$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa File: 7200dfa9-d36f-44de-852a-1adda1bbb99c.roa (raw, json) Hash identifier: L5NtKbmyr3Md+Ii5MJi+1rau2yDDl6tRO62QgheG5F8= Subject key identifier: 19:FC:D4:A8:BD:D7:24:C4:5C:6A:8F:D5:B8:23:B8:0F:BD:8D:E0:AA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 669AC3A3EB3705A87294E4609304900048A52366 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa Signing time: Sat 28 Feb 2026 04:50:37 +0000 ROA not before: Sat 28 Feb 2026 04:50:37 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:9a:c3:a3:eb:37:05:a8:72:94:e4:60:93:04:90:00:48:a5:23:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 04:50:37 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=cc1ebe747f8506b99e51480b2a844350b09c5c3b1a7254b44f031912cb8c903f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d8:b0:08:c3:6b:b6:2e:06:5b:a0:3a:ab:fa: e4:52:1b:52:63:10:ae:d5:b3:03:8a:ab:51:05:c8: 61:3d:0d:67:10:b1:2c:85:ef:68:8e:1c:2f:b5:3a: 65:d9:02:76:f9:27:ea:11:d0:a5:d4:ed:2d:3e:3a: 9a:63:4d:ce:23:b2:0e:d1:90:5d:bc:1c:76:cf:d3: 51:85:6d:8a:0b:fa:b0:3d:c1:d0:ec:c2:3b:46:b9: a2:e7:a4:8a:a5:eb:e7:19:a4:af:92:e5:6c:79:82: de:cf:2a:1a:a7:9c:a5:36:08:d7:f3:1b:c0:12:61: 65:04:34:d7:55:03:5a:65:88:82:f0:6e:15:e1:b3: d3:a1:93:db:1f:83:ec:9e:55:db:49:e1:53:b5:a0: 19:8b:e4:0e:17:ad:83:c8:5a:85:cb:c8:f4:81:0f: ce:4c:74:b6:67:f3:3d:05:bd:b5:6b:90:0b:4c:b2: 95:c2:ea:6b:59:09:ed:a5:cc:98:f7:27:8f:4a:73: 5f:09:fa:c9:98:df:59:5f:f6:4f:0f:94:9d:5d:45: 5c:3a:b3:54:34:92:ef:b7:88:58:3b:92:7c:e2:41: 6b:36:b3:6d:cd:cb:44:62:10:cd:98:b8:20:25:c6: af:1a:d5:12:0a:b2:35:b3:36:47:5e:ec:0d:18:bf: 59:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FC:D4:A8:BD:D7:24:C4:5C:6A:8F:D5:B8:23:B8:0F:BD:8D:E0:AA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 12:09:d3:0b:ed:a3:24:15:bc:ca:c9:90:ef:e5:a9:a5:73:d4: 26:23:d2:06:3a:36:e5:ac:b6:ec:8c:65:61:f8:92:62:b5:8c: a1:0c:25:02:a6:68:a8:6f:6e:9d:7d:75:bc:43:f4:25:2a:c7: 5c:90:ff:41:94:e2:3f:e7:3e:2b:94:e5:b5:e8:79:e1:ac:f3: c3:f4:04:31:0c:54:93:2c:d9:b9:01:25:93:a7:a3:2a:0b:c6: e0:90:18:e3:1a:6b:9f:c2:78:6b:a4:af:1b:46:df:b5:a3:5c: cd:d5:91:30:31:eb:78:22:6b:5c:fd:b2:09:a5:69:ad:e3:ee: 45:d7:4d:b0:08:4f:84:f0:bf:41:ab:69:fb:98:73:90:55:c8: 1e:a0:a7:42:00:e9:ba:5d:1c:02:98:0f:ad:0d:e9:12:b6:16: f0:1e:45:15:1c:0e:c9:ac:a2:98:36:50:96:12:66:d5:12:00: 1c:95:7d:7e:34:ba:d4:5b:15:2c:2f:cf:21:ed:3c:93:a2:1f: 22:e8:73:0c:75:30:49:5f:5d:4d:42:18:48:ba:12:46:dc:93: bf:d8:b4:3f:cf:4e:ca:b0:2a:1a:4b:fd:20:00:76:37:df:20: b9:ae:e9:34:6f:09:e2:9a:62:27:bd:7d:d4:08:44:9d:ff:64: a3:c7:2f:6c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZprDo+s3BahylORgkwSQAEilI2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDQ1MDM3WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzFlYmU3NDdmODUwNmI5OWU1MTQ4MGIyYTg0NDM1MGIw OWM1YzNiMWE3MjU0YjQ0ZjAzMTkxMmNiOGM5MDNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDb2LAIw2u2LgZboDqr+uRSG1JjEK7VswOKq1EFyGE9DWcQ sSyF72iOHC+1OmXZAnb5J+oR0KXU7S0+OppjTc4jsg7RkF28HHbP01GFbYoL+rA9 wdDswjtGuaLnpIql6+cZpK+S5Wx5gt7PKhqnnKU2CNfzG8ASYWUENNdVA1pliILw bhXhs9Ohk9sfg+yeVdtJ4VO1oBmL5A4XrYPIWoXLyPSBD85MdLZn8z0FvbVrkAtM spXC6mtZCe2lzJj3J49Kc18J+smY31lf9k8PlJ1dRVw6s1Q0ku+3iFg7knziQWs2 s23Ny0RiEM2YuCAlxq8a1RIKsjWzNkde7A0Yv1nvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGfzUqL3XJMRcao/VuCO4D72N4KowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMDBkZmE5LWQzNmYtNDRkZS04NTJhLTFhZGRhMWJiYjk5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBABIJ0wvtoyQVvMrJkO/lqaVz 1CYj0gY6NuWstuyMZWH4kmK1jKEMJQKmaKhvbp19dbxD9CUqx1yQ/0GU4j/nPiuU 5bXoeeGs88P0BDEMVJMs2bkBJZOnoyoLxuCQGOMaa5/CeGukrxtG37WjXM3VkTAx 63gia1z9sgmlaa3j7kXXTbAIT4Twv0GrafuYc5BVyB6gp0IA6bpdHAKYD60N6RK2 FvAeRRUcDsmsopg2UJYSZtUSAByVfX40utRbFSwvzyHtPJOiHyLocwx1MElfXU1C GEi6Ekbck7/YtD/PTsqwKhpL/SAAdjffILmu6TRvCeKaYie9fdQIRJ3/ZKPHL2w= -----END CERTIFICATE-----Generated at Mon Mar 2 02:48:15 2026 by rpki-client