$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa File: b2d641cc-0376-4d82-897a-3d5596d61679.roa (raw, json) Hash identifier: JooNwrJNpFIH8IjlUG4EPNA3Bdm7rTTLZp5mE4V2Kok= Subject key identifier: FE:DB:D8:61:8E:75:A9:60:C1:A0:51:2D:F9:DE:4B:EA:6F:EC:5E:B7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2D6A0CA1EA6A0D327D2BE2933E2B4092C4B20C55 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa Signing time: Tue 10 Feb 2026 00:00:14 +0000 ROA not before: Tue 10 Feb 2026 00:00:14 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:6a:0c:a1:ea:6a:0d:32:7d:2b:e2:93:3e:2b:40:92:c4:b2:0c:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 10 00:00:14 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=4da76f9ee3b95e00988271981fb810a5d6c9534e40eedf35a110f3b2bd8fdf61, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:51:67:b8:8f:6f:9d:64:d4:02:d4:40:30:c3: 36:f6:e1:e4:17:a1:19:0a:1c:d6:ee:bb:b2:60:f7: 03:78:04:42:23:79:5b:c5:e7:2a:ce:6b:7e:a5:89: 46:af:1c:91:87:ab:ed:89:f6:de:6f:f0:a4:ad:1a: 19:9f:4e:d1:5f:4b:44:72:ce:28:ac:1f:d7:1f:d1: a7:4d:e3:af:e6:30:5c:58:78:49:64:44:c1:74:21: 70:e2:5c:b2:60:e0:f7:fb:40:0a:4e:39:65:92:6d: bd:6e:90:23:49:64:b4:0c:f8:16:33:bf:83:be:4d: 59:3e:5c:e7:61:ac:c3:46:63:91:91:c7:5f:f7:3e: 3a:74:f3:d6:80:50:ff:60:ea:89:9c:cf:bb:41:d4: 55:cf:8e:cc:93:67:61:99:e0:ae:85:12:e1:e3:8e: 41:f9:71:72:8b:4d:42:ec:90:a4:bd:03:91:b3:17: 36:84:f5:cb:04:6d:af:67:bb:69:3d:99:a9:03:ca: 58:25:14:a3:fc:29:ae:a2:88:1f:c8:29:83:02:c0: 94:39:c2:f9:ee:1e:5e:1f:83:76:f7:22:d5:e9:b4: 0b:47:d8:41:e1:be:ad:06:a3:c1:3e:74:a8:89:d1: c7:65:ae:47:b3:8f:80:35:45:2d:36:cb:a5:dd:c8: c2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:DB:D8:61:8E:75:A9:60:C1:A0:51:2D:F9:DE:4B:EA:6F:EC:5E:B7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7101::/48 Signature Algorithm: sha256WithRSAEncryption 4a:7b:01:e6:ab:f9:c4:35:9b:c5:d9:de:e5:e7:b4:66:6e:92: b0:3a:ab:0e:e9:17:14:0b:31:47:d2:75:45:fb:25:f2:3a:fc: 6c:ec:6b:d3:4a:83:03:7d:c9:c3:e0:46:b8:4f:ec:1a:77:3b: 2d:bf:58:af:c8:6f:39:d3:88:c8:cf:49:1a:f6:1e:d7:55:43: 0a:9f:33:f3:17:36:8d:89:08:a6:33:82:d8:8b:9f:b1:85:01: b7:d2:12:ce:ac:71:b2:86:6f:ce:b7:1e:4c:79:ed:03:e9:c8: fa:96:00:09:af:a5:e4:94:e6:9c:8a:e4:d4:89:90:de:c7:31: 31:3f:8d:50:7e:f2:18:3b:31:63:60:e3:7f:63:85:1b:55:82: fe:23:86:4d:2f:b2:cd:6b:84:f2:3e:23:fe:da:a0:ab:a1:f9: 22:b8:68:08:28:7c:fc:1c:d6:b6:e9:09:c8:48:3c:7c:36:da: 14:56:13:c7:10:b8:ae:1f:5b:36:43:37:c1:df:93:f3:0a:ed: 5d:f0:d3:13:99:f6:fb:1b:6e:be:91:76:54:2c:3d:6e:06:da: 7d:82:f6:c4:75:a3:4c:a5:17:40:13:df:ab:06:79:31:e7:be: 38:a4:05:17:bf:40:41:70:f6:35:c0:f6:6a:52:1f:1b:6e:fd: ec:92:bf:ff -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULWoMoepqDTJ9K+KTPitAksSyDFUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjEwMDAwMDE0WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZGE3NmY5ZWUzYjk1ZTAwOTg4MjcxOTgxZmI4MTBhNWQ2 Yzk1MzRlNDBlZWRmMzVhMTEwZjNiMmJkOGZkZjYxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbUWe4j2+dZNQC1EAwwzb24eQXoRkKHNbuu7Jg9wN4BEIj eVvF5yrOa36liUavHJGHq+2J9t5v8KStGhmfTtFfS0RyziisH9cf0adN46/mMFxY eElkRMF0IXDiXLJg4Pf7QApOOWWSbb1ukCNJZLQM+BYzv4O+TVk+XOdhrMNGY5GR x1/3Pjp089aAUP9g6omcz7tB1FXPjsyTZ2GZ4K6FEuHjjkH5cXKLTULskKS9A5Gz FzaE9csEba9nu2k9makDylglFKP8Ka6iiB/IKYMCwJQ5wvnuHl4fg3b3ItXptAtH 2EHhvq0Go8E+dKiJ0cdlrkezj4A1RS02y6XdyMIlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/tvYYY51qWDBoFEt+d5L6m/sXrcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IyZDY0MWNjLTAzNzYtNGQ4Mi04OTdhLTNkNTU5NmQ2MTY3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycQEwDQYJKoZIhvcNAQELBQADggEBAEp7Aear+cQ1m8XZ3uXntGZu krA6qw7pFxQLMUfSdUX7JfI6/Gzsa9NKgwN9ycPgRrhP7Bp3Oy2/WK/IbznTiMjP SRr2HtdVQwqfM/MXNo2JCKYzgtiLn7GFAbfSEs6scbKGb863Hkx57QPpyPqWAAmv peSU5pyK5NSJkN7HMTE/jVB+8hg7MWNg439jhRtVgv4jhk0vss1rhPI+I/7aoKuh +SK4aAgofPwc1rbpCchIPHw22hRWE8cQuK4fWzZDN8Hfk/MK7V3w0xOZ9vsbbr6R dlQsPW4G2n2C9sR1o0ylF0AT36sGeTHnvjikBRe/QEFw9jXA9mpSHxtu/eySv/8= -----END CERTIFICATE-----Generated at Sun Mar 1 22:04:40 2026 by rpki-client