$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa File: 7ef9d80d-500c-4762-aefe-0aa07f82b263.roa (raw, json) Hash identifier: VHYlGF+smjAhwWHdX22RpX9X3PxBWm6r7PRafexNwkY= Subject key identifier: DA:19:C0:5E:0C:DC:36:A3:72:0F:0B:3D:7D:14:7D:B5:5C:5E:0F:B3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3F8D53C302E6B29AA21EB0F9F85E113CA2A4CD1A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa Signing time: Sat 28 Feb 2026 05:00:42 +0000 ROA not before: Sat 28 Feb 2026 05:00:42 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:8d:53:c3:02:e6:b2:9a:a2:1e:b0:f9:f8:5e:11:3c:a2:a4:cd:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:42 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=84e7211e7b6aff14083251fdfefef3122fc810886f427f7dc197695001e0d1b8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:bc:8c:13:3b:56:ad:ea:e9:9f:1d:23:b1:7a: 53:5a:3c:ca:e6:95:cd:a2:38:fb:da:8e:21:f7:6d: 67:c3:d3:b7:2d:c2:42:26:2e:e4:a4:c2:cb:f2:09: 42:d8:9e:0f:7c:9a:b2:15:a4:9f:de:21:9a:79:5f: 56:91:99:43:7a:91:49:fc:13:1a:38:bf:a8:87:58: e7:98:0e:c9:db:fc:5b:77:67:94:ff:e8:d2:22:d7: c9:9b:b6:0d:64:9f:2d:07:e4:a6:c2:4d:ed:1d:c9: 23:61:05:b6:9c:51:75:af:76:fa:9b:91:d7:a4:78: a3:e8:db:00:85:88:6e:60:83:b7:cc:b3:a8:0f:ab: 50:1b:9c:1d:7b:26:91:48:e9:98:35:6d:36:c3:bd: f1:c1:81:64:23:30:1e:e6:b0:b2:84:0a:b8:05:83: 3d:da:59:43:98:af:ff:09:3a:5d:51:26:22:64:d0: 4f:0c:f6:81:e2:2a:53:4c:91:c4:6c:25:ff:46:08: c2:de:6d:c8:e8:c1:4c:51:7f:92:b9:7a:eb:a5:ab: 9e:c4:a5:cd:96:15:50:20:57:b4:70:63:8d:29:e6: f6:7b:28:0a:2c:7f:75:a9:ae:c4:d5:ad:72:26:c1: 47:d1:c0:be:49:f2:bd:1e:b3:bb:ed:30:03:01:7b: 57:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:19:C0:5E:0C:DC:36:A3:72:0F:0B:3D:7D:14:7D:B5:5C:5E:0F:B3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e400::/40 Signature Algorithm: sha256WithRSAEncryption 37:e4:59:bb:ce:0d:68:a4:c6:90:d7:b3:c1:c1:be:0f:ca:f9: 2c:13:1f:a1:5e:aa:d9:b3:0c:16:99:f7:86:32:26:4c:bd:e7: 9c:83:14:6b:e4:b4:da:0c:14:9d:23:49:c8:d3:cd:83:df:f7: 2b:d8:9d:09:bb:4f:f9:d7:5d:22:49:11:66:cf:65:70:49:7f: 45:7b:bb:65:94:02:fd:f3:e0:0a:0c:43:31:c2:35:76:ae:a3: 8c:33:8f:0b:89:76:76:ce:0e:71:a8:55:23:fd:9e:b0:d1:f7: 3a:8e:d9:c3:d8:95:45:19:43:21:4d:ab:b3:45:96:57:78:34: 7e:98:89:f5:3f:f2:b2:ad:e2:dd:3d:d4:07:52:ff:7e:24:85: 8c:bb:2b:79:6f:33:02:fe:87:cc:0b:dc:7f:24:4c:41:4d:84: 0d:10:2d:1f:b1:06:84:b9:e6:1b:e0:e9:a1:bd:ea:0c:49:ce: 0c:eb:df:e4:c6:01:20:60:a3:10:6d:9c:34:1a:29:52:b4:17: 10:ad:71:42:f8:44:a1:f1:0f:8e:10:ab:cf:61:7a:a3:e6:19: 8c:79:48:9b:3a:90:59:23:32:c4:0b:7a:14:df:1f:bd:80:c4: 1e:83:6a:a0:c9:64:9d:35:5e:32:e3:b7:28:7c:2d:e9:20:fa: 05:0b:b1:fe -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUP41TwwLmspqiHrD5+F4RPKKkzRowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDQyWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGU3MjExZTdiNmFmZjE0MDgzMjUxZmRmZWZlZjMxMjJm YzgxMDg4NmY0MjdmN2RjMTk3Njk1MDAxZTBkMWI4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWvIwTO1at6umfHSOxelNaPMrmlc2iOPvajiH3bWfD07ct wkImLuSkwsvyCULYng98mrIVpJ/eIZp5X1aRmUN6kUn8Exo4v6iHWOeYDsnb/Ft3 Z5T/6NIi18mbtg1kny0H5KbCTe0dySNhBbacUXWvdvqbkdekeKPo2wCFiG5gg7fM s6gPq1AbnB17JpFI6Zg1bTbDvfHBgWQjMB7msLKECrgFgz3aWUOYr/8JOl1RJiJk 0E8M9oHiKlNMkcRsJf9GCMLebcjowUxRf5K5euulq57Epc2WFVAgV7RwY40p5vZ7 KAosf3WprsTVrXImwUfRwL5J8r0es7vtMAMBe1eNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU2hnAXgzcNqNyDws9fRR9tVxeD7MwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdlZjlkODBkLTUwMGMtNDc2Mi1hZWZlLTBhYTA3ZjgyYjI2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75DANBgkqhkiG9w0BAQsFAAOCAQEAN+RZu84NaKTGkNezwcG+D8r5 LBMfoV6q2bMMFpn3hjImTL3nnIMUa+S02gwUnSNJyNPNg9/3K9idCbtP+dddIkkR Zs9lcEl/RXu7ZZQC/fPgCgxDMcI1dq6jjDOPC4l2ds4OcahVI/2esNH3Oo7Zw9iV RRlDIU2rs0WWV3g0fpiJ9T/ysq3i3T3UB1L/fiSFjLsreW8zAv6HzAvcfyRMQU2E DRAtH7EGhLnmG+Dpob3qDEnODOvf5MYBIGCjEG2cNBopUrQXEK1xQvhEofEPjhCr z2F6o+YZjHlImzqQWSMyxAt6FN8fvYDEHoNqoMlknTVeMuO3KHwt6SD6BQux/g== -----END CERTIFICATE-----Generated at Sun Mar 1 23:51:04 2026 by rpki-client