$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa File: ab860450-a818-47f3-a42f-5570594471c3.roa (raw, json) Hash identifier: cXEuDUy2xoeCb8PNzPodzFJ6DXqmHrCHnz22DfRP2nI= Subject key identifier: 3A:F3:52:4E:C7:27:E3:BC:2D:3F:75:6D:51:8C:34:2D:E4:E9:6E:CE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3ADCF12FC2B1C7F748E0FD51E0228A6AB89AAF69 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa Signing time: Sat 28 Feb 2026 05:00:03 +0000 ROA not before: Sat 28 Feb 2026 05:00:03 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e900::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:dc:f1:2f:c2:b1:c7:f7:48:e0:fd:51:e0:22:8a:6a:b8:9a:af:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:03 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=c62cb1312eba991e75a6da63b968e1c9e7390a9b618d765a730b4dbd6c227b93, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:21:83:1c:bc:8c:52:44:4e:05:63:bf:cf:c6: 73:41:5a:b2:87:3f:a7:e4:3b:18:60:83:56:5a:0d: 60:f7:6b:f2:09:a7:75:45:a7:47:6a:37:29:c6:db: aa:6d:a0:42:a9:4e:f9:e5:a1:f5:e3:ad:31:60:4f: 35:c8:62:02:45:ab:4d:b6:73:6d:29:ab:63:77:14: 98:9c:d5:0c:ae:b7:52:64:a2:2b:32:ff:c4:e3:46: 91:5a:b1:ef:69:36:1f:9b:c1:33:13:3b:84:81:be: 1b:2c:44:f8:a2:1c:49:1c:7b:d6:d8:79:37:f5:f8: 01:c8:4a:a6:31:91:91:f9:1f:0d:9d:46:68:15:7c: c9:a8:16:cc:72:65:25:d9:75:d5:b5:37:32:99:08: cb:5f:19:82:7a:cc:33:ca:a4:e4:b6:c7:fc:15:06: 6f:b1:de:06:44:0e:3c:d0:9d:b8:0b:9a:b1:ac:94: 0a:f7:67:3f:23:f8:85:9b:f8:cf:93:4c:bb:42:58: da:55:fc:9e:d7:19:36:60:63:7b:e9:12:81:7a:42: 81:d7:54:39:db:f5:8b:9c:76:7b:da:62:d3:43:e2: 7c:6c:bf:bc:6d:2a:a5:cc:e4:48:4a:f4:0a:1d:be: af:32:c1:21:3c:cb:f1:5a:be:b4:c2:3e:58:85:46: ee:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F3:52:4E:C7:27:E3:BC:2D:3F:75:6D:51:8C:34:2D:E4:E9:6E:CE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/42 Signature Algorithm: sha256WithRSAEncryption 1c:96:1f:e6:ce:12:85:78:f4:00:5e:d2:b5:3a:ac:40:3b:6e: 8c:b6:d2:cb:07:7f:20:9b:89:79:c2:a9:70:b9:db:bf:36:10: 2c:ab:be:7f:04:27:2d:b3:6e:8c:15:15:cf:40:d0:b4:63:50: 47:ef:5e:0a:a9:52:b0:43:ee:5c:66:11:2f:63:8d:5d:d7:e3: 57:27:5e:cd:41:7a:a8:e0:e1:7a:66:35:27:73:be:0c:a6:55: 3b:ea:51:0b:1c:b5:61:62:07:da:cc:68:78:df:ba:81:5c:15: b0:3b:07:cc:cc:9c:e3:b8:d6:cf:e7:ab:3c:f5:f2:b4:b2:2d: 58:5e:f1:64:b2:c9:fb:53:29:4d:f1:73:8b:77:ba:f8:20:c0: 3d:91:36:8f:92:0c:97:cf:e1:cf:d0:80:35:15:63:66:a0:f1: 6b:49:f7:85:94:39:47:4b:72:b9:9d:f5:8b:fd:d9:c0:dc:5b: 31:80:33:87:b1:fd:d0:ca:53:4e:4b:d2:1f:d2:02:12:ae:f3: 14:da:c9:d9:fc:3b:c5:54:f5:5c:98:44:f6:27:7d:5d:7e:1f: 2c:e4:1d:44:26:b5:5f:7f:5c:f5:a5:bd:26:9b:5a:a8:ce:77: 58:b3:fa:f7:80:66:b7:cf:b5:c7:bc:83:06:b3:d5:0e:1c:ea: 16:5f:8e:59 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOtzxL8Kxx/dI4P1R4CKKariar2kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDAzWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjJjYjEzMTJlYmE5OTFlNzVhNmRhNjNiOTY4ZTFjOWU3 MzkwYTliNjE4ZDc2NWE3MzBiNGRiZDZjMjI3YjkzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/IYMcvIxSRE4FY7/PxnNBWrKHP6fkOxhgg1ZaDWD3a/IJ p3VFp0dqNynG26ptoEKpTvnlofXjrTFgTzXIYgJFq022c20pq2N3FJic1Qyut1Jk oisy/8TjRpFase9pNh+bwTMTO4SBvhssRPiiHEkce9bYeTf1+AHISqYxkZH5Hw2d RmgVfMmoFsxyZSXZddW1NzKZCMtfGYJ6zDPKpOS2x/wVBm+x3gZEDjzQnbgLmrGs lAr3Zz8j+IWb+M+TTLtCWNpV/J7XGTZgY3vpEoF6QoHXVDnb9YucdnvaYtND4nxs v7xtKqXM5EhK9Aodvq8ywSE8y/FavrTCPliFRu5tAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOvNSTscn47wtP3VtUYw0LeTpbs4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FiODYwNDUwLWE4MTgtNDdmMy1hNDJmLTU1NzA1OTQ0NzFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76QAwDQYJKoZIhvcNAQELBQADggEBAByWH+bOEoV49ABe0rU6rEA7 boy20ssHfyCbiXnCqXC52782ECyrvn8EJy2zbowVFc9A0LRjUEfvXgqpUrBD7lxm ES9jjV3X41cnXs1Beqjg4XpmNSdzvgymVTvqUQsctWFiB9rMaHjfuoFcFbA7B8zM nOO41s/nqzz18rSyLVhe8WSyyftTKU3xc4t3uvggwD2RNo+SDJfP4c/QgDUVY2ag 8WtJ94WUOUdLcrmd9Yv92cDcWzGAM4ex/dDKU05L0h/SAhKu8xTaydn8O8VU9VyY RPYnfV1+HyzkHUQmtV9/XPWlvSabWqjOd1iz+veAZrfPtce8gwaz1Q4c6hZfjlk= -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:39 2026 by rpki-client