$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6a919a63-0d22-4f29-acd1-5dd71f681c7a.roa File: 6a919a63-0d22-4f29-acd1-5dd71f681c7a.roa (raw, json) Hash identifier: F2IPPkZTX6xoSm59wi8exuGOcTJaYacZTETbejJneQM= Subject key identifier: EF:79:E2:2E:F9:25:00:6D:D1:45:70:A2:4A:A6:7C:47:62:52:24:A8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0204D0BD4ADB226199BF3BC9B6C315F1E1B7F992 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6a919a63-0d22-4f29-acd1-5dd71f681c7a.roa Signing time: Sun 01 Mar 2026 01:00:10 +0000 ROA not before: Sun 01 Mar 2026 01:00:10 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f108::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:04:d0:bd:4a:db:22:61:99:bf:3b:c9:b6:c3:15:f1:e1:b7:f9:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 01:00:10 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=64a15787f51d17ac2c7f395f736745f6c8c0ba63b4269f55d6640328552ae3b1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9a:34:1d:ec:ca:67:16:41:d9:e5:e3:98:30: df:e5:d4:b7:fe:8c:c7:aa:c6:6a:aa:fe:db:84:0d: 99:b1:33:46:09:6e:58:f1:cc:40:ae:82:77:43:66: 53:fe:39:bb:3b:e7:d8:92:f1:a2:44:bb:28:70:0c: cc:4a:bd:cf:c2:48:87:64:66:52:d4:2e:c8:b8:92: e7:37:44:c9:48:66:8b:ba:7f:4f:88:ff:73:16:77: 7e:01:74:5f:a0:cb:16:63:fc:a6:05:24:a2:ae:2c: 85:4b:fc:0f:8a:5c:5a:df:90:68:6b:14:8e:b9:35: 0e:32:1d:08:ef:a0:e7:dd:df:9e:03:13:97:76:0d: 14:99:b2:fe:84:0f:b2:26:cb:98:ed:5f:16:10:e4: bf:c0:4b:4f:30:be:c3:aa:fe:26:d8:d0:ac:9a:b5: e8:dd:48:5c:e2:a2:73:5a:05:bb:26:e2:b2:b8:aa: 65:a3:db:8c:ec:88:3b:d1:6e:e8:41:60:40:f0:82: 44:45:e2:ba:52:8a:eb:a0:cd:ca:f6:94:84:28:87: 68:75:5e:4d:8f:e5:3b:70:27:69:c1:e1:83:4f:d4: 9c:74:6d:ff:fe:49:53:b6:dc:43:c7:21:6b:af:4f: 00:3c:f5:59:7f:bd:f2:6c:41:4e:a6:0c:eb:79:7e: bb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:79:E2:2E:F9:25:00:6D:D1:45:70:A2:4A:A6:7C:47:62:52:24:A8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6a919a63-0d22-4f29-acd1-5dd71f681c7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f108::/48 Signature Algorithm: sha256WithRSAEncryption 64:e5:de:ef:55:a4:51:bb:54:49:d3:e5:e4:bf:e3:13:02:1f: 72:fd:94:6c:5c:d9:da:08:c3:a9:b3:41:7c:bc:82:a2:a1:09: e0:ba:1e:43:9a:85:4d:af:88:cb:d7:da:32:8a:cc:08:08:9c: 5d:7a:90:70:3f:d2:40:4c:87:28:f1:ee:f2:55:5b:1a:fb:0e: 26:f4:5f:55:23:7a:d1:28:56:2d:56:c3:62:9f:76:9f:51:78: ad:73:12:08:15:68:8d:80:05:af:cb:50:56:a7:a0:7a:6f:c1: 52:0b:61:99:45:c2:9e:b8:ac:9c:b4:a6:ca:3b:6b:5e:62:1e: fc:e3:3f:a8:7e:91:5a:e4:c9:35:f2:54:1a:e0:a6:ad:56:c7: d7:fc:f0:9b:14:82:bc:61:a3:58:83:23:6e:61:82:ca:c6:3a: 54:cd:88:7a:63:93:dd:32:35:f6:71:72:2e:c8:27:ce:37:bd: 43:06:57:ce:6d:f8:dd:81:d3:b1:84:86:3d:29:8f:02:ee:ca: 80:17:a9:38:fa:c9:80:bf:0e:44:11:da:ea:d9:49:ea:c6:51: d5:6d:19:5b:7a:2a:07:b8:ce:ca:a5:52:cf:9a:3c:9e:94:86: 63:e4:9e:41:33:d7:10:94:88:4d:44:46:f5:3e:c3:0b:1a:96: d5:21:c3:a9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAgTQvUrbImGZvzvJtsMV8eG3+ZIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDEwMDEwWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGExNTc4N2Y1MWQxN2FjMmM3ZjM5NWY3MzY3NDVmNmM4 YzBiYTYzYjQyNjlmNTVkNjY0MDMyODU1MmFlM2IxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQmjQd7MpnFkHZ5eOYMN/l1Lf+jMeqxmqq/tuEDZmxM0YJ bljxzECugndDZlP+Obs759iS8aJEuyhwDMxKvc/CSIdkZlLULsi4kuc3RMlIZou6 f0+I/3MWd34BdF+gyxZj/KYFJKKuLIVL/A+KXFrfkGhrFI65NQ4yHQjvoOfd354D E5d2DRSZsv6ED7Imy5jtXxYQ5L/AS08wvsOq/ibY0KyatejdSFzionNaBbsm4rK4 qmWj24zsiDvRbuhBYEDwgkRF4rpSiuugzcr2lIQoh2h1Xk2P5TtwJ2nB4YNP1Jx0 bf/+SVO23EPHIWuvTwA89Vl/vfJsQU6mDOt5frtXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU73niLvklAG3RRXCiSqZ8R2JSJKgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzZhOTE5YTYzLTBkMjItNGYyOS1hY2QxLTVkZDcxZjY4MWM3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QgwDQYJKoZIhvcNAQELBQADggEBAGTl3u9VpFG7VEnT5eS/4xMC H3L9lGxc2doIw6mzQXy8gqKhCeC6HkOahU2viMvX2jKKzAgInF16kHA/0kBMhyjx 7vJVWxr7Dib0X1UjetEoVi1Ww2Kfdp9ReK1zEggVaI2ABa/LUFanoHpvwVILYZlF wp64rJy0pso7a15iHvzjP6h+kVrkyTXyVBrgpq1Wx9f88JsUgrxho1iDI25hgsrG OlTNiHpjk90yNfZxci7IJ843vUMGV85t+N2B07GEhj0pjwLuyoAXqTj6yYC/DkQR 2urZSerGUdVtGVt6Kge4zsqlUs+aPJ6UhmPknkEz1xCUiE1ERvU+wwsaltUhw6k= -----END CERTIFICATE-----Generated at Sun Mar 1 22:10:41 2026 by rpki-client