$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa File: a1083a01-360a-4b23-a3a3-630df82536fc.roa (raw, json) Hash identifier: 4w6EGwWRzWus6g4XSY8ZRpcfwIg1P9jH98Nd9xvnMJk= Subject key identifier: 44:41:D4:40:CC:CD:C2:6D:E5:C3:05:A2:73:77:25:B6:B7:20:33:4A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 71E9867FE0900542BF6AD474DF595A7A3FEB981A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa Signing time: Sat 28 Feb 2026 04:50:11 +0000 ROA not before: Sat 28 Feb 2026 04:50:11 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:e9:86:7f:e0:90:05:42:bf:6a:d4:74:df:59:5a:7a:3f:eb:98:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 04:50:11 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=689e28ad6583fad33e4f91734c4a35817652c419e201ad780f741738777b117d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:36:02:7c:4b:2b:c7:37:5b:91:13:a6:1b:b4: 03:f1:39:5e:27:ab:6b:48:13:8f:8c:7a:2f:20:46: a8:84:e7:c6:94:c3:8f:ce:5c:fb:ee:be:40:18:2a: e9:e1:df:a5:98:54:36:77:90:2c:75:df:f1:ed:e7: 9c:d6:45:8e:62:02:20:af:4e:e0:8a:7c:1a:22:21: 2c:3a:91:ec:b1:16:53:4f:20:eb:14:e3:fb:80:24: 1d:92:03:1e:b6:2b:c0:ff:9c:ed:5a:bb:90:1c:58: 5b:4b:32:32:64:a2:13:ec:bf:1c:d4:80:98:9e:23: 7a:36:22:9e:99:57:06:aa:37:02:9f:5e:9e:4d:46: 04:1d:13:04:e1:2c:24:af:7d:9b:7a:ee:39:3a:40: af:a4:ae:66:be:cd:b9:3c:01:8a:ea:00:ce:2c:7e: c2:88:62:e3:3c:2c:89:2c:e7:1c:54:05:f1:de:34: b8:90:74:47:df:6e:b4:9d:fb:f4:e8:ad:8c:5e:e6: 12:f7:dc:29:29:20:69:dd:4e:4f:67:9f:be:7e:4f: 6a:68:8c:e8:2f:33:ef:08:db:4e:51:6e:8b:e8:42: 87:ce:1e:ac:fe:81:20:46:36:19:47:ce:6b:14:b0: 12:31:53:8a:58:f8:98:65:19:d4:b8:3d:bf:ad:0a: ea:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:41:D4:40:CC:CD:C2:6D:E5:C3:05:A2:73:77:25:B6:B7:20:33:4A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 80:db:76:88:74:44:94:2d:12:32:12:c5:6f:fe:4d:7c:e1:7a: 18:ae:8d:a4:cc:a7:b7:b8:90:75:f7:1a:6f:83:06:63:e6:57: 9b:96:b6:eb:87:96:1a:4d:e4:b8:6e:9c:dc:b3:cc:09:c2:ef: d3:23:47:5d:5b:7c:47:b0:48:57:ca:a4:65:1b:6d:c6:24:eb: 2a:d6:fe:f2:65:33:02:7b:2e:a1:ed:0f:a6:13:4a:04:57:f7: 32:b5:fd:f9:50:0e:bf:c1:37:5b:50:3c:36:73:e6:44:f9:b5: 32:96:0f:28:86:c0:0a:9f:01:d8:99:a8:7e:a1:df:7f:ff:14: db:1e:ca:4e:e1:09:3e:b7:78:cd:6a:70:84:f2:a0:f5:ce:eb: d1:90:f8:d2:ab:8f:1b:5b:84:d7:57:5a:db:ff:b1:51:ae:cf: 06:5b:d7:ad:73:89:e1:1e:3f:46:22:fd:72:ac:bc:7f:1a:53: d7:6f:e9:2c:da:72:01:ef:4a:a9:df:5e:da:7b:51:49:66:40: 6e:f6:f2:6c:4e:bf:87:03:16:77:d2:3d:35:57:9a:61:64:15: 8b:17:70:51:85:a0:cc:a4:34:d5:a8:7c:1f:18:c2:0d:e1:67: 3c:26:39:5d:cb:5a:a6:d2:2b:ec:b1:19:48:ee:ca:8b:1b:df: 3b:9c:00:65 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcemGf+CQBUK/atR031laej/rmBowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDQ1MDExWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODllMjhhZDY1ODNmYWQzM2U0ZjkxNzM0YzRhMzU4MTc2 NTJjNDE5ZTIwMWFkNzgwZjc0MTczODc3N2IxMTdkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTNgJ8SyvHN1uRE6YbtAPxOV4nq2tIE4+Mei8gRqiE58aU w4/OXPvuvkAYKunh36WYVDZ3kCx13/Ht55zWRY5iAiCvTuCKfBoiISw6keyxFlNP IOsU4/uAJB2SAx62K8D/nO1au5AcWFtLMjJkohPsvxzUgJieI3o2Ip6ZVwaqNwKf Xp5NRgQdEwThLCSvfZt67jk6QK+krma+zbk8AYrqAM4sfsKIYuM8LIks5xxUBfHe NLiQdEffbrSd+/TorYxe5hL33CkpIGndTk9nn75+T2pojOgvM+8I205RbovoQofO Hqz+gSBGNhlHzmsUsBIxU4pY+JhlGdS4Pb+tCuoJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUREHUQMzNwm3lwwWic3cltrcgM0owHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExMDgzYTAxLTM2MGEtNGIyMy1hM2EzLTYzMGRmODI1MzZmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAIDbdoh0RJQtEjISxW/+TXzh ehiujaTMp7e4kHX3Gm+DBmPmV5uWtuuHlhpN5LhunNyzzAnC79MjR11bfEewSFfK pGUbbcYk6yrW/vJlMwJ7LqHtD6YTSgRX9zK1/flQDr/BN1tQPDZz5kT5tTKWDyiG wAqfAdiZqH6h33//FNseyk7hCT63eM1qcITyoPXO69GQ+NKrjxtbhNdXWtv/sVGu zwZb161zieEeP0Yi/XKsvH8aU9dv6SzacgHvSqnfXtp7UUlmQG728mxOv4cDFnfS PTVXmmFkFYsXcFGFoMykNNWofB8Ywg3hZzwmOV3LWqbSK+yxGUjuyosb3zucAGU= -----END CERTIFICATE-----Generated at Sun Mar 1 23:53:06 2026 by rpki-client