$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa File: 1ad26571-c674-4a73-b205-77cb32fe83bd.roa (raw, json) Hash identifier: sOmkQJDx9SzcJ+8MUiCsAIc4aFsht5R8TlxMcbS/mio= Subject key identifier: 42:8E:28:CE:CD:CB:97:FA:3A:0B:EA:D9:D3:FD:F5:70:57:A2:94:F4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5AE146D72F894E4F137510190A5520133955DBC5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa Signing time: Sat 28 Feb 2026 05:00:09 +0000 ROA not before: Sat 28 Feb 2026 05:00:09 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:e1:46:d7:2f:89:4e:4f:13:75:10:19:0a:55:20:13:39:55:db:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:09 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=26abc9023dc728f7b5b104f1fb05c70f40305ab717fbd56b8b73b06fed294d55, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:68:d8:98:e2:30:df:82:0b:b6:3a:45:76:3e: 95:cb:b7:d8:b4:81:bc:1d:72:43:1e:45:18:ce:69: 83:b8:1a:a1:1c:14:0b:0c:7f:2e:f8:d0:c7:1e:3f: 4e:c9:74:08:f1:d7:03:09:5a:97:65:58:00:3f:72: 3f:30:09:9f:ad:79:b2:3c:79:b3:66:0e:ac:66:14: ad:18:c7:39:88:54:2c:e3:42:59:3a:a5:e2:2a:41: fa:b8:4c:82:24:d6:5c:43:19:f7:e0:1e:1e:bc:44: 2c:bc:47:fb:c9:9d:c7:4e:2b:5a:bf:80:42:e9:2e: 03:ff:60:e2:bc:20:d5:31:c1:05:a8:d0:5e:7b:37: 8d:79:59:71:36:4a:e9:33:73:f4:1b:ec:f5:16:49: c8:d4:f9:ea:81:0f:18:cc:01:c8:9c:d5:1b:b1:e4: 56:c5:ee:78:43:4e:71:6d:21:79:65:61:59:2d:75: 87:34:27:61:e0:06:d5:d5:19:56:93:c7:62:a7:59: ff:79:0b:0a:44:52:d8:35:9d:85:ec:ea:71:79:f0: b5:c3:1a:16:20:4e:6f:e2:b7:87:6b:5a:da:dc:2f: 2b:e2:cd:de:62:f7:0b:fa:2c:f6:6d:53:02:a8:5c: 2a:89:21:73:38:37:14:55:36:58:ed:df:26:20:48: f3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8E:28:CE:CD:CB:97:FA:3A:0B:EA:D9:D3:FD:F5:70:57:A2:94:F4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10::/48 Signature Algorithm: sha256WithRSAEncryption 22:44:29:b7:f4:dc:0b:e5:04:1a:2c:c9:e2:13:e6:7f:8d:90: 9a:cf:0f:93:cc:44:46:10:ec:d4:3d:5d:83:9d:b3:7c:4f:6f: 82:07:ec:0a:27:0e:bd:07:02:7c:f5:07:6e:1b:a8:4c:51:1a: d5:41:e3:ed:f0:fb:9f:a1:26:00:11:5c:f4:c6:f2:3b:00:a1: 2f:3a:f4:3a:45:f8:c0:69:99:6c:42:80:77:05:ea:55:aa:ab: fc:cd:dd:bc:5a:dc:cd:b3:26:5b:a8:fd:64:01:a3:30:8a:74: 19:3b:61:17:13:06:fa:d0:94:23:8c:be:c6:53:aa:73:7b:ab: 05:b3:70:c5:60:98:1c:c8:27:82:92:ba:45:30:aa:98:be:61: 05:62:fa:31:0c:4a:d8:38:fd:72:c7:ab:c6:23:f7:9c:63:52: 6e:13:cf:c7:91:aa:0a:cf:fa:40:ad:ef:4a:19:0b:26:a4:ce: a5:41:74:7d:2f:10:45:c5:80:7f:fc:23:ce:31:1a:88:07:8c: 44:b7:0f:31:35:b6:b0:da:af:00:71:1c:aa:a9:10:f3:7c:f4: c1:c2:e0:1c:c2:89:76:a4:40:a9:7c:4d:56:71:64:46:a1:9b: 39:7a:39:72:92:f5:73:e8:13:0e:05:97:5a:25:ad:e7:bb:34: 7f:86:af:5d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWuFG1y+JTk8TdRAZClUgEzlV28UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDA5WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNmFiYzkwMjNkYzcyOGY3YjViMTA0ZjFmYjA1YzcwZjQw MzA1YWI3MTdmYmQ1NmI4YjczYjA2ZmVkMjk0ZDU1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSaNiY4jDfggu2OkV2PpXLt9i0gbwdckMeRRjOaYO4GqEc FAsMfy740MceP07JdAjx1wMJWpdlWAA/cj8wCZ+tebI8ebNmDqxmFK0YxzmIVCzj Qlk6peIqQfq4TIIk1lxDGffgHh68RCy8R/vJncdOK1q/gELpLgP/YOK8INUxwQWo 0F57N415WXE2Sukzc/Qb7PUWScjU+eqBDxjMAcic1Rux5FbF7nhDTnFtIXllYVkt dYc0J2HgBtXVGVaTx2KnWf95CwpEUtg1nYXs6nF58LXDGhYgTm/it4drWtrcLyvi zd5i9wv6LPZtUwKoXCqJIXM4NxRVNljt3yYgSPNvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQo4ozs3Ll/o6C+rZ0/31cFeilPQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFhZDI2NTcxLWM2NzQtNGE3My1iMjA1LTc3Y2IzMmZlODNiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABAwDQYJKoZIhvcNAQELBQADggEBACJEKbf03AvlBBosyeIT5n+N kJrPD5PMREYQ7NQ9XYOds3xPb4IH7AonDr0HAnz1B24bqExRGtVB4+3w+5+hJgAR XPTG8jsAoS869DpF+MBpmWxCgHcF6lWqq/zN3bxa3M2zJluo/WQBozCKdBk7YRcT BvrQlCOMvsZTqnN7qwWzcMVgmBzIJ4KSukUwqpi+YQVi+jEMStg4/XLHq8Yj95xj Um4Tz8eRqgrP+kCt70oZCyakzqVBdH0vEEXFgH/8I84xGogHjES3DzE1trDarwBx HKqpEPN89MHC4BzCiXakQKl8TVZxZEahmzl6OXKS9XPoEw4Fl1olree7NH+Gr10= -----END CERTIFICATE-----Generated at Mon Mar 2 01:03:15 2026 by rpki-client