$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa File: 321028ee-2e2d-410c-8bdc-39a00f2044f0.roa (raw, json) Hash identifier: /C6wCfh/+wFAt/82ZbTIFIURyVkiBArmONrx8WcIFHo= Subject key identifier: 42:BC:A3:25:FB:07:76:83:56:1A:DE:D8:A5:04:A4:9D:DC:CD:26:6D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6FE79C494C58A6C8D9029E4D33644E3D86E6F4D7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa Signing time: Sat 28 Feb 2026 05:00:40 +0000 ROA not before: Sat 28 Feb 2026 05:00:40 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:e7:9c:49:4c:58:a6:c8:d9:02:9e:4d:33:64:4e:3d:86:e6:f4:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:40 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=71aed51bf03b356ad7ed9bf3d3ff49e624eb68da45ff8c00262a663bb375a4fb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4d:66:70:54:43:96:7f:a0:34:7d:68:07:0b: 59:1c:b8:be:a4:85:96:f8:c3:95:cc:81:2b:f2:2c: e6:86:31:4d:78:19:a1:c4:4b:d7:bb:d1:59:53:5a: bd:eb:76:22:e2:3f:58:3d:ac:9f:02:1d:d4:8e:dc: b3:fc:4d:46:1f:51:a9:f1:aa:06:83:d4:f4:4c:c9: a0:60:7d:ea:3c:9a:ca:c9:62:e3:01:d4:95:b1:83: b4:c5:bf:16:25:65:45:60:56:2c:19:64:e1:c4:b5: 62:6b:0f:c0:46:6a:ee:25:cc:85:81:84:cd:c7:db: e5:15:52:65:f6:d2:9c:99:91:14:99:e1:12:92:b1: 90:ea:fa:82:ee:8c:7c:e0:d9:dd:f9:f3:07:49:7b: 65:cc:06:73:71:e9:80:b7:87:12:bd:5a:d5:23:72: a3:af:38:ff:f3:13:d6:bb:aa:51:62:cb:8a:54:a5: 01:f0:26:6b:b1:36:91:19:ab:a9:68:d8:00:89:a8: 3a:1c:96:98:13:0c:78:ea:2d:01:23:06:ec:e0:57: 3a:76:dd:a0:12:12:28:b6:84:6f:93:31:62:21:d3: fb:62:f3:76:df:dd:b0:91:8e:d0:84:d1:65:9a:64: cf:20:15:b6:aa:86:f7:9f:2b:1e:8a:61:5c:c8:68: 75:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:BC:A3:25:FB:07:76:83:56:1A:DE:D8:A5:04:A4:9D:DC:CD:26:6D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption 4b:09:bd:ca:fe:c1:f1:df:d5:0e:8f:34:3a:70:9b:0a:cb:53: 13:65:6c:36:4e:8f:26:d6:41:72:0a:29:33:ef:cf:5e:ce:84: ff:9e:b0:ac:97:4c:12:65:ff:67:da:f6:8d:cf:9d:c3:b9:95: 79:0c:d8:1a:71:85:96:83:43:36:3b:c5:5b:fa:29:f2:b7:30: 74:d9:d1:77:45:be:55:8f:f9:71:02:39:a5:3c:9c:2f:c4:0c: 13:88:98:b4:0f:68:c4:ad:0c:0f:2f:b0:1f:89:61:f4:9e:76: 80:cb:b0:24:3b:d0:3e:aa:94:04:b2:34:63:fd:d4:6a:f3:a8: 5b:66:ae:44:f6:e6:4b:52:37:2f:67:a5:ef:5d:83:83:09:a3: ce:96:1c:7c:8b:d8:e4:ce:6d:ce:e5:11:66:37:b6:5a:a8:ee: 7b:ad:37:71:90:91:6d:ef:66:e0:b6:fd:48:48:6f:61:c6:15: 1b:24:bb:a2:8b:5b:1d:0e:88:3f:38:f9:17:06:e4:d4:c8:86: 83:f6:02:4b:cf:10:09:a9:bf:2e:65:a0:24:2a:b6:7b:1b:24: 28:bf:f6:d8:5d:0b:3c:4a:5f:68:d4:b0:95:54:ed:04:cb:6e: 21:04:4d:61:11:5e:b1:0f:5a:1b:7a:80:b3:49:e8:18:29:5c: b6:78:f9:7b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUb+ecSUxYpsjZAp5NM2ROPYbm9NcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDQwWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWFlZDUxYmYwM2IzNTZhZDdlZDliZjNkM2ZmNDllNjI0 ZWI2OGRhNDVmZjhjMDAyNjJhNjYzYmIzNzVhNGZiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5TWZwVEOWf6A0fWgHC1kcuL6khZb4w5XMgSvyLOaGMU14 GaHES9e70VlTWr3rdiLiP1g9rJ8CHdSO3LP8TUYfUanxqgaD1PRMyaBgfeo8msrJ YuMB1JWxg7TFvxYlZUVgViwZZOHEtWJrD8BGau4lzIWBhM3H2+UVUmX20pyZkRSZ 4RKSsZDq+oLujHzg2d358wdJe2XMBnNx6YC3hxK9WtUjcqOvOP/zE9a7qlFiy4pU pQHwJmuxNpEZq6lo2ACJqDoclpgTDHjqLQEjBuzgVzp23aASEii2hG+TMWIh0/ti 83bf3bCRjtCE0WWaZM8gFbaqhvefKx6KYVzIaHUbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQryjJfsHdoNWGt7YpQSkndzNJm0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzMyMTAyOGVlLTJlMmQtNDEwYy04YmRjLTM5YTAwZjIwNDRmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBAEsJvcr+wfHf1Q6PNDpwmwrL UxNlbDZOjybWQXIKKTPvz17OhP+esKyXTBJl/2fa9o3PncO5lXkM2BpxhZaDQzY7 xVv6KfK3MHTZ0XdFvlWP+XECOaU8nC/EDBOImLQPaMStDA8vsB+JYfSedoDLsCQ7 0D6qlASyNGP91GrzqFtmrkT25ktSNy9npe9dg4MJo86WHHyL2OTObc7lEWY3tlqo 7nutN3GQkW3vZuC2/UhIb2HGFRsku6KLWx0OiD84+RcG5NTIhoP2AkvPEAmpvy5l oCQqtnsbJCi/9thdCzxKX2jUsJVU7QTLbiEETWERXrEPWht6gLNJ6BgpXLZ4+Xs= -----END CERTIFICATE-----Generated at Mon Mar 2 03:25:01 2026 by rpki-client