$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa File: 644f882a-d42c-4c76-bb70-882838f6e3e0.roa (raw, json) Hash identifier: ZoBfooe/rQTkkVRmHd6zYR0efowO8qxG55UffgINHqQ= Subject key identifier: 58:0D:4C:05:6A:1D:82:A0:5A:C3:07:3C:55:27:7B:D1:F0:5C:C5:BC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 368B0D654F05BF04B7831036F3340847F762D464 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa Signing time: Sat 28 Feb 2026 02:00:04 +0000 ROA not before: Sat 28 Feb 2026 02:00:04 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:8b:0d:65:4f:05:bf:04:b7:83:10:36:f3:34:08:47:f7:62:d4:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 02:00:04 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=0dd2195d9a570f31a3a42232e100d523fec4c6f4e1d7b6f95e348ea0d9e2d53b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fc:82:26:df:e9:54:ee:70:1d:53:f3:77:68: 5c:dc:2b:6b:6b:5b:38:c7:fc:20:75:41:38:13:b9: 09:ea:9b:e4:bb:c1:d3:81:f3:59:90:b7:5f:aa:46: f8:83:da:dd:fe:db:c2:29:fc:2f:63:ae:c8:98:f2: f8:df:51:ed:ad:a2:4a:bf:a3:f8:0b:4d:d7:98:81: fd:a9:73:b0:b9:31:d8:67:bb:b7:e0:75:68:fd:7a: 14:46:2e:e1:29:df:9c:38:be:c9:aa:0f:5c:cc:40: ab:e0:db:22:a6:c4:49:d3:a3:ef:ba:77:c6:9b:7d: 76:b8:e2:a8:74:0b:c1:8b:19:2e:39:89:a9:25:67: aa:39:27:c5:38:dd:43:27:01:77:ad:b3:02:48:81: af:b8:b0:9a:cb:df:1b:ba:8b:60:e6:34:59:18:69: 80:97:c8:22:96:4d:b3:be:9c:4a:7b:80:12:75:59: 45:a3:19:57:c0:25:e1:37:b6:0a:1b:12:ed:93:49: b2:11:0c:32:fb:01:47:95:a0:20:7b:22:8b:f1:26: 8e:c1:a1:7e:9d:a7:9b:f2:49:6b:16:27:21:a0:b7: ff:97:59:79:32:23:47:25:e8:a3:67:5f:f3:9a:ac: 9d:80:7f:b3:c7:41:0c:9b:5e:64:86:ff:70:e4:79: a3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:0D:4C:05:6A:1D:82:A0:5A:C3:07:3C:55:27:7B:D1:F0:5C:C5:BC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/40 Signature Algorithm: sha256WithRSAEncryption 2f:63:ef:b4:aa:f6:81:3d:45:7e:2b:d0:b5:5c:cd:a9:c5:08: 11:80:b6:a9:6e:84:e2:5e:05:a3:99:3c:70:3f:e3:86:a0:23: 3c:f9:55:ef:d0:ca:22:b9:bc:c1:3c:75:ea:0b:fb:02:37:fb: a5:0e:ed:1b:99:e6:52:d3:e6:80:47:66:ef:00:3a:24:cd:90: 5b:66:1a:13:ff:aa:62:90:ff:68:85:ed:1e:33:c9:2c:72:bc: 75:67:de:50:bf:c2:a2:14:14:08:0e:2a:b7:66:cb:22:d1:17: ad:26:b2:6a:74:0d:c4:f6:e4:b0:c5:b6:79:94:60:73:05:0d: 3d:c6:c6:2f:13:cd:0a:b4:5a:5e:11:42:51:c8:e4:9d:38:8e: c0:db:bf:e0:3a:6c:81:93:70:5a:d1:91:45:92:65:d6:88:9a: 38:50:70:6d:05:9e:8e:7b:bb:58:f5:81:3a:24:0a:0f:bc:4c: 4b:01:08:22:df:8f:6a:f0:70:d5:01:c4:09:e6:5f:49:d7:0d: fc:03:e0:8b:d1:52:13:fe:9a:71:b1:89:f7:00:c9:ca:78:7d: bd:a5:f9:18:53:80:b0:15:84:7f:e7:dd:8b:c5:51:16:1c:e3: a4:8f:eb:91:a7:10:c2:a0:73:30:27:c6:66:ed:f9:01:a3:05: cb:46:b8:d7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNosNZU8FvwS3gxA28zQIR/di1GQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDIwMDA0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZGQyMTk1ZDlhNTcwZjMxYTNhNDIyMzJlMTAwZDUyM2Zl YzRjNmY0ZTFkN2I2Zjk1ZTM0OGVhMGQ5ZTJkNTNiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM/IIm3+lU7nAdU/N3aFzcK2trWzjH/CB1QTgTuQnqm+S7 wdOB81mQt1+qRviD2t3+28Ip/C9jrsiY8vjfUe2tokq/o/gLTdeYgf2pc7C5Mdhn u7fgdWj9ehRGLuEp35w4vsmqD1zMQKvg2yKmxEnTo++6d8abfXa44qh0C8GLGS45 iaklZ6o5J8U43UMnAXetswJIga+4sJrL3xu6i2DmNFkYaYCXyCKWTbO+nEp7gBJ1 WUWjGVfAJeE3tgobEu2TSbIRDDL7AUeVoCB7IovxJo7BoX6dp5vySWsWJyGgt/+X WXkyI0cl6KNnX/OarJ2Af7PHQQybXmSG/3DkeaMLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUWA1MBWodgqBawwc8VSd70fBcxbwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY0NGY4ODJhLWQ0MmMtNGM3Ni1iYjcwLTg4MjgzOGY2ZTNlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75jANBgkqhkiG9w0BAQsFAAOCAQEAL2PvtKr2gT1FfivQtVzNqcUI EYC2qW6E4l4Fo5k8cD/jhqAjPPlV79DKIrm8wTx16gv7Ajf7pQ7tG5nmUtPmgEdm 7wA6JM2QW2YaE/+qYpD/aIXtHjPJLHK8dWfeUL/CohQUCA4qt2bLItEXrSayanQN xPbksMW2eZRgcwUNPcbGLxPNCrRaXhFCUcjknTiOwNu/4DpsgZNwWtGRRZJl1oia OFBwbQWejnu7WPWBOiQKD7xMSwEIIt+PavBw1QHECeZfSdcN/APgi9FSE/6acbGJ 9wDJynh9vaX5GFOAsBWEf+fdi8VRFhzjpI/rkacQwqBzMCfGZu35AaMFy0a41w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:13:16 2026 by rpki-client