$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a87721b1-51b4-405f-a72a-cabeb3cd84b2.roa File: a87721b1-51b4-405f-a72a-cabeb3cd84b2.roa (raw, json) Hash identifier: LAilu1geBKBiqd4CRQVPuaU/68D5Imq6pHzOOslf0MM= Subject key identifier: 4A:2D:BF:AF:B4:4F:27:AE:C9:80:8C:7C:FE:5D:14:B6:40:98:33:A5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7663F6A6C29F0C81CD98B42F7555C5A889792F35 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a87721b1-51b4-405f-a72a-cabeb3cd84b2.roa Signing time: Fri 20 Feb 2026 01:30:13 +0000 ROA not before: Fri 20 Feb 2026 01:30:13 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8a00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:63:f6:a6:c2:9f:0c:81:cd:98:b4:2f:75:55:c5:a8:89:79:2f:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 20 01:30:13 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=84b8f541cacbbf5dd92a43393cda3071166e870a7f6486a38de826ece7b06656, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:97:52:2d:2a:6a:1f:08:1a:7f:2e:08:47:98: 40:53:13:c3:46:1f:1f:14:13:dd:f9:66:80:80:8f: b4:5c:d6:18:80:bf:65:0c:3c:71:d0:32:a1:0d:4a: ce:9e:96:5a:79:a7:29:70:53:17:8b:ba:48:ee:5b: 89:89:05:a8:30:06:bd:f9:ab:24:3e:5a:a1:90:f6: 64:d1:02:41:e7:21:f9:4a:cd:47:6e:b6:d0:59:98: 4f:ee:3c:69:e0:ff:84:e5:f2:0b:b7:47:22:7c:b3: 8c:94:31:ce:2a:14:be:15:1e:4a:7c:6a:25:41:de: fb:bc:6a:50:9f:2e:6a:3b:00:01:58:bf:09:51:0e: d3:b4:ef:e8:c5:89:71:8d:fc:a3:52:f5:bc:f7:88: 93:45:48:92:da:70:fc:64:ac:62:7f:3e:d7:f9:47: ce:c8:56:87:2d:94:70:12:f3:fe:50:a5:76:4d:53: 46:bf:86:85:d1:4b:cd:d2:e8:b6:35:1b:b0:43:2b: c8:fd:25:9e:b0:b6:ca:3d:d6:87:d5:f5:9f:78:d0: 60:93:cd:83:1e:a7:d6:a4:62:63:25:47:91:19:98: f8:73:25:c0:fc:f6:b7:60:bc:b1:a9:6e:6b:8f:8e: c9:01:6d:2b:9f:fb:eb:6f:0d:0d:80:b9:48:51:f7: 6d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:2D:BF:AF:B4:4F:27:AE:C9:80:8C:7C:FE:5D:14:B6:40:98:33:A5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a87721b1-51b4-405f-a72a-cabeb3cd84b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8a00::/40 Signature Algorithm: sha256WithRSAEncryption 8d:f0:5a:9e:fb:6c:1c:26:b0:76:0a:87:65:0e:4c:f2:9d:c0: 06:35:82:e2:82:57:41:ef:f6:35:a1:0b:f1:94:44:fc:a0:a7: fa:64:d2:03:c6:43:7c:c4:1d:e9:78:36:3e:9a:37:b2:f8:48: ec:10:dd:20:c1:67:b6:ac:aa:a0:be:37:34:2c:9d:e3:0c:fe: 98:bd:17:00:e3:bf:29:37:c0:a0:9e:0e:2f:39:f2:2d:85:18: 0a:73:d3:48:4a:e4:23:e4:9e:6d:39:79:7c:4f:3f:92:7f:ef: 58:a0:59:69:ea:d8:8c:10:56:a3:cc:b8:2a:d7:90:44:1d:7c: 5a:b0:12:7c:ad:2c:5f:96:9f:39:f0:91:69:9b:83:03:9a:d5: cf:fc:89:b4:a7:a3:6d:08:a7:4f:d4:6b:30:08:ed:54:76:66: fb:0c:b8:d2:9a:88:83:9b:f5:1a:dd:29:07:50:01:0e:f0:7f: a2:6a:37:22:08:35:56:2c:f5:48:e5:b7:40:7c:63:34:a0:a9: 26:6c:fc:da:ba:1a:81:10:12:44:e1:8b:85:2f:53:88:07:f5: b9:49:7b:89:37:34:55:96:8d:e4:0d:b0:99:79:b7:4e:01:31: 66:47:62:90:a7:5f:5f:d8:6a:e7:4e:76:e7:de:b0:5d:22:f9: 35:45:b6:5f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdmP2psKfDIHNmLQvdVXFqIl5LzUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjIwMDEzMDEzWhcNMjYwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGI4ZjU0MWNhY2JiZjVkZDkyYTQzMzkzY2RhMzA3MTE2 NmU4NzBhN2Y2NDg2YTM4ZGU4MjZlY2U3YjA2NjU2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDol1ItKmofCBp/LghHmEBTE8NGHx8UE935ZoCAj7Rc1hiA v2UMPHHQMqENSs6ellp5pylwUxeLukjuW4mJBagwBr35qyQ+WqGQ9mTRAkHnIflK zUduttBZmE/uPGng/4Tl8gu3RyJ8s4yUMc4qFL4VHkp8aiVB3vu8alCfLmo7AAFY vwlRDtO07+jFiXGN/KNS9bz3iJNFSJLacPxkrGJ/Ptf5R87IVoctlHAS8/5QpXZN U0a/hoXRS83S6LY1G7BDK8j9JZ6wtso91ofV9Z940GCTzYMep9akYmMlR5EZmPhz JcD89rdgvLGpbmuPjskBbSuf++tvDQ2AuUhR923lAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUSi2/r7RPJ67JgIx8/l0UtkCYM6UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E4NzcyMWIxLTUxYjQtNDA1Zi1hNzJhLWNhYmViM2NkODRiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDxijANBgkqhkiG9w0BAQsFAAOCAQEAjfBanvtsHCawdgqHZQ5M8p3A BjWC4oJXQe/2NaEL8ZRE/KCn+mTSA8ZDfMQd6Xg2Ppo3svhI7BDdIMFntqyqoL43 NCyd4wz+mL0XAOO/KTfAoJ4OLznyLYUYCnPTSErkI+SebTl5fE8/kn/vWKBZaerY jBBWo8y4KteQRB18WrASfK0sX5afOfCRaZuDA5rVz/yJtKejbQinT9RrMAjtVHZm +wy40pqIg5v1Gt0pB1ABDvB/omo3Igg1Viz1SOW3QHxjNKCpJmz82roagRASROGL hS9TiAf1uUl7iTc0VZaN5A2wmXm3TgExZkdikKdfX9hq5052596wXSL5NUW2Xw== -----END CERTIFICATE-----Generated at Sun Mar 1 23:48:28 2026 by rpki-client