$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bb39a4d5-a721-4096-bac6-18d29fa4b7ff.roa File: bb39a4d5-a721-4096-bac6-18d29fa4b7ff.roa (raw, json) Hash identifier: RJIOqtz4nE7XFpnbzDoqpwg7CWwRec7E3xm5KtLNAPg= Subject key identifier: 0D:97:5E:F5:79:CB:A3:CB:53:92:E4:53:8E:BA:2B:97:4C:BF:FC:C6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 35808529125857FB1BAAFADA82ACB9AACF968CF0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bb39a4d5-a721-4096-bac6-18d29fa4b7ff.roa Signing time: Sun 01 Mar 2026 00:50:28 +0000 ROA not before: Sun 01 Mar 2026 00:50:28 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f10c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:80:85:29:12:58:57:fb:1b:aa:fa:da:82:ac:b9:aa:cf:96:8c:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 00:50:28 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=cf9f479cbb24588f9a2809a7df5711d23a9dd5a7a3a47b1207a900e44d3751fc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c9:a0:0e:65:28:c2:ac:f9:a4:13:14:ae:e4: fb:eb:2c:bf:9a:96:58:46:14:57:1f:47:2d:8a:52: 0c:84:49:13:d4:83:19:97:2b:b0:c7:6d:ac:cf:ec: f6:10:fe:2b:b8:cc:c6:41:e5:63:c7:3a:a5:1c:a1: c8:d9:c5:c6:79:99:66:55:58:dd:b5:3a:8e:0a:3f: 5c:2f:93:cc:89:1d:fa:d2:51:d7:9d:ce:09:99:27: 20:f7:a5:94:59:37:17:e1:ff:0a:48:63:e6:0b:12: a0:33:61:90:a2:1d:02:25:27:27:f3:a0:69:cd:72: 9c:0d:46:13:24:e5:f9:2e:86:a8:82:ad:c8:b8:13: 39:b9:55:43:2e:08:d0:41:42:6d:49:cb:35:1d:2a: 0e:10:57:f4:98:af:52:6f:6f:63:93:d9:1c:26:b9: 7e:e4:8b:62:b1:f7:8a:32:d9:bd:68:36:7f:96:7d: 8a:3e:7e:98:6c:6b:f2:fa:bc:40:99:96:14:44:ed: bb:48:d7:cc:19:11:7e:16:e3:e6:56:1a:0d:7f:3a: 43:bd:bd:af:e8:5a:a0:40:50:93:8b:ce:05:72:c3: 6a:2a:f3:1b:ee:23:af:b8:c1:45:01:c3:69:ed:55: 16:64:92:40:9f:e4:e0:c9:37:e9:f3:9e:bf:e0:34: 81:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:97:5E:F5:79:CB:A3:CB:53:92:E4:53:8E:BA:2B:97:4C:BF:FC:C6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bb39a4d5-a721-4096-bac6-18d29fa4b7ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10c::/48 Signature Algorithm: sha256WithRSAEncryption 71:a1:87:08:d0:f1:e9:bd:22:51:3d:6b:d0:6a:a3:6f:20:17: b5:91:ab:04:87:51:e3:73:32:5f:d9:78:4f:cc:83:8c:cc:72: 68:c7:fe:18:d6:89:39:16:10:73:e1:0b:37:cb:34:52:31:86: 98:4f:59:b8:27:f7:97:35:f0:31:bb:86:dd:7d:ee:d4:1f:92: a9:42:09:8f:54:45:08:b0:71:d9:aa:3d:65:d5:15:5b:e1:6b: 7a:ab:7a:29:2c:4c:cc:6b:b7:61:c6:06:12:68:57:03:97:c8: 7c:5e:74:79:6e:51:9a:a6:09:0c:36:6a:ec:fe:35:86:0c:e1: 97:1d:46:e4:be:3e:d4:ae:ef:64:4b:1c:1e:c0:a1:fc:5d:01: 66:b0:14:2e:f0:e5:3c:24:23:5e:64:26:0e:dc:67:8f:b9:5b: ed:eb:54:59:d3:f4:c0:0f:b0:7a:0f:fd:1c:22:46:45:3b:5c: 4a:02:51:10:50:8e:9b:4d:6a:41:57:cd:f2:c2:80:6d:2c:1a: 54:f3:e7:21:a1:4e:4d:04:29:31:fe:fa:ca:15:77:97:a4:9e: ad:e3:00:41:a6:33:66:45:d6:6b:f7:e0:a1:88:39:c0:23:a4: af:f5:d1:88:ae:8f:11:16:20:4d:cb:8c:46:1c:a6:c0:3d:ed: 97:da:a4:cf -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNYCFKRJYV/sbqvragqy5qs+WjPAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDA1MDI4WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjlmNDc5Y2JiMjQ1ODhmOWEyODA5YTdkZjU3MTFkMjNh OWRkNWE3YTNhNDdiMTIwN2E5MDBlNDRkMzc1MWZjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmyaAOZSjCrPmkExSu5PvrLL+allhGFFcfRy2KUgyESRPU gxmXK7DHbazP7PYQ/iu4zMZB5WPHOqUcocjZxcZ5mWZVWN21Oo4KP1wvk8yJHfrS UdedzgmZJyD3pZRZNxfh/wpIY+YLEqAzYZCiHQIlJyfzoGnNcpwNRhMk5fkuhqiC rci4Ezm5VUMuCNBBQm1JyzUdKg4QV/SYr1Jvb2OT2RwmuX7ki2Kx94oy2b1oNn+W fYo+fphsa/L6vECZlhRE7btI18wZEX4W4+ZWGg1/OkO9va/oWqBAUJOLzgVyw2oq 8xvuI6+4wUUBw2ntVRZkkkCf5ODJN+nznr/gNIFvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDZde9XnLo8tTkuRTjrorl0y//MYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JiMzlhNGQ1LWE3MjEtNDA5Ni1iYWM2LTE4ZDI5ZmE0YjdmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QwwDQYJKoZIhvcNAQELBQADggEBAHGhhwjQ8em9IlE9a9Bqo28g F7WRqwSHUeNzMl/ZeE/Mg4zMcmjH/hjWiTkWEHPhCzfLNFIxhphPWbgn95c18DG7 ht197tQfkqlCCY9URQiwcdmqPWXVFVvha3qreiksTMxrt2HGBhJoVwOXyHxedHlu UZqmCQw2auz+NYYM4ZcdRuS+PtSu72RLHB7AofxdAWawFC7w5TwkI15kJg7cZ4+5 W+3rVFnT9MAPsHoP/RwiRkU7XEoCURBQjptNakFXzfLCgG0sGlTz5yGhTk0EKTH+ +soVd5eknq3jAEGmM2ZF1mv34KGIOcAjpK/10YiujxEWIE3LjEYcpsA97ZfapM8= -----END CERTIFICATE-----Generated at Sun Mar 1 23:47:08 2026 by rpki-client