$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa File: 20df74ce-1a64-4df1-b616-115d4493a969.roa (raw, json) Hash identifier: iRJxFD+7CudUWQ0qR67gBT1qtNulJMAGH3YtUo9vpX8= Subject key identifier: 01:38:BD:CE:98:84:2D:4B:34:77:93:F3:A2:AB:BB:21:97:95:FD:5C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 13BC1A00802D46F5C95711ACFC9CEA7118DB2AD0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa Signing time: Sat 28 Feb 2026 02:00:05 +0000 ROA not before: Sat 28 Feb 2026 02:00:05 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:bc:1a:00:80:2d:46:f5:c9:57:11:ac:fc:9c:ea:71:18:db:2a:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 02:00:05 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=fcc300241e24caeb9fb7410b1efdfaf5e96fe74c8fd3920f42132b3431abb3d8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8e:b5:89:58:1c:bf:ee:04:71:df:2d:69:47: 4b:f9:d8:99:79:cd:ef:00:af:34:88:a0:f7:8d:c5: 90:ae:77:75:79:1f:4e:b6:2c:17:8a:12:06:0a:6c: f8:cf:03:76:71:83:be:bf:95:63:d1:72:6f:d2:99: 45:26:41:32:8c:8e:3b:4e:1d:8e:88:d3:55:2f:08: a3:a0:70:67:e2:f3:53:0a:22:64:f3:19:d5:07:8f: 36:9d:38:6d:63:66:4d:40:cc:43:d7:44:6d:16:5f: 3d:e5:11:7d:be:40:fc:4e:fa:7d:12:ca:2c:77:1f: ff:69:ec:e1:ca:f1:f3:d9:0b:59:6d:b4:0f:ae:cd: 8d:fe:e9:74:f2:82:13:c2:7a:f1:7a:d1:2c:5d:94: 75:16:d0:f1:53:05:90:0c:6d:62:f5:33:01:64:bf: bb:f1:eb:dd:c4:ee:fb:1f:c6:17:fe:3a:31:c7:bc: d1:51:61:bf:25:d2:d5:c6:73:2f:30:ff:e7:95:90: c9:71:c4:01:d3:4b:62:93:7f:b6:2d:76:9a:04:1c: f9:f2:19:de:7f:7e:72:16:d2:6d:15:d9:37:2e:dd: 57:ff:6f:3d:bd:51:13:2c:70:27:54:70:ad:b0:a8: 36:62:47:17:91:63:fd:50:13:64:d6:85:75:a9:be: e1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:38:BD:CE:98:84:2D:4B:34:77:93:F3:A2:AB:BB:21:97:95:FD:5C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:200::/40 Signature Algorithm: sha256WithRSAEncryption 25:ad:eb:90:ad:0e:cb:7b:90:c8:11:af:2c:d4:36:e1:f8:a5: fc:27:88:24:49:5a:0b:45:4d:7e:ca:b6:ec:44:03:75:56:fd: 13:54:67:27:b5:ca:1b:44:b4:64:d1:f7:19:0c:be:e3:a6:2c: 53:ed:6c:7b:b9:0b:33:e0:b3:4a:60:7d:a5:5c:ed:82:a3:02: 44:2e:c2:a9:e6:64:43:83:7c:85:07:25:2a:91:89:fa:6d:11: c6:d9:e2:bc:85:0d:42:f1:17:5f:eb:1e:33:6d:b5:0d:cb:53: c3:74:23:12:90:27:f1:2e:82:13:1e:42:8e:28:47:4e:ed:83: cf:7c:6b:e6:3b:5f:5b:7b:22:a6:11:d3:61:73:ab:4c:c8:f2: 92:d7:0b:1d:e1:79:00:7d:c4:65:68:99:4c:e6:fd:0a:d0:4b: 9a:ed:8d:3a:9b:7f:34:5a:cf:be:2c:e9:04:58:50:79:7f:5a: 6d:45:61:5a:49:5b:7b:16:5f:48:6c:0a:01:d8:cb:f4:cb:28: a3:99:6f:9e:0c:aa:51:73:79:a2:ab:fc:ad:28:3c:52:cc:7d: 03:b1:22:ac:97:76:da:6c:7d:80:10:49:35:97:58:7e:60:17: be:24:0d:73:5d:f8:3a:ed:12:29:98:ab:b4:c5:eb:9c:d2:0a: 26:aa:8e:20 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUE7waAIAtRvXJVxGs/JzqcRjbKtAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDIwMDA1WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmY2MzMDAyNDFlMjRjYWViOWZiNzQxMGIxZWZkZmFmNWU5 NmZlNzRjOGZkMzkyMGY0MjEzMmIzNDMxYWJiM2Q4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+jrWJWBy/7gRx3y1pR0v52Jl5ze8ArzSIoPeNxZCud3V5 H062LBeKEgYKbPjPA3Zxg76/lWPRcm/SmUUmQTKMjjtOHY6I01UvCKOgcGfi81MK ImTzGdUHjzadOG1jZk1AzEPXRG0WXz3lEX2+QPxO+n0Syix3H/9p7OHK8fPZC1lt tA+uzY3+6XTyghPCevF60SxdlHUW0PFTBZAMbWL1MwFkv7vx693E7vsfxhf+OjHH vNFRYb8l0tXGcy8w/+eVkMlxxAHTS2KTf7YtdpoEHPnyGd5/fnIW0m0V2Tcu3Vf/ bz29URMscCdUcK2wqDZiRxeRY/1QE2TWhXWpvuF/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUATi9zpiELUs0d5Pzoqu7IZeV/VwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIwZGY3NGNlLTFhNjQtNGRmMS1iNjE2LTExNWQ0NDkzYTk2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwAjANBgkqhkiG9w0BAQsFAAOCAQEAJa3rkK0Oy3uQyBGvLNQ24fil /CeIJElaC0VNfsq27EQDdVb9E1RnJ7XKG0S0ZNH3GQy+46YsU+1se7kLM+CzSmB9 pVztgqMCRC7CqeZkQ4N8hQclKpGJ+m0RxtnivIUNQvEXX+seM221DctTw3QjEpAn 8S6CEx5CjihHTu2Dz3xr5jtfW3siphHTYXOrTMjyktcLHeF5AH3EZWiZTOb9CtBL mu2NOpt/NFrPvizpBFhQeX9abUVhWklbexZfSGwKAdjL9Msoo5lvngyqUXN5oqv8 rSg8Usx9A7EirJd22mx9gBBJNZdYfmAXviQNc134Ou0SKZirtMXrnNIKJqqOIA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:14:26 2026 by rpki-client