$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa File: 37e5da86-98ab-4d9c-889e-6ab6e277d866.roa (raw, json) Hash identifier: qPVMVeFF+C/QGzuyN8oPGTFjHSXTEmYSjCOEX6dSu4g= Subject key identifier: 1B:18:FE:11:7B:06:4E:FD:A8:8E:0B:96:23:1D:2C:22:6C:84:A9:79 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 34EA9B399FF9A10E8DB15D60BB6DD69C5B81CB2F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa Signing time: Sat 28 Feb 2026 02:00:03 +0000 ROA not before: Sat 28 Feb 2026 02:00:03 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ea:9b:39:9f:f9:a1:0e:8d:b1:5d:60:bb:6d:d6:9c:5b:81:cb:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 02:00:03 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=a63955fd929bb510d9887724e5379a18cd970b1369e49a7ac56ae430cf427eca, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:69:e3:3b:c3:7e:90:3a:29:81:98:08:dd:77: 15:0a:0b:28:83:d2:18:ff:d6:5e:9e:3f:ba:ef:8c: e8:99:3a:ba:6d:8a:c6:1d:bd:c7:68:20:7b:fe:9b: 41:e8:f7:8b:20:a9:97:b2:83:53:2e:2b:a9:92:10: d9:87:63:32:f6:26:37:40:80:e4:9f:7f:85:a9:48: 9e:c3:83:e9:7d:44:14:be:5d:ee:31:81:9d:30:4f: 58:e4:d1:1d:26:ac:37:cb:01:c4:fd:b4:ce:c2:d3: 43:59:e8:c2:bf:db:1d:c8:1f:1e:83:89:f2:02:aa: 69:cf:e5:05:83:f0:45:cd:c5:1c:8a:86:a7:7f:d6: 05:7f:72:84:bd:4b:1e:98:62:4c:54:39:5e:0a:9f: ad:ad:f9:95:ad:2b:0b:82:65:47:55:7b:e4:13:b0: 4c:bd:0a:2f:65:1f:a8:f6:ec:31:c6:73:ca:fa:93: 23:40:ad:27:28:a3:59:c1:62:92:58:c6:eb:31:c0: d3:6b:1b:57:2e:1c:3b:56:58:b1:92:08:80:73:6c: 74:09:a6:53:fa:3f:b6:5b:26:0b:5a:35:88:29:a1: 66:39:75:05:dc:6e:c9:01:0a:20:e9:19:91:e7:71: d5:39:92:4e:01:3f:4e:fc:13:26:66:19:f4:62:67: fe:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:18:FE:11:7B:06:4E:FD:A8:8E:0B:96:23:1D:2C:22:6C:84:A9:79 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1::/48 Signature Algorithm: sha256WithRSAEncryption 1e:84:14:6f:0a:c8:a4:59:60:66:cb:5b:1f:ce:2f:d5:f8:cd: 75:bd:2b:26:57:3d:9c:3e:80:03:87:43:58:b9:c4:2b:97:f9: 45:83:fe:52:ca:a8:8d:ac:f9:82:53:9c:96:67:f6:47:1c:b4: 4c:6f:18:99:67:66:2a:c5:c0:dd:43:25:e2:ba:08:fd:c6:7f: a2:55:43:5c:e2:1f:80:7d:53:8f:ea:b0:5f:86:4c:c8:30:9f: c8:75:34:52:e1:4a:12:d6:34:f0:2d:10:73:5f:5a:c0:85:83: a9:0e:a4:a6:18:d3:60:d3:8f:f3:a5:ac:38:06:52:86:3f:42: da:b9:ac:81:5b:bf:85:8e:f8:e6:73:e0:ca:cf:01:af:92:6a: 09:bf:44:02:3c:d9:88:aa:05:f0:b4:d5:70:d5:be:de:bf:39: 29:63:e5:ba:4e:a3:70:99:d1:74:3b:79:ff:b0:ab:88:37:f4: a5:2e:cd:c7:b5:09:d6:5a:0a:d7:d4:b4:7b:34:f6:c3:00:30: 27:3c:ed:ef:ac:d7:09:42:9d:2f:20:ed:ee:22:e7:3f:51:22: 7c:62:97:80:9a:97:f4:9f:6a:35:9a:00:b7:a4:b8:a3:fa:45: 85:8e:22:72:80:dd:db:79:81:71:02:02:a7:b9:12:1b:51:45: a1:9a:e9:e5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNOqbOZ/5oQ6NsV1gu23WnFuByy8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDIwMDAzWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjM5NTVmZDkyOWJiNTEwZDk4ODc3MjRlNTM3OWExOGNk OTcwYjEzNjllNDlhN2FjNTZhZTQzMGNmNDI3ZWNhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2aeM7w36QOimBmAjddxUKCyiD0hj/1l6eP7rvjOiZOrpt isYdvcdoIHv+m0Ho94sgqZeyg1MuK6mSENmHYzL2JjdAgOSff4WpSJ7Dg+l9RBS+ Xe4xgZ0wT1jk0R0mrDfLAcT9tM7C00NZ6MK/2x3IHx6DifICqmnP5QWD8EXNxRyK hqd/1gV/coS9Sx6YYkxUOV4Kn62t+ZWtKwuCZUdVe+QTsEy9Ci9lH6j27DHGc8r6 kyNArScoo1nBYpJYxusxwNNrG1cuHDtWWLGSCIBzbHQJplP6P7ZbJgtaNYgpoWY5 dQXcbskBCiDpGZHncdU5kk4BP078EyZmGfRiZ/61AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGxj+EXsGTv2ojguWIx0sImyEqXkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM3ZTVkYTg2LTk4YWItNGQ5Yy04ODllLTZhYjZlMjc3ZDg2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAEwDQYJKoZIhvcNAQELBQADggEBAB6EFG8KyKRZYGbLWx/OL9X4 zXW9KyZXPZw+gAOHQ1i5xCuX+UWD/lLKqI2s+YJTnJZn9kcctExvGJlnZirFwN1D JeK6CP3Gf6JVQ1ziH4B9U4/qsF+GTMgwn8h1NFLhShLWNPAtEHNfWsCFg6kOpKYY 02DTj/OlrDgGUoY/Qtq5rIFbv4WO+OZz4MrPAa+Sagm/RAI82YiqBfC01XDVvt6/ OSlj5bpOo3CZ0XQ7ef+wq4g39KUuzce1CdZaCtfUtHs09sMAMCc87e+s1wlCnS8g 7e4i5z9RInxil4Cal/SfajWaALekuKP6RYWOInKA3dt5gXECAqe5EhtRRaGa6eU= -----END CERTIFICATE-----Generated at Sun Mar 1 22:09:26 2026 by rpki-client