$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8a8b863b-298e-48a9-bced-202e80d98f01.roa File: 8a8b863b-298e-48a9-bced-202e80d98f01.roa (raw, json) Hash identifier: dvJqOfGOB1iXxnU7WneNJ63vtBnCJ5KdKoh/hhuZtjc= Subject key identifier: 36:F1:D6:AA:53:95:2F:92:6B:5D:EA:66:EF:14:CB:90:CE:5B:91:77 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5F9E7744A1F0ADB4496CCA90E7C1E32B4052E578 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8a8b863b-298e-48a9-bced-202e80d98f01.roa Signing time: Sat 28 Feb 2026 05:00:10 +0000 ROA not before: Sat 28 Feb 2026 05:00:10 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ee00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:9e:77:44:a1:f0:ad:b4:49:6c:ca:90:e7:c1:e3:2b:40:52:e5:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:10 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=3709b16af6cecf3d2e1bb7763d140d54cc6d5574ab1eb9e7d6d95587c47bcc2b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:16:a3:de:be:d5:c5:f1:97:07:b5:c8:29:46: ec:33:c8:d9:13:d5:71:02:fd:48:1e:48:14:04:9a: 44:15:15:a7:1a:80:1c:49:7e:fb:ea:14:eb:97:45: 23:7e:e6:5b:0b:3a:04:e0:d7:69:7e:58:77:9c:6d: 70:10:7e:a0:d9:e1:23:02:89:7e:d1:a3:25:f2:34: 82:1b:11:9b:d2:9b:a9:b6:52:79:e4:03:ab:08:16: 6c:34:71:b8:a1:cf:19:7e:08:2c:0d:6d:e9:32:89: d9:e2:c3:a8:01:04:2c:8e:5a:8a:36:b1:c4:cb:b9: 02:2b:3b:ef:fe:1a:19:21:11:59:41:79:dd:38:55: f5:82:32:7e:ab:ee:cf:66:6b:08:1d:b6:28:12:fc: 08:0f:46:bd:e6:05:19:f3:0b:7e:32:a3:87:17:c1: df:cb:12:4a:37:58:6c:f1:ea:24:da:81:ed:74:8b: cb:c1:c1:f8:dc:c0:5d:41:cf:7b:95:56:b7:a6:90: f0:82:31:37:91:af:88:6b:10:fc:0d:b5:e9:69:27: f6:7e:c6:bc:72:3f:96:8d:ac:7d:a4:dc:d6:c5:39: f1:0a:fe:f8:f8:be:94:d1:ef:06:bc:8d:b9:81:a4: 84:db:99:88:95:a7:fe:14:a4:3c:86:d5:b8:d3:8b: 10:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:F1:D6:AA:53:95:2F:92:6B:5D:EA:66:EF:14:CB:90:CE:5B:91:77 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8a8b863b-298e-48a9-bced-202e80d98f01.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ee00::/40 Signature Algorithm: sha256WithRSAEncryption 1f:c0:13:1b:07:52:5d:1e:de:aa:8d:9d:40:86:c4:13:a4:09: 5c:64:1a:49:10:af:8b:94:f4:de:fd:cc:dd:a3:2d:1f:de:62: d8:94:c3:99:88:ee:ed:26:69:62:f4:29:eb:8e:9d:70:11:90: 8c:16:7b:f8:55:a7:42:d1:21:ec:ff:3b:24:db:83:c4:cd:fb: 3c:fc:e3:1d:78:2d:b8:b3:2a:6a:cf:6e:e7:e0:8b:e1:fa:f4: 03:da:29:ae:5e:9c:72:84:07:6e:50:fe:bf:78:05:b0:5a:d4: 0b:7d:3f:38:74:ee:3d:bb:7d:20:cc:15:7e:54:1e:aa:ab:86: fc:c8:b8:cf:68:29:6d:8f:8f:f2:74:9b:ec:04:08:19:aa:7d: 3a:d3:22:e9:b6:58:df:9a:45:98:bb:8e:ad:0c:34:2e:70:cd: 33:96:fb:ad:5f:2e:15:93:72:10:01:ab:f5:5e:f7:c6:95:41: 95:9d:0c:09:dc:f1:b7:7c:0d:3c:b6:9c:06:e4:f0:94:c5:b8: 02:10:7b:72:93:62:92:77:ee:b2:c6:df:c9:22:75:09:2f:3f: a5:e7:ff:c3:e0:4a:99:26:71:74:c7:62:4d:f5:55:b4:46:b3: 9f:e2:2e:77:02:6d:24:09:9f:c9:50:3f:db:be:ca:61:27:08: 14:fa:eb:4f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUX553RKHwrbRJbMqQ58HjK0BS5XgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDEwWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzA5YjE2YWY2Y2VjZjNkMmUxYmI3NzYzZDE0MGQ1NGNj NmQ1NTc0YWIxZWI5ZTdkNmQ5NTU4N2M0N2JjYzJiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnFqPevtXF8ZcHtcgpRuwzyNkT1XEC/UgeSBQEmkQVFaca gBxJfvvqFOuXRSN+5lsLOgTg12l+WHecbXAQfqDZ4SMCiX7RoyXyNIIbEZvSm6m2 UnnkA6sIFmw0cbihzxl+CCwNbekyidniw6gBBCyOWoo2scTLuQIrO+/+GhkhEVlB ed04VfWCMn6r7s9mawgdtigS/AgPRr3mBRnzC34yo4cXwd/LEko3WGzx6iTage10 i8vBwfjcwF1Bz3uVVremkPCCMTeRr4hrEPwNtelpJ/Z+xrxyP5aNrH2k3NbFOfEK /vj4vpTR7wa8jbmBpITbmYiVp/4UpDyG1bjTixBfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUNvHWqlOVL5JrXepm7xTLkM5bkXcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhhOGI4NjNiLTI5OGUtNDhhOS1iY2VkLTIwMmU4MGQ5OGYwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77jANBgkqhkiG9w0BAQsFAAOCAQEAH8ATGwdSXR7eqo2dQIbEE6QJ XGQaSRCvi5T03v3M3aMtH95i2JTDmYju7SZpYvQp646dcBGQjBZ7+FWnQtEh7P87 JNuDxM37PPzjHXgtuLMqas9u5+CL4fr0A9oprl6ccoQHblD+v3gFsFrUC30/OHTu Pbt9IMwVflQeqquG/Mi4z2gpbY+P8nSb7AQIGap9OtMi6bZY35pFmLuOrQw0LnDN M5b7rV8uFZNyEAGr9V73xpVBlZ0MCdzxt3wNPLacBuTwlMW4AhB7cpNiknfussbf ySJ1CS8/pef/w+BKmSZxdMdiTfVVtEazn+IudwJtJAmfyVA/277KYScIFPrrTw== -----END CERTIFICATE-----Generated at Sun Mar 1 21:56:32 2026 by rpki-client