$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa File: a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa (raw, json) Hash identifier: hPMuzt5xZkvy+qEWqc1CD1+RFN3bf4ID0duY7+OxDwk= Subject key identifier: 0B:DD:A5:ED:30:D5:77:CD:5D:96:6D:29:CD:55:76:D2:61:61:9E:64 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 616D403D2D9B2D5BFD93A37F11CE4E96DFC53B8D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa Signing time: Sat 28 Feb 2026 04:50:07 +0000 ROA not before: Sat 28 Feb 2026 04:50:07 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:6d:40:3d:2d:9b:2d:5b:fd:93:a3:7f:11:ce:4e:96:df:c5:3b:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 04:50:07 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=b9ba6ca765b73a6e288dd1773136a02af64762e5fee7ed6f81a69a4c30950a0c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c5:15:38:1b:66:07:6e:fc:3b:20:40:44:60: 7c:7a:57:80:9c:03:69:23:28:00:7b:81:b8:fc:66: 6b:0f:4b:e0:43:06:e8:81:cc:c0:81:7a:12:c5:b6: 6b:ef:75:c0:67:6a:89:99:77:0e:6f:b3:0f:51:19: 5d:94:dd:a7:79:a9:06:53:12:4c:09:0e:eb:e4:6e: 3f:51:1a:38:9f:97:51:35:b4:8b:d0:77:45:45:40: 7e:42:d7:98:a9:ab:a5:12:74:5e:cd:3d:e1:e4:a0: 02:e2:74:7e:cd:89:79:58:87:23:08:87:1a:36:fa: d9:b4:39:15:0d:dd:6a:80:db:c6:5f:65:3f:a5:a7: aa:f2:b6:f3:62:0f:4d:6d:41:54:02:3a:e6:47:bf: 24:a8:15:8f:58:c6:18:54:96:f9:cb:ba:8d:91:6c: 8b:db:aa:be:2a:a7:f0:3c:af:9e:94:f6:a9:fd:2d: 97:eb:10:8f:9e:69:62:11:73:9e:f3:2e:3a:f9:2f: cf:36:77:19:72:f9:0e:51:33:fd:3b:3d:47:9f:a0: 91:96:1a:52:4a:7d:82:37:f1:2f:d6:f3:76:18:80: 9b:98:0c:4a:6d:b9:00:3f:cc:9a:23:e9:0e:f4:22: 2d:5a:2c:7f:da:92:1e:70:75:24:e8:ed:0b:78:d4: 7a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:DD:A5:ED:30:D5:77:CD:5D:96:6D:29:CD:55:76:D2:61:61:9E:64 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 07:c3:3b:10:b1:10:6b:34:b2:ec:9f:a3:fd:ed:e7:a5:76:f0: 5d:9a:94:4e:2a:54:e7:f2:db:6d:f8:27:c2:9f:5a:35:16:03: 3b:a5:e0:8f:81:23:a7:8d:d1:94:8f:7c:10:64:bb:b7:e9:51: 4e:53:45:de:f2:75:80:5b:61:83:dd:ab:83:89:77:05:8c:a0: 45:2c:eb:a9:45:4f:7b:98:a8:b4:89:b9:e8:af:3a:a0:fe:47: 11:a2:37:f4:cb:62:31:19:12:43:2f:d8:a7:74:98:68:aa:34: e0:76:70:33:90:e8:84:eb:a9:e3:8f:4b:b5:40:00:bf:79:49: c4:32:56:29:e7:e6:be:ff:cc:e1:c3:f6:eb:e7:2f:77:52:d1: 89:a3:d7:4b:f2:6b:60:92:e4:73:f9:43:7b:49:8a:da:87:10: 22:e4:5e:70:a8:de:85:84:0d:f7:2a:23:51:89:4e:9e:b1:5e: 2b:14:31:d3:4e:1a:8b:2d:48:4c:5c:01:9f:51:8d:b1:75:f7: 68:1d:8d:97:82:11:75:c0:af:f7:f7:1c:f1:46:1b:63:13:bf: b2:24:ca:55:b8:9f:4f:a8:c6:97:27:e4:a8:09:ef:c8:81:84: 6a:55:3f:fa:4b:12:de:82:a9:aa:f8:de:61:5a:8b:a5:0a:97: bb:6f:08:c0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYW1APS2bLVv9k6N/Ec5Olt/FO40wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDQ1MDA3WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWJhNmNhNzY1YjczYTZlMjg4ZGQxNzczMTM2YTAyYWY2 NDc2MmU1ZmVlN2VkNmY4MWE2OWE0YzMwOTUwYTBjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDxRU4G2YHbvw7IEBEYHx6V4CcA2kjKAB7gbj8ZmsPS+BD BuiBzMCBehLFtmvvdcBnaomZdw5vsw9RGV2U3ad5qQZTEkwJDuvkbj9RGjifl1E1 tIvQd0VFQH5C15ipq6USdF7NPeHkoALidH7NiXlYhyMIhxo2+tm0ORUN3WqA28Zf ZT+lp6rytvNiD01tQVQCOuZHvySoFY9YxhhUlvnLuo2RbIvbqr4qp/A8r56U9qn9 LZfrEI+eaWIRc57zLjr5L882dxly+Q5RM/07PUefoJGWGlJKfYI38S/W83YYgJuY DEptuQA/zJoj6Q70Ii1aLH/akh5wdSTo7Qt41HpDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUC92l7TDVd81dlm0pzVV20mFhnmQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E2NWRjNTc5LTU1ZDAtNDY0MC04ZWU1LTZiZDcwZTNkZDcyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBAAfDOxCxEGs0suyfo/3t56V2 8F2alE4qVOfy2234J8KfWjUWAzul4I+BI6eN0ZSPfBBku7fpUU5TRd7ydYBbYYPd q4OJdwWMoEUs66lFT3uYqLSJueivOqD+RxGiN/TLYjEZEkMv2Kd0mGiqNOB2cDOQ 6ITrqeOPS7VAAL95ScQyVinn5r7/zOHD9uvnL3dS0Ymj10vya2CS5HP5Q3tJitqH ECLkXnCo3oWEDfcqI1GJTp6xXisUMdNOGostSExcAZ9RjbF192gdjZeCEXXAr/f3 HPFGG2MTv7IkylW4n0+oxpcn5KgJ78iBhGpVP/pLEt6Cqar43mFai6UKl7tvCMA= -----END CERTIFICATE-----Generated at Sun Mar 1 22:13:28 2026 by rpki-client