$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d504583-8250-4693-a46d-7a40db5add33.roa File: 6d504583-8250-4693-a46d-7a40db5add33.roa (raw, json) Hash identifier: FTfs+7mu11dFanyZ96j/z+6io4zuVtmaCvXRvyXn8j8= Subject key identifier: 34:72:A4:5F:9C:3F:CB:7D:C0:DA:F1:0E:D5:41:13:92:E3:C9:C4:16 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 216EE3FCD4830F4782C50D16848A32269CDFE831 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d504583-8250-4693-a46d-7a40db5add33.roa Signing time: Sat 28 Feb 2026 05:00:26 +0000 ROA not before: Sat 28 Feb 2026 05:00:26 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:6e:e3:fc:d4:83:0f:47:82:c5:0d:16:84:8a:32:26:9c:df:e8:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:26 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=df9b33c4c85125bd21683943fcee723abddf51217209fbaa6b0466d54b4511f2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:81:21:47:bc:c5:cf:f8:c2:e4:3f:49:94:41: c3:8d:e6:12:99:c9:39:40:36:81:45:c4:dd:f0:10: ed:4d:59:b0:e9:a5:9b:40:7a:db:dc:cc:79:2d:42: ef:b5:52:4a:e2:8c:ca:df:df:f3:8f:09:28:f2:57: d2:0c:85:5a:74:86:ab:b6:bf:ee:bb:5d:bc:ef:05: 3c:c3:39:aa:04:6d:fd:39:d7:c7:ff:d2:d9:c0:a8: aa:06:f3:6c:5d:ec:e3:db:ed:5a:6b:16:15:e0:f6: b4:6b:b9:9b:84:8e:69:a2:4e:81:c8:47:28:d3:d4: ca:e0:d6:0b:58:e3:c5:60:a4:b2:6d:bc:0d:ee:a9: 11:97:b2:26:e9:af:82:47:a7:ed:18:c2:fb:3c:d9: 17:e5:02:a0:98:19:2a:e3:37:7f:c8:13:96:3d:ce: 32:f1:b0:72:5b:c7:2f:73:b1:e3:13:8b:c5:ba:68: fb:99:41:7a:4d:85:f1:a2:29:dd:ea:63:5b:53:79: 32:2e:cb:20:15:24:c1:93:07:0d:f5:15:e4:05:ca: 45:aa:0e:cb:7d:34:51:1f:a6:82:05:46:64:e1:70: 90:6d:02:96:e1:5a:f1:d6:d4:eb:20:be:67:96:88: f5:56:73:88:70:ef:06:fe:99:39:87:94:3e:dd:d8: c8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:72:A4:5F:9C:3F:CB:7D:C0:DA:F1:0E:D5:41:13:92:E3:C9:C4:16 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d504583-8250-4693-a46d-7a40db5add33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/40 Signature Algorithm: sha256WithRSAEncryption 5f:be:c1:38:93:5b:cb:cc:b6:37:a9:56:47:de:8c:e5:1a:04: 0b:b8:2d:f5:33:2f:ed:88:20:ee:13:d6:19:65:35:89:15:7e: 0d:40:37:61:9d:b5:48:51:a6:ca:fe:0c:b4:50:9b:bb:f6:38: 26:1d:ee:74:32:94:15:4f:db:d8:19:33:40:ce:e1:df:3f:af: a7:bf:24:4a:7e:10:e5:8f:e9:21:33:2b:fa:f8:f5:56:74:9a: de:2e:f2:0b:5f:9f:9f:f2:59:55:e4:54:e3:19:23:5b:4e:ad: 19:09:22:e2:c8:9f:e6:06:f4:8c:34:fd:19:38:7f:bb:a0:59: ab:ce:0b:de:ee:06:1a:48:9d:99:e1:d7:1d:5a:98:d9:62:e2: d7:44:3b:67:b8:8e:41:21:47:f3:aa:f0:f8:de:c1:ef:99:cc: c5:4c:f6:dc:c6:08:db:01:56:9c:48:76:6c:a5:7d:82:4b:77: 5b:83:bf:11:8e:b5:f9:45:42:96:98:3f:3d:e3:b1:41:63:d2: 33:32:c5:3a:c7:b0:2f:97:d1:f9:04:43:7f:08:a8:b2:2b:77: ab:57:54:26:64:37:e0:b4:cb:fd:3c:3f:d2:b2:1d:2b:7c:aa: dd:84:cc:13:7b:b4:6e:bb:70:3c:7d:20:e5:25:03:be:9e:92: c8:3d:d6:ad -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIW7j/NSDD0eCxQ0WhIoyJpzf6DEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDI2WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjliMzNjNGM4NTEyNWJkMjE2ODM5NDNmY2VlNzIzYWJk ZGY1MTIxNzIwOWZiYWE2YjA0NjZkNTRiNDUxMWYyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7gSFHvMXP+MLkP0mUQcON5hKZyTlANoFFxN3wEO1NWbDp pZtAetvczHktQu+1UkrijMrf3/OPCSjyV9IMhVp0hqu2v+67XbzvBTzDOaoEbf05 18f/0tnAqKoG82xd7OPb7VprFhXg9rRruZuEjmmiToHIRyjT1Mrg1gtY48VgpLJt vA3uqRGXsibpr4JHp+0Ywvs82RflAqCYGSrjN3/IE5Y9zjLxsHJbxy9zseMTi8W6 aPuZQXpNhfGiKd3qY1tTeTIuyyAVJMGTBw31FeQFykWqDst9NFEfpoIFRmThcJBt ApbhWvHW1OsgvmeWiPVWc4hw7wb+mTmHlD7d2MgvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUNHKkX5w/y33A2vEO1UETkuPJxBYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzZkNTA0NTgzLTgyNTAtNDY5My1hNDZkLTdhNDBkYjVhZGQzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75TANBgkqhkiG9w0BAQsFAAOCAQEAX77BOJNby8y2N6lWR96M5RoE C7gt9TMv7Ygg7hPWGWU1iRV+DUA3YZ21SFGmyv4MtFCbu/Y4Jh3udDKUFU/b2Bkz QM7h3z+vp78kSn4Q5Y/pITMr+vj1VnSa3i7yC1+fn/JZVeRU4xkjW06tGQki4sif 5gb0jDT9GTh/u6BZq84L3u4GGkidmeHXHVqY2WLi10Q7Z7iOQSFH86rw+N7B75nM xUz23MYI2wFWnEh2bKV9gkt3W4O/EY61+UVClpg/PeOxQWPSMzLFOsewL5fR+QRD fwiosit3q1dUJmQ34LTL/Tw/0rIdK3yq3YTME3u0brtwPH0g5SUDvp6SyD3WrQ== -----END CERTIFICATE-----Generated at Mon Mar 2 17:54:06 2026 by rpki-client