$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa File: 1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa (raw, json) Hash identifier: Xbbi1e0bT0gfkeq8vwrz4EkGCFTLlro6lrFuMIry8ls= Subject key identifier: DE:1E:4F:F6:76:D9:8E:C4:BF:CC:B9:EF:AE:46:E2:39:BF:70:C5:1A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 04BB00938234243CDDA4FFC4CC832AFA7E00D358 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa Signing time: Sun 01 Mar 2026 01:00:14 +0000 ROA not before: Sun 01 Mar 2026 01:00:14 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:bb:00:93:82:34:24:3c:dd:a4:ff:c4:cc:83:2a:fa:7e:00:d3:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 01:00:14 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=4a678a408e008dc97a1aa74c7da193bd34686ee589e6bba9028147a56518933a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b3:87:e2:f8:69:55:4c:7f:c0:59:0d:7b:71: 1c:14:ed:3b:13:d7:31:b2:a3:3f:77:9a:28:fa:f7: 0a:a7:42:08:b0:c9:b9:a0:10:fc:1f:bf:23:1b:07: c7:b5:93:39:50:02:4d:21:6d:d8:ae:44:f9:73:f2: d2:e8:46:b0:bf:0e:ce:23:f8:0f:a6:3b:f3:41:7f: eb:96:3d:92:ad:69:07:f2:1a:44:25:67:56:e1:5d: 53:c2:dc:30:7f:62:a1:5a:68:23:e7:ed:af:01:15: cc:1d:07:39:e6:88:27:15:48:7d:f9:ea:ec:95:94: 00:ae:b5:cb:0a:08:58:f1:6d:3f:c2:94:90:c8:8c: 50:64:f9:9e:34:b8:12:83:e5:23:89:0d:f6:e5:45: bc:94:80:e6:e1:46:e5:ae:f8:09:8e:3f:03:9e:92: 45:3c:08:a0:14:37:17:19:06:c7:29:2e:67:ae:a7: 4b:a7:ef:53:3f:48:60:c9:07:74:7b:20:f1:73:d7: d0:74:27:8b:a7:d1:7e:4d:c6:e0:e5:8f:02:ae:b4: f9:48:ef:28:5c:19:61:01:3c:ab:e9:98:20:45:01: c1:1c:d9:0f:f7:a3:fa:b5:ff:ee:f8:37:af:2f:26: 67:fe:a1:60:61:03:80:e0:6b:a2:2e:a8:3c:0e:5f: e5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:1E:4F:F6:76:D9:8E:C4:BF:CC:B9:EF:AE:46:E2:39:BF:70:C5:1A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8800::/40 Signature Algorithm: sha256WithRSAEncryption 4c:4a:95:b7:41:e7:c2:c0:3e:43:0f:24:ba:4b:d1:d8:a8:e6: 7c:c5:9c:1a:70:92:fb:7b:d2:5e:11:e5:71:b9:93:41:8a:83: 82:a3:77:f1:4a:c1:c7:19:b9:e2:93:54:c5:6c:ca:a7:8e:7f: 09:70:2f:d7:30:0c:3d:0d:91:54:82:28:69:42:a9:3f:4d:bb: 32:22:dc:e9:47:cb:ec:0c:57:c6:30:25:38:74:14:02:8a:b5: 01:18:ee:5b:be:b2:5a:30:11:a3:cb:d0:c1:ee:b5:71:7d:74: 05:1f:68:91:ce:1f:41:4b:bd:08:f2:90:b2:e2:33:5c:97:d9: 42:67:e0:ab:d1:4e:2c:17:d1:ec:a1:92:1d:99:c7:f7:aa:a0: a4:3a:4e:8b:16:e7:2e:6b:a0:84:b9:9b:75:c8:2e:d1:c0:73: fd:e1:72:04:bd:37:18:58:5e:53:66:06:79:cd:29:ce:98:b3: 0b:3b:9a:f8:24:cd:2c:91:f1:cd:0a:23:6a:30:52:76:3f:98: 59:72:93:3c:a1:0e:f7:fe:d0:c1:cf:96:0f:15:8f:45:cb:c7: 82:4d:d3:ee:a0:d4:e3:7c:48:65:03:da:f0:b6:d3:11:2e:7c: 60:14:ca:fa:15:aa:87:c2:ad:2a:0e:98:f3:c2:77:a6:cc:03: aa:71:53:52 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBLsAk4I0JDzdpP/EzIMq+n4A01gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDEwMDE0WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTY3OGE0MDhlMDA4ZGM5N2ExYWE3NGM3ZGExOTNiZDM0 Njg2ZWU1ODllNmJiYTkwMjgxNDdhNTY1MTg5MzNhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDks4fi+GlVTH/AWQ17cRwU7TsT1zGyoz93mij69wqnQgiw ybmgEPwfvyMbB8e1kzlQAk0hbdiuRPlz8tLoRrC/Ds4j+A+mO/NBf+uWPZKtaQfy GkQlZ1bhXVPC3DB/YqFaaCPn7a8BFcwdBznmiCcVSH356uyVlACutcsKCFjxbT/C lJDIjFBk+Z40uBKD5SOJDfblRbyUgObhRuWu+AmOPwOekkU8CKAUNxcZBscpLmeu p0un71M/SGDJB3R7IPFz19B0J4un0X5NxuDljwKutPlI7yhcGWEBPKvpmCBFAcEc 2Q/3o/q1/+74N68vJmf+oWBhA4Dga6IuqDwOX+WJAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU3h5P9nbZjsS/zLnvrkbiOb9wxRowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFkZjRhODJhLTA4NzUtNDdiNi05ZmMwLWI2N2MwOTdiYzQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDxiDANBgkqhkiG9w0BAQsFAAOCAQEATEqVt0HnwsA+Qw8kukvR2Kjm fMWcGnCS+3vSXhHlcbmTQYqDgqN38UrBxxm54pNUxWzKp45/CXAv1zAMPQ2RVIIo aUKpP027MiLc6UfL7AxXxjAlOHQUAoq1ARjuW76yWjARo8vQwe61cX10BR9okc4f QUu9CPKQsuIzXJfZQmfgq9FOLBfR7KGSHZnH96qgpDpOixbnLmughLmbdcgu0cBz /eFyBL03GFheU2YGec0pzpizCzua+CTNLJHxzQojajBSdj+YWXKTPKEO9/7Qwc+W DxWPRcvHgk3T7qDU43xIZQPa8LbTES58YBTK+hWqh8KtKg6Y88J3pswDqnFTUg== -----END CERTIFICATE-----Generated at Sun Mar 1 23:46:54 2026 by rpki-client