$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/18a81d27-7f1e-4a83-80cc-8b089f18a344.roa File: 18a81d27-7f1e-4a83-80cc-8b089f18a344.roa (raw, json) Hash identifier: NKzYwwL0e+kcpFlGaxBYveoiyBV/lXLVW8+pKTmgpGM= Subject key identifier: 70:6A:B6:8F:63:A9:65:FE:6D:F7:23:00:1A:AC:A8:9F:A9:C5:0E:0B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6F34DF1F5DC381F4D9B18D06AE81291CF71C165B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/18a81d27-7f1e-4a83-80cc-8b089f18a344.roa Signing time: Sun 01 Mar 2026 00:50:04 +0000 ROA not before: Sun 01 Mar 2026 00:50:04 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f107::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:34:df:1f:5d:c3:81:f4:d9:b1:8d:06:ae:81:29:1c:f7:1c:16:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 00:50:04 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=56db1b29d271b4b759bed8772e4bf08419b5997e74772d5466f4a59079e6959d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b4:68:21:c8:49:ff:8f:de:79:68:59:cd:b4: 91:27:f2:02:11:d3:3a:a6:e2:a6:b7:63:3e:3d:3a: 45:37:a1:fd:2c:38:d4:50:ba:2c:b4:e5:6c:ca:b8: 49:c9:f1:6d:a0:18:68:c4:52:78:9a:24:c1:84:02: 6a:6e:90:5b:b8:c7:de:6d:c9:66:49:9d:40:31:59: c5:d7:cb:e4:77:76:e8:ce:49:7a:d6:96:ea:6f:59: 06:04:9b:13:5c:32:c0:a6:9b:ff:ae:7a:49:2f:07: a9:0a:19:bd:cf:68:49:07:97:68:bf:dc:17:bc:bd: 15:8b:f0:29:fa:e6:e0:2e:9b:d5:fa:d3:f7:f5:57: 6d:aa:8c:cc:6e:c0:a9:d3:41:7d:ee:61:fc:39:b0: 94:a6:5c:f0:d7:bd:e4:cf:ea:20:e5:03:a6:cd:78: 94:3f:7a:65:c5:b8:0c:dc:5d:27:3e:4a:d3:20:ba: ad:fb:78:ce:60:cf:a2:30:ef:74:2f:b0:38:35:21: 8a:65:7a:7e:c2:38:f2:8c:d8:06:9a:69:e5:4d:e1: f0:ed:7d:b3:eb:90:d9:e5:8c:75:82:38:92:6d:38: 24:85:72:66:30:07:08:79:d0:af:09:07:71:b0:9c: b5:b6:34:f2:51:a8:a8:95:62:0d:b7:33:7f:f2:93: 5f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:6A:B6:8F:63:A9:65:FE:6D:F7:23:00:1A:AC:A8:9F:A9:C5:0E:0B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/18a81d27-7f1e-4a83-80cc-8b089f18a344.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f107::/48 Signature Algorithm: sha256WithRSAEncryption 98:59:0a:94:60:25:76:72:93:f3:18:5a:61:28:35:39:58:a7: a8:ac:b0:0d:e9:75:bb:be:96:3c:5d:3d:0f:a2:df:16:0b:19: 6c:eb:a3:1b:98:74:4a:ca:b9:18:0c:97:d9:71:6a:8d:73:78: 42:0c:7d:9f:9f:11:14:51:cf:50:4c:eb:72:6d:f1:0f:9b:5c: 7b:db:79:73:fc:81:ed:c2:9f:0b:c1:11:6e:2c:e4:5c:25:09: 51:dd:28:11:57:9a:ee:71:50:30:d4:37:a4:4b:cc:33:2e:7f: 50:74:4c:d9:a3:0c:ca:39:04:40:d0:1f:cd:cb:81:57:7f:6c: ec:3b:92:7d:cd:b4:cf:c1:ea:c7:de:79:e6:0e:86:6d:9c:a8: 2e:4f:d7:d5:51:46:c4:96:87:a3:e7:4c:7d:26:f8:44:34:97: 9d:8f:8a:c7:26:d1:2f:f0:b5:09:96:6b:ea:87:56:d8:3a:4d: 3c:25:34:6f:ee:87:af:37:f5:77:eb:6a:98:90:eb:8f:53:3d: 95:70:8d:6b:73:b4:28:1f:7b:ee:1d:9c:2f:f1:11:e5:fa:e0: 4d:e8:b0:ae:ef:e0:a0:78:dd:2d:95:b1:3a:09:c7:49:6f:ce: 0a:ea:56:5d:07:04:f3:b8:c2:92:58:7b:7b:89:76:ac:29:b8: 10:b0:a0:08 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbzTfH13DgfTZsY0GroEpHPccFlswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDA1MDA0WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NmRiMWIyOWQyNzFiNGI3NTliZWQ4NzcyZTRiZjA4NDE5 YjU5OTdlNzQ3NzJkNTQ2NmY0YTU5MDc5ZTY5NTlkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3tGghyEn/j955aFnNtJEn8gIR0zqm4qa3Yz49OkU3of0s ONRQuiy05WzKuEnJ8W2gGGjEUniaJMGEAmpukFu4x95tyWZJnUAxWcXXy+R3dujO SXrWlupvWQYEmxNcMsCmm/+uekkvB6kKGb3PaEkHl2i/3Be8vRWL8Cn65uAum9X6 0/f1V22qjMxuwKnTQX3uYfw5sJSmXPDXveTP6iDlA6bNeJQ/emXFuAzcXSc+StMg uq37eM5gz6Iw73QvsDg1IYplen7COPKM2AaaaeVN4fDtfbPrkNnljHWCOJJtOCSF cmYwBwh50K8JB3GwnLW2NPJRqKiVYg23M3/yk19FAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcGq2j2OpZf5t9yMAGqyon6nFDgswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE4YTgxZDI3LTdmMWUtNGE4My04MGNjLThiMDg5ZjE4YTM0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QcwDQYJKoZIhvcNAQELBQADggEBAJhZCpRgJXZyk/MYWmEoNTlY p6issA3pdbu+ljxdPQ+i3xYLGWzroxuYdErKuRgMl9lxao1zeEIMfZ+fERRRz1BM 63Jt8Q+bXHvbeXP8ge3CnwvBEW4s5FwlCVHdKBFXmu5xUDDUN6RLzDMuf1B0TNmj DMo5BEDQH83LgVd/bOw7kn3NtM/B6sfeeeYOhm2cqC5P19VRRsSWh6PnTH0m+EQ0 l52Piscm0S/wtQmWa+qHVtg6TTwlNG/uh6839XfrapiQ649TPZVwjWtztCgfe+4d nC/xEeX64E3osK7v4KB43S2VsToJx0lvzgrqVl0HBPO4wpJYe3uJdqwpuBCwoAg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:11:49 2026 by rpki-client