$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa File: b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa (raw, json) Hash identifier: JZcvdakF+8x/QE0ITfFps42bXg8nmosIKf/0mvjPYaY= Subject key identifier: 54:C0:A0:FF:94:ED:0E:35:1C:AE:AB:70:51:F1:CF:D8:EF:AC:69:0B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 36F6B8429DAA68F00DA817C46D7643AC4E4A5D22 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa Signing time: Mon 23 Feb 2026 00:00:06 +0000 ROA not before: Mon 23 Feb 2026 00:00:06 +0000 ROA not after: Sun 24 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0::/28 maxlen: 28 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:f6:b8:42:9d:aa:68:f0:0d:a8:17:c4:6d:76:43:ac:4e:4a:5d:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 23 00:00:06 2026 GMT Not After : May 24 23:59:59 2026 GMT Subject: serialNumber=df9e806ea9204ed96779c56e02f0e79617e0674ba8cd507b437cd22da84eb5e2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:bb:49:f6:26:5a:44:b6:07:d7:eb:2f:9c:8d: b0:58:1b:99:d2:c4:a1:dc:6a:52:16:ae:f3:f0:7a: 17:1f:d7:2c:f8:79:dc:1c:8f:8a:b8:02:3e:c2:5a: 90:96:ad:22:ce:6a:37:e8:bb:8d:e2:41:1e:24:b6: 41:b3:90:e3:13:8f:8d:d0:d9:84:58:1b:32:ea:9f: 5f:fa:ae:a6:af:10:c4:76:8a:f3:fe:b8:25:2e:ee: 0c:56:70:49:ba:8f:07:1d:57:57:aa:3a:33:f8:52: 2a:57:e6:cc:09:96:9d:3b:20:a1:90:33:dc:30:76: b1:83:a1:75:84:28:69:de:0b:7a:50:51:29:aa:21: b5:7b:39:a2:1b:84:ad:ef:d4:c9:8f:f7:63:94:a0: fd:64:ce:22:95:ce:49:37:89:53:f3:cd:d6:3e:c5: 71:37:f0:5c:aa:02:26:3c:8f:49:a3:2e:d7:9f:45: 4e:d6:a7:88:a4:94:ff:bf:e9:78:56:b9:cc:d3:28: 3f:87:2a:5a:34:7a:fc:22:5e:06:a2:2f:6e:a0:d1: 8d:f3:2b:ad:97:1d:5a:e0:73:6d:d0:45:bc:47:f5: 84:f4:1e:72:34:46:2b:6c:59:b8:97:6a:91:17:3f: 3f:9b:b9:23:3f:6d:33:7d:40:c0:d9:cc:45:ee:d7: da:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C0:A0:FF:94:ED:0E:35:1C:AE:AB:70:51:F1:CF:D8:EF:AC:69:0B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0::/28 Signature Algorithm: sha256WithRSAEncryption 65:5e:29:35:dc:86:45:d1:a6:ea:66:73:db:4b:fb:b8:db:fa: 8c:0a:18:e2:f5:f3:31:e1:0e:46:49:f9:55:97:20:30:28:a2: 1c:1e:8a:82:49:d8:3d:23:4e:b1:a9:6d:5d:ce:af:75:e9:f8: f0:42:77:26:6d:53:29:03:9b:c8:c9:00:cc:95:05:13:b7:88: bc:9b:a3:3e:ee:b7:a8:65:27:e5:45:56:c6:e2:d8:e9:bc:36: 10:46:79:b6:e3:9f:29:bb:3b:bb:a7:98:df:19:5b:fd:50:27: 5c:35:69:b9:e3:56:db:6d:1c:2b:8f:26:aa:9c:28:2d:da:4e: 65:63:5e:4c:bb:46:c6:cb:f8:dc:af:09:cf:d9:48:13:e8:36: 42:df:9d:25:30:e0:3a:6d:de:60:6d:cc:90:15:a0:9d:38:95: 0d:34:e9:a0:43:b7:d7:8a:6f:8e:18:dd:fa:b0:10:41:f6:17: 0c:7d:a2:f5:47:30:fb:0b:2f:9d:f0:4c:6b:2a:ea:32:47:45: 03:e1:4c:bb:80:53:35:93:6c:1e:bb:24:f2:7d:ba:94:d0:cb: db:4b:be:5c:d0:be:0d:9a:b7:2f:ce:ad:9c:2d:62:dc:2a:62: ba:8c:a1:a8:7c:e5:37:3f:1c:ff:3b:2a:d8:da:49:f4:e1:45: 4d:39:b0:c3 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUNva4Qp2qaPANqBfEbXZDrE5KXSIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjIzMDAwMDA2WhcNMjYwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjllODA2ZWE5MjA0ZWQ5Njc3OWM1NmUwMmYwZTc5NjE3 ZTA2NzRiYThjZDUwN2I0MzdjZDIyZGE4NGViNWUyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSu0n2JlpEtgfX6y+cjbBYG5nSxKHcalIWrvPwehcf1yz4 edwcj4q4Aj7CWpCWrSLOajfou43iQR4ktkGzkOMTj43Q2YRYGzLqn1/6rqavEMR2 ivP+uCUu7gxWcEm6jwcdV1eqOjP4UipX5swJlp07IKGQM9wwdrGDoXWEKGneC3pQ USmqIbV7OaIbhK3v1MmP92OUoP1kziKVzkk3iVPzzdY+xXE38FyqAiY8j0mjLtef RU7Wp4iklP+/6XhWuczTKD+HKlo0evwiXgaiL26g0Y3zK62XHVrgc23QRbxH9YT0 HnI0RitsWbiXapEXPz+buSM/bTN9QMDZzEXu19qVAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUVMCg/5TtDjUcrqtwUfHP2O+saQswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I3YmJhZmJmLWU2ZDQtNDQ4Ny05ZWJiLWNiZDcyYjNkNmM3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAPDwMA0GCSqGSIb3DQEBCwUAA4IBAQBlXik13IZF0abqZnPbS/u42/qM Chji9fMx4Q5GSflVlyAwKKIcHoqCSdg9I06xqW1dzq916fjwQncmbVMpA5vIyQDM lQUTt4i8m6M+7reoZSflRVbG4tjpvDYQRnm2458puzu7p5jfGVv9UCdcNWm541bb bRwrjyaqnCgt2k5lY15Mu0bGy/jcrwnP2UgT6DZC350lMOA6bd5gbcyQFaCdOJUN NOmgQ7fXim+OGN36sBBB9hcMfaL1RzD7Cy+d8ExrKuoyR0UD4Uy7gFM1k2weuyTy fbqU0MvbS75c0L4Nmrcvzq2cLWLcKmK6jKGofOU3Pxz/OyrY2kn04UVNObDD -----END CERTIFICATE-----Generated at Mon Mar 2 01:26:10 2026 by rpki-client