$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/91b85db6-7428-422a-85f4-a3d6732ec01e.roa File: 91b85db6-7428-422a-85f4-a3d6732ec01e.roa (raw, json) Hash identifier: SNBBS+Mwkw8b3PEGHmIO9RqFUjutqBzDHJThr/L3nXo= Subject key identifier: A7:9D:48:9E:DA:D0:A1:FB:FD:BF:E9:35:45:5E:0F:03:15:14:C7:7F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4E0A10AF0B4AEC208348E6703A59820CD5425E4A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/91b85db6-7428-422a-85f4-a3d6732ec01e.roa Signing time: Sun 01 Mar 2026 00:50:07 +0000 ROA not before: Sun 01 Mar 2026 00:50:07 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f10e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:0a:10:af:0b:4a:ec:20:83:48:e6:70:3a:59:82:0c:d5:42:5e:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 00:50:07 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=64c0dd295509a1f16f95b516e76147b1846c29cbcad002cf893b7c551296f8a2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b6:13:e9:d2:7e:11:d6:39:a0:cf:2d:d5:12: 18:a0:9e:27:f5:29:19:66:6a:4e:55:52:e0:97:8b: bf:de:2b:ec:dd:6e:b4:2b:2f:e6:e5:97:c1:2c:a1: 9d:5d:38:10:0b:a7:8f:8a:72:72:c1:a9:50:57:01: cc:c4:f0:56:51:f1:93:fd:35:b4:15:0f:fe:b9:b2: ae:0a:f3:56:e8:d3:6e:ae:36:30:ee:24:82:d5:53: 60:68:84:6a:f0:4a:bf:bc:c0:7b:1e:ad:62:2a:7d: 16:11:59:a7:45:03:34:fc:06:cc:90:f1:e3:81:2a: 13:a9:97:c0:51:17:e6:47:7a:72:0a:c1:f1:63:99: 85:f1:b4:9b:f5:32:1a:fe:1e:cb:81:2e:be:de:c2: 83:91:de:a5:51:3a:7d:aa:6d:8b:ed:81:66:61:80: 98:f4:42:03:4c:6c:00:f9:60:33:25:19:ec:b9:cb: 3f:60:3b:da:cf:c4:37:d7:e2:63:a7:c1:d2:db:62: 54:ef:38:45:c4:60:56:02:74:24:65:34:ee:b2:65: a4:bb:01:f0:7b:63:5b:7a:1d:5e:cd:6a:24:e1:df: 46:99:eb:74:37:fa:57:a6:6e:1d:05:53:0f:18:7d: cb:c9:90:82:a6:f3:f3:5a:59:65:7c:b7:58:67:01: 5a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:9D:48:9E:DA:D0:A1:FB:FD:BF:E9:35:45:5E:0F:03:15:14:C7:7F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/91b85db6-7428-422a-85f4-a3d6732ec01e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10e::/48 Signature Algorithm: sha256WithRSAEncryption 9f:f4:d2:1e:18:91:d8:b5:79:49:82:62:ed:64:84:3a:4f:4b: 92:ea:4b:58:0f:5c:4f:ec:d3:e2:63:70:e9:e4:dc:27:08:47: 3e:fb:e4:57:a9:9f:b0:ee:0b:ab:9e:2c:46:91:be:6d:98:c6: 1f:82:3b:ca:49:26:f9:e2:25:e7:ec:13:d2:40:77:cd:b1:86: 6c:93:aa:cd:3b:4f:b5:98:a0:97:3e:e9:2c:85:5b:bd:bd:ef: d9:7f:cf:87:57:a6:b9:5c:cd:e7:a5:33:7b:4f:e7:50:02:40: 29:18:03:5e:40:b3:99:64:e5:2e:cd:36:97:ce:b3:f5:2a:c6: 24:06:af:03:e4:7d:e2:0e:4a:cc:a2:07:89:cd:3b:a2:b6:2e: 0b:b9:95:21:ba:39:b3:57:4d:f9:96:ca:9e:c2:19:d4:63:7d: 7d:a8:d4:4f:53:1f:44:5f:64:8b:af:98:ed:cb:9f:4d:5e:33: bc:ae:16:4a:58:5a:a3:1e:26:d6:3f:2c:d0:1d:29:2c:1d:85: 79:c0:b8:c5:dc:6a:b7:8c:56:f7:ff:b9:41:be:05:e0:e4:44: 4d:d1:34:7a:71:73:e9:66:80:62:a1:8c:5e:55:21:c8:53:b5: 30:97:40:f7:b2:ea:c0:c2:02:e8:d2:dd:be:c7:c3:c5:93:d5: d7:c0:25:61 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTgoQrwtK7CCDSOZwOlmCDNVCXkowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDA1MDA3WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGMwZGQyOTU1MDlhMWYxNmY5NWI1MTZlNzYxNDdiMTg0 NmMyOWNiY2FkMDAyY2Y4OTNiN2M1NTEyOTZmOGEyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgthPp0n4R1jmgzy3VEhignif1KRlmak5VUuCXi7/eK+zd brQrL+bll8EsoZ1dOBALp4+KcnLBqVBXAczE8FZR8ZP9NbQVD/65sq4K81bo026u NjDuJILVU2BohGrwSr+8wHserWIqfRYRWadFAzT8BsyQ8eOBKhOpl8BRF+ZHenIK wfFjmYXxtJv1Mhr+HsuBLr7ewoOR3qVROn2qbYvtgWZhgJj0QgNMbAD5YDMlGey5 yz9gO9rPxDfX4mOnwdLbYlTvOEXEYFYCdCRlNO6yZaS7AfB7Y1t6HV7NaiTh30aZ 63Q3+lembh0FUw8YfcvJkIKm8/NaWWV8t1hnAVqTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUp51IntrQofv9v+k1RV4PAxUUx38wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzkxYjg1ZGI2LTc0MjgtNDIyYS04NWY0LWEzZDY3MzJlYzAxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78Q4wDQYJKoZIhvcNAQELBQADggEBAJ/00h4Ykdi1eUmCYu1khDpP S5LqS1gPXE/s0+JjcOnk3CcIRz775Fepn7DuC6ueLEaRvm2Yxh+CO8pJJvniJefs E9JAd82xhmyTqs07T7WYoJc+6SyFW72979l/z4dXprlczeelM3tP51ACQCkYA15A s5lk5S7NNpfOs/UqxiQGrwPkfeIOSsyiB4nNO6K2Lgu5lSG6ObNXTfmWyp7CGdRj fX2o1E9TH0RfZIuvmO3Ln01eM7yuFkpYWqMeJtY/LNAdKSwdhXnAuMXcareMVvf/ uUG+BeDkRE3RNHpxc+lmgGKhjF5VIchTtTCXQPey6sDCAujS3b7Hw8WT1dfAJWE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:07:17 2026 by rpki-client