$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa File: 828860c7-04d3-410e-a0e6-5d8782c6c573.roa (raw, json) Hash identifier: bxdtWiKhAvFbHvY0UyNurYNHHurWhIGRbtoBQbeFsYE= Subject key identifier: B8:4A:6D:B9:D7:47:E5:D3:83:6A:D4:D1:F0:28:0C:99:11:2F:57:D5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 381EEF9323783EF495EFBA96FBE829E977467363 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa Signing time: Fri 13 Feb 2026 15:00:43 +0000 ROA not before: Fri 13 Feb 2026 15:00:43 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10a::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:1e:ef:93:23:78:3e:f4:95:ef:ba:96:fb:e8:29:e9:77:46:73:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 13 15:00:43 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=51f76ae96ba10e7a33129af92fce000f7ed6838cd7dddae5cd14c165ba45ac25, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:7e:e3:1a:c7:c1:20:04:ce:5b:f3:2e:a7:57: 5d:54:b0:2e:04:57:6e:39:32:8a:7f:7a:d1:be:39: 2c:d6:8c:96:8d:b9:6c:e2:19:c5:3f:f1:d9:a6:0d: 09:dd:9f:67:9c:54:71:90:24:17:96:e4:2c:eb:99: a8:17:89:fa:91:12:f5:bb:92:95:9f:81:45:9d:13: fe:0a:ed:56:9c:ab:f0:2c:97:be:21:dd:2c:78:ff: b8:9a:e0:58:71:ef:f1:72:ce:96:9b:50:84:03:34: 69:1c:24:39:f0:20:22:c3:8c:1f:6a:a3:cf:15:04: 0b:97:10:9d:54:85:50:df:fe:33:8d:dc:a8:52:58: ed:c1:a3:18:99:6d:28:02:e1:ce:9a:08:a9:2e:2d: 17:cf:25:39:12:fd:16:c7:43:15:0a:d4:a3:86:d7: be:ce:2c:a3:ac:cf:f9:f7:02:06:bd:a5:26:75:6d: 9c:ed:62:72:7f:8f:5e:a9:a2:27:1b:d7:4a:b1:e0: a1:ca:65:dc:7c:a5:e1:de:92:b4:51:72:80:4a:c6: 77:a0:9b:33:a9:a7:c5:92:9e:d3:68:1c:64:5a:3c: fe:a4:62:75:a4:13:ea:2d:a4:b9:12:17:4f:27:84: 18:38:dc:38:a2:39:41:dd:59:a3:0e:6c:57:e3:96: 48:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:4A:6D:B9:D7:47:E5:D3:83:6A:D4:D1:F0:28:0C:99:11:2F:57:D5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10a::/47 Signature Algorithm: sha256WithRSAEncryption 7b:97:dd:10:6f:d8:25:f0:5f:d8:b6:2f:a8:20:42:2f:6d:2c: 49:27:5c:e5:b4:59:a1:25:b6:11:b0:fe:ad:61:c6:65:0c:3a: b6:e1:5e:43:a7:ae:82:c9:d9:84:8a:70:52:f4:9d:48:50:0a: b5:55:14:2d:ed:6e:a7:b3:6a:35:49:b4:f7:2f:59:d0:bc:ca: 45:c3:ef:5c:cc:25:a5:d4:13:2f:5b:e3:02:b2:11:4f:25:b8: ff:14:f4:88:5a:d2:62:50:37:92:90:d7:4f:0b:e5:1a:9f:1b: 3e:43:43:48:5e:fa:81:74:3e:e1:8e:1e:9d:19:76:95:bf:78: 20:26:53:35:0a:0d:ad:9d:25:d7:05:8d:1c:05:22:30:5b:ff: dc:a9:03:ee:e6:6a:27:50:43:c8:50:3f:fb:36:e9:46:14:62: 3f:34:c1:3f:c9:8d:aa:78:4f:9f:73:cb:19:c8:13:14:ef:02: ff:e8:b0:3e:06:72:3e:2e:e2:ad:5b:03:0e:70:62:96:99:e5: 2a:c5:12:47:df:76:7d:b7:13:90:0c:3d:7b:9f:a2:23:b4:5f: f8:22:50:ae:fe:fe:f2:0f:a0:a6:d9:71:62:4a:f8:01:01:d0: c7:0d:ab:e2:c4:da:65:06:64:34:63:a3:83:93:fd:5f:b8:43: b5:10:ef:16 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOB7vkyN4PvSV77qW++gp6XdGc2MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjEzMTUwMDQzWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MWY3NmFlOTZiYTEwZTdhMzMxMjlhZjkyZmNlMDAwZjdl ZDY4MzhjZDdkZGRhZTVjZDE0YzE2NWJhNDVhYzI1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgfuMax8EgBM5b8y6nV11UsC4EV245Mop/etG+OSzWjJaN uWziGcU/8dmmDQndn2ecVHGQJBeW5CzrmagXifqREvW7kpWfgUWdE/4K7Vacq/As l74h3Sx4/7ia4Fhx7/FyzpabUIQDNGkcJDnwICLDjB9qo88VBAuXEJ1UhVDf/jON 3KhSWO3BoxiZbSgC4c6aCKkuLRfPJTkS/RbHQxUK1KOG177OLKOsz/n3Aga9pSZ1 bZztYnJ/j16poicb10qx4KHKZdx8peHekrRRcoBKxnegmzOpp8WSntNoHGRaPP6k YnWkE+otpLkSF08nhBg43DiiOUHdWaMObFfjlkgXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuEptuddH5dODatTR8CgMmREvV9UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzgyODg2MGM3LTA0ZDMtNDEwZS1hMGU2LTVkODc4MmM2YzU3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQowDQYJKoZIhvcNAQELBQADggEBAHuX3RBv2CXwX9i2L6ggQi9t LEknXOW0WaElthGw/q1hxmUMOrbhXkOnroLJ2YSKcFL0nUhQCrVVFC3tbqezajVJ tPcvWdC8ykXD71zMJaXUEy9b4wKyEU8luP8U9Iha0mJQN5KQ108L5RqfGz5DQ0he +oF0PuGOHp0ZdpW/eCAmUzUKDa2dJdcFjRwFIjBb/9ypA+7maidQQ8hQP/s26UYU Yj80wT/Jjap4T59zyxnIExTvAv/osD4Gcj4u4q1bAw5wYpaZ5SrFEkffdn23E5AM PXufoiO0X/giUK7+/vIPoKbZcWJK+AEB0McNq+LE2mUGZDRjo4OT/V+4Q7UQ7xY= -----END CERTIFICATE-----Generated at Sun Mar 1 22:13:01 2026 by rpki-client