$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa File: 9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa (raw, json) Hash identifier: vhKIsWZDbWU80CgIxPAn9JXyehfsj13j0I/3Z6s7Uu4= Subject key identifier: 5D:94:B1:2B:AB:D0:13:8A:A9:33:BC:B0:A3:E5:69:CB:3A:E7:B1:2A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4BB55A6D2544AA804E02CA0A86FBC28650FC3A84 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa Signing time: Fri 13 Feb 2026 15:10:56 +0000 ROA not before: Fri 13 Feb 2026 15:10:56 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:b5:5a:6d:25:44:aa:80:4e:02:ca:0a:86:fb:c2:86:50:fc:3a:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 13 15:10:56 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=3b1771c4dac1972e0889ecdbb93d2dc35f22845b491b7b6be7eef59b67b70a7d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:04:b5:f4:3f:1a:62:2f:46:eb:34:bc:89:97: 30:d2:14:ee:7e:68:38:00:ce:6d:f4:3f:a7:6b:ae: 31:f2:a0:aa:c6:9c:98:03:a0:b0:76:3a:57:e4:87: a8:29:4d:5a:07:e8:5d:27:1e:0e:bb:09:d5:b8:7a: 00:81:c1:39:ee:f6:24:9d:c2:3d:c4:2b:cf:80:70: a4:3f:13:cb:69:06:2d:61:a7:07:9a:13:86:51:27: 8e:07:6f:b7:ad:ba:e9:33:67:75:79:b8:fe:97:bb: 23:e9:9d:ea:fc:1b:ba:1b:d6:d3:7e:c2:e2:65:f0: 86:22:d0:71:66:e2:1d:c1:be:cd:7f:09:78:28:b4: a8:52:a9:60:c7:d4:22:27:52:09:06:8e:04:61:d4: a2:70:1e:3f:27:85:4e:4c:9b:3c:0f:a5:50:f8:c6: a2:77:de:16:b7:b7:d8:3c:e0:a8:56:ed:d8:1e:19: 70:c1:5f:79:26:95:c5:3f:c6:16:bf:55:ac:39:4f: 45:bb:63:fa:0d:14:29:e2:30:77:61:5b:09:a1:82: ca:ed:02:c0:70:c5:a1:78:98:dc:bc:46:7d:ee:d5: 4a:f4:16:90:b9:b6:a4:7e:e3:89:aa:03:9f:6c:f9: d5:89:3d:94:0d:be:7a:8f:b3:e6:24:5c:f7:01:af: b9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:94:B1:2B:AB:D0:13:8A:A9:33:BC:B0:A3:E5:69:CB:3A:E7:B1:2A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 4b:61:32:44:b6:93:9f:8b:70:38:96:94:18:14:3f:70:6e:f5: c9:61:16:9f:ae:c8:05:38:9c:a5:f0:93:b0:00:54:d6:ed:2c: b7:68:c0:cf:ef:78:dd:a9:b0:f5:3a:bb:31:ac:a5:f9:1d:47: e9:52:12:07:ee:70:d3:a6:2f:5d:82:6b:fa:6e:0c:7c:01:a7: 8f:5f:59:54:38:fa:58:d9:eb:3a:b0:5e:36:c5:4b:7e:2e:b9: 33:ee:be:1a:45:8a:19:83:b9:ed:24:d3:fa:69:7e:1c:a6:94: ec:52:49:66:f4:a5:99:af:92:66:02:be:1b:b5:8b:83:5d:9c: d7:85:ec:3e:c0:ce:f8:55:b3:e4:e9:c9:d2:ea:90:d7:fd:6a: 5a:0f:f0:9a:1d:eb:15:f1:d2:b6:c0:a4:03:40:3b:61:88:ef: cf:82:95:7a:64:39:2b:9d:02:d0:16:8b:80:6b:57:94:97:f3: 4c:84:18:19:12:48:c3:8f:33:7b:6f:da:03:e4:bc:f6:9d:fe: 6b:56:d0:bd:54:d0:65:ec:84:c3:ea:45:e4:0f:c8:4f:48:37: 3c:2d:0e:59:f8:99:b1:0b:fa:32:49:d1:ff:3e:02:8f:41:30: 1d:b1:ca:24:ee:79:dd:ac:bb:84:51:77:eb:43:b4:d7:4b:9c: d9:85:f5:06 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS7VabSVEqoBOAsoKhvvChlD8OoQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjEzMTUxMDU2WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYjE3NzFjNGRhYzE5NzJlMDg4OWVjZGJiOTNkMmRjMzVm MjI4NDViNDkxYjdiNmJlN2VlZjU5YjY3YjcwYTdkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYBLX0PxpiL0brNLyJlzDSFO5+aDgAzm30P6drrjHyoKrG nJgDoLB2Olfkh6gpTVoH6F0nHg67CdW4egCBwTnu9iSdwj3EK8+AcKQ/E8tpBi1h pweaE4ZRJ44Hb7etuukzZ3V5uP6XuyPpner8G7ob1tN+wuJl8IYi0HFm4h3Bvs1/ CXgotKhSqWDH1CInUgkGjgRh1KJwHj8nhU5MmzwPpVD4xqJ33ha3t9g84KhW7dge GXDBX3kmlcU/xha/Vaw5T0W7Y/oNFCniMHdhWwmhgsrtAsBwxaF4mNy8Rn3u1Ur0 FpC5tqR+44mqA59s+dWJPZQNvnqPs+YkXPcBr7l9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXZSxK6vQE4qpM7ywo+VpyzrnsSowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3MzhiYjBkLTFhODQtNDYwMS1iYzZiLTI1YmE3ZjQ5YzcyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBAEthMkS2k5+LcDiWlBgUP3Bu 9clhFp+uyAU4nKXwk7AAVNbtLLdowM/veN2psPU6uzGspfkdR+lSEgfucNOmL12C a/puDHwBp49fWVQ4+ljZ6zqwXjbFS34uuTPuvhpFihmDue0k0/ppfhymlOxSSWb0 pZmvkmYCvhu1i4NdnNeF7D7AzvhVs+TpydLqkNf9aloP8Jod6xXx0rbApANAO2GI 78+ClXpkOSudAtAWi4BrV5SX80yEGBkSSMOPM3tv2gPkvPad/mtW0L1U0GXshMPq ReQPyE9INzwtDln4mbEL+jJJ0f8+Ao9BMB2xyiTued2su4RRd+tDtNdLnNmF9QY= -----END CERTIFICATE-----Generated at Mon Mar 2 02:47:50 2026 by rpki-client