$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa File: 72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa (raw, json) Hash identifier: 9i6Pk9pd5KNvC8Hra091WY0jKsUc7orPCNflWtS/b40= Subject key identifier: 29:11:63:AB:03:EC:9F:E1:C2:25:0C:C7:BF:D5:8A:D7:B7:04:99:B0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 463A4C59522E13C90DF1A47090AFD5C16E0B747D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa Signing time: Sat 28 Feb 2026 02:00:08 +0000 ROA not before: Sat 28 Feb 2026 02:00:08 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ee00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:3a:4c:59:52:2e:13:c9:0d:f1:a4:70:90:af:d5:c1:6e:0b:74:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 02:00:08 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=1c00c4e714ad315a8b409520cf59ebb51c4aec6a02df18f31996c538e49d84cd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:f6:af:68:31:e1:75:28:81:b9:8e:c9:f4:4d: e4:f4:63:f0:22:fc:80:24:80:82:85:81:3e:74:24: 39:cc:23:be:5f:dc:48:fc:39:8f:49:57:d7:1e:64: 0f:07:fa:2d:7a:40:63:83:12:cc:bf:9e:f9:be:fe: 6c:a0:87:cb:65:97:6e:8b:31:40:34:61:8e:d8:82: 7a:51:00:ac:5e:42:d2:1b:f0:9c:f8:93:00:30:16: 63:76:b6:96:d3:5a:60:32:4a:7f:4e:2c:3a:82:e3: b2:b4:3b:74:fd:45:d2:91:a0:22:99:8a:e5:53:14: 6e:5e:62:d5:a1:aa:e2:05:0e:1a:4f:00:cf:bc:3c: 67:19:87:a0:1f:a0:01:56:a7:2d:68:57:7c:1f:39: 9c:c0:20:11:27:d9:f9:52:9a:6a:4d:5b:56:60:c5: 00:96:84:81:ec:48:e5:c5:06:f8:a6:80:3d:33:37: c0:df:c9:e5:b7:71:e2:44:e3:cd:41:47:12:79:13: 82:e5:f0:ef:ed:8e:e1:3e:40:76:ae:79:05:0a:ac: 34:e9:e5:7f:87:e7:83:8f:56:6c:cd:48:71:23:d5: b2:93:b7:20:54:52:dd:87:28:c8:98:cf:08:6a:7f: f7:88:bd:13:5f:c0:4f:05:29:e6:3b:bb:7d:9c:46: 11:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:11:63:AB:03:EC:9F:E1:C2:25:0C:C7:BF:D5:8A:D7:B7:04:99:B0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ee00::/42 Signature Algorithm: sha256WithRSAEncryption 6c:6d:2e:09:ca:45:81:3c:f0:a2:b5:aa:b1:0c:b0:15:2b:5d: 70:c2:39:00:12:45:c7:60:a0:8d:bd:b8:65:9e:3a:ea:d4:5f: 73:ca:d6:c0:b1:9a:ba:b4:83:61:8a:07:c1:43:37:9b:00:0a: 4c:38:72:cd:9a:3f:e7:8f:ba:34:80:f7:75:98:db:76:6b:ac: 47:b3:84:8e:61:d5:8c:44:42:dd:27:ec:8d:f8:a7:a7:2a:84: 10:61:e9:a9:7d:a2:3a:e5:34:79:24:ca:8f:c5:ae:53:a0:0b: 11:cc:ee:7a:9c:f7:60:a0:bb:96:c2:1f:b6:9d:0c:a1:87:23: f0:70:d9:49:b5:31:3e:85:a5:9b:80:a2:43:09:ab:34:94:e4: 70:0a:ac:2a:33:2c:0c:78:0c:7c:7f:db:dd:54:19:10:16:2b: 71:c8:19:59:5c:e8:4d:e5:4f:71:63:04:1a:2c:24:fe:92:75: f2:8a:6d:bf:14:94:f5:80:85:55:93:e3:49:ba:2e:fb:b6:07: a4:a7:fd:26:17:cf:21:e5:5b:8c:7e:98:31:5f:f3:cf:4c:32: b1:3e:e6:30:c5:22:0a:75:d6:ba:a4:6f:95:9d:99:f2:2b:96: 15:de:6a:0d:f7:df:3f:a9:12:55:40:ef:e6:07:70:39:75:45: 86:82:2a:5a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURjpMWVIuE8kN8aRwkK/VwW4LdH0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDIwMDA4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzAwYzRlNzE0YWQzMTVhOGI0MDk1MjBjZjU5ZWJiNTFj NGFlYzZhMDJkZjE4ZjMxOTk2YzUzOGU0OWQ4NGNkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCC9q9oMeF1KIG5jsn0TeT0Y/Ai/IAkgIKFgT50JDnMI75f 3Ej8OY9JV9ceZA8H+i16QGODEsy/nvm+/mygh8tll26LMUA0YY7YgnpRAKxeQtIb 8Jz4kwAwFmN2tpbTWmAySn9OLDqC47K0O3T9RdKRoCKZiuVTFG5eYtWhquIFDhpP AM+8PGcZh6AfoAFWpy1oV3wfOZzAIBEn2flSmmpNW1ZgxQCWhIHsSOXFBvimgD0z N8DfyeW3ceJE481BRxJ5E4Ll8O/tjuE+QHaueQUKrDTp5X+H54OPVmzNSHEj1bKT tyBUUt2HKMiYzwhqf/eIvRNfwE8FKeY7u32cRhGbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKRFjqwPsn+HCJQzHv9WK17cEmbAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMjQxZGM2LTU2YWUtNDMzNy1iYjRiLWI4NGZiZGFlNTFkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD77gAwDQYJKoZIhvcNAQELBQADggEBAGxtLgnKRYE88KK1qrEMsBUr XXDCOQASRcdgoI29uGWeOurUX3PK1sCxmrq0g2GKB8FDN5sACkw4cs2aP+ePujSA 93WY23ZrrEezhI5h1YxEQt0n7I34p6cqhBBh6al9ojrlNHkkyo/FrlOgCxHM7nqc 92Cgu5bCH7adDKGHI/Bw2Um1MT6FpZuAokMJqzSU5HAKrCozLAx4DHx/291UGRAW K3HIGVlc6E3lT3FjBBosJP6SdfKKbb8UlPWAhVWT40m6Lvu2B6Sn/SYXzyHlW4x+ mDFf889MMrE+5jDFIgp11rqkb5WdmfIrlhXeag333z+pElVA7+YHcDl1RYaCKlo= -----END CERTIFICATE-----Generated at Mon Mar 2 04:29:00 2026 by rpki-client