$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa File: b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa (raw, json) Hash identifier: E/rfuWS5aG7vDrkNmkw5V3angam4cy2l0YjfSIHO/Uo= Subject key identifier: 60:7C:5A:25:94:AF:03:38:88:EE:FE:D1:7F:C5:7D:26:5B:F1:CA:B0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7CDCD88A8B9999B1C67663FAAC93C325CB17C90E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa Signing time: Sun 01 Mar 2026 00:50:22 +0000 ROA not before: Sun 01 Mar 2026 00:50:22 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f1:8801::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:dc:d8:8a:8b:99:99:b1:c6:76:63:fa:ac:93:c3:25:cb:17:c9:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 00:50:22 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=1078d9a233d2fc8195f6b8c0d2e90d8db83ef0d3daef7693abb477e41c6fc00c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8d:c0:70:dc:ac:00:41:f7:15:36:75:5f:1d: e8:03:74:95:96:76:27:70:ae:d0:9f:53:ae:59:7f: 27:cc:5c:ed:bc:09:31:29:f6:0b:a0:36:15:2a:9e: d8:6b:f2:41:9d:45:10:8a:75:4d:83:4f:03:0e:91: a4:68:fc:a8:b3:dd:12:79:3d:8f:b6:83:86:90:54: 6b:14:37:14:42:58:63:36:92:46:f7:37:0b:88:85: de:50:fd:91:a1:ac:ce:cc:1c:a3:9e:26:15:2a:2c: a2:aa:f8:96:ef:45:b1:d6:a6:b0:c0:c6:2e:85:0e: 28:0d:13:fe:ea:aa:5c:16:79:0f:05:9e:0b:86:fb: 5f:3d:b9:a9:16:9f:e4:3b:11:4d:36:b3:c0:a2:e6: af:48:96:c3:94:f2:e8:3c:ba:b2:af:7e:e2:62:5e: 30:99:28:c3:05:b3:25:42:0a:86:67:75:bf:69:47: 3c:36:87:96:c9:86:c8:de:06:e9:4a:98:ad:b6:24: 7c:a3:7b:77:f3:ce:08:ed:cb:9b:53:f0:3d:eb:bf: 69:60:3c:76:f4:6d:80:97:87:6d:d8:8e:5a:64:23: 21:77:3a:0d:51:10:23:a4:f8:69:c9:3b:9b:ac:8a: 0c:80:31:80:4f:9a:6e:a8:c8:dc:4c:6a:a6:d3:4a: c4:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:7C:5A:25:94:AF:03:38:88:EE:FE:D1:7F:C5:7D:26:5B:F1:CA:B0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8801::/48 Signature Algorithm: sha256WithRSAEncryption 7c:a1:b7:0d:44:38:60:18:ad:39:bd:07:22:a8:7c:d8:11:18: 5a:49:b7:ec:0e:9a:03:67:3f:dc:49:60:2b:48:49:3f:74:20: d9:e6:6c:5c:3e:b5:a9:f6:d2:6c:29:08:7a:dc:b4:42:34:80: ba:12:73:7e:1e:8b:6d:d0:c0:72:b1:13:e9:fe:7e:83:40:3a: e4:2d:da:87:54:a2:f0:aa:35:6d:14:ca:56:d7:d3:9e:7f:e2: 58:b2:47:54:80:fa:98:1e:f7:f7:4f:c6:8d:04:64:33:f3:f2: 66:ab:eb:46:af:85:76:ca:ce:f7:ab:38:4a:d2:74:8c:47:92: e2:9d:c9:27:46:de:c7:20:96:f5:8a:f4:4d:4f:44:9f:45:bc: 23:f8:b4:1f:af:10:4d:86:ef:32:35:62:e0:30:26:6a:c4:4e: 61:4c:8d:03:92:33:e4:d8:1e:f2:ee:2a:25:6f:7d:dd:5e:51: ad:72:d3:2e:1a:41:3e:5b:b2:70:8c:06:e0:3c:81:2e:76:a7: 6f:ae:01:4b:38:b1:7f:b8:df:3c:e9:d7:40:63:1d:4f:bf:9e: 4c:70:49:3e:71:69:34:f5:f4:1b:cb:49:c4:04:da:5c:36:ce: 1b:1a:eb:c3:fc:c7:35:84:3e:31:2d:bc:cf:71:f4:01:7a:68: 99:83:a7:8c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfNzYiouZmbHGdmP6rJPDJcsXyQ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDA1MDIyWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDc4ZDlhMjMzZDJmYzgxOTVmNmI4YzBkMmU5MGQ4ZGI4 M2VmMGQzZGFlZjc2OTNhYmI0NzdlNDFjNmZjMDBjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDjcBw3KwAQfcVNnVfHegDdJWWdidwrtCfU65ZfyfMXO28 CTEp9gugNhUqnthr8kGdRRCKdU2DTwMOkaRo/Kiz3RJ5PY+2g4aQVGsUNxRCWGM2 kkb3NwuIhd5Q/ZGhrM7MHKOeJhUqLKKq+JbvRbHWprDAxi6FDigNE/7qqlwWeQ8F nguG+189uakWn+Q7EU02s8Ci5q9IlsOU8ug8urKvfuJiXjCZKMMFsyVCCoZndb9p Rzw2h5bJhsjeBulKmK22JHyje3fzzgjty5tT8D3rv2lgPHb0bYCXh23YjlpkIyF3 Og1RECOk+GnJO5usigyAMYBPmm6oyNxMaqbTSsRTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYHxaJZSvAziI7v7Rf8V9JlvxyrAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I0MTYzYTM4LWE4ZTItNDhkOS04NTVmLWRkNTNhZTdmNmRjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiAEwDQYJKoZIhvcNAQELBQADggEBAHyhtw1EOGAYrTm9ByKofNgR GFpJt+wOmgNnP9xJYCtIST90INnmbFw+tan20mwpCHrctEI0gLoSc34ei23QwHKx E+n+foNAOuQt2odUovCqNW0UylbX055/4liyR1SA+pge9/dPxo0EZDPz8mar60av hXbKzverOErSdIxHkuKdySdG3scglvWK9E1PRJ9FvCP4tB+vEE2G7zI1YuAwJmrE TmFMjQOSM+TYHvLuKiVvfd1eUa1y0y4aQT5bsnCMBuA8gS52p2+uAUs4sX+43zzp 10BjHU+/nkxwST5xaTT19BvLScQE2lw2zhsa68P8xzWEPjEtvM9x9AF6aJmDp4w= -----END CERTIFICATE-----Generated at Sun Mar 1 23:40:16 2026 by rpki-client