$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa File: 455cc001-6d98-49b1-ab73-9a1e06726f9f.roa (raw, json) Hash identifier: yL8snfFS4OUcnn1wGYARdyxLDDtj8VQsWDHBvpTY7bw= Subject key identifier: A7:C4:DA:B3:3C:C8:BC:DF:D6:F2:8C:4C:FF:0A:50:8E:BE:55:6C:A3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1B08D5F955D1EA53FD81243E002C6A354A82AA19 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa Signing time: Tue 17 Feb 2026 00:30:15 +0000 ROA not before: Tue 17 Feb 2026 00:30:15 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:08:d5:f9:55:d1:ea:53:fd:81:24:3e:00:2c:6a:35:4a:82:aa:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 17 00:30:15 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=947f2d7b12c870a77b70628ac65bd4f27943392aced3447532e168098be15cb6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ff:ac:d7:69:74:94:e0:c4:82:a5:6f:9f:3d: ab:42:5a:8d:be:73:2f:82:c9:24:96:55:93:b9:c5: cc:ae:d1:6e:57:b6:71:eb:b7:bc:30:ed:cc:16:f3: 37:e5:f8:26:0b:88:83:1d:f7:e9:ff:64:5b:29:a7: 1a:ba:19:68:0d:e4:83:93:c8:9c:eb:87:5b:45:4f: b1:99:3d:7b:30:0c:ad:e5:02:88:6c:98:15:a0:e9: ac:bb:fa:e7:df:a9:b5:86:71:5c:28:cc:ac:5a:c8: b2:ec:9a:fd:5d:24:8d:5a:3b:6c:d5:fc:8f:f8:d4: 7c:29:e3:cf:77:84:9d:28:62:e3:65:fa:20:4a:87: 17:d0:85:e6:16:e6:ae:63:0f:82:4e:b7:57:a6:3c: 37:50:1b:39:b9:f7:0f:c1:6a:9c:bb:35:a6:0e:e2: 6f:72:26:19:c9:40:36:59:57:3b:03:64:4b:cd:37: 27:e3:bf:42:fa:a0:ca:fd:ac:03:b8:54:b3:c5:31: c7:12:74:b2:e3:13:fb:7c:a1:15:64:c3:a5:14:7c: 7f:35:55:59:43:04:07:66:e8:82:33:20:a4:1c:bc: 09:8c:36:0c:95:28:f8:d3:80:fe:d6:7b:78:96:c2: 3c:5e:82:93:27:e7:76:16:e6:ff:96:e0:c5:68:23: 29:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C4:DA:B3:3C:C8:BC:DF:D6:F2:8C:4C:FF:0A:50:8E:BE:55:6C:A3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 47:97:80:b2:10:d1:5a:6b:e1:39:3a:e2:6c:9b:54:4b:ad:a7: c4:87:35:83:b5:d9:78:07:ea:02:de:72:34:14:2e:58:16:39: 68:32:24:20:f1:96:7b:0d:bd:9e:24:af:6c:54:76:a7:fd:93: a9:8c:97:f3:4d:64:52:c6:ba:c4:20:04:48:30:05:13:02:96: 12:7d:60:02:b0:a3:5f:bb:09:d9:a2:95:ff:99:a3:1d:dd:9b: 37:45:b3:62:06:47:66:b6:7c:07:29:67:2d:b3:dd:6d:d8:f0: 9f:fc:79:58:d2:c0:1a:4a:18:05:3f:56:a9:49:62:37:c5:d5: f0:60:7d:a7:08:ce:61:03:62:50:11:f8:4f:f8:ed:e0:9f:5f: ae:da:4b:45:56:c5:1a:94:3c:09:7d:82:b9:91:ce:58:1f:5c: a5:4c:7f:85:89:b5:78:61:72:d4:49:dd:3c:6b:ae:45:d0:44: eb:dc:f7:f9:56:34:2a:4d:a3:00:a8:70:58:c0:f0:05:42:40: 0b:b8:17:40:1e:f1:ca:0b:71:d5:92:8f:a3:f9:6b:a2:bd:c6: 65:cc:79:d9:35:cd:8e:4a:1d:90:8e:df:44:8d:69:83:2b:82: 84:ca:81:77:fb:9c:ca:e2:81:38:64:bf:16:b1:20:79:7e:20: df:e9:2d:17 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGwjV+VXR6lP9gSQ+ACxqNUqCqhkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjE3MDAzMDE1WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDdmMmQ3YjEyYzg3MGE3N2I3MDYyOGFjNjViZDRmMjc5 NDMzOTJhY2VkMzQ0NzUzMmUxNjgwOThiZTE1Y2I2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDr/6zXaXSU4MSCpW+fPatCWo2+cy+CySSWVZO5xcyu0W5X tnHrt7ww7cwW8zfl+CYLiIMd9+n/ZFsppxq6GWgN5IOTyJzrh1tFT7GZPXswDK3l AohsmBWg6ay7+uffqbWGcVwozKxayLLsmv1dJI1aO2zV/I/41Hwp4893hJ0oYuNl +iBKhxfQheYW5q5jD4JOt1emPDdQGzm59w/Bapy7NaYO4m9yJhnJQDZZVzsDZEvN Nyfjv0L6oMr9rAO4VLPFMccSdLLjE/t8oRVkw6UUfH81VVlDBAdm6IIzIKQcvAmM NgyVKPjTgP7We3iWwjxegpMn53YW5v+W4MVoIymfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUp8TaszzIvN/W8oxM/wpQjr5VbKMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ1NWNjMDAxLTZkOTgtNDliMS1hYjczLTlhMWUwNjcyNmY5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAEeXgLIQ0Vpr4Tk64mybVEut p8SHNYO12XgH6gLecjQULlgWOWgyJCDxlnsNvZ4kr2xUdqf9k6mMl/NNZFLGusQg BEgwBRMClhJ9YAKwo1+7Cdmilf+Zox3dmzdFs2IGR2a2fAcpZy2z3W3Y8J/8eVjS wBpKGAU/VqlJYjfF1fBgfacIzmEDYlAR+E/47eCfX67aS0VWxRqUPAl9grmRzlgf XKVMf4WJtXhhctRJ3TxrrkXQROvc9/lWNCpNowCocFjA8AVCQAu4F0Ae8coLcdWS j6P5a6K9xmXMedk1zY5KHZCO30SNaYMrgoTKgXf7nMrigThkvxaxIHl+IN/pLRc= -----END CERTIFICATE-----Generated at Mon Mar 2 07:58:54 2026 by rpki-client