$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4d9dc189-6c00-4764-9c0c-c990d1727298.roa File: 4d9dc189-6c00-4764-9c0c-c990d1727298.roa (raw, json) Hash identifier: cWx6Gg+BRhUYto+WhEh2Q7woXGYCDehL5Nmj+KAWE/g= Subject key identifier: CC:B2:87:E0:19:A7:8D:07:B6:85:71:02:8E:CA:07:A8:8F:74:40:0B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3C58B1DEFB41D8B306750069C462B18634823269 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4d9dc189-6c00-4764-9c0c-c990d1727298.roa Signing time: Sat 28 Feb 2026 05:00:41 +0000 ROA not before: Sat 28 Feb 2026 05:00:41 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:58:b1:de:fb:41:d8:b3:06:75:00:69:c4:62:b1:86:34:82:32:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:41 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=ad4f2fb468a166f87a4e85ed9122f7d6175afa7f01e83a8b22bc65c97d2829fc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:a2:64:82:bc:e0:d6:d9:ce:84:fd:ac:df:0f: f5:d4:6c:10:f6:42:83:c2:21:61:e9:97:de:5b:d9: d8:04:51:81:bd:9f:2a:17:e1:42:5e:08:9e:8f:c0: bb:aa:2e:cd:2f:cc:f3:07:6a:d2:8e:ea:71:f5:10: c5:c1:b1:77:f6:7c:ad:0a:70:5c:ac:b1:63:c1:a5: f7:ab:97:b1:4a:35:09:f4:54:f8:65:3c:e0:da:e0: ba:7f:45:89:aa:87:ec:0f:0c:68:40:30:55:8a:59: ca:0e:60:cf:58:2c:f4:8c:53:59:17:c1:5b:1a:ef: 4f:b2:d5:f9:12:e4:9f:91:c2:8c:d0:71:49:33:9a: 03:15:80:24:8e:84:d7:a9:4f:9e:68:d3:e7:78:99: eb:df:15:91:4e:90:89:54:a8:8e:13:8c:42:0b:1c: 77:6d:47:dc:62:81:10:26:36:6d:15:20:8d:d1:6c: 6a:d5:ff:96:f4:92:1e:84:ac:ac:a7:9c:10:17:0c: 93:8b:22:79:e1:d7:ea:e9:07:24:1a:45:0c:81:bf: cd:8c:cc:41:de:cd:b5:9e:eb:91:4e:b6:f2:1c:b4: a2:d6:f6:4b:72:67:b0:67:9b:2e:40:0e:5a:56:c4: cc:d3:c8:26:71:30:da:d5:d9:91:c8:83:9b:50:d4: 4f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B2:87:E0:19:A7:8D:07:B6:85:71:02:8E:CA:07:A8:8F:74:40:0B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4d9dc189-6c00-4764-9c0c-c990d1727298.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:600::/48 Signature Algorithm: sha256WithRSAEncryption 38:09:57:a4:d8:d3:fd:07:3e:55:11:43:4e:91:45:ca:4d:d2: ba:d3:53:ea:5f:74:8c:ea:75:cd:55:67:0d:dd:f2:fc:a9:c2: ac:5f:6f:ca:95:3d:c2:72:49:60:69:0f:ff:7a:7e:a6:7d:e8: f8:73:2f:24:16:d0:8a:9a:89:6b:c5:13:49:65:36:6c:39:c1: 78:bf:d0:e2:17:07:7e:46:b7:bc:e1:81:24:2b:02:2d:53:be: 67:c7:5e:1f:4e:22:c5:25:ef:7d:c9:19:aa:e0:c9:0b:ed:69: 9b:92:63:dd:b5:ab:88:52:64:b4:df:35:39:05:a3:97:b1:3d: 0d:1f:8d:1d:37:ea:c9:7b:2b:8b:e8:44:ad:cc:7d:4d:97:28: 4d:a1:03:fd:1d:29:ff:58:93:6f:a7:ab:2b:02:99:47:28:31: 37:62:ea:ae:6d:4b:b5:81:de:95:4d:4d:29:e4:8c:11:e7:78: 30:83:28:7d:32:d8:3b:45:65:58:55:63:f4:6d:a8:fe:5a:3a: 9b:24:1d:90:b1:66:a2:a7:f0:ad:7d:b2:cf:b7:8f:5a:60:8d: 29:34:f3:13:ee:6f:e4:88:d9:78:0d:ab:34:23:ce:cd:68:b2: 5c:03:a1:66:ec:e7:64:24:4f:3b:9c:a9:08:d9:aa:0b:55:c9: 9d:1c:12:28 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPFix3vtB2LMGdQBpxGKxhjSCMmkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDQxWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZDRmMmZiNDY4YTE2NmY4N2E0ZTg1ZWQ5MTIyZjdkNjE3 NWFmYTdmMDFlODNhOGIyMmJjNjVjOTdkMjgyOWZjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKomSCvODW2c6E/azfD/XUbBD2QoPCIWHpl95b2dgEUYG9 nyoX4UJeCJ6PwLuqLs0vzPMHatKO6nH1EMXBsXf2fK0KcFyssWPBpferl7FKNQn0 VPhlPODa4Lp/RYmqh+wPDGhAMFWKWcoOYM9YLPSMU1kXwVsa70+y1fkS5J+RwozQ cUkzmgMVgCSOhNepT55o0+d4mevfFZFOkIlUqI4TjEILHHdtR9xigRAmNm0VII3R bGrV/5b0kh6ErKynnBAXDJOLInnh1+rpByQaRQyBv82MzEHezbWe65FOtvIctKLW 9ktyZ7Bnmy5ADlpWxMzTyCZxMNrV2ZHIg5tQ1E9rAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzLKH4BmnjQe2hXECjsoHqI90QAswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRkOWRjMTg5LTZjMDAtNDc2NC05YzBjLWM5OTBkMTcyNzI5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBgAwDQYJKoZIhvcNAQELBQADggEBADgJV6TY0/0HPlURQ06RRcpN 0rrTU+pfdIzqdc1VZw3d8vypwqxfb8qVPcJySWBpD/96fqZ96PhzLyQW0IqaiWvF E0llNmw5wXi/0OIXB35Gt7zhgSQrAi1TvmfHXh9OIsUl733JGargyQvtaZuSY921 q4hSZLTfNTkFo5exPQ0fjR036sl7K4voRK3MfU2XKE2hA/0dKf9Yk2+nqysCmUco MTdi6q5tS7WB3pVNTSnkjBHneDCDKH0y2DtFZVhVY/RtqP5aOpskHZCxZqKn8K19 ss+3j1pgjSk08xPub+SI2XgNqzQjzs1oslwDoWbs52QkTzucqQjZqgtVyZ0cEig= -----END CERTIFICATE-----Generated at Mon Mar 2 07:23:27 2026 by rpki-client