$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa File: 77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa (raw, json) Hash identifier: EpfEZkq9DrsGG3NTdvRTiXXA+/wsYcN2kA3HJ257c8w= Subject key identifier: 20:28:86:81:54:1C:DB:A7:A1:92:BD:07:11:94:14:FF:B6:29:E8:E4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1720D6784522791BF1EC07913BC1B330750BCC7D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa Signing time: Sat 28 Feb 2026 02:00:06 +0000 ROA not before: Sat 28 Feb 2026 02:00:06 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e800::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:20:d6:78:45:22:79:1b:f1:ec:07:91:3b:c1:b3:30:75:0b:cc:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 02:00:06 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=2427f3eb649d6162acf8a789a6e3c00c73ab454d33242fa0a6cc6aed2ace9917, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:06:d8:89:20:c9:25:d5:36:f9:b6:d4:fc:67: 16:1e:77:58:28:dd:c2:75:90:5d:c0:81:8c:af:a0: 6f:d3:e6:e8:f6:ca:8a:84:8b:8a:f5:c5:ba:f8:a1: 18:d0:6d:34:fa:50:9e:4b:cc:ba:93:2d:70:49:0f: 56:11:6d:2c:13:a3:87:6a:6b:16:f9:fc:71:61:02: 0a:f2:4f:c9:05:d1:b4:d9:4d:1f:e4:45:e9:37:d1: 98:4f:a5:bc:48:ad:f3:34:25:8c:46:6a:ca:e8:e4: 8d:51:79:a6:aa:c6:9c:ac:77:a3:66:ab:9d:2b:29: 09:24:13:8b:4a:84:c9:11:0c:b0:4b:b9:63:75:66: 51:fd:84:e0:0b:d9:7a:a1:ab:38:f0:bb:97:b8:f6: 1b:d7:9e:7f:a9:1d:1c:ad:47:ef:b4:20:3e:24:4f: 4a:23:73:ad:de:32:ac:12:b4:2b:80:45:b4:b3:a0: 64:e8:3d:0e:28:78:dc:d6:20:15:72:93:e7:7e:d3: 58:88:b4:b9:33:59:89:18:92:06:ca:49:58:ed:e1: 08:38:1b:8d:df:88:a3:86:38:98:d7:02:d5:ce:01: 18:34:42:93:4a:a5:e5:bd:a7:05:48:5a:b1:07:88: cc:33:40:6a:5b:80:c3:bc:fd:b4:f0:2b:af:e6:8d: 01:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:28:86:81:54:1C:DB:A7:A1:92:BD:07:11:94:14:FF:B6:29:E8:E4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e800::/42 Signature Algorithm: sha256WithRSAEncryption 5e:4b:6c:76:a0:53:e3:c8:fc:85:92:d9:be:88:4b:e5:d5:77: a7:c9:72:c5:72:b1:cd:c0:95:90:3a:55:49:02:6d:d1:0c:2a: c9:e4:1c:0d:9a:e1:81:91:2c:79:c6:44:ff:c8:85:bc:d7:8f: 7f:95:cd:bf:9d:46:76:cd:5f:0e:a7:96:f1:07:f6:37:6f:4f: 79:c1:7a:91:56:b6:7f:91:54:dd:a1:57:0e:c9:77:95:74:ca: d0:e4:c3:fc:10:2e:06:a5:dd:5f:e2:11:26:64:b9:53:a8:c5: ed:93:73:6d:b1:54:12:bf:cb:da:5f:c6:b0:d6:f7:06:a5:1e: 7b:5d:d4:26:1e:cf:f6:09:63:f0:fa:8a:37:25:08:9b:1a:87: 40:6c:49:77:25:45:27:a9:92:e6:6d:df:33:a9:3c:e3:30:87: 3c:ae:74:cc:77:29:10:0c:7b:37:c6:12:81:82:b5:29:7d:fa: 66:a5:e5:fb:ae:24:10:19:eb:cb:d1:c4:7c:61:c9:7e:a0:06: 6c:ce:fe:85:f6:c9:05:1b:a2:11:b1:64:17:89:fe:a8:38:08: eb:4d:a3:61:94:c5:db:59:c6:36:b8:de:8a:a5:54:38:f3:56: 91:79:23:59:16:d1:76:2b:85:82:77:2b:5f:9a:61:f9:ab:37: b4:15:f1:fb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFyDWeEUieRvx7AeRO8GzMHULzH0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDIwMDA2WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDI3ZjNlYjY0OWQ2MTYyYWNmOGE3ODlhNmUzYzAwYzcz YWI0NTRkMzMyNDJmYTBhNmNjNmFlZDJhY2U5OTE3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6BtiJIMkl1Tb5ttT8ZxYed1go3cJ1kF3AgYyvoG/T5uj2 yoqEi4r1xbr4oRjQbTT6UJ5LzLqTLXBJD1YRbSwTo4dqaxb5/HFhAgryT8kF0bTZ TR/kRek30ZhPpbxIrfM0JYxGasro5I1Reaaqxpysd6Nmq50rKQkkE4tKhMkRDLBL uWN1ZlH9hOAL2Xqhqzjwu5e49hvXnn+pHRytR++0ID4kT0ojc63eMqwStCuARbSz oGToPQ4oeNzWIBVyk+d+01iItLkzWYkYkgbKSVjt4Qg4G43fiKOGOJjXAtXOARg0 QpNKpeW9pwVIWrEHiMwzQGpbgMO8/bTwK6/mjQHfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUICiGgVQc26ehkr0HEZQU/7Yp6OQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc3MDcxZGJhLTNkNzEtNDA5ZC1iZWMzLWU2ZWU0ZDhmYzlkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76AAwDQYJKoZIhvcNAQELBQADggEBAF5LbHagU+PI/IWS2b6IS+XV d6fJcsVysc3AlZA6VUkCbdEMKsnkHA2a4YGRLHnGRP/IhbzXj3+Vzb+dRnbNXw6n lvEH9jdvT3nBepFWtn+RVN2hVw7Jd5V0ytDkw/wQLgal3V/iESZkuVOoxe2Tc22x VBK/y9pfxrDW9walHntd1CYez/YJY/D6ijclCJsah0BsSXclRSepkuZt3zOpPOMw hzyudMx3KRAMezfGEoGCtSl9+mal5fuuJBAZ68vRxHxhyX6gBmzO/oX2yQUbohGx ZBeJ/qg4COtNo2GUxdtZxja43oqlVDjzVpF5I1kW0XYrhYJ3K1+aYfmrN7QV8fs= -----END CERTIFICATE-----Generated at Sun Mar 1 23:34:51 2026 by rpki-client