$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a243183f-74f0-4016-b61d-47b029a3c4e1.roa File: a243183f-74f0-4016-b61d-47b029a3c4e1.roa (raw, json) Hash identifier: kvS9sAHnBzxEXYuwhrnYZX9eCkijJ06dDU/vQu5gRE4= Subject key identifier: BC:DA:84:6C:7C:27:FC:10:62:0A:30:B1:24:AD:48:57:1C:DC:9E:68 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2B354AB6246EF32B2A69F0DA98D95880DF520AFB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a243183f-74f0-4016-b61d-47b029a3c4e1.roa Signing time: Sat 28 Feb 2026 05:10:41 +0000 ROA not before: Sat 28 Feb 2026 05:10:41 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e100::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:35:4a:b6:24:6e:f3:2b:2a:69:f0:da:98:d9:58:80:df:52:0a:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:10:41 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=2c133544d988b9a94ae220329f403c956c463c9fcce2150a9a5bd6efcd04fb1d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:35:5a:95:85:32:7b:4e:8e:2f:16:1a:6b:96: 53:ef:98:03:e3:d9:8e:f9:9a:38:ef:ae:33:aa:9a: df:9a:77:14:43:1c:02:c7:85:75:a0:4f:28:3e:00: 60:c6:62:1a:8e:44:f8:7f:85:14:ae:e3:81:70:04: 98:79:64:f0:b5:2e:bc:4e:a2:15:11:3d:da:3e:de: aa:99:20:1b:65:a9:fa:23:a9:d7:78:f5:17:01:d5: be:54:1f:95:37:f0:f1:10:4d:8b:f8:06:8f:44:b6: 7d:79:eb:aa:df:f7:3c:4f:16:b4:19:9b:1a:4c:8a: 16:63:28:ae:d9:4d:ac:72:d4:28:97:ff:45:0d:b7: 5b:09:0a:fa:9c:10:2d:59:23:d4:02:5b:db:92:0b: 3e:c3:67:df:f1:4c:47:b0:ac:fc:3a:14:ff:f2:22: 43:2f:29:fd:6f:50:7f:fa:2b:fc:4f:33:63:d4:ff: f5:7a:fe:29:06:22:47:72:b7:1f:12:bc:af:95:ea: 5e:43:88:fa:0e:ed:26:fc:cd:13:f5:8e:93:e9:67: db:4c:c9:b5:84:4c:d7:e2:1c:e0:c2:f0:cd:78:d2: 60:e4:c9:af:67:9b:d3:26:57:f0:b9:f2:82:f2:2e: ff:0f:65:6c:10:06:bd:5f:d6:11:6f:2c:df:be:19: 14:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:DA:84:6C:7C:27:FC:10:62:0A:30:B1:24:AD:48:57:1C:DC:9E:68 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a243183f-74f0-4016-b61d-47b029a3c4e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/42 Signature Algorithm: sha256WithRSAEncryption 7c:c1:e1:c4:01:3c:b1:04:e8:ac:5b:c0:6c:6d:e0:fb:d3:a0: fb:ae:ec:df:38:91:02:c8:3f:52:4a:7a:bd:53:62:58:bb:85: 8b:e9:34:bc:3d:c3:96:76:2a:38:07:a8:14:ba:15:6b:05:34: b0:8c:41:9d:61:cd:69:61:95:c6:8a:7f:34:7b:5d:d1:95:a1: e4:68:20:30:db:cc:af:f9:17:66:92:9d:b3:80:b2:17:12:8d: eb:7c:c0:67:8b:1c:26:96:4b:0d:b9:21:cf:b2:cc:06:a6:b4: 23:8d:ae:5f:9e:f4:66:3d:9f:a5:71:2d:65:84:ee:d0:bb:d3: c7:a7:e4:c3:4f:b7:fa:2a:7d:b9:39:93:92:01:ee:cf:7a:76: 43:b2:1e:85:84:32:6f:ba:d7:13:5f:3c:1b:97:ad:8b:42:f3: bf:ba:92:ce:e7:0e:19:41:4d:b4:01:de:38:37:ef:17:3b:df: 1b:f3:03:db:48:77:5c:0c:5d:d4:50:2b:9f:a0:1d:06:42:05: f7:15:28:61:65:18:b4:6b:40:26:2a:cb:1c:a6:90:e6:d3:02: 87:fd:0b:89:2d:09:a3:3a:98:00:78:0d:3c:70:48:60:e5:81: 1f:f5:e6:38:59:79:17:68:dd:f9:96:32:27:27:75:07:d1:e4: 65:c1:e7:1c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKzVKtiRu8ysqafDamNlYgN9SCvswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUxMDQxWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzEzMzU0NGQ5ODhiOWE5NGFlMjIwMzI5ZjQwM2M5NTZj NDYzYzlmY2NlMjE1MGE5YTViZDZlZmNkMDRmYjFkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUNVqVhTJ7To4vFhprllPvmAPj2Y75mjjvrjOqmt+adxRD HALHhXWgTyg+AGDGYhqORPh/hRSu44FwBJh5ZPC1LrxOohURPdo+3qqZIBtlqfoj qdd49RcB1b5UH5U38PEQTYv4Bo9Etn1566rf9zxPFrQZmxpMihZjKK7ZTaxy1CiX /0UNt1sJCvqcEC1ZI9QCW9uSCz7DZ9/xTEewrPw6FP/yIkMvKf1vUH/6K/xPM2PU //V6/ikGIkdytx8SvK+V6l5DiPoO7Sb8zRP1jpPpZ9tMybWETNfiHODC8M140mDk ya9nm9MmV/C58oLyLv8PZWwQBr1f1hFvLN++GRStAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvNqEbHwn/BBiCjCxJK1IVxzcnmgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EyNDMxODNmLTc0ZjAtNDAxNi1iNjFkLTQ3YjAyOWEzYzRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74QAwDQYJKoZIhvcNAQELBQADggEBAHzB4cQBPLEE6KxbwGxt4PvT oPuu7N84kQLIP1JKer1TYli7hYvpNLw9w5Z2KjgHqBS6FWsFNLCMQZ1hzWlhlcaK fzR7XdGVoeRoIDDbzK/5F2aSnbOAshcSjet8wGeLHCaWSw25Ic+yzAamtCONrl+e 9GY9n6VxLWWE7tC708en5MNPt/oqfbk5k5IB7s96dkOyHoWEMm+61xNfPBuXrYtC 87+6ks7nDhlBTbQB3jg37xc73xvzA9tId1wMXdRQK5+gHQZCBfcVKGFlGLRrQCYq yxymkObTAof9C4ktCaM6mAB4DTxwSGDlgR/15jhZeRdo3fmWMicndQfR5GXB5xw= -----END CERTIFICATE-----Generated at Sun Mar 1 22:12:15 2026 by rpki-client