$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa File: 71a2a2c0-b8db-4847-a756-b7515aa42b07.roa (raw, json) Hash identifier: LsMFUOto9jZi3PVcwkeOxWtsPEyYEhL9jZ+rERZ9itE= Subject key identifier: F9:02:4E:38:2E:28:79:8E:91:BB:9E:67:42:97:8C:9E:45:63:3D:D3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6FF645D2607F75CCC2A83AA030ED990AB2F6C0CB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa Signing time: Sat 28 Feb 2026 05:10:44 +0000 ROA not before: Sat 28 Feb 2026 05:10:44 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5510::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:f6:45:d2:60:7f:75:cc:c2:a8:3a:a0:30:ed:99:0a:b2:f6:c0:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:10:44 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=7e9bc4e5da0b446cb08262c426e3096a29a24e4eea9354e0714f0dbd57cbf742, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:31:a5:ba:3b:36:c8:2e:05:ff:a0:b8:24:ca: 7b:a8:33:cd:12:9b:fb:ee:6b:d8:aa:05:04:35:b9: b8:42:25:ac:bb:04:2e:86:98:5f:07:4c:6c:ca:b2: 70:a9:11:bb:07:a6:98:56:fe:b4:ad:91:1d:97:05: ec:1a:c0:fd:99:bd:01:30:34:d6:ab:c7:39:48:cf: 6b:3a:bb:4b:a8:2e:3d:79:a3:44:60:9f:49:48:d9: 8f:c2:41:24:9c:e9:43:11:3f:bc:fb:ef:e0:b7:9a: 1f:56:d2:6c:58:1e:e6:36:fe:17:93:6b:8b:16:ee: 59:57:4f:17:b4:2a:d1:84:be:bf:dc:b5:33:66:1b: 20:29:88:f0:73:b7:44:24:10:3d:43:f8:dc:59:43: 5c:aa:bc:96:d1:8b:68:94:46:6b:1a:68:af:56:18: a5:db:ca:ed:14:55:6d:a2:eb:30:4b:a3:17:6c:64: e4:7e:37:ca:d2:88:bd:a6:bf:a2:c5:1d:43:70:45: 29:b6:b4:f8:af:c5:a4:60:c3:fb:46:56:f2:91:0f: c6:91:e1:b7:7c:83:94:25:68:26:48:14:72:df:64: cf:9d:1d:0c:ac:79:1c:e3:de:5f:58:d0:41:7b:f2: 6e:98:b9:c4:7a:56:c4:72:8b:ce:a6:39:b9:7b:34: 33:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:02:4E:38:2E:28:79:8E:91:BB:9E:67:42:97:8C:9E:45:63:3D:D3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5510::/44 Signature Algorithm: sha256WithRSAEncryption 6f:e7:06:e8:f1:a9:b5:8d:d2:9e:40:45:61:c2:c1:29:cc:b4: 8b:33:d4:05:a3:aa:ad:1e:69:50:b2:2d:81:da:b5:5e:49:88: 5c:b8:4a:04:1d:6a:c7:3d:01:2e:85:62:26:ee:8a:41:e5:98: d3:9c:78:7a:aa:11:3e:14:61:d0:9e:f3:53:aa:cc:a2:c9:20: 4f:7a:59:b4:2c:37:83:a2:88:4c:28:20:0e:d4:ed:1f:01:80: 68:ea:ff:07:84:68:7c:be:ec:b4:38:91:2b:08:63:fb:86:06: f0:6b:ae:59:9c:56:96:b2:b7:db:51:ca:11:db:93:77:8d:b0: 38:87:8a:21:83:11:02:20:e2:56:ce:9a:e8:f2:ef:62:ae:21: 1d:c7:5b:24:e6:4f:a8:bd:41:1b:75:04:38:9a:58:fd:35:1e: 71:e4:31:67:68:c4:74:49:25:f6:51:0c:d5:bc:69:bf:2a:3c: 56:87:f8:03:3b:c6:7f:ca:c9:67:7f:35:98:47:07:5f:4d:62: 25:0c:2d:14:b0:be:a7:2d:13:c5:30:2c:ba:15:8d:0c:bf:fd: 74:fc:81:38:58:1b:e4:a5:d7:a7:a2:db:6e:c9:ce:30:25:d8: 3e:7f:8d:6f:35:a3:be:62:46:4d:13:82:20:3d:5c:d1:42:19: 65:13:9c:dd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUb/ZF0mB/dczCqDqgMO2ZCrL2wMswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUxMDQ0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTliYzRlNWRhMGI0NDZjYjA4MjYyYzQyNmUzMDk2YTI5 YTI0ZTRlZWE5MzU0ZTA3MTRmMGRiZDU3Y2JmNzQyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeMaW6OzbILgX/oLgkynuoM80Sm/vua9iqBQQ1ubhCJay7 BC6GmF8HTGzKsnCpEbsHpphW/rStkR2XBewawP2ZvQEwNNarxzlIz2s6u0uoLj15 o0Rgn0lI2Y/CQSSc6UMRP7z77+C3mh9W0mxYHuY2/heTa4sW7llXTxe0KtGEvr/c tTNmGyApiPBzt0QkED1D+NxZQ1yqvJbRi2iURmsaaK9WGKXbyu0UVW2i6zBLoxds ZOR+N8rSiL2mv6LFHUNwRSm2tPivxaRgw/tGVvKRD8aR4bd8g5QlaCZIFHLfZM+d HQyseRzj3l9Y0EF78m6YucR6VsRyi86mObl7NDPnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+QJOOC4oeY6Ru55nQpeMnkVjPdMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcxYTJhMmMwLWI4ZGItNDg0Ny1hNzU2LWI3NTE1YWE0MmIwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwVRAwDQYJKoZIhvcNAQELBQADggEBAG/nBujxqbWN0p5ARWHCwSnM tIsz1AWjqq0eaVCyLYHatV5JiFy4SgQdasc9AS6FYibuikHlmNOceHqqET4UYdCe 81OqzKLJIE96WbQsN4OiiEwoIA7U7R8BgGjq/weEaHy+7LQ4kSsIY/uGBvBrrlmc Vpayt9tRyhHbk3eNsDiHiiGDEQIg4lbOmujy72KuIR3HWyTmT6i9QRt1BDiaWP01 HnHkMWdoxHRJJfZRDNW8ab8qPFaH+AM7xn/KyWd/NZhHB19NYiUMLRSwvqctE8Uw LLoVjQy//XT8gThYG+Sl16ei227JzjAl2D5/jW81o75iRk0TgiA9XNFCGWUTnN0= -----END CERTIFICATE-----Generated at Mon Mar 2 03:26:11 2026 by rpki-client