$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa File: 2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa (raw, json) Hash identifier: UEMvd+FnJpW+cKo/uFqcb1xkz9qvYIoWFby6Kg85G1w= Subject key identifier: 87:44:D5:1E:BE:81:78:63:18:F4:36:20:F9:54:B3:7D:24:B5:D7:99 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 69131E57CB5685368FA1492A3F1780323F110ACB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa Signing time: Sat 28 Feb 2026 05:00:04 +0000 ROA not before: Sat 28 Feb 2026 05:00:04 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:13:1e:57:cb:56:85:36:8f:a1:49:2a:3f:17:80:32:3f:11:0a:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:04 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=d965478449822ecb3217433554c4e5a9a744810803f2a89d4b92eb2a1e43ae59, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c0:c2:81:6b:b3:39:43:72:38:24:27:fb:98: e6:68:36:67:4b:03:a3:82:bb:71:ce:63:94:75:fe: 20:38:aa:18:02:ef:4b:00:70:19:dc:13:19:3c:25: ea:d8:a5:73:10:6d:25:36:ef:84:6e:03:27:d2:46: 47:e0:c0:c1:76:0f:f2:b0:69:e4:75:5b:1a:72:70: bf:56:67:d9:c6:fc:5c:19:7d:c4:6e:6f:05:fb:a0: b8:58:db:fc:89:cb:61:52:dd:20:ed:3c:b1:ba:d0: 84:17:ee:29:52:14:2b:8e:d7:59:c7:fa:bb:7c:ba: 47:fb:84:5d:12:1d:17:9c:07:fe:d3:f8:d0:22:a7: b8:a0:f3:29:e7:53:38:c7:e6:c3:08:52:5a:7c:19: 84:d4:0d:92:f6:65:aa:bf:db:7d:6f:72:5f:b8:e7: 05:af:af:86:5d:29:69:a6:39:69:15:01:c0:5d:95: 80:e1:f5:80:69:4c:e0:16:91:c5:08:6c:f4:a0:a3: 1e:ce:ba:b8:92:1d:32:5f:2f:56:c0:36:f3:88:7b: 75:cb:88:b2:29:73:b0:33:88:63:ee:2b:b5:60:96: 9b:e9:02:e1:3c:8f:52:a4:dc:3f:08:0c:fd:3b:1a: cd:03:f1:55:a7:e0:41:15:3c:de:ac:5b:63:43:52: 04:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:44:D5:1E:BE:81:78:63:18:F4:36:20:F9:54:B3:7D:24:B5:D7:99 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/40 Signature Algorithm: sha256WithRSAEncryption 22:86:1f:b6:a1:8c:b2:a5:87:cb:7e:85:c8:63:8f:f8:9c:ec: db:c0:f3:7e:43:97:f3:97:7a:23:cc:59:cc:e2:35:99:75:4a: 33:68:34:80:42:9b:f8:a7:86:6a:41:a9:d1:35:88:23:4f:be: f8:d9:33:f8:f0:01:76:c2:06:6d:47:1a:8a:f6:60:b7:24:14: 8e:37:bd:a3:b7:a2:ba:92:de:9f:7b:3a:53:c6:e1:ff:4b:ac: 4f:de:72:ef:56:f9:f2:a0:01:b4:72:e5:30:7f:75:ea:9d:f6: 28:0d:7d:58:a9:74:a4:fd:5b:f2:d8:8e:dc:a6:a3:f8:60:69: a2:da:69:94:d9:e7:0c:27:78:62:53:a0:b0:3c:c6:d2:90:b3: 24:92:de:f9:86:73:f9:84:81:2d:0c:48:8e:a8:b5:52:c1:f4: d6:83:d9:43:4f:c6:68:f4:42:61:ea:82:51:9a:0a:67:62:23: bc:e3:ba:d7:79:59:04:77:ce:92:d0:0d:18:ff:e4:6c:62:6a: bf:15:a1:ab:ff:92:80:89:b7:a9:4a:96:9a:1a:0c:73:51:90: 6b:63:87:23:be:17:1b:b4:6e:45:d9:07:54:fd:fb:50:f7:56: 0a:49:2f:5d:c9:4a:01:10:a7:52:41:06:13:87:8f:63:12:e2: e3:ef:14:dd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaRMeV8tWhTaPoUkqPxeAMj8RCsswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDA0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTY1NDc4NDQ5ODIyZWNiMzIxNzQzMzU1NGM0ZTVhOWE3 NDQ4MTA4MDNmMmE4OWQ0YjkyZWIyYTFlNDNhZTU5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMwMKBa7M5Q3I4JCf7mOZoNmdLA6OCu3HOY5R1/iA4qhgC 70sAcBncExk8JerYpXMQbSU274RuAyfSRkfgwMF2D/KwaeR1WxpycL9WZ9nG/FwZ fcRubwX7oLhY2/yJy2FS3SDtPLG60IQX7ilSFCuO11nH+rt8ukf7hF0SHRecB/7T +NAip7ig8ynnUzjH5sMIUlp8GYTUDZL2Zaq/231vcl+45wWvr4ZdKWmmOWkVAcBd lYDh9YBpTOAWkcUIbPSgox7OuriSHTJfL1bANvOIe3XLiLIpc7AziGPuK7Vglpvp AuE8j1Kk3D8IDP07Gs0D8VWn4EEVPN6sW2NDUgQ7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUh0TVHr6BeGMY9DYg+VSzfSS115kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI5MTBiY2ZhLTRiY2ItNDEyNS1hNTZmLTRiYjk1OTZmNWFkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwBTANBgkqhkiG9w0BAQsFAAOCAQEAIoYftqGMsqWHy36FyGOP+Jzs 28DzfkOX85d6I8xZzOI1mXVKM2g0gEKb+KeGakGp0TWII0+++Nkz+PABdsIGbUca ivZgtyQUjje9o7eiupLen3s6U8bh/0usT95y71b58qABtHLlMH916p32KA19WKl0 pP1b8tiO3Kaj+GBpotpplNnnDCd4YlOgsDzG0pCzJJLe+YZz+YSBLQxIjqi1UsH0 1oPZQ0/GaPRCYeqCUZoKZ2IjvOO613lZBHfOktANGP/kbGJqvxWhq/+SgIm3qUqW mhoMc1GQa2OHI74XG7RuRdkHVP37UPdWCkkvXclKARCnUkEGE4ePYxLi4+8U3Q== -----END CERTIFICATE-----Generated at Sun Mar 1 23:47:20 2026 by rpki-client