$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/868fe5a3-3c18-4d2a-bf96-0e0a840118e0.roa File: 868fe5a3-3c18-4d2a-bf96-0e0a840118e0.roa (raw, json) Hash identifier: dM1phJl/DuFCQkIwYtH2m+AToei+7Pp8ufbrLQFduX4= Subject key identifier: B2:DD:44:30:0E:DC:F6:70:75:43:AA:51:DD:78:AA:42:A8:FD:6F:F6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4D4C24F8DC34099958EE84D03BCB9DDDFDA6E44C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/868fe5a3-3c18-4d2a-bf96-0e0a840118e0.roa Signing time: Sun 01 Mar 2026 01:00:07 +0000 ROA not before: Sun 01 Mar 2026 01:00:07 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f105::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:4c:24:f8:dc:34:09:99:58:ee:84:d0:3b:cb:9d:dd:fd:a6:e4:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 01:00:07 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=bc95678250399baf229fc970bd58db2e271b315dc76f4e81475e320480e6e13f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d5:e9:14:38:e2:30:61:e2:69:c5:7c:44:83: af:81:04:67:3f:6b:44:29:c8:f1:eb:94:f3:59:da: 78:4c:be:7b:86:9a:59:98:64:44:22:87:dd:be:8d: 3d:92:68:6f:b0:bf:55:48:bd:f5:97:5a:4c:4f:1f: 8b:73:44:41:41:57:84:e6:2a:17:fe:41:ad:78:d7: ee:f4:8f:08:00:dd:53:d5:aa:b9:23:ed:4d:a1:01: cc:d5:ef:a7:3d:f7:ef:ee:45:6a:23:ff:41:58:1d: cc:2e:80:f8:ed:8b:66:b6:96:3f:8b:74:79:63:6c: d2:89:21:c3:c4:41:36:1c:eb:26:12:54:ac:c9:4a: 3f:ba:54:ce:c5:dd:64:1c:00:b6:c7:63:4c:51:00: 0b:ce:e9:d0:ef:d3:9f:b5:46:2d:83:37:45:5c:61: ad:4f:da:5f:39:ea:68:d2:b9:67:fd:32:a5:4b:1b: d4:92:1d:83:22:bb:da:d6:53:4c:f0:54:32:52:ad: 1d:c5:cd:6c:8d:69:f4:63:ea:96:b9:91:33:fa:98: 84:43:5e:60:74:29:3e:4c:b2:69:5b:ea:05:b0:50: 72:68:08:f8:62:c5:6e:4b:57:4d:aa:7d:19:81:0a: ad:fb:67:e0:f9:c4:7c:43:db:93:06:46:b5:de:e4: 97:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:DD:44:30:0E:DC:F6:70:75:43:AA:51:DD:78:AA:42:A8:FD:6F:F6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/868fe5a3-3c18-4d2a-bf96-0e0a840118e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f105::/48 Signature Algorithm: sha256WithRSAEncryption 92:f7:5f:eb:2d:ce:6c:9a:3d:6d:60:df:e0:d5:5a:17:a6:f5: 7d:60:e2:b1:09:03:86:9a:e7:a6:4b:f9:09:ed:fb:42:de:90: f0:aa:fb:00:86:04:18:2c:dc:4b:d9:4d:37:47:78:e3:a0:76: 7b:81:4b:16:7f:2a:f9:52:13:a4:69:aa:bf:d6:0e:61:1a:81: 1d:53:49:8a:88:21:fb:f2:06:ca:2f:a2:f0:1d:c5:98:13:9a: 86:8d:23:e8:cc:60:f2:42:66:8d:0e:68:64:e3:e7:78:17:24: 61:b3:8c:f9:3e:8c:28:24:e1:b2:b3:ab:a1:53:94:c6:de:ca: f4:e4:be:0c:c8:23:fe:cc:37:b8:f2:38:33:d5:9e:ff:19:3b: 60:e0:08:f7:c3:0c:2c:6d:b0:5e:0f:93:f8:0b:77:73:bf:15: f5:95:a3:0f:76:3c:c6:ec:8a:e3:e8:eb:ef:b9:1e:69:61:d1: 11:9f:ff:8e:5a:8e:cd:0d:fd:54:2e:ac:f7:16:2a:c5:43:a2: 43:d7:6d:d8:3b:39:08:57:9f:3b:08:b3:53:3f:26:83:e5:48: d7:1e:57:63:71:62:01:44:dc:96:d1:7d:7a:08:8c:9b:6f:1f: b5:08:72:88:75:d7:30:c9:be:d0:4e:41:cc:b5:a2:74:2d:a3: 6b:f4:e6:a5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTUwk+Nw0CZlY7oTQO8ud3f2m5EwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDEwMDA3WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzk1Njc4MjUwMzk5YmFmMjI5ZmM5NzBiZDU4ZGIyZTI3 MWIzMTVkYzc2ZjRlODE0NzVlMzIwNDgwZTZlMTNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDl1ekUOOIwYeJpxXxEg6+BBGc/a0QpyPHrlPNZ2nhMvnuG mlmYZEQih92+jT2SaG+wv1VIvfWXWkxPH4tzREFBV4TmKhf+Qa141+70jwgA3VPV qrkj7U2hAczV76c99+/uRWoj/0FYHcwugPjti2a2lj+LdHljbNKJIcPEQTYc6yYS VKzJSj+6VM7F3WQcALbHY0xRAAvO6dDv05+1Ri2DN0VcYa1P2l856mjSuWf9MqVL G9SSHYMiu9rWU0zwVDJSrR3FzWyNafRj6pa5kTP6mIRDXmB0KT5Msmlb6gWwUHJo CPhixW5LV02qfRmBCq37Z+D5xHxD25MGRrXe5JfhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUst1EMA7c9nB1Q6pR3XiqQqj9b/YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg2OGZlNWEzLTNjMTgtNGQyYS1iZjk2LTBlMGE4NDAxMThlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QUwDQYJKoZIhvcNAQELBQADggEBAJL3X+stzmyaPW1g3+DVWhem 9X1g4rEJA4aa56ZL+Qnt+0LekPCq+wCGBBgs3EvZTTdHeOOgdnuBSxZ/KvlSE6Rp qr/WDmEagR1TSYqIIfvyBsovovAdxZgTmoaNI+jMYPJCZo0OaGTj53gXJGGzjPk+ jCgk4bKzq6FTlMbeyvTkvgzII/7MN7jyODPVnv8ZO2DgCPfDDCxtsF4Pk/gLd3O/ FfWVow92PMbsiuPo6++5Hmlh0RGf/45ajs0N/VQurPcWKsVDokPXbdg7OQhXnzsI s1M/JoPlSNceV2NxYgFE3JbRfXoIjJtvH7UIcoh11zDJvtBOQcy1onQto2v05qU= -----END CERTIFICATE-----Generated at Sun Mar 1 22:04:41 2026 by rpki-client