$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa File: 64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa (raw, json) Hash identifier: bGvEH+3kH5JeVvW6cxGIfL4AnbLBN1ESbTYHv004oVs= Subject key identifier: A8:85:F3:DE:BF:3B:BC:24:62:1D:AF:51:EE:E9:29:EF:80:84:85:D4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 123542F9D7E9595DD32290BF8A39CD255B21ED84 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa Signing time: Sat 28 Feb 2026 05:10:42 +0000 ROA not before: Sat 28 Feb 2026 05:10:42 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e300::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:35:42:f9:d7:e9:59:5d:d3:22:90:bf:8a:39:cd:25:5b:21:ed:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:10:42 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=d184407ea4fe3aabc28ebcc89635dc65a52462982827eeb1c06130b46155dab5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:04:24:76:ac:91:bf:bc:e4:ae:02:48:f9:9c: 1e:1f:17:31:3c:a2:fa:af:84:76:0e:d8:d1:77:c9: c7:2d:17:b8:ed:15:fa:0b:55:2d:87:db:18:a9:35: 1b:f4:fc:14:6f:b1:a9:95:f3:36:2f:b5:ad:68:47: 29:be:7c:46:bd:20:a9:62:f8:20:8a:9c:5d:f8:31: 17:9e:ce:8a:8e:36:12:7d:cc:3b:f2:39:98:25:31: 05:76:b3:6c:71:9a:91:2d:ea:2f:16:9a:06:4b:c2: a9:32:15:b3:fd:58:38:e2:9c:b9:f7:0a:f7:fa:50: 71:de:9a:ef:a2:a6:9e:dc:b2:69:d6:86:4b:6f:4e: 3e:86:50:46:74:5c:88:71:db:39:f1:c0:e7:4d:56: 6f:23:c7:3d:92:46:f6:70:31:2d:b5:2e:69:7c:ed: fb:17:63:c2:52:e7:35:3c:df:c7:f6:b3:16:cc:f8: 21:f9:c1:6e:91:9c:ae:14:26:13:5e:4f:ce:7b:41: 7f:4b:d7:c3:85:11:3c:3f:cf:6d:3f:5f:d1:1f:9d: 8d:fd:d8:54:ac:3c:37:de:e7:d4:9c:41:b6:c2:b2: 41:ed:e2:3b:0f:a9:bf:bc:82:d2:68:fe:74:31:59: 28:99:79:b6:9a:73:27:8e:f1:d6:16:99:bd:ae:19: 55:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:85:F3:DE:BF:3B:BC:24:62:1D:AF:51:EE:E9:29:EF:80:84:85:D4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/42 Signature Algorithm: sha256WithRSAEncryption 31:e4:ef:31:b4:59:9d:4e:b0:14:a3:bb:84:86:ad:e6:e4:08: 53:ae:4e:a4:70:8c:9c:30:f5:53:0e:f5:b9:02:92:8b:44:db: bf:2b:eb:49:cc:d8:e6:ad:3a:b5:a6:55:1c:29:0d:08:6f:7e: 6d:34:c4:24:45:a9:0c:29:fb:0d:b1:f3:24:22:d8:ca:77:a9: ac:f5:6e:7b:32:a6:c1:11:bc:07:9d:7a:fe:5d:4c:32:e6:8e: ff:09:ef:8f:70:f0:cb:1a:1b:23:de:52:e3:9a:13:60:d7:b8: 4e:9e:9f:78:01:20:11:33:e6:39:08:e0:59:e8:46:5e:29:1c: f4:0e:bf:11:83:b5:5d:c8:da:d4:67:56:56:8a:73:fb:66:32: cb:02:48:13:40:a4:78:12:6b:1d:6d:ef:76:15:8d:3f:26:94: 5d:95:d7:9e:c1:df:ab:e0:9c:9a:36:3b:7d:73:2b:d6:02:71: b2:5a:00:47:d3:dd:08:d2:a6:08:d9:42:74:18:8f:88:a0:6c: d7:e6:8e:1b:2d:60:eb:c4:78:d3:44:45:cd:19:d6:5b:83:da: da:66:93:7a:2c:c2:55:69:70:fa:ee:c5:bb:fa:d4:0d:a5:dd: 38:a4:52:5f:f3:9d:56:f4:b8:03:af:da:d7:b3:02:92:84:0b: 32:c9:11:fe -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEjVC+dfpWV3TIpC/ijnNJVsh7YQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUxMDQyWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTg0NDA3ZWE0ZmUzYWFiYzI4ZWJjYzg5NjM1ZGM2NWE1 MjQ2Mjk4MjgyN2VlYjFjMDYxMzBiNDYxNTVkYWI1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsBCR2rJG/vOSuAkj5nB4fFzE8ovqvhHYO2NF3ycctF7jt FfoLVS2H2xipNRv0/BRvsamV8zYvta1oRym+fEa9IKli+CCKnF34MReezoqONhJ9 zDvyOZglMQV2s2xxmpEt6i8WmgZLwqkyFbP9WDjinLn3Cvf6UHHemu+ipp7csmnW hktvTj6GUEZ0XIhx2znxwOdNVm8jxz2SRvZwMS21Lml87fsXY8JS5zU838f2sxbM +CH5wW6RnK4UJhNeT857QX9L18OFETw/z20/X9EfnY392FSsPDfe59ScQbbCskHt 4jsPqb+8gtJo/nQxWSiZebaacyeO8dYWmb2uGVXnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqIXz3r87vCRiHa9R7ukp74CEhdQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY0ZGNlMzcxLTM3YjItNGZhYi05ZDg1LTA1ZWE3ZjJjMWFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74wAwDQYJKoZIhvcNAQELBQADggEBADHk7zG0WZ1OsBSju4SGrebk CFOuTqRwjJww9VMO9bkCkotE278r60nM2OatOrWmVRwpDQhvfm00xCRFqQwp+w2x 8yQi2Mp3qaz1bnsypsERvAedev5dTDLmjv8J749w8MsaGyPeUuOaE2DXuE6en3gB IBEz5jkI4FnoRl4pHPQOvxGDtV3I2tRnVlaKc/tmMssCSBNApHgSax1t73YVjT8m lF2V157B36vgnJo2O31zK9YCcbJaAEfT3QjSpgjZQnQYj4igbNfmjhstYOvEeNNE Rc0Z1luD2tpmk3oswlVpcPruxbv61A2l3TikUl/znVb0uAOv2tezApKECzLJEf4= -----END CERTIFICATE-----Generated at Sun Mar 1 23:41:09 2026 by rpki-client