$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13f667aa-a00c-4b6c-9646-0960f0960b3c.roa File: 13f667aa-a00c-4b6c-9646-0960f0960b3c.roa (raw, json) Hash identifier: VQBNFT40CRvYv5xdwFapGid+WqstcZqe9eNZSOlYJGo= Subject key identifier: E6:B0:48:EB:CE:AB:88:F0:35:23:F7:C3:08:18:24:0B:CE:5B:54:DA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7426EB1333979D087BCED1941AB51CF495FB8D47 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13f667aa-a00c-4b6c-9646-0960f0960b3c.roa Signing time: Mon 23 Feb 2026 23:06:54 +0000 ROA not before: Mon 23 Feb 2026 23:06:54 +0000 ROA not after: Sun 24 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5507::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:26:eb:13:33:97:9d:08:7b:ce:d1:94:1a:b5:1c:f4:95:fb:8d:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 23 23:06:54 2026 GMT Not After : May 24 23:59:59 2026 GMT Subject: serialNumber=30599ae3237bc8b626777cfde7ca065249dfbd660d4fd13d140ff2101fdb4efe, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:2b:a9:b2:6c:4c:09:22:3e:5f:9c:d1:89:f7: 9b:ba:64:65:c1:bb:62:9f:aa:8e:ae:e0:be:fc:a0: 67:52:6a:aa:71:b7:da:ea:5d:0b:d8:17:3f:ae:2e: c1:d0:32:50:79:23:29:73:9b:15:23:6f:c3:30:1b: 4c:ac:67:89:90:b3:7e:40:78:3d:8a:7f:dd:5b:18: 3b:f1:f1:ce:97:9e:e7:95:04:81:30:72:3b:96:38: 3a:54:bc:ed:e1:0c:6b:a3:fa:26:f6:9d:bc:db:ad: e1:38:70:10:88:5d:1f:64:0a:a6:b5:05:b9:f6:29: 57:61:20:ec:a0:5a:19:2b:41:2f:f1:40:47:fc:ab: 69:3d:56:71:78:a1:d1:04:f6:50:e0:c8:e6:5b:fb: 6e:9e:c5:94:9a:c8:19:23:be:23:97:c8:96:4e:f4: 55:49:a7:fc:a3:d7:08:82:9c:ef:68:eb:bc:a0:5f: 77:ff:9b:64:d5:43:3a:f8:27:3d:4d:f2:90:9a:c5: 65:8a:96:de:e1:28:3d:69:3a:79:93:31:08:96:83: 3b:ab:5b:a2:55:35:55:15:29:70:57:01:61:39:8f: ee:ee:3c:4a:23:dd:4b:3e:3f:7a:2a:14:f5:a4:62: 11:18:b5:b3:6e:e3:7b:eb:8a:2e:2a:bb:d0:d2:0c: 3c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B0:48:EB:CE:AB:88:F0:35:23:F7:C3:08:18:24:0B:CE:5B:54:DA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13f667aa-a00c-4b6c-9646-0960f0960b3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5507::/48 Signature Algorithm: sha256WithRSAEncryption 7a:dc:5d:42:89:c3:2d:07:b5:f0:78:f5:78:92:cb:2e:35:3c: 25:39:59:c9:ff:04:f3:66:c2:bb:03:15:84:b8:02:eb:85:58: ab:14:ab:a2:72:73:55:01:69:03:ad:78:b8:7f:ef:87:1e:16: 82:de:e1:b6:65:6d:0f:d4:68:a5:81:b0:9e:80:a4:5a:5a:cb: a0:45:d4:7b:48:67:49:a9:b2:ff:0e:a4:34:41:54:55:08:22: ad:34:c7:49:78:d6:3e:86:07:48:76:c3:ea:18:f5:79:8b:fc: a7:5f:24:f9:e4:bc:08:6a:be:e2:16:3f:28:70:bd:68:74:d0: ef:58:5b:42:b5:ee:85:23:cf:9e:fd:72:c0:74:12:b5:8e:11: 04:71:76:5d:36:c7:ed:75:e4:4d:52:9f:e8:ad:2e:54:01:96: 9d:27:52:49:25:8c:79:60:29:f3:f6:59:66:bf:f8:42:44:ff: 5e:13:80:bf:43:7e:9f:be:e8:4e:63:af:3c:da:4c:2a:ce:d9: 4a:9c:c0:19:8f:00:4c:99:a2:48:73:aa:0a:fe:6e:c8:33:6d: 56:17:d3:01:4e:1d:c6:1a:c3:e1:bf:48:6d:b4:ba:9b:73:13: 90:3b:74:97:b2:b3:80:1e:35:87:dd:17:e4:4d:1b:51:c1:81: 4a:77:6e:f5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdCbrEzOXnQh7ztGUGrUc9JX7jUcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjIzMjMwNjU0WhcNMjYwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDU5OWFlMzIzN2JjOGI2MjY3NzdjZmRlN2NhMDY1MjQ5 ZGZiZDY2MGQ0ZmQxM2QxNDBmZjIxMDFmZGI0ZWZlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcK6mybEwJIj5fnNGJ95u6ZGXBu2Kfqo6u4L78oGdSaqpx t9rqXQvYFz+uLsHQMlB5IylzmxUjb8MwG0ysZ4mQs35AeD2Kf91bGDvx8c6XnueV BIEwcjuWODpUvO3hDGuj+ib2nbzbreE4cBCIXR9kCqa1Bbn2KVdhIOygWhkrQS/x QEf8q2k9VnF4odEE9lDgyOZb+26exZSayBkjviOXyJZO9FVJp/yj1wiCnO9o67yg X3f/m2TVQzr4Jz1N8pCaxWWKlt7hKD1pOnmTMQiWgzurW6JVNVUVKXBXAWE5j+7u PEoj3Us+P3oqFPWkYhEYtbNu43vrii4qu9DSDDzZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5rBI686riPA1I/fDCBgkC85bVNowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzEzZjY2N2FhLWEwMGMtNGI2Yy05NjQ2LTA5NjBmMDk2MGIzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQcwDQYJKoZIhvcNAQELBQADggEBAHrcXUKJwy0HtfB49XiSyy41 PCU5Wcn/BPNmwrsDFYS4AuuFWKsUq6Jyc1UBaQOteLh/74ceFoLe4bZlbQ/UaKWB sJ6ApFpay6BF1HtIZ0mpsv8OpDRBVFUIIq00x0l41j6GB0h2w+oY9XmL/KdfJPnk vAhqvuIWPyhwvWh00O9YW0K17oUjz579csB0ErWOEQRxdl02x+115E1Sn+itLlQB lp0nUkkljHlgKfP2WWa/+EJE/14TgL9Dfp++6E5jrzzaTCrO2UqcwBmPAEyZokhz qgr+bsgzbVYX0wFOHcYaw+G/SG20uptzE5A7dJeys4AeNYfdF+RNG1HBgUp3bvU= -----END CERTIFICATE-----Generated at Mon Mar 2 04:46:09 2026 by rpki-client