$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa File: 4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa (raw, json) Hash identifier: 0eWWTnkXUAZyC7r6wP4fBPAYj1elXK/b+zaauX6AKhA= Subject key identifier: D8:50:D8:6D:3A:A0:FE:CF:A3:99:9D:A3:AA:CF:F4:97:3F:06:49:31 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4179907EE1368EA8DFC2BF94943A5595B8D9E6D6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa Signing time: Sat 28 Feb 2026 05:00:07 +0000 ROA not before: Sat 28 Feb 2026 05:00:07 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e500::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:79:90:7e:e1:36:8e:a8:df:c2:bf:94:94:3a:55:95:b8:d9:e6:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:07 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=77232205415d241874a5908f2378121535c7fba07cd7e02450cfe1dd29125326, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:af:7f:a4:61:f7:6a:7b:a2:ca:48:5e:68:7c: 6b:27:1a:a2:9e:b7:72:80:c7:8b:23:ce:9c:1f:fb: 0e:94:f0:e7:cf:fb:7a:ae:03:a8:f5:2d:fd:7d:a0: 15:a7:47:24:de:4e:87:da:05:5c:1b:26:64:a0:db: d4:e1:25:fc:3c:c7:b2:6c:60:b0:78:7b:35:50:73: 08:b6:1b:63:b9:f6:f2:5d:f3:bd:cc:f1:16:e7:80: ea:f7:56:fe:9e:25:6b:57:3f:a2:e2:c5:0e:e8:8a: 98:b6:da:80:1f:49:5b:7f:0d:0f:2c:ce:30:f6:09: 90:bb:1b:1f:4f:f1:45:c9:b1:bd:26:0f:4e:b7:fa: dc:52:7e:82:2d:d1:25:b3:d5:bf:2a:f8:ac:f3:58: 95:e5:76:db:67:8f:0a:ae:48:89:a1:37:5e:0d:10: 94:da:32:f9:c2:6e:52:8c:06:c9:eb:02:02:90:84: a7:fb:bc:70:4e:f7:af:00:85:35:2b:9c:da:28:bf: a5:e4:63:40:55:c5:4e:ce:db:e9:74:d8:14:c8:10: cf:28:66:a8:f4:89:e9:fd:3f:33:92:cf:ad:8b:13: 18:85:98:2d:66:b1:24:8b:dd:a1:5f:41:7d:1e:36: 0f:8f:2a:6a:ae:ba:5a:b8:de:02:43:34:cf:c7:da: af:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:50:D8:6D:3A:A0:FE:CF:A3:99:9D:A3:AA:CF:F4:97:3F:06:49:31 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/42 Signature Algorithm: sha256WithRSAEncryption 62:52:a8:cc:90:2b:31:8d:eb:66:5a:15:3f:d2:db:c1:28:68: 07:37:cf:f3:73:d1:fc:74:8d:95:aa:5d:cd:c5:c5:83:d3:93: 80:8a:bb:9c:05:20:3c:5a:ca:f1:27:17:28:4e:14:ae:d0:47: 50:2f:d9:0b:fc:a3:00:7c:36:a6:cd:9c:41:33:89:b0:35:9e: 46:21:6b:4a:a5:71:2d:3b:d8:fe:58:54:0b:db:8c:01:52:dc: ca:13:5c:70:e0:74:2a:cc:8a:3f:ef:46:30:44:43:2a:e4:93: 0d:d0:b3:c7:5f:9b:74:c3:eb:86:88:47:fc:ac:3a:e4:37:15: 01:19:85:03:db:c2:9e:db:4a:c0:5c:02:38:f6:d9:1d:b9:82: 3f:76:2e:2f:30:61:25:f0:62:56:7a:9e:55:bf:d3:27:72:db: 5e:41:f4:c6:ba:23:89:a4:0e:aa:08:fd:86:20:8f:df:0f:86: dd:04:9c:0a:4e:50:21:54:1a:24:69:37:87:80:4b:03:40:28: a3:fc:b3:dc:a3:49:25:31:42:0f:bf:d6:23:f4:77:8d:d8:48: a9:0a:a1:27:e1:bf:1e:07:2f:9e:c0:32:cd:b3:bc:3c:f6:87: 7c:56:41:5b:3e:15:30:36:f0:53:d7:41:d1:01:fb:51:2a:64: 6d:f0:61:70 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQXmQfuE2jqjfwr+UlDpVlbjZ5tYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDA3WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzIzMjIwNTQxNWQyNDE4NzRhNTkwOGYyMzc4MTIxNTM1 YzdmYmEwN2NkN2UwMjQ1MGNmZTFkZDI5MTI1MzI2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBr3+kYfdqe6LKSF5ofGsnGqKet3KAx4sjzpwf+w6U8OfP +3quA6j1Lf19oBWnRyTeTofaBVwbJmSg29ThJfw8x7JsYLB4ezVQcwi2G2O59vJd 873M8RbngOr3Vv6eJWtXP6LixQ7oipi22oAfSVt/DQ8szjD2CZC7Gx9P8UXJsb0m D063+txSfoIt0SWz1b8q+KzzWJXldttnjwquSImhN14NEJTaMvnCblKMBsnrAgKQ hKf7vHBO968AhTUrnNoov6XkY0BVxU7O2+l02BTIEM8oZqj0ien9PzOSz62LExiF mC1msSSL3aFfQX0eNg+PKmquulq43gJDNM/H2q9lAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2FDYbTqg/s+jmZ2jqs/0lz8GSTEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRjN2MyNmQwLTBlNjItNGNjOC1hZDNjLTNjMTVmZmUzMTRlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75QAwDQYJKoZIhvcNAQELBQADggEBAGJSqMyQKzGN62ZaFT/S28Eo aAc3z/Nz0fx0jZWqXc3FxYPTk4CKu5wFIDxayvEnFyhOFK7QR1Av2Qv8owB8NqbN nEEzibA1nkYha0qlcS072P5YVAvbjAFS3MoTXHDgdCrMij/vRjBEQyrkkw3Qs8df m3TD64aIR/ysOuQ3FQEZhQPbwp7bSsBcAjj22R25gj92Li8wYSXwYlZ6nlW/0ydy 215B9Ma6I4mkDqoI/YYgj98Pht0EnApOUCFUGiRpN4eASwNAKKP8s9yjSSUxQg+/ 1iP0d43YSKkKoSfhvx4HL57AMs2zvDz2h3xWQVs+FTA28FPXQdEB+1EqZG3wYXA= -----END CERTIFICATE-----Generated at Mon Mar 2 02:48:19 2026 by rpki-client