d4:86:ff:7c:13:76:3b:80: ae:9e:97:bf:d1:a6:b4:e2:63:0c:6d:34:13:85:07:7a:07:84: 39:09:8e:bd:06:6c:3f:48:f6:f5:11:62:20:79:57:83:bf:4c: 91:da:54:28:1c:15:bb:1b:ca:2e:c1:4f:17:82:a8:e7:cc:91: 48:d8:17:27:2f:77:f5:17:de:ce:09:5b:15:0b:dc:73:45:6d: 6a:85:b2:5b:be:05:95:46:51:d6:83:03:06:c6:0e:a5:74:a0: 1b:96:8c:22:8c:23:f0:1e:f5:6e:6e:7a:36:35:15:1e:a1:63: ec:c8:01:1e:2a:c2:b6:7c:99:96:27:fe:c5:68:9d:cb:2d:82: f7:62:72:62:b4:d3:71:ae:db:8b:48:1e:1c:4f:e1:f2:66:0a: 76:76:6c:2c:6d:83:bd:d7:5f:71:b9:8d:a8:82:50:e1:c6:87: 76:64:b8:05:f7:a3:e6:ed:52:aa:56:75:b0:ca:1d:d4:89:cc: ca:0f:19:a7:44:19:79:c4:34:37:50:54:38:85:5d:08:25:81: 0f:2a:06:09 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO3ENdVT0TgEUXC0IzqHLPmW53rgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDEwMDExWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNWNkNjMwZDQ3M2I5MmFjNDIwNGJmODEwMTRmNWJmMzFk ODJkNzdjMTUyMjExNzU3OTc5ZTVkMmQ4ZTdhOTE5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpetqbFu8ZjLs/JB91dIDlS7iEj8p8Ls+lR4MFhSzUzqQN y51GJ01OL3JrmcCkZbf+UTMfdbT/uRd7TaPKWrrWPbYjyXIn8xRI6k0sLj3GGo6q 0v2uqftop0tW4BsFDlm8V4DlIdh7UW338e7zmTvD3ZNyydnOgqdRtRTty3Krk5xL nKeiByfyUHP9jq8crmYz1YLPdYVcTjfb35HSR2Fh3POQ+3hPiNPI6Ooaz+QFvkGA 7+rL8MobqBZZyzh/hix7JBwyTtbUE/MVxSn742CGQSoljZfYIPVdqyXIUm9xRzD8 JvFzEUHLHC77fIdN8uGTgcPuX5U9L24qBITckfzhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdm8ikCqIkeOkIgoR1F0ASWAg60kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBlMjVmZjZiLWI4MDAtNDdiZC1iMjAyLTFmZmU1ZjQ0ZDlmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QMwDQYJKoZIhvcNAQELBQADggEBAIrXKCE3tKLnpAeYhRJ1anub zugoA2zQbB5J0xKuRvvNi781eG0TKG5ZU5AglW3Uhv98E3Y7gK6el7/RprTiYwxt NBOFB3oHhDkJjr0GbD9I9vURYiB5V4O/TJHaVCgcFbsbyi7BTxeCqOfMkUjYFycv d/UX3s4JWxUL3HNFbWqFslu+BZVGUdaDAwbGDqV0oBuWjCKMI/Ae9W5uejY1FR6h Y+zIAR4qwrZ8mZYn/sVoncstgvdicmK003Gu24tIHhxP4fJmCnZ2bCxtg73XX3G5 jaiCUOHGh3ZkuAX3o+btUqpWdbDKHdSJzMoPGadEGXnENDdQVDiFXQglgQ8qBgk= -----END CERTIFICATE-----Generated at Mon Mar 2 01:01:40 2026 by rpki-client