$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa File: 5443f26e-949a-460a-b187-e26290bfcf24.roa (raw, json) Hash identifier: yZJIJP816mouXiyM5RXnR6TNUxc9kmafly4/A+Luf/s= Subject key identifier: 6B:56:2A:DC:B3:F6:64:E2:2D:E1:93:A9:43:61:A0:E2:AA:1C:86:5C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3BEE78C5FC609DD3F56A6BBA86E11B353AE35940 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa Signing time: Sun 01 Mar 2026 01:00:36 +0000 ROA not before: Sun 01 Mar 2026 01:00:36 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:ee:78:c5:fc:60:9d:d3:f5:6a:6b:ba:86:e1:1b:35:3a:e3:59:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 01:00:36 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=5a3e7a6a298aa8da0e7a7999cfb1aaa0034b2932d78e5faaeff0308af7375da3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:65:a6:df:5e:ca:13:86:d6:b7:9f:6a:5a:d1: c6:42:50:24:04:f1:bb:0d:91:f0:44:6a:fe:41:2d: 30:45:bd:e0:a8:98:7c:a1:54:3d:55:d1:ac:fb:ea: cc:19:34:97:e4:f9:cd:18:6d:0c:c9:20:4e:ee:6b: 81:d1:d2:43:69:95:af:7b:af:b3:b1:b9:72:20:0c: e0:b5:73:89:b8:71:75:c7:6f:bf:3e:3e:8e:1b:da: 5f:40:58:86:fd:7a:ad:74:86:f7:cf:18:00:94:0e: 05:8e:0a:9e:2a:37:bd:c3:08:22:13:21:52:91:5e: 0b:5f:78:80:d5:a0:0d:49:99:f1:71:f6:3c:57:44: 3c:9e:67:c5:8b:90:a8:0a:38:39:86:ce:6a:5d:5a: 7c:aa:40:ca:58:0f:80:19:02:93:47:a6:7f:64:54: 70:92:9e:b7:f6:d7:ad:3a:c9:40:2a:14:d0:9a:55: c2:aa:35:ba:b5:3f:a4:ef:bb:39:14:e7:3d:d8:c8: ab:e7:6d:86:dd:01:c6:a5:1c:c2:e5:0c:05:87:60: fe:28:99:22:10:e5:06:33:0a:f7:cb:68:8f:dc:2f: 85:e7:3e:c0:ad:87:90:a1:79:22:ee:ea:ce:c2:64: b7:90:2d:ba:68:4c:ec:8e:0c:80:df:07:33:b3:2d: 5f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:56:2A:DC:B3:F6:64:E2:2D:E1:93:A9:43:61:A0:E2:AA:1C:86:5C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4000::/44 Signature Algorithm: sha256WithRSAEncryption 42:cf:69:62:5a:a4:d7:5b:a2:c2:5c:3d:0a:4f:09:8c:e3:e4: e4:eb:91:76:9d:1e:fd:94:c7:c6:2f:06:3e:f1:18:d3:42:7d: c9:e6:d9:3f:1d:15:77:d4:98:a2:ad:88:01:4b:2d:df:35:1d: f0:80:1b:c7:f3:78:22:d2:e0:45:24:07:37:80:36:3a:31:48: c3:e6:40:0d:b1:ec:38:e4:ec:18:3f:25:a0:60:b7:9f:c5:9b: 94:7d:fd:6a:a6:a5:aa:c9:80:f5:24:74:27:bc:44:71:ee:4d: 3c:6d:ec:96:08:9e:a0:02:03:66:0a:6a:1c:52:ca:ed:9c:88: 6e:39:a6:61:d2:c1:e3:0e:fc:2b:61:4b:0b:e8:ce:be:aa:68: 8a:75:12:1f:94:ec:fd:8b:4c:eb:32:1b:e8:b4:77:04:01:1f: 5f:bb:3a:bc:a0:21:46:36:d1:cf:2f:79:1f:31:8a:70:23:7b: 25:4f:8f:dc:a2:84:d2:87:eb:fd:55:a7:88:f8:2e:87:56:d9: b6:80:79:57:18:76:45:2c:90:6c:3e:7a:a6:1e:fa:21:ee:22: 56:30:8e:89:70:29:c1:a2:c0:9b:2d:0a:72:51:d6:02:3c:d4: 0a:91:9a:7f:25:6a:8f:83:f5:1d:4a:46:fa:0a:d8:d1:cd:77: 04:1d:36:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO+54xfxgndP1amu6huEbNTrjWUAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDEwMDM2WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTNlN2E2YTI5OGFhOGRhMGU3YTc5OTljZmIxYWFhMDAz NGIyOTMyZDc4ZTVmYWFlZmYwMzA4YWY3Mzc1ZGEzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5ZabfXsoThta3n2pa0cZCUCQE8bsNkfBEav5BLTBFveCo mHyhVD1V0az76swZNJfk+c0YbQzJIE7ua4HR0kNpla97r7OxuXIgDOC1c4m4cXXH b78+Po4b2l9AWIb9eq10hvfPGACUDgWOCp4qN73DCCITIVKRXgtfeIDVoA1JmfFx 9jxXRDyeZ8WLkKgKODmGzmpdWnyqQMpYD4AZApNHpn9kVHCSnrf21606yUAqFNCa VcKqNbq1P6TvuzkU5z3YyKvnbYbdAcalHMLlDAWHYP4omSIQ5QYzCvfLaI/cL4Xn PsCth5CheSLu6s7CZLeQLbpoTOyODIDfBzOzLV/PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUa1Yq3LP2ZOIt4ZOpQ2Gg4qochlwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NDNmMjZlLTk0OWEtNDYwYS1iMTg3LWUyNjI5MGJmY2YyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwQAAwDQYJKoZIhvcNAQELBQADggEBAELPaWJapNdbosJcPQpPCYzj 5OTrkXadHv2Ux8YvBj7xGNNCfcnm2T8dFXfUmKKtiAFLLd81HfCAG8fzeCLS4EUk BzeANjoxSMPmQA2x7Djk7Bg/JaBgt5/Fm5R9/WqmparJgPUkdCe8RHHuTTxt7JYI nqACA2YKahxSyu2ciG45pmHSweMO/CthSwvozr6qaIp1Eh+U7P2LTOsyG+i0dwQB H1+7OrygIUY20c8veR8xinAjeyVPj9yihNKH6/1Vp4j4LodW2baAeVcYdkUskGw+ eqYe+iHuIlYwjolwKcGiwJstCnJR1gI81AqRmn8lao+D9R1KRvoK2NHNdwQdNhg= -----END CERTIFICATE-----Generated at Mon Mar 2 01:43:01 2026 by rpki-client