$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a48ca006-b4f2-49da-b519-80bf4857d7e9.roa File: a48ca006-b4f2-49da-b519-80bf4857d7e9.roa (raw, json) Hash identifier: gQ9O1vEMZ1q9p1SP7UYvKon5A8bUSaDyFPLDtJF9ib8= Subject key identifier: 42:7E:B1:6F:8C:49:20:61:DF:63:FE:E0:DE:34:4D:80:68:9B:06:28 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 36F1B95C78BCD59EF201616436E118D8C21E2E66 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a48ca006-b4f2-49da-b519-80bf4857d7e9.roa Signing time: Sat 07 Feb 2026 00:10:15 +0000 ROA not before: Sat 07 Feb 2026 00:10:15 +0000 ROA not after: Fri 08 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:f1:b9:5c:78:bc:d5:9e:f2:01:61:64:36:e1:18:d8:c2:1e:2e:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 7 00:10:15 2026 GMT Not After : May 8 23:59:59 2026 GMT Subject: serialNumber=d0dca9fc806bc9a79c8b83c3e20f09c43441ccdae7e75a80b1c0e403c8f1f2b5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:34:9e:83:dd:c4:17:f7:f6:19:79:57:14:11: 24:23:1d:49:22:47:bc:f3:a5:65:83:35:53:31:59: cb:43:05:12:24:aa:d9:84:cb:5c:ba:e5:21:66:08: 13:d4:85:77:b1:0d:5f:f6:fe:60:59:aa:ba:60:09: f8:99:b3:71:fa:de:78:a6:f1:4d:d3:b7:59:52:2e: 9e:3e:5b:05:04:e9:17:25:b0:99:70:d9:85:9b:b5: dc:17:5b:02:59:c4:2c:54:52:33:26:1a:b0:77:b5: e6:42:3c:00:a7:be:81:6b:54:8d:a4:7b:bf:8b:c1: 43:95:58:d2:e8:c5:b7:a8:b0:54:a4:b6:98:be:fd: 64:0f:db:98:2a:60:25:fa:33:44:fe:a1:a0:cb:0b: 3a:2e:9d:98:09:e5:02:7b:d2:d9:d1:e8:dd:a9:4b: 51:9c:41:30:45:3e:aa:49:98:1c:e0:aa:70:85:87: d0:1a:67:6b:e7:00:52:3b:ae:58:bc:3f:14:44:c4: 04:cb:dc:1d:e5:74:49:22:3d:ac:75:a4:a1:5f:16: d0:21:43:bb:a5:46:09:6d:a1:d9:65:2e:d8:ab:bb: 89:7f:40:9f:cc:55:7d:0c:b4:54:d6:0a:ec:f9:e7: 17:15:33:db:29:94:c4:b8:c7:42:7e:30:81:9d:29: ae:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:7E:B1:6F:8C:49:20:61:DF:63:FE:E0:DE:34:4D:80:68:9B:06:28 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a48ca006-b4f2-49da-b519-80bf4857d7e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7140::/48 Signature Algorithm: sha256WithRSAEncryption 18:da:00:e4:ce:34:2f:47:9f:53:84:d2:70:01:a2:d3:50:76: 13:06:cb:cb:0f:a3:3b:c4:27:0a:67:83:38:f3:f0:81:5c:b5: dc:a8:53:e7:bd:a7:1c:15:d3:61:bd:66:eb:d4:79:3c:9b:8e: a8:90:f7:a9:b9:cb:ac:8d:ed:09:92:1b:0d:8b:a0:b9:91:2e: 2d:5d:be:1b:93:4b:19:9d:25:e3:3d:34:30:9e:e8:f9:f0:98: a3:0c:ac:d5:74:fc:7a:7a:33:26:e6:dc:e7:61:23:4e:c4:50: af:7a:46:e8:ab:41:b6:28:99:1a:52:64:01:73:44:a3:e2:99: 4f:3d:e3:f1:c8:c4:2a:68:b4:04:50:53:71:38:28:89:54:ff: 8b:7a:81:86:0c:4e:03:0c:5e:fa:08:44:24:57:a7:53:ef:c4: 0f:4a:59:6b:e4:75:34:f4:c8:ec:47:38:86:4a:b2:99:49:c3: 7f:cb:87:11:58:8e:f6:27:43:b5:fb:ef:ec:67:cc:77:a2:58: 74:ba:3f:fe:6a:41:e7:5f:85:65:8b:95:b9:55:a1:be:4a:55: 45:93:f2:4b:53:55:c4:c8:10:e4:18:89:8d:fd:00:2a:67:1a: 2a:09:c4:05:c9:a0:cd:0a:d4:7c:e2:4c:6f:5a:91:5f:67:28: fe:67:91:ba -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNvG5XHi81Z7yAWFkNuEY2MIeLmYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjA3MDAxMDE1WhcNMjYwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMGRjYTlmYzgwNmJjOWE3OWM4YjgzYzNlMjBmMDljNDM0 NDFjY2RhZTdlNzVhODBiMWMwZTQwM2M4ZjFmMmI1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6NJ6D3cQX9/YZeVcUESQjHUkiR7zzpWWDNVMxWctDBRIk qtmEy1y65SFmCBPUhXexDV/2/mBZqrpgCfiZs3H63nim8U3Tt1lSLp4+WwUE6Rcl sJlw2YWbtdwXWwJZxCxUUjMmGrB3teZCPACnvoFrVI2ke7+LwUOVWNLoxbeosFSk tpi+/WQP25gqYCX6M0T+oaDLCzounZgJ5QJ70tnR6N2pS1GcQTBFPqpJmBzgqnCF h9AaZ2vnAFI7rli8PxRExATL3B3ldEkiPax1pKFfFtAhQ7ulRgltodllLtiru4l/ QJ/MVX0MtFTWCuz55xcVM9splMS4x0J+MIGdKa6fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQn6xb4xJIGHfY/7g3jRNgGibBigwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E0OGNhMDA2LWI0ZjItNDlkYS1iNTE5LTgwYmY0ODU3ZDdlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycUAwDQYJKoZIhvcNAQELBQADggEBABjaAOTONC9Hn1OE0nABotNQ dhMGy8sPozvEJwpngzjz8IFctdyoU+e9pxwV02G9ZuvUeTybjqiQ96m5y6yN7QmS Gw2LoLmRLi1dvhuTSxmdJeM9NDCe6PnwmKMMrNV0/Hp6Mybm3OdhI07EUK96Ruir QbYomRpSZAFzRKPimU894/HIxCpotARQU3E4KIlU/4t6gYYMTgMMXvoIRCRXp1Pv xA9KWWvkdTT0yOxHOIZKsplJw3/LhxFYjvYnQ7X77+xnzHeiWHS6P/5qQedfhWWL lblVob5KVUWT8ktTVcTIEOQYiY39ACpnGioJxAXJoM0K1HziTG9akV9nKP5nkbo= -----END CERTIFICATE-----Generated at Sun Mar 1 23:53:36 2026 by rpki-client