$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa File: 973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa (raw, json) Hash identifier: OsQlkz2sCVydxyfd86Va4IFCxISDkhdrdgV6+v0DHU0= Subject key identifier: 7F:BD:81:42:42:88:11:82:65:5E:10:04:99:4B:F0:CB:FE:20:26:7C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7B1F2C1A1997933E1F47D5B295468C0412C4409A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa Signing time: Fri 13 Feb 2026 15:00:38 +0000 ROA not before: Fri 13 Feb 2026 15:00:38 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:1f:2c:1a:19:97:93:3e:1f:47:d5:b2:95:46:8c:04:12:c4:40:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 13 15:00:38 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=99c4a544c65df791b06119aa5ce52d8f9947d79096b5e4779166d319cefddccd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:42:1a:d0:48:a9:c5:26:f8:55:5f:8e:45:14: 0e:3a:81:fa:2d:00:eb:02:1f:01:34:95:1f:84:fa: f3:51:93:61:cd:70:30:34:98:05:70:c1:73:dc:0c: 1c:6b:c2:0d:62:e2:63:f5:18:0d:85:be:a0:ab:5c: 92:05:2d:95:23:9a:76:b6:f3:2f:ed:fa:ec:97:af: a0:02:d7:30:25:3c:9b:61:8a:3b:ea:04:23:57:fa: 57:8b:87:5d:36:f0:d8:21:0d:7e:4d:f9:7f:01:45: cd:1e:98:b1:20:9b:d6:a5:85:5e:47:23:17:05:b4: 64:45:06:fd:91:f1:00:3c:2f:57:f6:85:46:a8:01: fb:89:5b:6a:57:6c:c3:0e:e2:4c:4c:66:fb:6d:80: 0c:c5:a9:2d:58:6b:b2:2d:b2:c4:24:9a:c8:c6:05: 64:dd:5b:c6:9d:4d:37:dc:de:14:63:ee:b3:60:a0: 3a:33:bb:de:7b:e8:9f:7c:3e:2d:85:85:bc:3c:cb: 7a:5f:93:95:3c:d6:3d:1e:b7:11:26:93:99:28:05: be:1e:76:a0:e8:f0:43:57:c2:58:4b:8b:88:4d:ff: d9:15:91:a1:a4:6d:34:56:ea:26:e1:5d:06:4b:98: 48:b5:85:c5:bb:27:d7:8a:bc:3e:98:e4:8f:d3:1f: 10:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:BD:81:42:42:88:11:82:65:5E:10:04:99:4B:F0:CB:FE:20:26:7C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6120::/48 Signature Algorithm: sha256WithRSAEncryption 88:91:3d:e5:3a:f0:b7:ad:c6:7a:bc:b6:bf:1a:0c:fc:a4:8d: 43:39:8f:88:11:c3:d5:00:28:8a:f2:ba:e9:66:98:7e:97:cf: 59:3e:85:c6:b5:f3:cc:64:36:a6:2b:94:7b:c4:95:85:e3:27: 26:4a:6d:d8:b2:cf:88:fb:25:eb:4b:c0:cb:89:f9:de:ec:64: 6d:a4:9f:d0:fe:6f:de:6f:03:e1:39:70:fe:79:97:22:91:d9: a4:49:16:40:18:3d:bd:a1:ea:97:79:47:1f:d4:a3:ad:94:e7: d1:2d:95:bd:b6:ab:ad:af:c1:5d:dc:9b:b2:5f:71:6d:a1:53: fb:47:08:94:9a:b0:f9:5a:90:74:84:d9:d0:54:fd:8a:e4:11: 01:60:7c:d0:9c:0c:53:5f:93:8d:dd:0a:20:7a:ac:31:68:b7: 2e:5b:b1:e8:c5:b8:b9:95:e6:6b:8e:0c:db:c0:09:a8:ce:0c: 90:37:65:57:d6:fe:3d:2c:4b:6c:f9:58:88:56:ad:74:9d:ac: e1:e0:08:ba:24:1f:1e:82:d4:88:aa:fc:93:76:6a:82:85:db: a9:f1:93:ac:d3:05:df:20:e3:b4:f1:e0:c6:19:40:50:57:84: b7:50:e2:b4:f8:b1:a2:3a:fb:e5:4f:f7:56:d2:3f:92:0b:9d: 23:3a:c6:5b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUex8sGhmXkz4fR9WylUaMBBLEQJowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjEzMTUwMDM4WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OWM0YTU0NGM2NWRmNzkxYjA2MTE5YWE1Y2U1MmQ4Zjk5 NDdkNzkwOTZiNWU0Nzc5MTY2ZDMxOWNlZmRkY2NkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9QhrQSKnFJvhVX45FFA46gfotAOsCHwE0lR+E+vNRk2HN cDA0mAVwwXPcDBxrwg1i4mP1GA2FvqCrXJIFLZUjmna28y/t+uyXr6AC1zAlPJth ijvqBCNX+leLh1028NghDX5N+X8BRc0emLEgm9alhV5HIxcFtGRFBv2R8QA8L1f2 hUaoAfuJW2pXbMMO4kxMZvttgAzFqS1Ya7ItssQkmsjGBWTdW8adTTfc3hRj7rNg oDozu9576J98Pi2Fhbw8y3pfk5U81j0etxEmk5koBb4edqDo8ENXwlhLi4hN/9kV kaGkbTRW6ibhXQZLmEi1hcW7J9eKvD6Y5I/THxDXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUf72BQkKIEYJlXhAEmUvwy/4gJnwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3M2U4MjFjLThiMmMtNGMyYi05M2ZjLTJlMDBlZjcyMWZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSAwDQYJKoZIhvcNAQELBQADggEBAIiRPeU68Letxnq8tr8aDPyk jUM5j4gRw9UAKIryuulmmH6Xz1k+hca188xkNqYrlHvElYXjJyZKbdiyz4j7JetL wMuJ+d7sZG2kn9D+b95vA+E5cP55lyKR2aRJFkAYPb2h6pd5Rx/Uo62U59Etlb22 q62vwV3cm7JfcW2hU/tHCJSasPlakHSE2dBU/YrkEQFgfNCcDFNfk43dCiB6rDFo ty5bsejFuLmV5muODNvACajODJA3ZVfW/j0sS2z5WIhWrXSdrOHgCLokHx6C1Iiq /JN2aoKF26nxk6zTBd8g47Tx4MYZQFBXhLdQ4rT4saI6++VP91bSP5ILnSM6xls= -----END CERTIFICATE-----Generated at Sun Mar 1 21:54:27 2026 by rpki-client