$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/50aa830a-891f-4ae0-bee7-f2758c54eae3.roa File: 50aa830a-891f-4ae0-bee7-f2758c54eae3.roa (raw, json) Hash identifier: taoI5IXv5VhoplTBOXpyqZNN4/40gWskrea4OibjOos= Subject key identifier: 0E:31:A8:E8:00:D3:0F:04:4B:AA:B5:CA:1E:E0:EA:D2:BB:0F:76:72 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 22BB0A440B7FBA924F9F52C130F212F56E700646 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/50aa830a-891f-4ae0-bee7-f2758c54eae3.roa Signing time: Sat 28 Feb 2026 04:50:06 +0000 ROA not before: Sat 28 Feb 2026 04:50:06 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:50::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:bb:0a:44:0b:7f:ba:92:4f:9f:52:c1:30:f2:12:f5:6e:70:06:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 04:50:06 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=9dda3fc7bac2b8164d9c88bc9bc59715fb9a1e05f5207a0c0e7c8803bba8218f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:66:37:00:1b:6d:ef:d5:9c:fa:55:10:7a:4c: fb:76:f9:f9:d9:00:0f:2b:39:66:d7:be:54:d9:be: b6:fe:a4:2f:85:f1:d7:7f:da:b1:fa:1d:c8:04:d1: 45:64:e3:59:31:96:b0:ac:84:7e:07:31:e1:25:cf: 10:1d:10:c0:92:da:f0:bb:a0:33:f8:74:a2:8a:ae: 90:76:56:f5:3d:a0:da:db:55:b7:b3:02:b6:16:89: 0b:0e:ee:eb:1d:f8:6f:c5:14:af:25:e1:d4:22:f1: e9:aa:0e:58:64:f8:d9:07:b4:7f:e9:72:66:75:04: 4f:23:1f:23:73:e6:c9:9e:12:42:61:8f:d4:fe:1e: c4:cf:3d:19:94:97:49:e8:7b:84:81:92:cb:91:f4: 18:b8:85:a8:b6:83:3f:9b:fd:92:c3:13:01:c5:b2: 8a:84:94:4c:bd:46:1a:f7:e5:77:ec:53:c1:dd:a0: f9:64:17:96:83:7b:35:4b:ee:75:0a:3a:e8:37:3f: e0:09:ff:69:49:70:c8:c2:ca:02:d1:b3:3b:cb:8a: 1a:82:fe:29:fd:90:83:76:a8:20:67:60:e2:26:5c: f1:87:7d:c7:d4:73:55:49:59:f9:87:b8:20:cc:86: dd:e3:a5:5b:a1:e2:84:07:9f:bd:87:d4:f0:9d:ca: 99:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:31:A8:E8:00:D3:0F:04:4B:AA:B5:CA:1E:E0:EA:D2:BB:0F:76:72 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/50aa830a-891f-4ae0-bee7-f2758c54eae3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:50::/44 Signature Algorithm: sha256WithRSAEncryption 5b:f3:50:48:a9:1e:d3:83:27:c2:c8:05:fa:79:ae:9b:de:35: 84:9d:9a:0c:15:ed:ea:4e:b9:c6:e1:20:0a:77:39:71:92:13: 48:fa:a9:95:f0:9b:af:68:e4:90:43:bd:48:35:d0:c3:9d:9a: 3b:55:77:de:53:28:4d:31:3a:eb:b2:f2:88:50:86:8f:b1:05: 9b:b4:2b:1d:9d:91:c6:1e:04:7f:72:c6:9d:c1:7b:4a:87:8a: 42:9c:12:50:ad:aa:6e:c8:44:e2:b5:54:bd:49:2d:70:cf:a6: 6d:fe:19:65:88:55:59:af:2f:18:a6:5e:d4:6e:00:1f:ad:03: f4:80:f3:00:5b:85:b4:5e:6b:4b:57:f4:96:5d:88:ed:71:fe: c4:8b:97:76:46:db:5c:e5:a6:ff:14:a7:07:8e:a7:5a:a5:1b: 8f:39:01:95:57:4a:26:38:84:48:20:13:b2:42:16:8e:4c:15: 48:35:d9:8f:d2:29:0d:5e:7c:ae:33:db:d7:0d:1f:1d:9e:13: 51:46:7d:ce:71:d8:a6:1f:b6:4f:14:9d:8b:dd:9c:82:d5:d2: 20:cf:c9:45:a1:ba:5c:66:8b:4f:d2:5b:b0:8c:21:9b:aa:ae: f6:1b:07:94:30:b7:7b:d7:8f:dc:e5:e9:a2:ed:34:12:58:a4: a0:f3:30:39 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIrsKRAt/upJPn1LBMPIS9W5wBkYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDQ1MDA2WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGRhM2ZjN2JhYzJiODE2NGQ5Yzg4YmM5YmM1OTcxNWZi OWExZTA1ZjUyMDdhMGMwZTdjODgwM2JiYTgyMThmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsZjcAG23v1Zz6VRB6TPt2+fnZAA8rOWbXvlTZvrb+pC+F 8dd/2rH6HcgE0UVk41kxlrCshH4HMeElzxAdEMCS2vC7oDP4dKKKrpB2VvU9oNrb VbezArYWiQsO7usd+G/FFK8l4dQi8emqDlhk+NkHtH/pcmZ1BE8jHyNz5smeEkJh j9T+HsTPPRmUl0noe4SBksuR9Bi4hai2gz+b/ZLDEwHFsoqElEy9Rhr35XfsU8Hd oPlkF5aDezVL7nUKOug3P+AJ/2lJcMjCygLRszvLihqC/in9kIN2qCBnYOImXPGH fcfUc1VJWfmHuCDMht3jpVuh4oQHn72H1PCdypl7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDjGo6ADTDwRLqrXKHuDq0rsPdnIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUwYWE4MzBhLTg5MWYtNGFlMC1iZWU3LWYyNzU4YzU0ZWFlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAFAwDQYJKoZIhvcNAQELBQADggEBAFvzUEipHtODJ8LIBfp5rpve NYSdmgwV7epOucbhIAp3OXGSE0j6qZXwm69o5JBDvUg10MOdmjtVd95TKE0xOuuy 8ohQho+xBZu0Kx2dkcYeBH9yxp3Be0qHikKcElCtqm7IROK1VL1JLXDPpm3+GWWI VVmvLximXtRuAB+tA/SA8wBbhbRea0tX9JZdiO1x/sSLl3ZG21zlpv8UpweOp1ql G485AZVXSiY4hEggE7JCFo5MFUg12Y/SKQ1efK4z29cNHx2eE1FGfc5x2KYftk8U nYvdnILV0iDPyUWhulxmi0/SW7CMIZuqrvYbB5Qwt3vXj9zl6aLtNBJYpKDzMDk= -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:10 2026 by rpki-client