$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa File: 5362b40e-d987-4a9d-8f30-59c3b7075db1.roa (raw, json) Hash identifier: ed6QcIvCEkOgsmJO5B/bbnDpIMQuOMWulEAXVDqTXAA= Subject key identifier: 92:A1:0A:39:48:63:7B:40:96:F7:14:54:D5:8E:BF:80:91:EE:CE:9B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0DFB5561F132883E9A406D24EC14FDB372749FDC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa Signing time: Sat 28 Feb 2026 05:00:28 +0000 ROA not before: Sat 28 Feb 2026 05:00:28 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5530::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:fb:55:61:f1:32:88:3e:9a:40:6d:24:ec:14:fd:b3:72:74:9f:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:28 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=c4f96b1181884d83d5018c7b40fefe8bb1d587323134af27fdea13075f04af4c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:07:aa:77:25:10:0a:ba:8e:12:ca:d4:bf:f6: e3:00:34:b5:d2:ea:94:54:90:08:ac:1d:08:a5:66: 19:67:a6:ba:07:e3:f3:6d:a6:70:db:d0:31:3f:9f: be:f8:a6:f8:15:ce:d4:32:ac:92:82:7a:da:64:37: 40:af:8a:3f:02:ec:12:eb:c6:88:f5:34:83:98:b0: 10:90:cb:96:d7:8a:5e:3b:ce:cf:61:72:9e:ae:c8: 43:09:b4:82:6d:9a:c9:4b:d0:4f:f4:51:3b:63:81: 22:f1:04:cc:b1:10:e1:d9:ec:18:d7:5d:91:90:d2: 77:ab:f1:5b:2b:24:51:7e:d5:86:88:ae:90:af:c1: 0d:e4:6e:48:42:bf:b0:96:ca:13:0a:72:cd:d0:f6: 0b:47:7b:67:df:95:70:26:c0:04:6f:87:6e:90:99: 1c:24:80:b2:0a:1c:64:1f:8d:66:29:6f:f8:18:bd: 10:11:c2:3e:ea:5b:ed:49:e1:8e:43:db:88:5f:7c: f4:2f:63:56:a9:2b:93:66:49:5a:06:49:7e:9f:08: 0b:01:8d:bd:21:9a:49:57:7b:1f:ac:59:4c:d5:d1: bc:52:38:83:6f:37:87:20:b7:79:df:73:e7:65:1b: 97:7d:6d:eb:b7:a2:af:c6:70:8d:3a:b6:5c:6c:7e: ea:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A1:0A:39:48:63:7B:40:96:F7:14:54:D5:8E:BF:80:91:EE:CE:9B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5530::/44 Signature Algorithm: sha256WithRSAEncryption 26:13:a3:7f:e4:cf:f9:b2:82:29:a0:75:6c:4f:f7:f6:38:eb: 8e:37:b3:f8:39:6f:17:22:2a:96:8e:2b:70:55:22:8b:dd:95: 15:5c:cb:96:4e:79:4b:e8:75:b4:4d:d2:ff:69:dc:e9:7f:b1: 63:ca:54:7b:5e:ee:0c:7d:6e:f3:c2:4f:98:32:12:5e:44:5c: 22:7b:79:fc:c0:5d:38:e1:25:a1:b9:ac:f3:2a:0b:40:be:ea: 06:4c:ab:8b:b7:11:73:f6:a0:5f:c6:fa:11:2f:b8:36:58:15: 34:64:e2:65:ac:1e:a5:5c:83:03:f1:0e:dc:bb:99:2e:f2:20: 25:72:a9:d6:34:1f:0e:5c:68:80:de:05:96:86:ad:9e:d8:99: 0a:c5:ca:7e:34:da:cb:f9:27:b7:32:ee:c3:39:e3:49:71:56: 71:73:af:1c:79:8c:b1:d4:63:40:e2:d8:7a:d7:1e:98:98:6a: e0:0d:32:49:a0:aa:52:24:45:4a:c8:67:1b:63:bc:46:7a:2f: cb:2b:9b:be:80:d9:07:78:7e:c8:ca:59:b3:e4:61:04:b9:ef: ba:16:d6:7d:2a:f0:f2:28:64:ab:5f:3d:da:28:ba:fd:bc:d2: 50:ac:e5:21:b9:53:5a:52:af:af:b7:46:28:99:04:1d:ab:12: 2b:70:a4:98 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDftVYfEyiD6aQG0k7BT9s3J0n9wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDI4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNGY5NmIxMTgxODg0ZDgzZDUwMThjN2I0MGZlZmU4YmIx ZDU4NzMyMzEzNGFmMjdmZGVhMTMwNzVmMDRhZjRjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSB6p3JRAKuo4SytS/9uMANLXS6pRUkAisHQilZhlnproH 4/NtpnDb0DE/n774pvgVztQyrJKCetpkN0Cvij8C7BLrxoj1NIOYsBCQy5bXil47 zs9hcp6uyEMJtIJtmslL0E/0UTtjgSLxBMyxEOHZ7BjXXZGQ0ner8VsrJFF+1YaI rpCvwQ3kbkhCv7CWyhMKcs3Q9gtHe2fflXAmwARvh26QmRwkgLIKHGQfjWYpb/gY vRARwj7qW+1J4Y5D24hffPQvY1apK5NmSVoGSX6fCAsBjb0hmklXex+sWUzV0bxS OINvN4cgt3nfc+dlG5d9beu3oq/GcI06tlxsfurBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkqEKOUhje0CW9xRU1Y6/gJHuzpswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUzNjJiNDBlLWQ5ODctNGE5ZC04ZjMwLTU5YzNiNzA3NWRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwVTAwDQYJKoZIhvcNAQELBQADggEBACYTo3/kz/mygimgdWxP9/Y4 6443s/g5bxciKpaOK3BVIovdlRVcy5ZOeUvodbRN0v9p3Ol/sWPKVHte7gx9bvPC T5gyEl5EXCJ7efzAXTjhJaG5rPMqC0C+6gZMq4u3EXP2oF/G+hEvuDZYFTRk4mWs HqVcgwPxDty7mS7yICVyqdY0Hw5caIDeBZaGrZ7YmQrFyn402sv5J7cy7sM540lx VnFzrxx5jLHUY0Di2HrXHpiYauANMkmgqlIkRUrIZxtjvEZ6L8srm76A2Qd4fsjK WbPkYQS577oW1n0q8PIoZKtfPdoouv280lCs5SG5U1pSr6+3RiiZBB2rEitwpJg= -----END CERTIFICATE-----Generated at Mon Mar 2 10:36:09 2026 by rpki-client