$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9064d4f5-965a-4659-9876-beff899ab4b1.roa File: 9064d4f5-965a-4659-9876-beff899ab4b1.roa (raw, json) Hash identifier: rQCANOP5rzM96sNqYSzFeCJKI7+wzpD0Yyf4MHdaPTA= Subject key identifier: DE:09:C0:08:CE:33:36:17:BD:23:A2:D4:DB:52:44:A0:66:22:93:49 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2960AA80A1D2A49C489FF948D37D158F4DD06499 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9064d4f5-965a-4659-9876-beff899ab4b1.roa Signing time: Fri 13 Feb 2026 15:00:37 +0000 ROA not before: Fri 13 Feb 2026 15:00:37 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6114::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:60:aa:80:a1:d2:a4:9c:48:9f:f9:48:d3:7d:15:8f:4d:d0:64:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 13 15:00:37 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=37ffff6520000391deeb92f621b04d1dffd2a541ba1c19521ff92863d2d6846d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:18:04:86:65:3e:5b:c0:07:a1:c8:1c:9a:0d: 7f:18:7c:44:e1:8e:57:36:7b:cb:bb:73:3b:f8:42: 94:46:96:c0:1c:c4:56:23:d7:e8:b2:28:0f:b4:68: 56:c5:e8:79:0c:35:5c:9f:cb:ac:95:20:16:20:cf: cc:8a:ee:df:10:f1:04:84:4a:1a:d3:c7:23:c9:76: ca:87:b7:a1:af:10:b0:05:b9:c1:ed:79:75:4a:2e: 5e:66:60:c2:ac:e2:2b:05:d1:18:5b:28:e6:1f:cc: 04:e9:af:50:34:3d:ed:5a:3d:27:43:21:77:85:1b: ee:d7:cd:bd:ce:11:b6:4a:52:cd:f3:26:81:7f:1f: d6:52:ad:69:6c:b5:d7:13:69:e6:ee:01:3d:72:57: 06:08:a8:ea:d1:39:e9:b6:0e:2a:71:7e:98:42:fc: 71:14:83:c8:46:9e:4a:63:96:e7:aa:00:24:fe:f3: 11:75:64:2d:50:90:21:e0:a5:22:28:e6:89:90:e4: a6:d7:0b:4b:f4:7b:30:8c:22:bb:a3:75:a8:12:ea: 6c:68:04:e5:0b:e7:04:bb:fb:05:1a:3e:10:a4:60: d4:b8:23:16:ee:0d:7e:c2:2b:f4:dd:2f:60:2a:62: 68:b7:41:6c:67:45:ab:c9:08:d5:01:23:80:fc:18: c5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:09:C0:08:CE:33:36:17:BD:23:A2:D4:DB:52:44:A0:66:22:93:49 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9064d4f5-965a-4659-9876-beff899ab4b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6114::/48 Signature Algorithm: sha256WithRSAEncryption 8a:92:9d:30:a7:c9:bc:21:3d:c3:f7:fe:19:f4:81:a2:54:0a: 69:f0:eb:01:e8:eb:e5:80:5f:5b:8b:95:c4:cf:e0:6a:e7:d0: 0e:08:fc:55:46:94:6b:81:1b:e7:d9:0d:84:2f:f2:22:56:89: 48:eb:8e:1d:d6:14:42:b9:02:66:55:ba:c3:68:ff:72:01:82: ac:b5:fe:3f:8e:ae:61:9c:1b:32:dd:75:99:ad:fa:dc:6c:9a: a0:1c:2a:06:24:ea:e6:ac:aa:bb:b9:47:40:ee:61:25:a8:9e: 1a:e3:7a:7a:e5:ac:15:6d:0b:79:19:d1:0b:8a:ec:27:01:6a: ab:cd:32:59:79:77:b6:5e:8d:33:f6:83:58:f6:cb:8f:9e:c6: f7:82:6b:76:19:c7:09:4e:3d:39:39:9b:db:9d:63:f6:74:87: be:a4:d2:fc:5f:e8:b5:eb:59:cd:f0:eb:86:26:27:b4:6f:ec: e1:00:9a:2d:f2:c2:48:5a:4d:40:6a:fd:93:3c:f2:02:71:63: 0c:e9:88:77:6c:3f:59:d0:b4:e7:87:ab:8e:8e:3a:42:81:fc: 79:68:9e:aa:00:b4:f0:ba:31:f0:27:00:7c:6e:0c:7b:26:f2: ec:5b:6f:6d:49:de:0a:61:35:b9:6d:4c:cd:3e:9e:63:0d:88: a5:48:92:08 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKWCqgKHSpJxIn/lI030Vj03QZJkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjEzMTUwMDM3WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzN2ZmZmY2NTIwMDAwMzkxZGVlYjkyZjYyMWIwNGQxZGZm ZDJhNTQxYmExYzE5NTIxZmY5Mjg2M2QyZDY4NDZkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVGASGZT5bwAehyByaDX8YfEThjlc2e8u7czv4QpRGlsAc xFYj1+iyKA+0aFbF6HkMNVyfy6yVIBYgz8yK7t8Q8QSEShrTxyPJdsqHt6GvELAF ucHteXVKLl5mYMKs4isF0RhbKOYfzATpr1A0Pe1aPSdDIXeFG+7Xzb3OEbZKUs3z JoF/H9ZSrWlstdcTaebuAT1yVwYIqOrROem2DipxfphC/HEUg8hGnkpjlueqACT+ 8xF1ZC1QkCHgpSIo5omQ5KbXC0v0ezCMIrujdagS6mxoBOUL5wS7+wUaPhCkYNS4 IxbuDX7CK/TdL2AqYmi3QWxnRavJCNUBI4D8GMUvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3gnACM4zNhe9I6LU21JEoGYik0kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzkwNjRkNGY1LTk2NWEtNDY1OS05ODc2LWJlZmY4OTlhYjRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRQwDQYJKoZIhvcNAQELBQADggEBAIqSnTCnybwhPcP3/hn0gaJU Cmnw6wHo6+WAX1uLlcTP4Grn0A4I/FVGlGuBG+fZDYQv8iJWiUjrjh3WFEK5AmZV usNo/3IBgqy1/j+OrmGcGzLddZmt+txsmqAcKgYk6uasqru5R0DuYSWonhrjenrl rBVtC3kZ0QuK7CcBaqvNMll5d7ZejTP2g1j2y4+exveCa3YZxwlOPTk5m9udY/Z0 h76k0vxf6LXrWc3w64YmJ7Rv7OEAmi3ywkhaTUBq/ZM88gJxYwzpiHdsP1nQtOeH q46OOkKB/HlonqoAtPC6MfAnAHxuDHsm8uxbb21J3gphNbltTM0+nmMNiKVIkgg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:07:27 2026 by rpki-client