$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa File: 39b45593-f3f3-4a2e-aa3a-895815db366a.roa (raw, json) Hash identifier: vJnnssMjVi6+BdVhAW6zTtcEq6d1Qmc4iVJOamyHPVE= Subject key identifier: 5B:2F:C3:CA:99:59:26:D6:52:A2:FC:1E:7B:B8:E7:C9:40:BA:16:7C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 72064F05CA9BE78CD40330D56E84F330BECB83C0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa Signing time: Sat 28 Feb 2026 05:00:48 +0000 ROA not before: Sat 28 Feb 2026 05:00:48 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:06:4f:05:ca:9b:e7:8c:d4:03:30:d5:6e:84:f3:30:be:cb:83:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:48 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=3373cbf3f2de629e8368230b52ac84bae42027651f6011b056e47b2513f7b39e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7a:12:03:8b:30:ff:e2:07:87:cc:7a:2c:08: f0:d6:58:af:11:b6:cf:da:27:83:73:bf:95:e9:62: 1b:30:af:36:69:87:db:d9:ee:50:e1:db:dc:1d:51: 7d:79:4e:e0:b0:bc:73:f5:a8:78:cd:ed:10:e1:1a: d8:fd:5a:fc:71:0d:5b:18:94:9e:e6:6f:fd:dc:22: 5f:6e:4e:03:40:24:70:8f:48:bb:01:80:d1:1b:8f: 99:e6:27:49:c8:a7:83:fb:8b:f0:b9:c6:57:0b:d1: 5d:c7:91:a3:64:74:0f:79:70:62:d3:cf:e2:54:c6: 34:e4:96:84:38:35:ac:7b:fb:0e:2a:bf:63:95:e7: 69:03:37:d2:a2:c7:1c:62:96:76:57:57:df:0f:2d: f0:8c:36:bd:f9:15:45:97:96:fc:64:c2:da:94:06: 22:c9:9c:0d:8c:32:fb:ed:8e:c6:70:91:f6:dd:99: ea:b4:30:8f:86:6e:65:54:88:14:0e:c6:31:e1:4f: 44:34:e4:1d:43:ef:e0:ed:3a:8a:fd:d9:81:48:2d: 97:04:5c:3a:f4:2f:21:4b:70:ca:f5:5a:5f:8d:5a: 23:60:27:72:5b:07:f1:aa:1f:ab:cd:67:27:b7:8e: 0b:14:a3:1b:f0:37:e6:bd:66:f0:f9:e5:96:0d:11: ce:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:2F:C3:CA:99:59:26:D6:52:A2:FC:1E:7B:B8:E7:C9:40:BA:16:7C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/39 Signature Algorithm: sha256WithRSAEncryption 8c:e6:ff:d3:6b:76:5f:ba:92:d7:4c:57:55:74:be:07:15:e5: 40:96:c9:60:0f:92:91:64:e3:57:1a:45:c9:92:90:b5:9f:07: 71:44:64:fe:ae:58:be:df:29:9c:5d:6e:a8:3d:11:53:61:d1: b8:50:d5:f7:1f:b2:8f:d2:f7:7d:03:65:f5:27:e8:cd:25:22: a2:d5:27:e6:7e:f6:4e:2e:cf:59:7d:8f:99:0d:0b:d9:6e:cd: bd:f2:b6:96:20:2b:ae:d8:ea:2b:19:b2:12:c8:2a:6f:d5:8d: 68:38:e8:d5:38:c2:2d:b2:11:f1:c0:84:15:4f:5a:32:3c:10: a6:0c:ea:44:14:58:94:34:c1:92:4d:78:87:d1:2a:26:4c:de: 88:92:bb:0b:48:4c:a8:47:45:2c:ca:cf:aa:db:5c:49:c2:2b: 40:ae:63:ae:67:5f:58:ac:91:89:1f:18:a2:1a:2e:45:27:8c: 74:c6:b0:39:6e:96:2f:6b:1c:44:1d:d2:75:60:5b:e2:9d:8e: 3b:cc:6b:20:52:dd:f1:59:e9:1f:ba:40:f8:6c:bb:6e:27:2a: df:f1:4d:d8:ba:46:af:35:42:9f:af:e3:8c:ce:99:10:bc:07: 4c:9e:96:05:ca:d8:f4:dd:48:ff:81:4f:a1:91:0e:6e:ca:95: 5b:18:be:63 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcgZPBcqb54zUAzDVboTzML7Lg8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDQ4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzczY2JmM2YyZGU2MjllODM2ODIzMGI1MmFjODRiYWU0 MjAyNzY1MWY2MDExYjA1NmU0N2IyNTEzZjdiMzllMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCehIDizD/4geHzHosCPDWWK8Rts/aJ4Nzv5XpYhswrzZp h9vZ7lDh29wdUX15TuCwvHP1qHjN7RDhGtj9WvxxDVsYlJ7mb/3cIl9uTgNAJHCP SLsBgNEbj5nmJ0nIp4P7i/C5xlcL0V3HkaNkdA95cGLTz+JUxjTkloQ4Nax7+w4q v2OV52kDN9KixxxilnZXV98PLfCMNr35FUWXlvxkwtqUBiLJnA2MMvvtjsZwkfbd meq0MI+GbmVUiBQOxjHhT0Q05B1D7+DtOor92YFILZcEXDr0LyFLcMr1Wl+NWiNg J3JbB/GqH6vNZye3jgsUoxvwN+a9ZvD55ZYNEc4hAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUWy/DyplZJtZSovwee7jnyUC6FnwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM5YjQ1NTkzLWYzZjMtNGEyZS1hYTNhLTg5NTgxNWRiMzY2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAAADANBgkqhkiG9w0BAQsFAAOCAQEAjOb/02t2X7qS10xXVXS+BxXl QJbJYA+SkWTjVxpFyZKQtZ8HcURk/q5Yvt8pnF1uqD0RU2HRuFDV9x+yj9L3fQNl 9SfozSUiotUn5n72Ti7PWX2PmQ0L2W7NvfK2liArrtjqKxmyEsgqb9WNaDjo1TjC LbIR8cCEFU9aMjwQpgzqRBRYlDTBkk14h9EqJkzeiJK7C0hMqEdFLMrPqttcScIr QK5jrmdfWKyRiR8YohouRSeMdMawOW6WL2scRB3SdWBb4p2OO8xrIFLd8VnpH7pA +Gy7bicq3/FN2LpGrzVCn6/jjM6ZELwHTJ6WBcrY9N1I/4FPoZEObsqVWxi+Yw== -----END CERTIFICATE-----Generated at Sun Mar 1 23:50:42 2026 by rpki-client