$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8f13536f-25a3-4ff1-9141-9b85d7e40b8b.roa File: 8f13536f-25a3-4ff1-9141-9b85d7e40b8b.roa (raw, json) Hash identifier: lC4psfc46NlurAB5UHf6A9F4UcfaQq8p9wVgczDqu5M= Subject key identifier: 2D:73:4B:E2:7F:4F:C1:1F:3C:B7:FC:B9:93:3B:2C:E9:5B:A8:25:B3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5E6007054AF1F3FC6ADFBBFCC08F3DA5843432B6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8f13536f-25a3-4ff1-9141-9b85d7e40b8b.roa Signing time: Sat 28 Feb 2026 05:10:39 +0000 ROA not before: Sat 28 Feb 2026 05:10:39 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:60:07:05:4a:f1:f3:fc:6a:df:bb:fc:c0:8f:3d:a5:84:34:32:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:10:39 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=2c526c7d299bcd9e835a1c218255e091f9cfe4571a01b4fba554032a0742ebff, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fe:9f:97:0b:d3:c6:df:78:7d:8b:9a:2c:41: 82:5d:1d:03:72:67:2d:74:9e:a6:7d:fa:cc:8d:c0: a3:47:23:6d:29:1f:68:ef:f9:fe:f3:22:bb:2c:fc: c9:d8:95:7a:3b:cb:6c:cc:f3:cb:e8:a3:f9:ea:ac: 33:37:bd:d2:10:85:67:1a:58:0d:66:53:17:38:fd: 1f:26:13:bb:76:97:e2:99:09:a3:df:9d:a0:13:e6: 8c:6c:3e:a0:16:54:b7:92:ca:73:ab:18:51:69:18: f6:be:4b:a9:ed:b6:0e:af:e8:de:93:d9:2c:d9:f8: 44:fb:90:77:27:ab:f4:eb:7d:b8:1a:dd:a1:62:84: ed:cd:c9:42:50:c4:8c:16:ee:bd:75:0d:92:cd:92: c1:5e:3e:5c:ae:34:d5:54:25:ee:3f:c7:5d:37:f8: 8e:48:19:74:28:04:be:50:1b:19:32:8f:ae:06:ba: 03:3d:7a:27:e7:8f:3c:ae:c1:a8:a8:2f:80:b5:47: b6:84:bb:e7:c3:5e:59:36:ee:67:11:1a:1a:fa:8e: a0:2b:1f:e5:32:b8:5d:95:2c:2b:d3:2d:e8:6d:87: 15:ad:62:05:53:aa:79:ea:2f:98:67:16:81:8d:0a: 63:02:0c:c9:07:ee:48:5a:e2:60:02:79:cb:aa:bc: 27:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:73:4B:E2:7F:4F:C1:1F:3C:B7:FC:B9:93:3B:2C:E9:5B:A8:25:B3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8f13536f-25a3-4ff1-9141-9b85d7e40b8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:a0::/48 Signature Algorithm: sha256WithRSAEncryption 0d:1e:5a:8b:9b:6c:40:bf:97:e3:cb:29:14:c2:21:b1:03:51: 2f:b9:ce:b8:92:27:8b:f8:f9:00:94:5e:7e:64:fe:db:f2:28: 07:3e:85:6a:e4:21:25:dc:ee:e9:3c:e7:64:e2:c1:0b:30:f7: 16:63:97:ab:04:6f:06:bd:c8:fb:f1:e8:57:e8:57:1c:ec:7b: d0:6f:ff:12:b2:48:f4:25:a9:78:76:d1:2c:d2:30:8e:34:45: 2c:9b:c9:83:52:a0:5b:aa:0e:9d:ba:29:94:7f:4a:57:be:80: f5:1d:53:15:c2:dd:0f:10:49:0d:0b:46:2a:90:bf:9e:39:72: f3:42:84:11:d8:2f:ca:5f:37:1f:11:5f:c1:51:b6:f5:56:99: 7f:7a:33:15:2a:c9:32:5a:83:9a:ec:dd:44:c7:fb:de:b1:ec: 14:73:51:12:7e:4c:a2:8d:ad:c4:b6:5e:68:62:8e:e8:d1:34: 58:44:e4:b0:d5:65:34:93:96:b8:81:45:fa:09:d2:a9:e8:4e: b8:c2:f2:42:d5:3e:aa:b7:52:7a:48:15:24:b3:e1:1c:af:60: a7:1d:e6:4f:4a:56:b5:cc:73:82:93:26:61:01:09:4b:a0:11: d5:5a:30:f0:c5:ae:06:eb:cd:c9:db:8a:6b:11:b2:1d:52:71: fd:a5:47:d3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXmAHBUrx8/xq37v8wI89pYQ0MrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUxMDM5WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzUyNmM3ZDI5OWJjZDllODM1YTFjMjE4MjU1ZTA5MWY5 Y2ZlNDU3MWEwMWI0ZmJhNTU0MDMyYTA3NDJlYmZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl/p+XC9PG33h9i5osQYJdHQNyZy10nqZ9+syNwKNHI20p H2jv+f7zIrss/MnYlXo7y2zM88voo/nqrDM3vdIQhWcaWA1mUxc4/R8mE7t2l+KZ CaPfnaAT5oxsPqAWVLeSynOrGFFpGPa+S6nttg6v6N6T2SzZ+ET7kHcnq/Trfbga 3aFihO3NyUJQxIwW7r11DZLNksFePlyuNNVUJe4/x103+I5IGXQoBL5QGxkyj64G ugM9eifnjzyuwaioL4C1R7aEu+fDXlk27mcRGhr6jqArH+UyuF2VLCvTLehthxWt YgVTqnnqL5hnFoGNCmMCDMkH7kha4mACecuqvCevAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULXNL4n9PwR88t/y5kzss6VuoJbMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhmMTM1MzZmLTI1YTMtNGZmMS05MTQxLTliODVkN2U0MGI4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAKAwDQYJKoZIhvcNAQELBQADggEBAA0eWoubbEC/l+PLKRTCIbED US+5zriSJ4v4+QCUXn5k/tvyKAc+hWrkISXc7uk852TiwQsw9xZjl6sEbwa9yPvx 6FfoVxzse9Bv/xKySPQlqXh20SzSMI40RSybyYNSoFuqDp26KZR/Sle+gPUdUxXC 3Q8QSQ0LRiqQv545cvNChBHYL8pfNx8RX8FRtvVWmX96MxUqyTJag5rs3UTH+96x 7BRzURJ+TKKNrcS2XmhijujRNFhE5LDVZTSTlriBRfoJ0qnoTrjC8kLVPqq3UnpI FSSz4RyvYKcd5k9KVrXMc4KTJmEBCUugEdVaMPDFrgbrzcnbimsRsh1Scf2lR9M= -----END CERTIFICATE-----Generated at Sun Mar 1 23:51:05 2026 by rpki-client