$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa File: 4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa (raw, json) Hash identifier: hXhFE3QSTqko6x7BMjUXskedynB4h+iDc/geJD7ZcLM= Subject key identifier: 07:65:23:A1:2A:14:30:B9:85:B7:6F:6D:2B:A3:7C:31:13:F8:CF:60 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 342A29262C02BC0C3B78A272A284032F58E6DF99 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa Signing time: Sat 07 Feb 2026 00:10:13 +0000 ROA not before: Sat 07 Feb 2026 00:10:13 +0000 ROA not after: Fri 08 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8b00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:2a:29:26:2c:02:bc:0c:3b:78:a2:72:a2:84:03:2f:58:e6:df:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 7 00:10:13 2026 GMT Not After : May 8 23:59:59 2026 GMT Subject: serialNumber=53d8221f1d95d44567dc4e0d1df46720d6adda1fbee4464cc711c45ed46eadb8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:35:98:ef:dd:b2:2c:cb:87:a3:ae:7b:3e:8b: 5e:9f:ee:11:19:46:11:be:76:5f:49:29:82:28:70: 16:1a:9c:d4:16:87:b4:96:c8:ac:37:ee:c6:88:e9: ce:69:d6:18:0e:75:0f:16:88:79:8d:44:b7:75:58: f4:d0:df:32:ec:96:9d:2f:06:b6:d1:0a:f0:5c:97: 71:be:3e:38:ce:db:7b:55:1a:fb:76:2c:93:12:6e: d6:28:8b:9f:3e:31:98:7b:5a:b0:4a:0e:91:c5:0c: 36:b0:fd:34:f0:6f:30:93:d6:6c:80:aa:01:73:cb: 38:40:c0:52:39:68:b7:a7:7f:22:65:2d:8b:12:2d: f6:d6:e0:8b:23:d0:42:70:1f:35:20:37:6e:b2:22: 41:9e:19:b6:5d:ed:80:a9:0e:0f:48:3a:7e:22:b0: 05:a0:b7:49:03:a5:2f:4f:54:05:bd:48:53:1d:ad: fd:9c:6f:69:40:d1:c7:35:e5:04:09:21:dd:cd:ac: 16:28:2c:df:d3:25:b8:4d:64:5f:fc:c3:df:6b:0b: 4c:ac:b2:53:c7:54:23:ab:c7:bf:9b:d6:88:9c:8e: 20:89:53:38:60:a2:67:23:b6:47:4a:42:b2:92:c2: 1c:7a:70:e9:8c:ac:3b:88:08:7a:04:fd:c6:c3:eb: 85:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:65:23:A1:2A:14:30:B9:85:B7:6F:6D:2B:A3:7C:31:13:F8:CF:60 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8b00::/40 Signature Algorithm: sha256WithRSAEncryption 7d:f0:d0:e2:db:f8:4c:f7:4d:c9:b0:fc:c1:1e:7c:cc:e4:ad: e1:8d:a2:04:ca:f2:1d:05:5a:fe:03:36:8c:87:43:56:43:1e: a7:b7:ce:33:1c:81:0b:fb:e9:f5:96:b0:4c:56:c9:e4:a1:73: 1a:a0:e2:aa:b9:12:5b:2d:66:e3:0d:ed:af:04:4b:5b:b6:13: 48:9e:37:7f:34:8a:45:d9:f7:b8:04:20:6e:c9:88:c1:28:68: 21:15:69:6c:d7:58:d1:f4:fc:40:d3:d9:0e:16:80:61:41:f0: 9a:59:3e:ea:80:8b:56:70:86:47:57:f9:40:58:2b:9f:ff:20: 32:1a:5c:1f:d9:f7:dc:d9:52:78:03:b0:d9:4d:61:b0:6e:3d: 1d:8d:ad:a7:ef:c2:0d:b0:78:ac:70:dc:cf:8f:32:fa:25:5b: fc:d5:1a:95:d0:d3:43:f2:0f:9c:37:c3:c5:1a:67:ad:ef:87: ff:a2:15:10:17:11:36:e8:de:e4:c1:6d:3e:42:fc:e0:6d:51: 0f:e4:93:17:63:38:37:ae:53:a3:99:68:7e:04:40:52:3c:14: 47:a9:44:18:7c:c3:a7:b2:44:d1:ff:80:ed:25:75:fa:c0:d4: 69:1e:7d:ee:36:2c:8d:b1:0b:e6:72:49:e2:6f:7c:5d:39:4b: 4c:6a:ea:b7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNCopJiwCvAw7eKJyooQDL1jm35kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjA3MDAxMDEzWhcNMjYwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1M2Q4MjIxZjFkOTVkNDQ1NjdkYzRlMGQxZGY0NjcyMGQ2 YWRkYTFmYmVlNDQ2NGNjNzExYzQ1ZWQ0NmVhZGI4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvNZjv3bIsy4ejrns+i16f7hEZRhG+dl9JKYIocBYanNQW h7SWyKw37saI6c5p1hgOdQ8WiHmNRLd1WPTQ3zLslp0vBrbRCvBcl3G+PjjO23tV Gvt2LJMSbtYoi58+MZh7WrBKDpHFDDaw/TTwbzCT1myAqgFzyzhAwFI5aLenfyJl LYsSLfbW4Isj0EJwHzUgN26yIkGeGbZd7YCpDg9IOn4isAWgt0kDpS9PVAW9SFMd rf2cb2lA0cc15QQJId3NrBYoLN/TJbhNZF/8w99rC0ysslPHVCOrx7+b1oicjiCJ UzhgomcjtkdKQrKSwhx6cOmMrDuICHoE/cbD64XvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUB2UjoSoUMLmFt29tK6N8MRP4z2AwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRiMDRiYzkwLWNjNWMtNDhiNi1iZTRmLThjMWUwZmE2NDYxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDxizANBgkqhkiG9w0BAQsFAAOCAQEAffDQ4tv4TPdNybD8wR58zOSt 4Y2iBMryHQVa/gM2jIdDVkMep7fOMxyBC/vp9ZawTFbJ5KFzGqDiqrkSWy1m4w3t rwRLW7YTSJ43fzSKRdn3uAQgbsmIwShoIRVpbNdY0fT8QNPZDhaAYUHwmlk+6oCL VnCGR1f5QFgrn/8gMhpcH9n33NlSeAOw2U1hsG49HY2tp+/CDbB4rHDcz48y+iVb /NUaldDTQ/IPnDfDxRpnre+H/6IVEBcRNuje5MFtPkL84G1RD+STF2M4N65To5lo fgRAUjwUR6lEGHzDp7JE0f+A7SV1+sDUaR597jYsjbEL5nJJ4m98XTlLTGrqtw== -----END CERTIFICATE-----Generated at Mon Mar 2 03:26:18 2026 by rpki-client