$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa File: 7fef00dc-1a9a-497c-b857-792da38e532f.roa (raw, json) Hash identifier: tkcLQh+VicDLLbrGa2Bx7NhLUnGAi7PB5TabubticwQ= Subject key identifier: 32:82:92:04:D7:5F:3F:5C:36:ED:C6:73:00:96:D8:E5:81:9B:43:5C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0B588F08FF9029F55890B738958C3066E7226B76 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa Signing time: Sun 01 Mar 2026 01:00:37 +0000 ROA not before: Sun 01 Mar 2026 01:00:37 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:58:8f:08:ff:90:29:f5:58:90:b7:38:95:8c:30:66:e7:22:6b:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 01:00:37 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=98ced612daa7ca67978f2a614b804f7fe1cd76b81a870f69f3449b2fa8991227, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:96:c1:87:7f:b8:c4:ba:62:8c:69:75:41:07: cb:ed:8d:6b:12:82:e4:ad:38:ad:0e:15:24:4f:4d: d5:74:90:ec:1f:69:e9:de:de:76:1d:52:93:fe:e9: 9d:66:7f:8e:ae:96:09:34:1d:48:a8:a8:2b:24:21: 17:cd:3d:a5:9c:62:7d:03:2d:f7:2f:71:ce:a4:30: 58:07:74:7e:4e:6a:a6:25:44:92:a9:23:46:83:b2: 41:8e:0d:64:89:8c:0c:ee:30:ba:ea:2e:5e:aa:f8: d2:c9:d9:34:51:13:47:27:09:bb:98:da:91:b9:d1: db:48:70:3e:b8:da:27:4b:6c:35:a2:3f:2d:bd:9f: 84:4f:ec:ad:37:df:ff:b0:82:9b:5d:21:80:27:5e: b2:5d:72:0a:2e:b7:2c:03:0a:13:aa:20:26:b0:cf: d0:79:79:4d:d4:0a:a7:08:1e:b3:63:5a:64:1d:d2: 2e:23:ec:96:f6:5c:77:63:32:91:4e:77:09:c5:ce: 2a:7d:47:35:fa:90:67:2d:18:05:53:a1:dd:6f:63: 8f:d5:00:5a:81:fd:4f:f4:fc:32:98:1d:83:79:75: 43:62:39:82:cc:93:b0:39:15:61:aa:bb:f6:57:55: 9a:3e:25:5d:02:26:5b:94:c6:29:2d:09:e7:8a:14: 73:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:82:92:04:D7:5F:3F:5C:36:ED:C6:73:00:96:D8:E5:81:9B:43:5C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5500::/48 Signature Algorithm: sha256WithRSAEncryption 44:a7:7a:c6:c3:88:14:87:de:ee:24:9e:6f:81:ab:b7:4b:db: 11:eb:8a:9d:e0:08:75:81:1e:d5:7e:9f:44:31:de:1a:14:41: e2:c4:2f:f6:79:3e:9d:e1:0e:1a:71:f5:4f:ba:d3:b5:bc:00: 2a:3e:7c:07:a3:6c:59:7d:4a:e8:71:90:23:11:c5:a8:0b:43: 76:14:0a:d5:ce:74:32:9d:97:e1:77:87:ba:0b:82:e0:b2:c3: 78:56:f5:bf:bd:e3:ef:14:75:99:d7:16:17:ba:01:ae:ef:8b: 45:8d:d2:2e:f4:fc:77:ae:a0:55:a2:cf:60:4a:81:6f:de:38: e8:40:a1:a2:4f:5c:94:ae:58:87:f5:b7:9c:8a:ed:27:35:79: 62:bb:09:5c:00:47:ea:9d:fa:22:c4:57:ba:86:f8:e1:e5:8c: 1e:ee:e7:b5:fd:5d:b5:bb:ff:e1:65:60:39:41:96:13:a5:63: 48:24:c5:aa:9c:69:fb:92:d8:0d:9c:ab:7b:07:02:43:9b:11: 68:4a:69:fb:7b:3c:18:35:6d:58:b5:d3:46:84:ec:88:07:8a: 41:bd:54:95:4c:e3:b8:8b:58:b9:a9:a5:7d:70:ba:bd:43:42: 62:56:a3:e0:50:03:dd:f5:de:68:8f:90:0a:45:7d:ad:96:32: dc:7a:b4:10 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUC1iPCP+QKfVYkLc4lYwwZucia3YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDEwMDM3WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OGNlZDYxMmRhYTdjYTY3OTc4ZjJhNjE0YjgwNGY3ZmUx Y2Q3NmI4MWE4NzBmNjlmMzQ0OWIyZmE4OTkxMjI3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzlsGHf7jEumKMaXVBB8vtjWsSguStOK0OFSRPTdV0kOwf aene3nYdUpP+6Z1mf46ulgk0HUioqCskIRfNPaWcYn0DLfcvcc6kMFgHdH5OaqYl RJKpI0aDskGODWSJjAzuMLrqLl6q+NLJ2TRRE0cnCbuY2pG50dtIcD642idLbDWi Py29n4RP7K033/+wgptdIYAnXrJdcgoutywDChOqICawz9B5eU3UCqcIHrNjWmQd 0i4j7Jb2XHdjMpFOdwnFzip9RzX6kGctGAVTod1vY4/VAFqB/U/0/DKYHYN5dUNi OYLMk7A5FWGqu/ZXVZo+JV0CJluUxiktCeeKFHNhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMoKSBNdfP1w27cZzAJbY5YGbQ1wwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdmZWYwMGRjLTFhOWEtNDk3Yy1iODU3LTc5MmRhMzhlNTMyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQAwDQYJKoZIhvcNAQELBQADggEBAESnesbDiBSH3u4knm+Bq7dL 2xHrip3gCHWBHtV+n0Qx3hoUQeLEL/Z5Pp3hDhpx9U+607W8ACo+fAejbFl9Suhx kCMRxagLQ3YUCtXOdDKdl+F3h7oLguCyw3hW9b+94+8UdZnXFhe6Aa7vi0WN0i70 /HeuoFWiz2BKgW/eOOhAoaJPXJSuWIf1t5yK7Sc1eWK7CVwAR+qd+iLEV7qG+OHl jB7u57X9XbW7/+FlYDlBlhOlY0gkxaqcafuS2A2cq3sHAkObEWhKaft7PBg1bVi1 00aE7IgHikG9VJVM47iLWLmppX1wur1DQmJWo+BQA9313miPkApFfa2WMtx6tBA= -----END CERTIFICATE-----Generated at Sun Mar 1 23:48:35 2026 by rpki-client