$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e601690-d98c-4d0d-8f50-2f457decb102.roa File: 1e601690-d98c-4d0d-8f50-2f457decb102.roa (raw, json) Hash identifier: Hp5Un2x4jdfm8vPE31tYpsPaYpqGyAGtYAtU2q0xmzg= Subject key identifier: DF:3A:1A:E5:74:29:A0:B3:E9:7C:2D:8D:C1:86:D1:2A:22:C4:98:87 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 650BCC1C9AD85B44B4297204CF2E97F9C21DA266 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e601690-d98c-4d0d-8f50-2f457decb102.roa Signing time: Sat 28 Feb 2026 05:00:32 +0000 ROA not before: Sat 28 Feb 2026 05:00:32 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:0b:cc:1c:9a:d8:5b:44:b4:29:72:04:cf:2e:97:f9:c2:1d:a2:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:32 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=4bf1d51f3fc50b17321dfcda1aa1d92ca639048c2817f3bd08a1f02a04a3e79f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:04:16:4f:44:e1:74:fb:29:10:aa:3d:d8:14: bc:8c:49:3b:cb:02:c7:fb:24:09:fd:b3:bb:bb:e0: 7f:59:cb:c1:89:bf:76:de:bc:51:dd:fe:d8:99:6c: ee:a2:af:d7:13:29:64:e3:f9:74:f8:59:f6:c3:b5: ea:d6:01:bf:e6:80:c1:c0:11:1d:a0:08:1f:ca:9c: 30:97:e6:bb:27:55:ab:a7:ea:85:94:7a:f7:2d:45: 63:ec:50:d1:7a:f4:e9:b7:65:89:41:b0:68:cf:d0: dc:32:e3:68:a3:c4:35:7e:f7:e9:87:d2:28:3d:ae: 70:53:7b:78:1d:d6:a8:17:e0:ac:eb:7d:54:48:c5: 49:ed:84:12:53:84:5c:71:89:66:84:9d:0e:47:da: b9:78:02:30:b3:a3:0b:79:b9:08:e8:ae:36:07:24: 6d:61:02:c6:30:89:cc:9d:5b:06:0b:ba:22:f9:c0: 19:54:45:30:6d:46:9c:5d:55:8b:a0:26:a1:66:63: 6e:f6:ab:a0:db:49:b2:ff:f5:50:b0:f5:10:e6:7a: ff:e3:43:58:6d:b2:ec:87:04:9a:6e:eb:3e:97:d7: 80:c8:84:78:4d:d2:a9:be:d3:01:c3:b7:9a:ba:5f: 04:bf:16:2f:b4:02:bf:7e:9d:29:a1:bb:7e:f7:8e: 4d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:3A:1A:E5:74:29:A0:B3:E9:7C:2D:8D:C1:86:D1:2A:22:C4:98:87 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e601690-d98c-4d0d-8f50-2f457decb102.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 28:8f:dd:e6:0e:1d:db:aa:24:f0:9c:a2:6a:74:a9:8b:fc:f9: c6:d0:cd:16:d1:d4:f3:20:c7:9c:63:e4:14:ad:d9:0e:4f:e2: 30:b0:8b:0b:43:87:8c:57:2a:6b:bc:7e:e2:55:7a:35:e5:4f: 70:63:f4:1a:dc:1a:2f:15:3d:2b:82:c3:6d:36:7a:95:98:56: d6:5b:0d:6d:46:b6:e4:21:d6:08:c1:63:52:4d:eb:72:26:40: 10:03:db:03:40:97:6e:ac:22:d0:c9:48:1a:b4:79:39:5c:4c: 78:2e:59:98:e9:d1:04:d4:1f:8b:0b:61:78:09:4f:25:32:ce: 54:f5:20:cc:a1:fd:05:90:5b:05:0b:ef:9f:10:6b:76:d9:d2: e1:f7:b9:17:7a:b3:68:d8:9c:a4:a2:71:7e:e5:56:76:5d:62: 36:02:df:c9:5c:19:3e:0c:cc:e2:a0:f8:54:33:6e:72:1d:4f: 58:a9:15:a5:a5:96:09:e2:85:b5:3d:a1:08:5e:54:35:64:a8: 8f:9c:f8:ef:ca:fe:8f:56:3d:20:f2:22:85:0d:ef:13:c1:33: 40:a6:7f:1c:04:02:4e:e4:b1:af:6d:76:24:eb:88:c0:ea:29: 98:30:15:00:1f:d5:2b:5b:0a:cd:b3:c6:e7:d9:8b:0a:39:27: 4e:0d:eb:cb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZQvMHJrYW0S0KXIEzy6X+cIdomYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDMyWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YmYxZDUxZjNmYzUwYjE3MzIxZGZjZGExYWExZDkyY2E2 MzkwNDhjMjgxN2YzYmQwOGExZjAyYTA0YTNlNzlmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCEBBZPROF0+ykQqj3YFLyMSTvLAsf7JAn9s7u74H9Zy8GJ v3bevFHd/tiZbO6ir9cTKWTj+XT4WfbDterWAb/mgMHAER2gCB/KnDCX5rsnVaun 6oWUevctRWPsUNF69Om3ZYlBsGjP0Nwy42ijxDV+9+mH0ig9rnBTe3gd1qgX4Kzr fVRIxUnthBJThFxxiWaEnQ5H2rl4AjCzowt5uQjorjYHJG1hAsYwicydWwYLuiL5 wBlURTBtRpxdVYugJqFmY272q6DbSbL/9VCw9RDmev/jQ1htsuyHBJpu6z6X14DI hHhN0qm+0wHDt5q6XwS/Fi+0Ar9+nSmhu373jk3hAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3zoa5XQpoLPpfC2NwYbRKiLEmIcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFlNjAxNjkwLWQ5OGMtNGQwZC04ZjUwLTJmNDU3ZGVjYjEwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBACiP3eYOHduqJPCcomp0qYv8 +cbQzRbR1PMgx5xj5BSt2Q5P4jCwiwtDh4xXKmu8fuJVejXlT3Bj9BrcGi8VPSuC w202epWYVtZbDW1GtuQh1gjBY1JN63ImQBAD2wNAl26sItDJSBq0eTlcTHguWZjp 0QTUH4sLYXgJTyUyzlT1IMyh/QWQWwUL758Qa3bZ0uH3uRd6s2jYnKSicX7lVnZd YjYC38lcGT4MzOKg+FQzbnIdT1ipFaWllgnihbU9oQheVDVkqI+c+O/K/o9WPSDy IoUN7xPBM0CmfxwEAk7ksa9tdiTriMDqKZgwFQAf1StbCs2zxufZiwo5J04N68s= -----END CERTIFICATE-----Generated at Sun Mar 1 22:09:39 2026 by rpki-client