$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa File: 56527727-111d-4d4a-9da3-1e8d68e15a4c.roa (raw, json) Hash identifier: vs2mE8FVvHj+oNvlbTdsVA01NMF3DLW2qjndnT7F/eM= Subject key identifier: B7:6E:D4:E9:9A:4F:BB:25:BB:00:75:7D:DF:64:7D:03:BC:40:F1:B5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7FFD91503947F593513BD7C0FD25560D2ADDFB5E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa Signing time: Sat 28 Feb 2026 05:10:42 +0000 ROA not before: Sat 28 Feb 2026 05:10:42 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:fd:91:50:39:47:f5:93:51:3b:d7:c0:fd:25:56:0d:2a:dd:fb:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:10:42 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=b5ce5928e22b6f4be80ebfed648359d1c2c52a6dc369007aaf7dcb4b015b165c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f0:89:34:86:b8:c6:49:c0:9d:ce:00:22:f8: 94:d4:5f:46:19:83:2b:79:1a:2b:7e:22:31:b5:11: 49:5a:ff:cd:ea:de:0f:25:4d:5e:ff:24:6a:00:ed: 80:d0:77:84:13:da:b6:b8:c7:09:06:17:3d:4e:7d: 66:79:81:8b:1b:c9:76:10:54:4f:ee:5e:c0:c2:ef: 88:0a:da:c5:9f:45:e9:c8:7a:60:d5:98:2f:24:98: a9:47:40:29:5f:95:49:4c:6e:8b:25:16:b0:b7:98: f5:04:b1:64:fd:18:e6:a5:f6:50:29:8b:c1:62:a8: 07:8a:e9:04:42:59:ec:98:92:19:b9:93:6a:ed:5f: 39:d9:48:42:75:17:a5:8b:5d:28:06:93:2f:36:95: f3:4b:a7:2d:bd:80:0a:7e:8f:1e:96:c5:bf:76:5d: 94:81:28:19:4c:21:fb:70:48:8e:5d:11:f5:e8:4f: c4:a7:a6:da:d0:8e:a4:29:cd:80:fb:96:68:ab:1f: c7:3f:71:77:c1:78:61:f7:84:b5:ec:40:7a:81:5b: d9:b8:81:c3:c7:52:e0:71:68:ee:29:99:bc:52:2d: 00:08:12:7a:e2:e7:46:d3:59:e8:9d:28:50:e7:38: 3b:46:e9:ad:e2:a5:32:55:2e:9a:03:2b:24:13:8d: cc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:6E:D4:E9:9A:4F:BB:25:BB:00:75:7D:DF:64:7D:03:BC:40:F1:B5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/44 Signature Algorithm: sha256WithRSAEncryption 12:fd:38:2e:5a:b8:df:87:73:a8:28:8a:2c:4e:f8:23:cb:92: 22:4a:17:56:23:c3:43:2d:99:56:3b:e9:9b:18:9a:59:47:71: 5f:a2:61:0b:13:3b:54:3f:94:29:20:97:29:26:89:33:2d:44: 59:c6:3a:63:e3:91:1d:46:dc:93:2b:91:1f:f5:58:6e:39:ce: ed:a6:b8:9b:21:1c:39:83:ae:23:01:60:a0:0d:bd:25:ea:81: 90:dd:75:e4:a4:ca:0e:cc:04:e3:59:e4:06:f0:46:aa:cb:55: e6:8b:eb:e9:a9:ac:38:50:77:e1:d1:0b:85:d8:b7:1e:b9:70: 2a:96:af:91:f6:86:43:14:8c:5f:f1:3f:1c:c1:bf:e0:ef:31: d2:2f:0b:0d:90:1c:2c:fc:af:2a:47:73:3a:7b:04:a8:a7:c5: fd:d5:de:54:84:ca:6c:30:95:c2:06:29:b7:04:ba:bc:96:8b: ed:0e:e5:c0:bf:3d:78:cc:64:e2:65:a6:c6:5b:0d:51:8f:e3: 7f:63:9a:c8:81:3d:cf:fb:19:ee:87:ff:ab:d5:0f:76:82:46: 7b:21:f1:1d:77:73:00:ac:b7:ce:d7:5c:f8:41:cb:ad:2c:3b: df:58:d4:48:ab:e1:71:67:f1:a9:c2:27:8f:b5:be:ac:bc:e4: 5f:fd:b9:9e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUf/2RUDlH9ZNRO9fA/SVWDSrd+14wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUxMDQyWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNWNlNTkyOGUyMmI2ZjRiZTgwZWJmZWQ2NDgzNTlkMWMy YzUyYTZkYzM2OTAwN2FhZjdkY2I0YjAxNWIxNjVjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh8Ik0hrjGScCdzgAi+JTUX0YZgyt5Git+IjG1EUla/83q 3g8lTV7/JGoA7YDQd4QT2ra4xwkGFz1OfWZ5gYsbyXYQVE/uXsDC74gK2sWfRenI emDVmC8kmKlHQClflUlMboslFrC3mPUEsWT9GOal9lApi8FiqAeK6QRCWeyYkhm5 k2rtXznZSEJ1F6WLXSgGky82lfNLpy29gAp+jx6Wxb92XZSBKBlMIftwSI5dEfXo T8SnptrQjqQpzYD7lmirH8c/cXfBeGH3hLXsQHqBW9m4gcPHUuBxaO4pmbxSLQAI Enri50bTWeidKFDnODtG6a3ipTJVLpoDKyQTjcz9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUt27U6ZpPuyW7AHV932R9A7xA8bUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU2NTI3NzI3LTExMWQtNGQ0YS05ZGEzLTFlOGQ2OGUxNWE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBABL9OC5auN+Hc6goiixO+CPL kiJKF1Yjw0MtmVY76ZsYmllHcV+iYQsTO1Q/lCkglykmiTMtRFnGOmPjkR1G3JMr kR/1WG45zu2muJshHDmDriMBYKANvSXqgZDddeSkyg7MBONZ5AbwRqrLVeaL6+mp rDhQd+HRC4XYtx65cCqWr5H2hkMUjF/xPxzBv+DvMdIvCw2QHCz8rypHczp7BKin xf3V3lSEymwwlcIGKbcEuryWi+0O5cC/PXjMZOJlpsZbDVGP439jmsiBPc/7Ge6H /6vVD3aCRnsh8R13cwCst87XXPhBy60sO99Y1Eir4XFn8anCJ4+1vqy85F/9uZ4= -----END CERTIFICATE-----Generated at Sun Mar 1 22:03:24 2026 by rpki-client