$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa File: 8979840e-82a9-441b-924a-93b9c7ea006b.roa (raw, json) Hash identifier: ygZJ/FiJ0GC1jI37AaRWD6/idsSt9hw6/uBU7FV1LO0= Subject key identifier: 78:AF:F3:30:E1:DF:E1:E5:DA:DE:04:A2:1B:40:48:5F:E2:A0:81:F4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 074AC42A28BD9585F77ECF758CE399C97DED38BD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa Signing time: Sat 28 Feb 2026 04:50:39 +0000 ROA not before: Sat 28 Feb 2026 04:50:39 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:4a:c4:2a:28:bd:95:85:f7:7e:cf:75:8c:e3:99:c9:7d:ed:38:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 04:50:39 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=954266845eae5dd5d3e8a33213d602d7abbca84487b29fee22c694e2a67c7bb8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ae:f5:aa:3d:ef:bc:1f:34:58:6d:88:8f:31: c3:18:75:2a:00:9a:30:8f:90:19:15:a8:3f:65:42: bf:a8:4b:49:9e:2b:77:99:75:8c:32:11:90:36:05: 0b:84:b4:7f:86:ef:47:cd:d8:57:7d:00:61:49:d4: 52:07:33:74:57:a0:2b:92:9e:92:71:e1:e7:b9:01: e8:38:f2:5c:78:76:24:c3:2d:47:58:56:63:72:26: 76:c0:7a:46:5d:4c:c2:04:ed:eb:4b:11:0e:cd:5c: 17:83:a6:cf:79:4d:3e:0b:b2:c1:f8:fd:a7:ea:14: 04:7f:7c:73:22:c3:8f:1d:c9:c6:57:fd:82:61:49: ca:9c:dd:05:91:f3:de:79:c1:fb:df:84:01:c5:37: 45:c4:3a:ad:f2:9a:42:f7:f2:0c:7c:3c:d6:cb:01: b0:3b:1a:eb:17:ec:dc:7e:00:97:5f:08:a3:65:78: 4c:c0:ba:fe:e5:3e:95:ef:a1:e8:03:88:14:34:b1: bb:ee:fd:e1:ed:c8:30:c2:ef:d7:52:52:2b:5d:8b: 2a:31:6b:0c:38:80:48:2f:5e:53:e1:09:0d:f4:16: 21:a3:72:d7:ad:6d:5d:b9:e0:ee:af:08:84:97:fe: 3c:23:d5:31:b0:74:6a:84:ac:a4:86:81:c3:cb:65: 5a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:AF:F3:30:E1:DF:E1:E5:DA:DE:04:A2:1B:40:48:5F:E2:A0:81:F4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:2::/48 Signature Algorithm: sha256WithRSAEncryption 20:46:6b:00:ce:38:8f:4e:c8:03:cc:b1:e8:d9:87:74:45:ab: b4:45:db:8a:2b:3b:3f:62:1c:b8:ab:0c:1a:76:1f:15:95:60: 7a:57:7e:0c:48:bd:7b:97:dd:0a:e0:8e:18:f6:f2:78:bc:46: b3:a9:0e:8a:69:1e:50:8b:3b:0e:46:f9:20:59:f7:e1:53:a1: ab:3c:d5:0f:57:f7:80:93:02:ba:51:6c:1b:4c:30:83:26:9d: 68:19:67:2a:ad:46:c3:a5:65:3a:77:fa:08:ac:ec:0a:c9:b9: ff:59:17:ba:56:a6:f8:24:fd:07:4f:2b:3b:a5:8f:04:92:b0: c7:c4:19:37:77:06:e9:ac:f4:f6:2f:ec:8f:18:e7:20:43:bc: ae:48:16:4b:86:c8:d7:4b:d0:95:73:49:2d:e5:bc:0e:66:23: f7:4a:09:8a:fd:43:7b:f5:98:b3:ad:a2:43:a6:e2:56:4c:b6: 5a:db:10:b8:d1:ec:7d:29:50:f8:5d:c9:6d:e6:fd:89:1f:f9: f3:46:af:67:e0:fe:ce:a0:79:db:db:9d:da:05:4a:74:60:6b: 91:b4:6b:8c:02:1b:91:c6:7e:39:91:84:ff:5a:54:6d:56:bb: d5:bb:b0:85:14:81:7b:2b:db:1a:e2:3c:6b:94:d0:9d:5b:d0: 01:70:68:32 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUB0rEKii9lYX3fs91jOOZyX3tOL0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDQ1MDM5WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTQyNjY4NDVlYWU1ZGQ1ZDNlOGEzMzIxM2Q2MDJkN2Fi YmNhODQ0ODdiMjlmZWUyMmM2OTRlMmE2N2M3YmI4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSrvWqPe+8HzRYbYiPMcMYdSoAmjCPkBkVqD9lQr+oS0me K3eZdYwyEZA2BQuEtH+G70fN2Fd9AGFJ1FIHM3RXoCuSnpJx4ee5Aeg48lx4diTD LUdYVmNyJnbAekZdTMIE7etLEQ7NXBeDps95TT4LssH4/afqFAR/fHMiw48dycZX /YJhScqc3QWR8955wfvfhAHFN0XEOq3ymkL38gx8PNbLAbA7GusX7Nx+AJdfCKNl eEzAuv7lPpXvoegDiBQ0sbvu/eHtyDDC79dSUitdiyoxaww4gEgvXlPhCQ30FiGj ctetbV254O6vCISX/jwj1TGwdGqErKSGgcPLZVoJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeK/zMOHf4eXa3gSiG0BIX+KggfQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg5Nzk4NDBlLTgyYTktNDQxYi05MjRhLTkzYjljN2VhMDA2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAIwDQYJKoZIhvcNAQELBQADggEBACBGawDOOI9OyAPMsejZh3RF q7RF24orOz9iHLirDBp2HxWVYHpXfgxIvXuX3Qrgjhj28ni8RrOpDoppHlCLOw5G +SBZ9+FToas81Q9X94CTArpRbBtMMIMmnWgZZyqtRsOlZTp3+gis7ArJuf9ZF7pW pvgk/QdPKzuljwSSsMfEGTd3Bums9PYv7I8Y5yBDvK5IFkuGyNdL0JVzSS3lvA5m I/dKCYr9Q3v1mLOtokOm4lZMtlrbELjR7H0pUPhdyW3m/Ykf+fNGr2fg/s6gedvb ndoFSnRga5G0a4wCG5HGfjmRhP9aVG1Wu9W7sIUUgXsr2xriPGuU0J1b0AFwaDI= -----END CERTIFICATE-----Generated at Sun Mar 1 23:50:43 2026 by rpki-client