$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5549fdb0-617d-43e3-951f-9747f0d27829.roa File: 5549fdb0-617d-43e3-951f-9747f0d27829.roa (raw, json) Hash identifier: HeSvb/Mz8K9wdmjjcHfKkU/0FNd87qMUzLy+90DRs4k= Subject key identifier: 05:66:72:3B:C2:84:E9:C2:08:74:73:CA:0D:C6:E2:B0:24:43:03:55 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 47DE3E87C9D01A2D46CD30FB203AB6825444B8F4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5549fdb0-617d-43e3-951f-9747f0d27829.roa Signing time: Fri 06 Feb 2026 00:30:25 +0000 ROA not before: Fri 06 Feb 2026 00:30:25 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:de:3e:87:c9:d0:1a:2d:46:cd:30:fb:20:3a:b6:82:54:44:b8:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 6 00:30:25 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=fd93f4b0b1668a760c4d9849f05a05ab9527691995309a7950dd610fa988280d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4d:66:c5:7f:f8:3f:5f:c1:42:8b:b6:d4:f6: 5d:b8:84:20:b1:38:fd:59:15:7f:ce:a2:af:e9:37: 1a:b3:e2:d8:45:19:5a:91:5c:cd:7d:28:b9:fc:2f: c1:60:71:fc:ca:72:a2:8c:0a:07:16:6f:0b:06:ba: de:c1:a1:53:68:96:02:3e:d7:1c:5d:21:e4:c1:e9: 5c:ad:5d:53:b3:85:74:54:8f:29:de:80:9e:67:17: da:7c:c5:24:e0:60:4c:ff:b8:48:ee:a0:f4:9d:19: 3f:b6:ce:62:f0:30:90:73:dc:a0:40:c6:4a:ba:e1: 0a:e8:d9:4a:c8:e7:0e:f2:03:72:ca:0b:bd:1c:ed: 6d:2f:d3:17:7c:5f:09:3f:05:de:6a:5b:ff:26:52: e7:c7:5a:e0:f2:64:ed:88:74:14:b9:cb:3d:b6:80: 80:6b:70:7d:c5:a6:c9:96:d3:24:9a:d7:06:98:2e: a0:44:f9:b0:f2:28:25:79:ef:69:da:5c:78:ed:e6: ea:48:6f:dd:52:b6:be:bd:e1:93:d3:ab:83:1c:c7: a7:01:37:ac:a5:75:80:b7:57:6a:fb:82:70:8f:fa: 38:07:df:8e:da:34:02:2e:e2:e4:39:70:db:38:c4: 3a:f8:3d:89:ed:6f:4a:cb:14:c6:8e:a6:e7:a1:c4: 00:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:66:72:3B:C2:84:E9:C2:08:74:73:CA:0D:C6:E2:B0:24:43:03:55 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5549fdb0-617d-43e3-951f-9747f0d27829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4140::/48 Signature Algorithm: sha256WithRSAEncryption 52:30:6f:e5:07:5d:5a:10:c5:5d:7b:6a:b7:d1:0f:90:ab:7d: ad:b3:12:7a:99:07:a6:69:8b:f8:b1:bf:bf:ec:f9:5b:43:7e: 9f:14:11:08:87:55:80:d6:8c:9d:ed:55:0c:81:5a:93:0f:d6: 8f:36:a9:0d:ac:f1:fd:81:e0:1f:49:71:2f:85:12:47:82:b4: 2c:ac:96:45:2b:df:7f:89:5a:c5:ea:1d:05:a5:e5:68:e9:7e: 8e:c8:e0:71:70:7e:48:ae:da:7c:d1:6e:0f:30:97:52:ac:58: d8:1f:9f:2f:21:ef:84:58:30:fd:16:62:c1:8e:2c:8e:f1:16: b9:f0:a3:d1:83:c0:11:8c:54:36:7f:75:ae:ae:6a:b9:c3:ec: 21:11:bf:7c:ea:b8:6d:d0:09:e3:46:b1:9e:a8:0d:88:ab:d9: 85:da:77:af:1c:a6:13:93:b3:66:6c:0c:32:99:e1:bf:4c:0a: 8a:a9:ad:be:79:33:ca:46:0a:d9:63:2f:a5:1b:13:23:16:24: 94:d7:9c:51:e1:ef:c1:79:35:c0:86:66:47:11:95:90:1f:75: d4:20:36:88:b1:43:75:93:9e:84:88:e6:d1:3f:af:0f:9a:72: b0:2c:ad:05:b2:d2:c6:52:53:ed:da:b8:f4:fb:43:4e:9f:4b: 20:18:91:0d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUR94+h8nQGi1GzTD7IDq2glREuPQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjA2MDAzMDI1WhcNMjYwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDkzZjRiMGIxNjY4YTc2MGM0ZDk4NDlmMDVhMDVhYjk1 Mjc2OTE5OTUzMDlhNzk1MGRkNjEwZmE5ODgyODBkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtTWbFf/g/X8FCi7bU9l24hCCxOP1ZFX/Ooq/pNxqz4thF GVqRXM19KLn8L8FgcfzKcqKMCgcWbwsGut7BoVNolgI+1xxdIeTB6VytXVOzhXRU jynegJ5nF9p8xSTgYEz/uEjuoPSdGT+2zmLwMJBz3KBAxkq64Qro2UrI5w7yA3LK C70c7W0v0xd8Xwk/Bd5qW/8mUufHWuDyZO2IdBS5yz22gIBrcH3FpsmW0ySa1waY LqBE+bDyKCV572naXHjt5upIb91Str694ZPTq4Mcx6cBN6yldYC3V2r7gnCP+jgH 347aNAIu4uQ5cNs4xDr4PYntb0rLFMaOpuehxAD1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBWZyO8KE6cIIdHPKDcbisCRDA1UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU1NDlmZGIwLTYxN2QtNDNlMy05NTFmLTk3NDdmMGQyNzgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUAwDQYJKoZIhvcNAQELBQADggEBAFIwb+UHXVoQxV17arfRD5Cr fa2zEnqZB6Zpi/ixv7/s+VtDfp8UEQiHVYDWjJ3tVQyBWpMP1o82qQ2s8f2B4B9J cS+FEkeCtCyslkUr33+JWsXqHQWl5Wjpfo7I4HFwfkiu2nzRbg8wl1KsWNgfny8h 74RYMP0WYsGOLI7xFrnwo9GDwBGMVDZ/da6uarnD7CERv3zquG3QCeNGsZ6oDYir 2YXad68cphOTs2ZsDDKZ4b9MCoqprb55M8pGCtljL6UbEyMWJJTXnFHh78F5NcCG ZkcRlZAfddQgNoixQ3WTnoSI5tE/rw+acrAsrQWy0sZSU+3auPT7Q06fSyAYkQ0= -----END CERTIFICATE-----Generated at Mon Mar 2 03:45:06 2026 by rpki-client