$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a188fe83-6643-4c1d-a083-434d151a0315.roa File: a188fe83-6643-4c1d-a083-434d151a0315.roa (raw, json) Hash identifier: CQkXawv1mabPBQ3SaTdVWD8fY6HvH/Xoew8Wh23VqAc= Subject key identifier: 57:77:C0:B8:B5:5B:33:99:85:DA:D7:9B:9C:E2:86:B8:33:F4:AF:A4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 03E1E35104D0DD1F8092E0E2E9D843E003891AB0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a188fe83-6643-4c1d-a083-434d151a0315.roa Signing time: Fri 13 Feb 2026 15:00:14 +0000 ROA not before: Fri 13 Feb 2026 15:00:14 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6121::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:e1:e3:51:04:d0:dd:1f:80:92:e0:e2:e9:d8:43:e0:03:89:1a:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 13 15:00:14 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=f298be7e82866b4da5cd1067c268a0ab2834621fa89bf5b7d9dfd28a5fed0151, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:dc:8f:53:dc:19:41:97:1c:3c:c6:ea:2f:44: fc:4e:ac:77:8b:6f:ba:c3:57:17:58:5d:45:a9:d5: f6:21:2c:a0:ce:4a:8d:a1:53:2b:71:9e:a8:52:07: 33:db:db:34:65:0f:ed:2c:e5:e0:38:99:f3:35:94: bb:b6:9c:eb:c8:b8:a0:df:35:ab:0c:23:85:8c:c2: 65:3a:e8:de:b5:bf:c4:ff:27:e4:87:b5:0f:c8:e4: 5a:9c:ab:97:6b:ad:1f:13:97:6a:fe:6a:2a:3c:3d: 35:d8:68:be:06:73:de:68:24:ca:90:e4:00:45:7f: f5:7d:e5:67:60:7e:a7:df:3e:00:61:a5:f1:2d:54: 8b:11:dd:b7:17:54:ea:4e:97:24:3f:ff:a3:47:ea: af:a4:ef:33:9e:6c:0a:50:68:2a:06:81:4e:d3:fc: b2:2b:5a:fe:3e:99:ab:fa:aa:42:69:f9:bd:b7:d0: cf:ef:91:81:7e:96:24:af:54:9b:67:51:46:42:6b: e6:9b:6e:8e:cb:5f:3c:47:7c:0f:21:f3:33:41:f7: 9f:75:81:f2:74:2f:73:47:5b:09:26:ee:29:45:92: bd:6b:3b:ea:89:1c:49:56:f0:fa:6d:0a:67:81:fe: 5b:12:46:08:37:27:99:52:95:2b:d9:ec:63:70:72: 9c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:77:C0:B8:B5:5B:33:99:85:DA:D7:9B:9C:E2:86:B8:33:F4:AF:A4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a188fe83-6643-4c1d-a083-434d151a0315.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6121::/48 Signature Algorithm: sha256WithRSAEncryption 0f:ac:af:b5:2c:b7:77:d0:eb:5c:1e:eb:c7:af:50:7b:68:f6: 5f:f4:67:6f:0f:99:7e:a7:b9:85:4e:c4:1f:90:5e:16:dc:34: 4c:7a:45:06:51:4b:1c:7f:1b:ae:c7:40:35:2d:70:66:d3:41: f9:ec:98:05:6d:1b:c3:b6:e7:5d:94:5e:a4:55:21:63:37:2b: 7c:6f:fc:59:5d:c0:01:e3:92:f6:f6:15:c1:fc:d0:52:72:78: 49:21:ad:2f:24:6b:be:62:17:1a:23:89:a5:8a:20:bf:37:e8: ce:44:0d:42:35:02:5b:d5:f8:07:74:ac:e5:c7:a9:ee:21:1c: 46:f3:55:ba:81:f7:c8:15:cd:26:98:65:41:57:7d:41:e0:aa: c4:17:be:d9:fe:d6:80:23:6a:33:f2:3e:0c:82:c8:bf:04:02: e2:66:28:76:4e:89:23:45:d0:32:f3:be:5d:4e:63:45:d3:14: 2c:ce:ff:ee:23:f8:45:6b:aa:0e:a9:eb:0d:ba:91:0f:8c:c2: 29:bc:31:20:09:94:9f:18:23:25:b2:c5:9c:fa:88:cc:fc:e2: bd:c1:bf:5a:58:94:2a:09:49:8f:3f:1d:bc:f6:30:a8:39:3e: 43:3d:dd:9a:ab:5a:d3:76:cb:62:9f:d3:f1:31:48:11:d2:e7: 9f:4b:f3:61 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUA+HjUQTQ3R+AkuDi6dhD4AOJGrAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjEzMTUwMDE0WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjk4YmU3ZTgyODY2YjRkYTVjZDEwNjdjMjY4YTBhYjI4 MzQ2MjFmYTg5YmY1YjdkOWRmZDI4YTVmZWQwMTUxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB3I9T3BlBlxw8xuovRPxOrHeLb7rDVxdYXUWp1fYhLKDO So2hUytxnqhSBzPb2zRlD+0s5eA4mfM1lLu2nOvIuKDfNasMI4WMwmU66N61v8T/ J+SHtQ/I5Fqcq5drrR8Tl2r+aio8PTXYaL4Gc95oJMqQ5ABFf/V95WdgfqffPgBh pfEtVIsR3bcXVOpOlyQ//6NH6q+k7zOebApQaCoGgU7T/LIrWv4+mav6qkJp+b23 0M/vkYF+liSvVJtnUUZCa+abbo7LXzxHfA8h8zNB9591gfJ0L3NHWwkm7ilFkr1r O+qJHElW8PptCmeB/lsSRgg3J5lSlSvZ7GNwcpznAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUV3fAuLVbM5mF2tebnOKGuDP0r6QwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExODhmZTgzLTY2NDMtNGMxZC1hMDgzLTQzNGQxNTFhMDMxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSEwDQYJKoZIhvcNAQELBQADggEBAA+sr7Ust3fQ61we68evUHto 9l/0Z28PmX6nuYVOxB+QXhbcNEx6RQZRSxx/G67HQDUtcGbTQfnsmAVtG8O2512U XqRVIWM3K3xv/FldwAHjkvb2FcH80FJyeEkhrS8ka75iFxojiaWKIL836M5EDUI1 AlvV+Ad0rOXHqe4hHEbzVbqB98gVzSaYZUFXfUHgqsQXvtn+1oAjajPyPgyCyL8E AuJmKHZOiSNF0DLzvl1OY0XTFCzO/+4j+EVrqg6p6w26kQ+Mwim8MSAJlJ8YIyWy xZz6iMz84r3Bv1pYlCoJSY8/Hbz2MKg5PkM93ZqrWtN2y2Kf0/ExSBHS559L82E= -----END CERTIFICATE-----Generated at Sun Mar 1 22:13:16 2026 by rpki-client