$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/701f72a5-fb27-49ca-b3ad-3a60c7c30376.roa File: 701f72a5-fb27-49ca-b3ad-3a60c7c30376.roa (raw, json) Hash identifier: Z2E/JK074DPMwIZ+DyoKsw5F6Zb3usy4uL7cWUj91wE= Subject key identifier: F1:68:5C:3F:89:97:6A:4C:00:D3:D1:B0:CE:30:98:3B:2E:5D:92:3C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0C7B7C1340B5FE4CDF6F6B9D6A4E677447894FC1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/701f72a5-fb27-49ca-b3ad-3a60c7c30376.roa Signing time: Fri 20 Feb 2026 01:30:14 +0000 ROA not before: Fri 20 Feb 2026 01:30:14 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:7b:7c:13:40:b5:fe:4c:df:6f:6b:9d:6a:4e:67:74:47:89:4f:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 20 01:30:14 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=d7ba1a66151c8c83372206b41a48846243ea6c5cd02e54c2bfa2fdbbdfd299c0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:3f:bd:3b:a8:3f:1a:59:0e:ea:26:a5:a8:1d: 71:97:0d:a1:19:40:64:5e:6a:d2:33:60:1b:fe:bb: 2f:c1:3c:d9:ad:de:4e:e6:f4:ca:28:b5:75:f0:28: d8:da:7a:e0:e5:12:6e:b3:4c:28:4b:c8:28:61:2c: 45:a6:07:4a:41:b1:10:86:65:c4:36:38:ad:0b:5a: 18:03:88:3c:85:57:76:55:3b:36:64:0a:c9:b8:0e: fe:98:9d:64:bf:b5:30:ed:e7:40:03:e1:ad:b2:55: 8c:ee:0f:09:44:20:46:68:92:92:62:d1:bc:7d:0a: 71:95:be:ca:0f:66:75:be:99:d1:c2:fd:21:13:90: 3b:ee:d8:01:d6:e4:b5:9a:11:43:9b:5a:ec:ff:e6: 24:b2:9f:71:be:d7:6a:16:be:85:71:14:94:9c:8a: 92:2c:d7:f1:e0:51:3f:9b:ba:e1:3d:4a:88:9a:07: 09:2d:8e:c9:c3:64:44:e9:dc:c6:d2:c2:90:88:56: 9e:f1:6e:53:f3:0a:28:79:6a:cb:d2:94:6c:ba:7c: 56:7f:33:74:ad:e7:18:42:4d:32:40:34:07:ac:4b: ff:4d:84:91:04:0d:77:ec:cc:8e:b5:a0:8b:e4:b0: d6:8a:42:df:91:f0:22:bf:53:eb:c7:2f:e2:4f:b0: 5d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:68:5C:3F:89:97:6A:4C:00:D3:D1:B0:CE:30:98:3B:2E:5D:92:3C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/701f72a5-fb27-49ca-b3ad-3a60c7c30376.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7010::/48 Signature Algorithm: sha256WithRSAEncryption 67:5b:59:31:69:54:a5:69:fe:20:0a:22:61:c4:bc:f3:87:7f: 3f:a6:63:6d:58:20:6b:0f:fb:70:06:e3:5d:cb:c6:4d:b2:18: 32:cb:e4:7b:88:be:09:5f:88:ab:1c:f2:24:b7:e9:3c:cb:a3: 9a:50:fb:f6:73:ed:18:78:1b:16:02:d0:8a:cf:d6:29:1f:e6: 6d:69:02:48:ec:88:91:1f:b8:11:db:73:fb:c2:97:66:6a:7c: fe:ac:14:11:f7:7e:1d:a7:89:06:78:d4:9a:f5:33:d4:78:13: 86:33:0c:4f:ac:84:87:90:0a:c7:03:1d:fe:29:f7:07:9a:15: 67:dd:af:e2:f9:eb:1d:14:ef:f8:e0:27:51:78:53:98:1b:56: 89:f0:01:e4:36:1b:be:51:a3:95:93:25:69:01:46:f4:8f:d6: 72:a9:dc:49:37:ab:d1:24:60:c8:79:e0:57:c1:f3:a4:01:d6: 9e:01:23:83:29:5e:e2:82:e4:bf:f1:52:1d:07:7c:ec:67:f7: 18:9f:f4:30:d1:8e:03:d1:b0:fa:43:a5:0d:a3:14:ae:1d:5c: 35:9f:3c:a6:91:bd:67:98:3d:5a:bc:ec:9e:41:26:ec:ba:cd: 27:4a:78:03:ae:99:51:d0:7d:f5:a6:a1:a8:05:a5:c3:2a:12: 9c:ed:33:b3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDHt8E0C1/kzfb2udak5ndEeJT8EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjIwMDEzMDE0WhcNMjYwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2JhMWE2NjE1MWM4YzgzMzcyMjA2YjQxYTQ4ODQ2MjQz ZWE2YzVjZDAyZTU0YzJiZmEyZmRiYmRmZDI5OWMwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDuP707qD8aWQ7qJqWoHXGXDaEZQGReatIzYBv+uy/BPNmt 3k7m9MootXXwKNjaeuDlEm6zTChLyChhLEWmB0pBsRCGZcQ2OK0LWhgDiDyFV3ZV OzZkCsm4Dv6YnWS/tTDt50AD4a2yVYzuDwlEIEZokpJi0bx9CnGVvsoPZnW+mdHC /SETkDvu2AHW5LWaEUObWuz/5iSyn3G+12oWvoVxFJScipIs1/HgUT+buuE9Soia BwktjsnDZETp3MbSwpCIVp7xblPzCih5asvSlGy6fFZ/M3St5xhCTTJANAesS/9N hJEEDXfszI61oIvksNaKQt+R8CK/U+vHL+JPsF0xAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8WhcP4mXakwA09GwzjCYOy5dkjwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcwMWY3MmE1LWZiMjctNDljYS1iM2FkLTNhNjBjN2MzMDM3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycBAwDQYJKoZIhvcNAQELBQADggEBAGdbWTFpVKVp/iAKImHEvPOH fz+mY21YIGsP+3AG413Lxk2yGDLL5HuIvglfiKsc8iS36TzLo5pQ+/Zz7Rh4GxYC 0IrP1ikf5m1pAkjsiJEfuBHbc/vCl2ZqfP6sFBH3fh2niQZ41Jr1M9R4E4YzDE+s hIeQCscDHf4p9weaFWfdr+L56x0U7/jgJ1F4U5gbVonwAeQ2G75Ro5WTJWkBRvSP 1nKp3Ek3q9EkYMh54FfB86QB1p4BI4MpXuKC5L/xUh0HfOxn9xif9DDRjgPRsPpD pQ2jFK4dXDWfPKaRvWeYPVq87J5BJuy6zSdKeAOumVHQffWmoagFpcMqEpztM7M= -----END CERTIFICATE-----Generated at Sun Mar 1 22:04:45 2026 by rpki-client