$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5711ca9f-54b1-42ca-be68-93036263a87f.roa File: 5711ca9f-54b1-42ca-be68-93036263a87f.roa (raw, json) Hash identifier: xVEfm3xRxFuGOfIgA2m4qP1ukMyZGsEWwBwCSf8lR5c= Subject key identifier: 7D:D3:CC:4C:F3:76:D4:45:C2:67:96:11:2C:F5:A2:D3:86:B5:98:5E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 33A6897C15100F6FF39C9D41C65572808734A596 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5711ca9f-54b1-42ca-be68-93036263a87f.roa Signing time: Sun 01 Mar 2026 00:50:10 +0000 ROA not before: Sun 01 Mar 2026 00:50:10 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f10d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a6:89:7c:15:10:0f:6f:f3:9c:9d:41:c6:55:72:80:87:34:a5:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 00:50:10 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=2395f16b40e7e5ea3161cd91f811b67fd530736c7dfca4d84df82a105784edd7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:59:e4:b7:cc:03:24:27:b1:44:5f:8f:b6:85: 1d:90:83:1c:35:a8:e1:62:39:ea:ed:9f:b5:84:0c: 1f:72:2d:f2:55:22:03:16:c0:e9:74:d5:55:e7:9f: c1:63:60:eb:3b:1c:82:4b:e4:ae:3e:6b:49:06:51: fa:d5:2f:b2:de:76:5f:6d:a5:a3:55:cf:61:d8:a5: 60:20:2b:ff:b2:69:57:8d:ea:41:3f:2a:8c:c7:6e: 6d:c4:27:36:3b:bc:74:43:40:17:c3:09:14:f1:84: ea:f1:f5:27:1f:8f:51:93:d4:73:10:e1:43:ce:ef: 29:fe:f0:30:6a:7c:06:9c:19:7a:5b:5b:60:92:74: 20:d7:17:5e:4f:7a:c9:50:1f:94:8c:ba:ae:dd:72: 27:6d:78:d7:39:c6:d0:4f:6e:0f:c1:06:6c:d3:cb: e8:a4:31:18:e9:ec:93:20:0a:4e:3f:bc:fd:a4:f9: 9a:65:c1:f5:06:4b:95:02:24:fa:ab:c8:b6:ac:65: 35:39:44:6a:e0:c8:fc:bf:45:6c:b7:8f:52:d2:81: ab:10:7f:67:46:cc:93:86:d7:3a:b3:f4:41:49:90: af:f2:08:80:33:78:e2:cd:40:61:c0:f0:ed:7d:b6: de:40:6e:11:d0:4f:18:e3:9a:bf:89:c0:dd:f2:d1: 73:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:D3:CC:4C:F3:76:D4:45:C2:67:96:11:2C:F5:A2:D3:86:B5:98:5E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5711ca9f-54b1-42ca-be68-93036263a87f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10d::/48 Signature Algorithm: sha256WithRSAEncryption 07:fb:6d:44:42:c2:99:55:37:ca:61:53:45:bb:9c:16:41:3a: 4f:f8:33:35:7e:4c:c3:d3:de:33:b1:31:d6:09:89:08:a6:1b: 7e:59:94:90:fc:4e:36:b2:4b:e1:dc:c6:11:a3:f2:11:88:63: 7e:a5:09:f3:38:87:c1:22:5d:5a:80:9e:d7:64:1c:0c:82:f3: 5b:19:a0:d8:19:0b:c4:06:72:50:42:ea:81:a4:0a:63:cc:9b: 22:d2:48:ad:92:b4:9c:b0:0b:76:9b:4e:19:9f:16:c4:0f:54: a5:4a:cd:76:db:91:c5:ed:98:32:5a:f9:f7:79:47:3d:94:30: 78:fc:ce:e1:d1:d2:6d:3b:f6:e2:93:ec:52:38:28:6e:eb:79: 65:ea:63:6f:73:1e:55:41:32:0a:40:ba:3e:ad:26:46:f1:58: de:bb:f4:47:5d:d8:f7:40:c5:39:84:1e:18:cd:55:a8:e7:97: 9a:fe:35:6f:46:9a:28:2d:b6:ed:d7:7b:fb:6d:60:b0:c6:c9: f9:1e:f7:ac:64:7a:27:26:0d:aa:1b:3c:87:da:c1:9e:5f:b2: c3:7b:86:ab:73:47:c3:7d:5d:14:2e:69:49:be:91:e3:04:fb: 48:eb:34:7f:4b:35:ae:97:70:3e:78:8f:78:5d:2e:04:19:24: a5:ef:d0:f7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUM6aJfBUQD2/znJ1BxlVygIc0pZYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDA1MDEwWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzk1ZjE2YjQwZTdlNWVhMzE2MWNkOTFmODExYjY3ZmQ1 MzA3MzZjN2RmY2E0ZDg0ZGY4MmExMDU3ODRlZGQ3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsWeS3zAMkJ7FEX4+2hR2Qgxw1qOFiOertn7WEDB9yLfJV IgMWwOl01VXnn8FjYOs7HIJL5K4+a0kGUfrVL7Ledl9tpaNVz2HYpWAgK/+yaVeN 6kE/KozHbm3EJzY7vHRDQBfDCRTxhOrx9Scfj1GT1HMQ4UPO7yn+8DBqfAacGXpb W2CSdCDXF15PeslQH5SMuq7dcidteNc5xtBPbg/BBmzTy+ikMRjp7JMgCk4/vP2k +ZplwfUGS5UCJPqryLasZTU5RGrgyPy/RWy3j1LSgasQf2dGzJOG1zqz9EFJkK/y CIAzeOLNQGHA8O19tt5AbhHQTxjjmr+JwN3y0XODAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfdPMTPN21EXCZ5YRLPWi04a1mF4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU3MTFjYTlmLTU0YjEtNDJjYS1iZTY4LTkzMDM2MjYzYTg3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78Q0wDQYJKoZIhvcNAQELBQADggEBAAf7bURCwplVN8phU0W7nBZB Ok/4MzV+TMPT3jOxMdYJiQimG35ZlJD8TjayS+HcxhGj8hGIY36lCfM4h8EiXVqA ntdkHAyC81sZoNgZC8QGclBC6oGkCmPMmyLSSK2StJywC3abThmfFsQPVKVKzXbb kcXtmDJa+fd5Rz2UMHj8zuHR0m079uKT7FI4KG7reWXqY29zHlVBMgpAuj6tJkbx WN679Edd2PdAxTmEHhjNVajnl5r+NW9Gmigttu3Xe/ttYLDGyfke96xkeicmDaob PIfawZ5fssN7hqtzR8N9XRQuaUm+keME+0jrNH9LNa6XcD54j3hdLgQZJKXv0Pc= -----END CERTIFICATE-----Generated at Sun Mar 1 22:04:39 2026 by rpki-client