$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e0ccd54-23cc-4939-b5be-1cf1c8ab6154.roa File: 1e0ccd54-23cc-4939-b5be-1cf1c8ab6154.roa (raw, json) Hash identifier: wRw4272Qvs0sRpcpj90gqOS2g6FF71H4c/7KtYdlR0w= Subject key identifier: A7:37:42:39:AB:17:83:6A:0A:E6:C8:EC:41:09:BF:45:0C:03:8D:A2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3E2712BB8408FBA9A9A2249551EDF6A791DB396C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e0ccd54-23cc-4939-b5be-1cf1c8ab6154.roa Signing time: Tue 10 Feb 2026 00:00:15 +0000 ROA not before: Tue 10 Feb 2026 00:00:15 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:27:12:bb:84:08:fb:a9:a9:a2:24:95:51:ed:f6:a7:91:db:39:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 10 00:00:15 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=b7a4766e881ab4e7ccc14da8c2e64bae7465dddb6968a7aee5703762ed9ab8c7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2e:69:ff:df:83:c9:6e:d5:80:db:bb:b4:e0: 26:e5:af:0a:49:79:7b:ce:10:ac:51:c4:2d:e1:99: 7e:6c:44:98:e2:95:8c:a6:b9:88:ad:de:0e:19:d7: 5b:80:32:02:f4:f1:07:a2:20:fc:07:b0:aa:39:d9: fe:4c:83:24:2f:49:19:a9:0d:a7:62:4d:54:fe:4f: 9f:79:39:64:f9:09:41:3a:8d:62:b3:65:fc:05:bf: 43:21:87:71:d1:78:95:51:5e:22:23:32:b4:04:a5: 51:fe:1c:2e:ac:30:ff:74:65:bf:5a:45:d0:a4:43: bb:a8:60:27:e3:ab:95:a6:8c:9e:6d:4e:b2:43:75: 4d:19:32:06:b2:1d:52:85:34:78:ed:5d:3d:d5:25: a7:39:af:95:03:cb:84:9f:f9:96:00:50:44:26:b3: 57:6b:36:7e:25:9b:f7:5b:23:5c:66:32:a5:a9:3f: 97:0c:ac:32:f5:ce:d2:cb:21:7d:37:76:07:39:5f: 0e:94:20:93:65:5e:9a:74:74:7b:d2:c4:1c:e4:03: e9:a3:65:bd:7f:d8:ca:e5:32:a4:fc:4f:9f:73:1a: ee:8c:9b:26:8e:d8:c6:7d:37:c0:99:34:57:92:6b: 42:bc:8a:8b:92:b4:9e:c1:b1:45:86:4a:cd:4a:a6: de:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:37:42:39:AB:17:83:6A:0A:E6:C8:EC:41:09:BF:45:0C:03:8D:A2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e0ccd54-23cc-4939-b5be-1cf1c8ab6154.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6102::/48 Signature Algorithm: sha256WithRSAEncryption a3:17:13:fa:84:13:c7:aa:af:36:b0:9f:d5:0f:bf:c9:79:cc: 9e:b0:a8:ff:17:05:bb:fb:fe:e6:b9:c9:e9:51:99:67:6b:e4: f2:44:a7:cf:34:17:cc:00:cb:b5:65:37:2f:2d:55:78:ff:09: e9:6a:ac:9c:81:c4:36:32:35:2c:9c:08:a8:a9:8c:f6:5e:df: 85:49:63:1c:0a:f2:97:25:cc:20:cd:86:52:bc:84:e6:e5:79: d0:0f:6e:39:52:17:18:33:78:ac:6a:f5:ea:94:cb:a4:f4:02: 04:d8:77:5b:cc:d7:bd:c8:1a:91:48:cb:13:98:e5:76:69:11: a0:45:5d:31:7d:8f:97:cc:f0:34:87:70:e2:04:5a:a2:a9:ef: f3:74:3d:ce:db:e2:bd:b7:7d:6a:1f:7c:fb:d5:b4:00:18:be: 6a:c4:8b:cd:f3:8a:f7:9b:25:a4:21:36:3c:dc:8f:87:7c:bb: 10:26:04:46:2a:55:52:fc:d8:fa:f4:3c:b6:ae:60:b4:0b:ae: 2b:43:3c:50:91:e7:8c:07:e2:d0:f3:70:b1:6a:f4:d9:00:81: 83:20:05:ff:25:46:e5:8c:59:e0:b2:41:2e:4b:55:dc:4f:15: fc:af:4a:63:4a:88:bb:ac:4a:ab:2b:1c:57:56:a7:73:d3:74: 22:76:70:c3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPicSu4QI+6mpoiSVUe32p5HbOWwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjEwMDAwMDE1WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiN2E0NzY2ZTg4MWFiNGU3Y2NjMTRkYThjMmU2NGJhZTc0 NjVkZGRiNjk2OGE3YWVlNTcwMzc2MmVkOWFiOGM3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzLmn/34PJbtWA27u04CblrwpJeXvOEKxRxC3hmX5sRJji lYymuYit3g4Z11uAMgL08QeiIPwHsKo52f5MgyQvSRmpDadiTVT+T595OWT5CUE6 jWKzZfwFv0Mhh3HReJVRXiIjMrQEpVH+HC6sMP90Zb9aRdCkQ7uoYCfjq5WmjJ5t TrJDdU0ZMgayHVKFNHjtXT3VJac5r5UDy4Sf+ZYAUEQms1drNn4lm/dbI1xmMqWp P5cMrDL1ztLLIX03dgc5Xw6UIJNlXpp0dHvSxBzkA+mjZb1/2MrlMqT8T59zGu6M myaO2MZ9N8CZNFeSa0K8iouStJ7BsUWGSs1Kpt43AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpzdCOasXg2oK5sjsQQm/RQwDjaIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFlMGNjZDU0LTIzY2MtNDkzOS1iNWJlLTFjZjFjOGFiNjE1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQIwDQYJKoZIhvcNAQELBQADggEBAKMXE/qEE8eqrzawn9UPv8l5 zJ6wqP8XBbv7/ua5yelRmWdr5PJEp880F8wAy7VlNy8tVXj/CelqrJyBxDYyNSyc CKipjPZe34VJYxwK8pclzCDNhlK8hObledAPbjlSFxgzeKxq9eqUy6T0AgTYd1vM 173IGpFIyxOY5XZpEaBFXTF9j5fM8DSHcOIEWqKp7/N0Pc7b4r23fWoffPvVtAAY vmrEi83zivebJaQhNjzcj4d8uxAmBEYqVVL82Pr0PLauYLQLritDPFCR54wH4tDz cLFq9NkAgYMgBf8lRuWMWeCyQS5LVdxPFfyvSmNKiLusSqsrHFdWp3PTdCJ2cMM= -----END CERTIFICATE-----Generated at Sun Mar 1 22:05:27 2026 by rpki-client