$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa File: 475cc5b7-0cb2-405e-b609-203b983a6087.roa (raw, json) Hash identifier: OOawCvTvhhqLLyE5hcSVgBbnJngWCeUkY4YOxryBF98= Subject key identifier: 99:BC:C0:E0:41:F7:9A:17:F0:F7:4D:B7:96:B9:73:16:6A:F9:A3:C6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4B2BB6C792EEF2F8BAD2F013A030F9727E479123 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa Signing time: Sat 28 Feb 2026 05:00:09 +0000 ROA not before: Sat 28 Feb 2026 05:00:09 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ed00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:2b:b6:c7:92:ee:f2:f8:ba:d2:f0:13:a0:30:f9:72:7e:47:91:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:09 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=0ed8dcbd740cfd568bdd9dc117f26a8b78ba281d1cf9a630dd5539eea2021163, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:34:e8:10:b8:8a:9b:fe:23:83:51:ed:b2:97: d3:1b:f3:3a:34:12:ea:fd:95:a5:a8:8e:e0:86:23: a9:06:d3:d0:15:c2:43:fb:da:29:2e:b0:d1:cf:43: 89:6a:32:6b:87:33:ea:45:17:4b:8c:a0:0c:7a:56: e7:ec:5f:e6:d4:d8:88:58:b9:08:d7:72:ea:e5:2c: f9:c0:e7:e9:00:1c:00:f4:2d:57:58:77:59:a0:44: 61:c9:eb:98:46:0e:da:b9:d1:44:80:21:63:bb:d6: c6:b5:aa:0b:d2:81:0d:9a:e0:b3:14:8f:97:17:58: da:6d:6f:a3:d2:96:e2:d5:23:77:82:1c:6f:20:bd: 58:50:7e:11:47:36:2d:0c:75:7c:a3:74:95:a5:22: 84:00:6f:fb:41:a0:e7:da:9b:e2:b8:31:30:67:dc: a1:69:b6:be:66:f0:3f:78:a2:ec:c8:39:ba:d7:9d: 67:27:7a:27:65:28:e9:89:dc:be:02:13:5a:74:9b: 48:92:44:c9:66:fe:e5:88:63:70:02:06:01:ad:9c: cb:d8:79:37:5e:9a:10:55:27:e1:b6:43:a6:18:70: 3b:bf:47:da:81:89:1e:b5:a7:ab:47:f2:f3:28:74: e4:09:a2:38:2b:bf:00:df:59:4c:15:e2:37:7a:3f: ed:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:BC:C0:E0:41:F7:9A:17:F0:F7:4D:B7:96:B9:73:16:6A:F9:A3:C6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ed00::/40 Signature Algorithm: sha256WithRSAEncryption 9b:01:9e:5c:6b:5a:bf:d3:81:76:31:87:a7:b5:de:b2:4c:65: 0b:75:d6:fa:82:d1:23:ac:d0:3d:ea:57:5e:44:bc:86:e5:84: 3c:01:38:86:c8:03:c1:f9:de:e3:3f:c7:c3:2d:61:99:e4:25: ba:29:04:31:ce:ff:02:47:40:73:3b:98:9f:5b:e4:86:ef:ae: 99:db:2b:68:41:8f:92:df:66:15:28:c9:35:76:c5:83:c8:20: 2c:71:83:e4:85:e0:c8:59:29:5c:df:64:18:69:c4:f5:8b:fb: 69:d7:df:7d:46:46:76:76:29:a4:a7:b9:58:ea:c2:16:1d:35: a1:97:c9:ce:e1:d9:3b:2d:d6:a5:62:06:0d:ab:81:93:45:25: 3d:cb:db:e6:2a:ed:9f:3a:18:12:97:59:7b:a5:2d:4c:52:f5: b1:b0:b8:bc:3d:bb:55:fd:0a:34:2a:c4:2d:f9:1d:0b:fe:6d: 7e:03:86:41:74:08:34:12:53:5f:f7:6c:6a:a0:12:f5:9b:49: 97:c9:ed:13:67:77:f7:37:46:d5:97:b7:7b:14:66:08:d9:65: 7f:b4:32:22:8f:6f:5e:2b:6c:b7:99:2e:da:10:96:d1:d1:53: 20:87:29:68:28:0e:93:0b:e8:1c:86:91:43:ba:71:db:a5:d5: 76:25:07:f1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSyu2x5Lu8vi60vAToDD5cn5HkSMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDA5WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZWQ4ZGNiZDc0MGNmZDU2OGJkZDlkYzExN2YyNmE4Yjc4 YmEyODFkMWNmOWE2MzBkZDU1MzllZWEyMDIxMTYzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZNOgQuIqb/iODUe2yl9Mb8zo0Eur9laWojuCGI6kG09AV wkP72ikusNHPQ4lqMmuHM+pFF0uMoAx6VufsX+bU2IhYuQjXcurlLPnA5+kAHAD0 LVdYd1mgRGHJ65hGDtq50USAIWO71sa1qgvSgQ2a4LMUj5cXWNptb6PSluLVI3eC HG8gvVhQfhFHNi0MdXyjdJWlIoQAb/tBoOfam+K4MTBn3KFptr5m8D94ouzIObrX nWcneidlKOmJ3L4CE1p0m0iSRMlm/uWIY3ACBgGtnMvYeTdemhBVJ+G2Q6YYcDu/ R9qBiR61p6tH8vModOQJojgrvwDfWUwV4jd6P+2NAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUmbzA4EH3mhfw9023lrlzFmr5o8YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ3NWNjNWI3LTBjYjItNDA1ZS1iNjA5LTIwM2I5ODNhNjA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77TANBgkqhkiG9w0BAQsFAAOCAQEAmwGeXGtav9OBdjGHp7Xeskxl C3XW+oLRI6zQPepXXkS8huWEPAE4hsgDwfne4z/Hwy1hmeQluikEMc7/AkdAczuY n1vkhu+umdsraEGPkt9mFSjJNXbFg8ggLHGD5IXgyFkpXN9kGGnE9Yv7adfffUZG dnYppKe5WOrCFh01oZfJzuHZOy3WpWIGDauBk0UlPcvb5irtnzoYEpdZe6UtTFL1 sbC4vD27Vf0KNCrELfkdC/5tfgOGQXQINBJTX/dsaqAS9ZtJl8ntE2d39zdG1Ze3 exRmCNllf7QyIo9vXitst5ku2hCW0dFTIIcpaCgOkwvoHIaRQ7px26XVdiUH8Q== -----END CERTIFICATE-----Generated at Sun Mar 1 22:10:42 2026 by rpki-client