$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/58ffb131-541b-4220-8d21-6febed79ba47.roa File: 58ffb131-541b-4220-8d21-6febed79ba47.roa (raw, json) Hash identifier: 6WTAqScf8t/h1Itqn26bCeU22CQSfzKdEXYcGns75qo= Subject key identifier: 0A:48:03:63:1F:73:AB:76:0F:83:62:F9:23:85:80:8B:A3:A7:C8:D7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2E4BF25F85D0CD735DB1C91CCD454A549A7F0425 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/58ffb131-541b-4220-8d21-6febed79ba47.roa Signing time: Tue 24 Feb 2026 00:30:10 +0000 ROA not before: Tue 24 Feb 2026 00:30:10 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:b0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:4b:f2:5f:85:d0:cd:73:5d:b1:c9:1c:cd:45:4a:54:9a:7f:04:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 24 00:30:10 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=63cfa373a82da0f4f335df2319f67e4bf262a6394465ceb4ee0631ddc2496555, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7e:c8:70:4b:3e:03:90:d6:71:a3:6d:f4:21: c6:03:38:72:91:30:16:7c:a0:1b:3f:98:90:d4:05: 78:12:ac:86:31:ba:c0:eb:3e:64:ea:a0:fa:a4:02: 86:82:99:e5:62:c5:d1:f9:18:6e:85:56:a3:25:02: 13:9e:fe:80:db:c4:89:01:d1:98:92:0c:19:8f:9a: 76:35:8c:e4:4d:e9:7b:69:d3:80:f5:1c:1f:56:c4: 4f:62:90:c9:fb:8e:12:bb:58:8f:8d:b4:26:3d:56: 27:e2:9b:9d:25:2e:cf:65:b5:f8:7f:ce:54:ad:2b: 5a:5e:41:2b:ee:7e:19:a9:6f:2f:ac:37:59:59:58: 30:85:6a:58:f2:31:56:65:05:bd:5d:d7:95:d7:c5: 14:a3:79:c3:8e:b0:fb:6b:ed:0e:c8:e4:ed:67:fe: e5:bc:1b:82:29:83:d7:08:65:02:6b:fd:36:c5:de: ec:a8:c3:80:6a:bd:81:26:25:b0:14:66:7d:c9:7d: d2:0b:0c:1d:0c:fb:2b:45:fa:f9:b8:02:47:f8:54: 97:c3:5c:d4:bd:7f:c2:c5:4f:ee:b6:43:2a:91:7e: 6d:9a:e6:89:fd:42:b0:16:8b:5c:eb:f8:d9:be:c4: 72:08:7c:20:c9:87:ed:79:7d:33:b5:2e:ab:3e:7c: b5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:48:03:63:1F:73:AB:76:0F:83:62:F9:23:85:80:8B:A3:A7:C8:D7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/58ffb131-541b-4220-8d21-6febed79ba47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:b0::/44 Signature Algorithm: sha256WithRSAEncryption 5e:c1:20:83:d7:3e:f5:ce:54:c7:01:16:ee:d1:5b:de:72:d5: 16:62:85:cc:cb:a8:87:5a:03:6f:d3:41:22:5d:2c:48:d9:d5: 55:88:b7:16:1a:30:04:93:66:4c:54:8f:27:ea:4e:79:e1:da: 5b:04:ab:41:5a:8b:12:0e:0c:58:75:8f:aa:68:97:96:69:5a: de:90:b4:4f:1d:96:58:d6:33:44:50:03:36:d2:b3:29:a4:fb: ae:a3:db:4b:c8:92:55:a3:9e:9e:10:36:2f:ae:5f:32:dd:ca: 9f:e9:8b:d9:50:20:2e:e5:03:fc:1b:05:4c:67:8b:ac:7d:7f: c0:0f:c3:9a:20:75:26:8d:6a:13:b3:41:da:a2:1a:5d:c0:70: df:af:b1:2b:ee:27:3d:50:9e:62:da:d0:0c:51:76:9f:d0:6e: cf:94:50:ff:d0:f7:49:0f:9b:96:50:1b:53:eb:fd:a9:03:15: 71:c6:b2:ab:9c:29:69:b6:c4:7a:c8:79:36:cb:fd:dd:58:32: b3:a2:54:6d:9b:0e:d3:27:35:6f:1e:f0:5a:07:a0:6c:85:c7: fe:3b:cd:43:11:32:47:1c:04:e6:fc:ed:24:ba:ad:bb:1b:c3: d4:9c:58:7c:65:d2:03:06:57:04:bf:8a:c6:1f:9c:27:d8:85: 5f:31:8a:e6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULkvyX4XQzXNdsckczUVKVJp/BCUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI0MDAzMDEwWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2M2NmYTM3M2E4MmRhMGY0ZjMzNWRmMjMxOWY2N2U0YmYy NjJhNjM5NDQ2NWNlYjRlZTA2MzFkZGMyNDk2NTU1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzfshwSz4DkNZxo230IcYDOHKRMBZ8oBs/mJDUBXgSrIYx usDrPmTqoPqkAoaCmeVixdH5GG6FVqMlAhOe/oDbxIkB0ZiSDBmPmnY1jORN6Xtp 04D1HB9WxE9ikMn7jhK7WI+NtCY9Vifim50lLs9ltfh/zlStK1peQSvufhmpby+s N1lZWDCFaljyMVZlBb1d15XXxRSjecOOsPtr7Q7I5O1n/uW8G4Ipg9cIZQJr/TbF 3uyow4BqvYEmJbAUZn3JfdILDB0M+ytF+vm4Akf4VJfDXNS9f8LFT+62QyqRfm2a 5on9QrAWi1zr+Nm+xHIIfCDJh+15fTO1Lqs+fLXvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCkgDYx9zq3YPg2L5I4WAi6OnyNcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU4ZmZiMTMxLTU0MWItNDIyMC04ZDIxLTZmZWJlZDc5YmE0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwALAwDQYJKoZIhvcNAQELBQADggEBAF7BIIPXPvXOVMcBFu7RW95y 1RZihczLqIdaA2/TQSJdLEjZ1VWItxYaMASTZkxUjyfqTnnh2lsEq0FaixIODFh1 j6pol5ZpWt6QtE8dlljWM0RQAzbSsymk+66j20vIklWjnp4QNi+uXzLdyp/pi9lQ IC7lA/wbBUxni6x9f8APw5ogdSaNahOzQdqiGl3AcN+vsSvuJz1QnmLa0AxRdp/Q bs+UUP/Q90kPm5ZQG1Pr/akDFXHGsqucKWm2xHrIeTbL/d1YMrOiVG2bDtMnNW8e 8FoHoGyFx/47zUMRMkccBOb87SS6rbsbw9ScWHxl0gMGVwS/isYfnCfYhV8xiuY= -----END CERTIFICATE-----Generated at Mon Mar 2 02:48:24 2026 by rpki-client