$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa File: ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa (raw, json) Hash identifier: JDa959Wb0DymijPbngca9uNFbQtHSbyWR4h6JHxWHLs= Subject key identifier: 52:60:25:71:ED:CE:7F:6F:36:CF:02:56:00:D9:AE:CE:53:74:25:E8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 72147F9545E01BC5D840AFD3C2E6E247162200C9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa Signing time: Sat 28 Feb 2026 02:00:04 +0000 ROA not before: Sat 28 Feb 2026 02:00:04 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:14:7f:95:45:e0:1b:c5:d8:40:af:d3:c2:e6:e2:47:16:22:00:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 02:00:04 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=2dc2d3be595cb85405b58e00a16d2aba60275523e2adf3699191a587ba755313, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7d:26:4e:07:6f:39:fa:46:f1:d4:33:3c:f1: 7a:4f:3b:81:d3:54:13:01:dc:65:cf:64:d4:c6:0a: 21:60:03:80:b6:ef:4d:f2:e9:3c:cf:bd:62:9a:71: f9:af:fc:9a:c0:61:33:bc:95:de:93:a0:97:89:bb: 57:d5:ca:27:c4:16:89:24:fe:9c:76:35:b3:e4:ce: 4c:3b:92:63:8f:5c:97:49:42:92:a5:ba:d5:ba:d8: d3:7a:21:2f:ee:1b:20:3f:a5:1a:0c:4b:3a:17:ae: 43:de:ae:0c:2c:aa:15:52:60:6d:a3:f3:57:32:4d: 41:bb:05:89:8c:9e:8d:b7:89:de:66:a4:2f:4a:8e: 57:c2:3e:27:99:50:80:ad:50:79:ea:14:84:1f:f1: 60:d2:b3:42:da:19:79:9d:81:ff:da:84:44:59:d6: 0f:49:4a:44:37:34:13:68:66:ea:7c:2d:fc:62:3d: e2:05:c8:fd:c1:b6:e7:42:6a:7f:96:03:4d:19:bc: ff:4d:58:e7:5a:76:2b:77:b2:41:71:0e:a6:38:44: 95:28:07:21:3a:76:e2:d9:13:e3:7e:dd:85:ab:2b: eb:74:32:83:3b:3c:0b:f4:41:dc:92:d2:38:4c:01: c3:dd:98:7a:73:ac:aa:c4:af:be:e6:9f:1d:8e:7b: 9b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:60:25:71:ED:CE:7F:6F:36:CF:02:56:00:D9:AE:CE:53:74:25:E8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/40 Signature Algorithm: sha256WithRSAEncryption 22:88:84:57:8e:e2:37:86:3a:e6:73:70:23:21:44:e3:0c:f2: 31:2c:c9:0a:67:ba:fd:64:df:71:0b:58:e7:f6:46:d0:31:fb: 28:40:ff:37:be:2d:1e:61:27:a5:61:a3:49:61:22:66:22:cb: da:20:bc:34:41:4b:4b:98:88:5a:d2:40:12:0d:38:cf:2c:13: cf:76:c3:9f:c1:e6:63:9a:65:d4:90:09:5c:a0:74:de:8f:5d: 29:a4:b6:21:54:66:2a:7c:7e:33:53:75:f1:79:e6:bc:f6:b9: ce:56:e4:80:b1:4a:59:7a:f1:45:b3:f6:5c:07:59:1a:b6:c0: 61:64:87:47:f9:cb:c2:4b:81:23:f0:cb:35:08:df:7a:f5:e5: 17:da:7b:b4:94:6c:bb:cc:fc:92:51:c7:40:d7:c5:40:a1:38: 7d:a2:01:27:73:d8:f8:8f:01:ad:03:c7:7b:9f:ca:99:0b:88: 2b:14:91:09:2b:ae:d3:f6:94:9a:39:05:b0:9a:28:55:d2:4a: aa:0f:4d:a6:ce:17:d3:1a:ae:a1:d9:09:31:10:35:f7:cc:24: 4c:2d:2d:a2:1b:8e:cb:bd:be:90:01:5c:61:91:af:f7:8b:3b: 9d:1d:3d:80:21:76:ce:75:28:ce:60:bb:4f:76:9d:b9:28:57: ac:59:8a:c0 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUchR/lUXgG8XYQK/TwubiRxYiAMkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDIwMDA0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZGMyZDNiZTU5NWNiODU0MDViNThlMDBhMTZkMmFiYTYw Mjc1NTIzZTJhZGYzNjk5MTkxYTU4N2JhNzU1MzEzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMfSZOB285+kbx1DM88XpPO4HTVBMB3GXPZNTGCiFgA4C2 703y6TzPvWKacfmv/JrAYTO8ld6ToJeJu1fVyifEFokk/px2NbPkzkw7kmOPXJdJ QpKlutW62NN6IS/uGyA/pRoMSzoXrkPergwsqhVSYG2j81cyTUG7BYmMno23id5m pC9KjlfCPieZUICtUHnqFIQf8WDSs0LaGXmdgf/ahERZ1g9JSkQ3NBNoZup8Lfxi PeIFyP3BtudCan+WA00ZvP9NWOdadit3skFxDqY4RJUoByE6duLZE+N+3YWrK+t0 MoM7PAv0QdyS0jhMAcPdmHpzrKrEr77mnx2Oe5ulAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUUmAlce3Of282zwJWANmuzlN0JegwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FiNGIwMTk5LTZhNjMtNDZlMi05ZWNmLTZjMGJiZWE1NDAzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75jANBgkqhkiG9w0BAQsFAAOCAQEAIoiEV47iN4Y65nNwIyFE4wzy MSzJCme6/WTfcQtY5/ZG0DH7KED/N74tHmEnpWGjSWEiZiLL2iC8NEFLS5iIWtJA Eg04zywTz3bDn8HmY5pl1JAJXKB03o9dKaS2IVRmKnx+M1N18XnmvPa5zlbkgLFK WXrxRbP2XAdZGrbAYWSHR/nLwkuBI/DLNQjfevXlF9p7tJRsu8z8klHHQNfFQKE4 faIBJ3PY+I8BrQPHe5/KmQuIKxSRCSuu0/aUmjkFsJooVdJKqg9Nps4X0xquodkJ MRA198wkTC0tohuOy72+kAFcYZGv94s7nR09gCF2znUozmC7T3aduShXrFmKwA== -----END CERTIFICATE-----Generated at Mon Mar 2 01:45:00 2026 by rpki-client