$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5aab2439-03d3-439a-885f-e2f641886f3d.roa File: 5aab2439-03d3-439a-885f-e2f641886f3d.roa (raw, json) Hash identifier: tQSfraqjfMg1qZ3qrqasaJTipx6PXtl/oQHYS6R5b6g= Subject key identifier: DD:46:EF:B4:C5:81:01:93:23:23:E6:54:EB:AA:54:49:D7:3B:C3:39 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6E2EB0B675B247364BB8CF3CEA6CA007B89DD72F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5aab2439-03d3-439a-885f-e2f641886f3d.roa Signing time: Fri 13 Feb 2026 15:10:13 +0000 ROA not before: Fri 13 Feb 2026 15:10:13 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:2e:b0:b6:75:b2:47:36:4b:b8:cf:3c:ea:6c:a0:07:b8:9d:d7:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 13 15:10:13 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=55d1f6c382c61cb0b5767fa15ca06abcc75c1114d65768b6dfd18d0186cfd46a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6e:b1:85:6a:0a:58:7d:df:44:6a:cf:9f:11: d1:71:87:50:11:92:a9:b3:3b:cd:2b:71:14:67:fa: 85:09:ef:6b:57:7e:57:9d:33:29:23:14:23:d7:c3: 28:8c:26:a5:2e:3b:6c:7d:1c:73:56:b6:bf:ef:ff: 1e:92:46:54:dc:62:4c:0a:af:ae:db:d2:e3:4f:36: ef:38:41:8d:8b:4e:79:79:48:0b:70:d8:3a:ce:53: ca:5a:09:01:3b:96:35:2d:97:2b:80:1e:80:c7:04: fd:f0:53:49:cc:e3:b2:46:82:94:2b:ff:ec:4c:eb: 81:eb:7b:ab:45:33:84:ac:08:e9:60:a9:11:e8:1a: 64:d0:3f:83:e4:31:e3:30:20:75:5c:00:27:dc:f3: 17:c5:e0:ff:05:98:61:63:86:f6:0f:8c:76:41:04: 9b:3b:52:fe:e8:95:63:50:30:1f:64:70:ab:df:4f: 47:22:d8:c8:d9:ab:42:b1:73:20:6f:7b:ad:38:b9: d9:33:29:45:e9:82:fb:fa:f7:24:75:ea:45:a8:23: 3c:4d:90:4c:dc:35:e3:c4:f8:f2:27:19:0d:dc:5b: 6a:8a:c7:74:2c:31:b9:45:38:e0:8f:aa:9e:be:71: cf:58:cb:d1:60:b8:c7:96:5c:69:89:73:ce:7b:43: 97:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:46:EF:B4:C5:81:01:93:23:23:E6:54:EB:AA:54:49:D7:3B:C3:39 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5aab2439-03d3-439a-885f-e2f641886f3d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f020::/44 Signature Algorithm: sha256WithRSAEncryption 43:f3:97:6a:e3:29:2d:58:fa:a0:b7:6e:cc:c5:aa:02:b4:09: 0b:c3:76:2b:eb:85:17:d5:4a:88:85:a0:e4:9a:6e:f3:8f:04: 0c:c1:9d:08:45:60:9d:92:00:e2:e0:c7:8b:c6:62:5c:02:d1: e0:7d:0b:f1:2e:aa:c0:a7:82:ee:28:ea:49:3a:1d:26:dd:f8: 2d:b5:1b:5e:a7:5f:59:23:3f:e7:23:13:bf:e0:85:8a:23:ea: e4:40:7f:e2:df:de:34:5e:72:95:0d:1b:98:05:ca:c6:eb:08: 0c:b9:86:c7:52:14:18:cc:70:d4:ca:8e:31:e8:62:19:5e:0c: 4f:97:0e:dd:1d:4b:8d:f2:cb:28:8f:bd:3c:da:10:b2:da:46: aa:d4:9c:53:fe:26:95:e2:d9:13:92:b1:aa:d3:f9:32:35:83: bd:d8:31:5a:3f:b4:1c:b2:a6:c9:e2:39:b5:a2:1f:18:7b:da: e7:2e:ee:94:c3:68:ea:6a:b5:2b:70:31:e9:ca:47:13:5a:c2: 18:dc:25:11:bd:a4:43:cd:a8:5f:93:ca:64:b6:20:5a:36:fd: bb:16:04:1a:47:96:38:8d:21:eb:cc:5e:c8:5e:ed:49:07:9d: f4:0d:6b:67:6d:26:97:0f:fc:69:72:67:2f:ed:3f:ce:7b:6b: 88:b4:e5:62 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbi6wtnWyRzZLuM886mygB7id1y8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjEzMTUxMDEzWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NWQxZjZjMzgyYzYxY2IwYjU3NjdmYTE1Y2EwNmFiY2M3 NWMxMTE0ZDY1NzY4YjZkZmQxOGQwMTg2Y2ZkNDZhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8brGFagpYfd9Eas+fEdFxh1ARkqmzO80rcRRn+oUJ72tX fledMykjFCPXwyiMJqUuO2x9HHNWtr/v/x6SRlTcYkwKr67b0uNPNu84QY2LTnl5 SAtw2DrOU8paCQE7ljUtlyuAHoDHBP3wU0nM47JGgpQr/+xM64Hre6tFM4SsCOlg qRHoGmTQP4PkMeMwIHVcACfc8xfF4P8FmGFjhvYPjHZBBJs7Uv7olWNQMB9kcKvf T0ci2MjZq0KxcyBve604udkzKUXpgvv69yR16kWoIzxNkEzcNePE+PInGQ3cW2qK x3QsMblFOOCPqp6+cc9Yy9FguMeWXGmJc857Q5f/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3UbvtMWBAZMjI+ZU66pUSdc7wzkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzVhYWIyNDM5LTAzZDMtNDM5YS04ODVmLWUyZjY0MTg4NmYzZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78CAwDQYJKoZIhvcNAQELBQADggEBAEPzl2rjKS1Y+qC3bszFqgK0 CQvDdivrhRfVSoiFoOSabvOPBAzBnQhFYJ2SAOLgx4vGYlwC0eB9C/EuqsCngu4o 6kk6HSbd+C21G16nX1kjP+cjE7/ghYoj6uRAf+Lf3jRecpUNG5gFysbrCAy5hsdS FBjMcNTKjjHoYhleDE+XDt0dS43yyyiPvTzaELLaRqrUnFP+JpXi2ROSsarT+TI1 g73YMVo/tByypsniObWiHxh72ucu7pTDaOpqtStwMenKRxNawhjcJRG9pEPNqF+T ymS2IFo2/bsWBBpHljiNIevMXshe7UkHnfQNa2dtJpcP/GlyZy/tP857a4i05WI= -----END CERTIFICATE-----Generated at Sun Mar 1 23:39:57 2026 by rpki-client