$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa File: 48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa (raw, json) Hash identifier: LlAjh0nHe5nOTVVe9dzbusHmG2df+cjBR8wG9u17KPw= Subject key identifier: CE:7C:AB:46:EB:E2:3E:EE:03:43:9A:79:7F:6E:34:1A:1D:80:64:AD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2D0EDC22643A0C7BE6417BDA496E1DD38EC0EFD1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa Signing time: Fri 13 Feb 2026 15:10:40 +0000 ROA not before: Fri 13 Feb 2026 15:10:40 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:108::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:0e:dc:22:64:3a:0c:7b:e6:41:7b:da:49:6e:1d:d3:8e:c0:ef:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 13 15:10:40 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=8067c1a210d7ea6759fd34b5458d31ed192964655363e26af711ea0f5236acf1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:40:9e:2f:78:ed:14:4f:bb:b7:0d:b8:ba:60: 69:ba:14:b3:4a:04:bb:21:02:a7:3b:f2:bb:0c:39: 5b:93:3a:54:30:40:79:54:45:c4:4e:a5:9d:7f:d6: 3d:90:52:d4:e1:1e:41:8d:b4:fa:7c:2f:0e:fb:d3: 6a:a2:84:59:a0:8e:52:21:99:75:d6:6c:4f:6a:2f: 8a:57:0c:ad:2a:9c:d2:2c:f9:2d:c0:98:63:2f:b3: 76:8d:ec:93:ac:d6:6a:f7:bb:8b:30:0b:8d:c1:f1: a3:cb:59:bb:63:7a:93:c2:68:7f:96:24:81:78:21: 73:84:ce:0a:15:35:31:a1:8c:e7:bd:4e:3f:50:c2: 59:e1:bc:25:21:b7:6e:6a:b9:19:aa:ce:01:75:17: 2a:dc:77:99:5f:83:d4:12:fb:30:fd:04:9c:61:f1: 38:63:7b:62:a0:ba:d3:52:66:47:de:e9:dd:ba:2f: 51:0b:fc:b8:ca:bd:95:e2:fa:b8:bd:cf:06:6c:4b: e5:77:70:79:b8:af:4a:20:c2:54:b3:31:4b:82:b6: db:95:1f:73:84:59:90:a2:45:ed:86:5e:ea:9c:b4: 15:26:9c:27:57:02:17:3d:04:37:77:5a:ee:61:ed: 88:4b:51:fb:6b:fb:3a:28:62:d1:ec:9a:71:b4:31: a3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7C:AB:46:EB:E2:3E:EE:03:43:9A:79:7F:6E:34:1A:1D:80:64:AD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:108::/47 Signature Algorithm: sha256WithRSAEncryption a7:8c:b2:f1:15:6b:49:b3:c3:d4:27:28:e3:c0:5c:ee:df:57: e6:b2:56:93:c1:1d:d8:a2:6c:de:71:1d:5f:10:32:7f:a9:a6: ee:97:a8:c5:c2:c0:53:39:09:0e:1c:fb:a7:1d:9b:da:47:59: 7e:49:3c:65:b9:96:80:a7:82:81:72:16:59:04:8f:7c:b6:ea: ac:b0:47:72:f6:98:01:41:82:f5:71:8d:81:c9:4e:b8:3d:e7: b3:f7:d0:0b:2e:25:b2:ff:54:11:ea:4f:6e:89:52:3e:5a:87: d8:3f:8c:93:88:3e:19:87:5f:e4:f0:9b:a7:cc:42:3b:e1:f4: 48:db:43:c4:ee:60:3b:44:3c:98:c4:ff:84:4f:57:b2:09:69: f9:d7:7f:27:d2:67:a3:4e:95:29:32:75:f5:6e:f4:09:31:84: a8:03:4c:80:09:ce:7d:7a:b0:1e:f6:be:c9:5a:ea:d0:94:32: 04:02:e3:1d:cd:03:0a:5b:36:de:01:69:8b:39:4c:54:ec:f6: ee:03:34:28:e0:97:30:55:c9:10:e4:56:fa:ed:ac:09:43:69: 1f:5d:db:98:af:3e:e1:f5:9b:bb:0d:5c:30:13:95:72:2e:c5: 04:4c:ee:7d:2c:d7:38:61:fd:b3:ca:9b:ff:2a:4f:3f:3d:f8: d4:03:d0:21 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULQ7cImQ6DHvmQXvaSW4d047A79EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjEzMTUxMDQwWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDY3YzFhMjEwZDdlYTY3NTlmZDM0YjU0NThkMzFlZDE5 Mjk2NDY1NTM2M2UyNmFmNzExZWEwZjUyMzZhY2YxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtQJ4veO0UT7u3Dbi6YGm6FLNKBLshAqc78rsMOVuTOlQw QHlURcROpZ1/1j2QUtThHkGNtPp8Lw7702qihFmgjlIhmXXWbE9qL4pXDK0qnNIs +S3AmGMvs3aN7JOs1mr3u4swC43B8aPLWbtjepPCaH+WJIF4IXOEzgoVNTGhjOe9 Tj9QwlnhvCUht25quRmqzgF1Fyrcd5lfg9QS+zD9BJxh8Thje2KgutNSZkfe6d26 L1EL/LjKvZXi+ri9zwZsS+V3cHm4r0ogwlSzMUuCttuVH3OEWZCiRe2GXuqctBUm nCdXAhc9BDd3Wu5h7YhLUftr+zooYtHsmnG0MaOtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUznyrRuviPu4DQ5p5f240Gh2AZK0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ4NzEzOTA5LWMxZjMtNDY2NC05YzgzLWQzZjBiYTc3YTdmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQgwDQYJKoZIhvcNAQELBQADggEBAKeMsvEVa0mzw9QnKOPAXO7f V+ayVpPBHdiibN5xHV8QMn+ppu6XqMXCwFM5CQ4c+6cdm9pHWX5JPGW5loCngoFy FlkEj3y26qywR3L2mAFBgvVxjYHJTrg957P30AsuJbL/VBHqT26JUj5ah9g/jJOI PhmHX+Twm6fMQjvh9EjbQ8TuYDtEPJjE/4RPV7IJafnXfyfSZ6NOlSkydfVu9Akx hKgDTIAJzn16sB72vsla6tCUMgQC4x3NAwpbNt4BaYs5TFTs9u4DNCjglzBVyRDk VvrtrAlDaR9d25ivPuH1m7sNXDATlXIuxQRM7n0s1zhh/bPKm/8qTz89+NQD0CE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:36 2026 by rpki-client