$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa File: 514fa870-df33-4dfe-a228-5ea96e0f3560.roa (raw, json) Hash identifier: oobVBxEKLoJsN+b6JlwkW//IvcBL73Cq+JcSW2B/QKY= Subject key identifier: F4:81:CB:6F:E0:7E:26:D7:55:1A:7F:0E:64:BC:DE:7A:50:18:58:87 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7AD8A6C1C38CA6B6144878E8BC0D56A67029BACA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa Signing time: Sat 07 Feb 2026 00:10:14 +0000 ROA not before: Sat 07 Feb 2026 00:10:14 +0000 ROA not after: Fri 08 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d8:a6:c1:c3:8c:a6:b6:14:48:78:e8:bc:0d:56:a6:70:29:ba:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 7 00:10:14 2026 GMT Not After : May 8 23:59:59 2026 GMT Subject: serialNumber=48ee0bc69b612647b65a9d0f52efcfb95242c404e1f7193dbef16327ca6d86f1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:38:5c:8d:58:e2:b9:aa:87:90:06:9a:ac:ba: 05:e9:88:ff:d1:22:6b:10:f7:38:a7:4f:d2:d6:c8: 3e:b4:05:0d:c6:d5:78:1a:d9:cb:2b:13:02:4d:2d: 5a:1e:ef:21:c4:42:e5:59:e8:7c:cd:94:60:ca:cb: 38:83:a2:f7:b2:a0:3a:45:aa:4a:b3:ef:f7:f6:31: bf:92:6a:c1:89:12:d9:2b:77:97:4f:2f:f9:5e:1c: db:a0:a0:83:65:26:ab:dc:5c:3e:75:50:bc:66:4d: ae:08:89:48:3f:57:01:89:5f:d3:39:6c:b8:12:81: 24:06:45:fa:72:9d:c1:a3:52:dc:e0:5b:25:c8:39: e8:56:5c:14:df:e7:68:53:46:2f:61:93:fc:3a:cb: 74:2e:70:0e:e5:77:c1:12:df:41:2c:57:e1:43:28: 79:f0:7f:2f:47:fa:ff:c4:a2:a9:93:07:e4:6b:ee: a9:81:bb:d5:24:49:80:31:87:41:3f:12:c0:b5:01: cd:9c:28:c4:81:f3:4b:9b:95:a1:86:e5:13:27:c2: 7b:d0:0d:24:34:ed:6f:e0:55:18:c2:d5:c0:e9:97: 55:30:d6:12:a3:f3:59:2a:3d:49:ed:19:99:c6:45: 3b:cf:1b:e7:68:71:e4:c0:8a:d1:00:49:ba:94:76: 06:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:81:CB:6F:E0:7E:26:D7:55:1A:7F:0E:64:BC:DE:7A:50:18:58:87 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 37:54:28:1e:48:55:6a:9d:ba:c8:96:52:74:b7:d5:0e:70:ac: 45:4f:7b:b1:68:7d:11:83:94:d2:11:ff:20:75:c7:c5:a4:b9: 33:ce:67:2f:7f:40:37:4f:80:b2:2b:85:ca:b9:3a:56:48:c2: b5:1e:9d:52:48:87:61:4e:53:77:9d:8b:f4:09:8a:df:06:a1: 98:58:a4:33:57:5d:28:95:f5:62:d8:08:23:e4:56:ba:bc:e0: 87:3c:da:33:1c:96:06:bb:37:7f:7b:94:10:35:26:70:6a:e9: ea:02:1b:fb:7f:71:22:18:07:a1:45:cf:10:c4:98:ad:f8:50: 5c:ca:73:67:36:3a:b9:23:24:70:52:da:09:6b:65:53:9a:4e: 66:e6:50:17:5b:a2:d2:47:88:05:70:65:b1:0f:d8:49:33:f6: c7:c1:df:1a:93:69:2e:81:a8:48:d0:9b:de:c4:06:8c:ed:05: b3:d5:d9:06:60:21:e1:5a:c8:f5:a3:78:37:ce:e6:e1:ef:8f: ac:57:62:96:55:b2:2b:31:54:b6:63:98:7f:3a:6d:86:c1:6e: c2:b9:52:54:1c:b9:ec:6a:08:57:5b:95:ca:4a:46:0b:11:8b: a4:e4:34:f8:96:ab:52:b8:9d:fe:9a:13:aa:34:e1:8a:bb:bc: fe:d5:7a:a9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUetimwcOMprYUSHjovA1WpnApusowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjA3MDAxMDE0WhcNMjYwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OGVlMGJjNjliNjEyNjQ3YjY1YTlkMGY1MmVmY2ZiOTUy NDJjNDA0ZTFmNzE5M2RiZWYxNjMyN2NhNmQ4NmYxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0OFyNWOK5qoeQBpqsugXpiP/RImsQ9zinT9LWyD60BQ3G 1Xga2csrEwJNLVoe7yHEQuVZ6HzNlGDKyziDoveyoDpFqkqz7/f2Mb+SasGJEtkr d5dPL/leHNugoINlJqvcXD51ULxmTa4IiUg/VwGJX9M5bLgSgSQGRfpyncGjUtzg WyXIOehWXBTf52hTRi9hk/w6y3QucA7ld8ES30EsV+FDKHnwfy9H+v/EoqmTB+Rr 7qmBu9UkSYAxh0E/EsC1Ac2cKMSB80ublaGG5RMnwnvQDSQ07W/gVRjC1cDpl1Uw 1hKj81kqPUntGZnGRTvPG+doceTAitEASbqUdgbHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9IHLb+B+JtdVGn8OZLzeelAYWIcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUxNGZhODcwLWRmMzMtNGRmZS1hMjI4LTVlYTk2ZTBmMzU2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBADdUKB5IVWqdusiWUnS31Q5w rEVPe7FofRGDlNIR/yB1x8WkuTPOZy9/QDdPgLIrhcq5OlZIwrUenVJIh2FOU3ed i/QJit8GoZhYpDNXXSiV9WLYCCPkVrq84Ic82jMclga7N397lBA1JnBq6eoCG/t/ cSIYB6FFzxDEmK34UFzKc2c2OrkjJHBS2glrZVOaTmbmUBdbotJHiAVwZbEP2Ekz 9sfB3xqTaS6BqEjQm97EBoztBbPV2QZgIeFayPWjeDfO5uHvj6xXYpZVsisxVLZj mH86bYbBbsK5UlQcuexqCFdblcpKRgsRi6TkNPiWq1K4nf6aE6o04Yq7vP7Veqk= -----END CERTIFICATE-----Generated at Sun Mar 1 22:04:20 2026 by rpki-client