$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a312ea2d-65f8-4e4e-8771-5e0f7a99cd4b.roa File: a312ea2d-65f8-4e4e-8771-5e0f7a99cd4b.roa (raw, json) Hash identifier: Vbz4PUfZ2doOWnNH3pNpWmdJwitcHob+lMXle3XJV6c= Subject key identifier: C1:7C:BB:2A:4C:CA:44:15:B5:8E:AF:36:34:B4:74:D8:C1:A0:47:17 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2B3F80E3A370414924599DB480DEF262199D8F73 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a312ea2d-65f8-4e4e-8771-5e0f7a99cd4b.roa Signing time: Fri 13 Feb 2026 15:10:09 +0000 ROA not before: Fri 13 Feb 2026 15:10:09 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6116::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:3f:80:e3:a3:70:41:49:24:59:9d:b4:80:de:f2:62:19:9d:8f:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 13 15:10:09 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=2283558f65ef3d0ce57cf02c1a35efb6870147c5d93d1510ad5a7d5c37060df8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:00:73:ab:f0:4d:a0:5d:18:af:e4:bb:18:d3: 88:0f:63:08:2f:ab:b3:66:a5:19:c0:0e:6a:df:e3: 35:6d:4d:89:22:5d:c2:cc:db:13:c8:62:63:32:2c: 50:2c:45:03:00:65:9e:99:73:84:c7:ce:49:b0:e1: 0a:a1:e3:b9:4e:f3:65:b1:61:8a:39:f5:64:15:be: 13:3f:fd:d6:c4:5c:a2:bd:4c:96:aa:1a:67:b2:fd: f6:8a:1b:b2:83:c0:62:7e:72:d1:43:18:36:36:4f: d6:77:df:5b:1d:48:76:87:4a:2b:d4:09:ce:32:47: f2:95:e4:e1:ab:54:2e:49:49:61:67:0a:8a:dc:69: 67:f5:97:d9:f2:85:23:ff:45:e4:0e:90:8c:77:da: 2d:01:b0:2a:54:88:37:19:45:0b:a4:e4:f0:58:b8: ba:67:08:64:57:f3:54:a5:c6:8e:2c:88:a4:ae:9a: 30:09:da:37:df:34:7d:ad:53:90:c6:a2:87:9f:dd: cf:1e:da:12:78:10:c9:5b:5d:f2:c5:b0:4b:6a:9d: de:83:3a:d3:a5:ec:25:80:be:24:49:45:65:92:5a: f3:a8:40:52:51:8b:ed:11:70:8a:bf:b4:84:43:31: 94:81:39:1f:1f:52:9f:ed:95:54:36:8a:3e:d6:aa: 04:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:7C:BB:2A:4C:CA:44:15:B5:8E:AF:36:34:B4:74:D8:C1:A0:47:17 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a312ea2d-65f8-4e4e-8771-5e0f7a99cd4b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6116::/48 Signature Algorithm: sha256WithRSAEncryption 80:49:af:e2:bb:b6:e2:fe:02:37:39:6a:16:c0:3f:8f:e5:2a: 92:ea:e4:43:35:28:a1:83:c8:e3:90:f3:4b:9a:7d:b4:ce:47: 9c:7f:00:d3:56:a8:dd:92:a4:1a:01:f5:1f:b8:29:fa:d9:ea: b5:ec:ce:ec:dd:37:73:b0:d7:4b:b2:08:73:f0:81:d0:e8:47: 82:13:d1:f1:8d:85:ad:fc:dd:76:bb:a9:40:14:4f:15:98:ea: 54:3c:d3:b0:ba:51:be:6f:82:24:04:d5:d4:f1:f7:37:f1:15: af:13:a8:e1:4b:ac:3b:07:2d:c7:c1:50:e6:39:50:9f:40:08: 5b:da:47:6d:57:19:12:e4:2a:3e:d5:74:3d:8d:8d:cb:7f:3e: 4d:92:1a:41:8f:91:7f:45:8e:2a:1d:f9:f0:3a:76:5e:3f:e4: 69:c0:08:0f:5c:92:1e:b5:8e:da:44:75:ab:8c:cd:2c:ec:67: 12:82:7d:9a:e9:3d:b7:cf:82:5b:a9:eb:2f:9b:a6:49:49:b6: 26:f9:ce:97:9d:b3:e1:ac:3e:eb:bc:74:5b:05:3f:37:b2:bb: 5b:97:2a:35:f7:0f:12:fb:7d:e5:d5:3c:4f:15:e9:5c:c8:1c: aa:49:f6:29:50:c4:09:c0:74:04:da:e3:0c:88:49:21:7d:c5: 42:f6:ea:43 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKz+A46NwQUkkWZ20gN7yYhmdj3MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjEzMTUxMDA5WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjgzNTU4ZjY1ZWYzZDBjZTU3Y2YwMmMxYTM1ZWZiNjg3 MDE0N2M1ZDkzZDE1MTBhZDVhN2Q1YzM3MDYwZGY4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1AHOr8E2gXRiv5LsY04gPYwgvq7NmpRnADmrf4zVtTYki XcLM2xPIYmMyLFAsRQMAZZ6Zc4THzkmw4Qqh47lO82WxYYo59WQVvhM//dbEXKK9 TJaqGmey/faKG7KDwGJ+ctFDGDY2T9Z331sdSHaHSivUCc4yR/KV5OGrVC5JSWFn CorcaWf1l9nyhSP/ReQOkIx32i0BsCpUiDcZRQuk5PBYuLpnCGRX81Slxo4siKSu mjAJ2jffNH2tU5DGooef3c8e2hJ4EMlbXfLFsEtqnd6DOtOl7CWAviRJRWWSWvOo QFJRi+0RcIq/tIRDMZSBOR8fUp/tlVQ2ij7WqgT/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwXy7KkzKRBW1jq82NLR02MGgRxcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EzMTJlYTJkLTY1ZjgtNGU0ZS04NzcxLTVlMGY3YTk5Y2Q0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRYwDQYJKoZIhvcNAQELBQADggEBAIBJr+K7tuL+Ajc5ahbAP4/l KpLq5EM1KKGDyOOQ80uafbTOR5x/ANNWqN2SpBoB9R+4KfrZ6rXszuzdN3Ow10uy CHPwgdDoR4IT0fGNha383Xa7qUAUTxWY6lQ807C6Ub5vgiQE1dTx9zfxFa8TqOFL rDsHLcfBUOY5UJ9ACFvaR21XGRLkKj7VdD2Njct/Pk2SGkGPkX9Fjiod+fA6dl4/ 5GnACA9ckh61jtpEdauMzSzsZxKCfZrpPbfPglup6y+bpklJtib5zpeds+GsPuu8 dFsFPzeyu1uXKjX3DxL7feXVPE8V6VzIHKpJ9ilQxAnAdATa4wyISSF9xUL26kM= -----END CERTIFICATE-----Generated at Sun Mar 1 21:48:27 2026 by rpki-client