$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa File: 976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa (raw, json) Hash identifier: eARkp1ZL4hKxXqZOm6E1c/fMw/ic5rB2Ffv/egT8wHM= Subject key identifier: 34:EE:73:5D:40:DA:D4:C7:D6:F4:7D:43:1B:F3:03:2F:2D:92:F4:77 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 36B87CE69DE9A1ECEF080D0716C2B7B096016816 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa Signing time: Sat 28 Feb 2026 05:00:05 +0000 ROA not before: Sat 28 Feb 2026 05:00:05 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:b8:7c:e6:9d:e9:a1:ec:ef:08:0d:07:16:c2:b7:b0:96:01:68:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:05 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=210eff78674d57ce54766061b46f7a380a0d89380ea14b18168bf48bbb07bc46, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:71:6d:a8:3b:4e:f1:a1:6e:7e:43:59:04:6b: 07:06:18:b3:3c:84:18:f3:05:e7:5b:59:6a:fc:d1: 92:9d:11:e2:06:58:c4:0e:f7:8f:6e:44:35:8d:b2: 4e:fe:28:41:03:b1:1f:0c:99:6a:3a:b5:22:22:54: 12:5e:47:62:c0:22:24:8d:2c:73:cb:95:ec:95:95: 87:54:95:db:25:58:e4:25:58:49:04:3a:3d:44:71: 97:63:d8:95:83:94:af:d0:70:e8:d7:aa:80:3b:8a: ec:e6:4e:91:40:77:24:8e:f7:a7:00:0b:c1:8b:0c: 79:3e:5b:db:14:c4:71:3a:55:41:81:39:a6:2f:24: 82:88:2e:61:8d:65:94:af:5c:dd:12:48:7a:87:b7: 2a:9a:93:14:92:ba:44:7e:a1:1a:a6:9b:13:25:84: 6c:10:4c:1e:81:27:c3:44:2a:17:aa:1a:a5:b3:6b: 16:e6:7d:b2:e8:08:6c:cf:f6:cb:0e:93:93:21:b9: ab:ea:ce:05:ed:55:2f:51:c2:39:ac:ca:cc:02:a3: 5a:a5:95:77:7f:92:3a:34:1c:82:19:99:aa:0f:e3: 89:fc:da:0c:86:03:b8:10:b4:e2:05:ef:02:82:a4: 03:21:3a:5e:bc:ce:a0:67:d8:f6:c7:46:10:81:15: ad:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:EE:73:5D:40:DA:D4:C7:D6:F4:7D:43:1B:F3:03:2F:2D:92:F4:77 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:f00::/48 Signature Algorithm: sha256WithRSAEncryption 75:d2:d5:65:af:69:cc:6a:07:c9:91:b3:b9:21:a2:52:62:27: 70:7f:ad:34:ac:9c:ac:1a:50:3a:c2:a8:e9:1d:a0:ac:5a:4e: 72:b5:58:38:2b:72:62:d2:23:ca:3c:12:2b:3b:7b:7d:75:d5: 55:99:f2:cd:99:ea:67:f2:3d:0d:0d:32:7c:e9:8a:4b:27:2f: 2a:9f:b0:88:80:32:9b:78:dd:39:be:8c:ae:bf:25:d8:ae:f2: 2d:f9:01:b4:31:ff:fb:f8:84:46:61:37:0c:a9:a9:98:f3:83: 60:53:bf:fd:58:df:8a:f3:f7:49:94:f4:c7:5b:da:46:4b:d5: 6b:fa:c3:be:66:0e:68:84:79:d6:06:3c:16:60:6a:99:2c:67: a2:28:ca:ec:9f:b4:88:c8:97:8c:d6:44:ae:1a:c5:5b:5e:f5: c6:b2:06:0c:e2:eb:1e:71:12:d2:99:77:ae:89:65:ab:5a:86: 58:c2:30:8d:15:f9:df:15:09:6f:fa:53:62:3a:d7:ae:76:7a: a0:0d:6a:26:5f:d4:76:e2:8c:ef:6b:44:44:54:0d:40:39:5e: 47:09:b2:a9:3a:39:fa:73:6a:c3:c1:d3:76:40:35:b0:a3:f4: 32:28:31:9e:0a:9d:6e:fe:fc:d1:3b:e9:6e:25:07:2a:03:cb: 07:9c:4c:16 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNrh85p3poezvCA0HFsK3sJYBaBYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDA1WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTBlZmY3ODY3NGQ1N2NlNTQ3NjYwNjFiNDZmN2EzODBh MGQ4OTM4MGVhMTRiMTgxNjhiZjQ4YmJiMDdiYzQ2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2cW2oO07xoW5+Q1kEawcGGLM8hBjzBedbWWr80ZKdEeIG WMQO949uRDWNsk7+KEEDsR8MmWo6tSIiVBJeR2LAIiSNLHPLleyVlYdUldslWOQl WEkEOj1EcZdj2JWDlK/QcOjXqoA7iuzmTpFAdySO96cAC8GLDHk+W9sUxHE6VUGB OaYvJIKILmGNZZSvXN0SSHqHtyqakxSSukR+oRqmmxMlhGwQTB6BJ8NEKheqGqWz axbmfbLoCGzP9ssOk5MhuavqzgXtVS9RwjmsyswCo1qllXd/kjo0HIIZmaoP44n8 2gyGA7gQtOIF7wKCpAMhOl68zqBn2PbHRhCBFa2PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNO5zXUDa1MfW9H1DG/MDLy2S9HcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3NjYyM2FkLTBiNWEtNGE1Zi1iNGEzLTYwNjgxZDJlYWM3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwDwAwDQYJKoZIhvcNAQELBQADggEBAHXS1WWvacxqB8mRs7kholJi J3B/rTSsnKwaUDrCqOkdoKxaTnK1WDgrcmLSI8o8Eis7e3111VWZ8s2Z6mfyPQ0N MnzpiksnLyqfsIiAMpt43Tm+jK6/Jdiu8i35AbQx//v4hEZhNwypqZjzg2BTv/1Y 34rz90mU9Mdb2kZL1Wv6w75mDmiEedYGPBZgapksZ6IoyuyftIjIl4zWRK4axVte 9cayBgzi6x5xEtKZd66JZatahljCMI0V+d8VCW/6U2I61652eqANaiZf1HbijO9r RERUDUA5XkcJsqk6OfpzasPB03ZANbCj9DIoMZ4KnW7+/NE76W4lByoDywecTBY= -----END CERTIFICATE-----Generated at Sun Mar 1 22:13:45 2026 by rpki-client