$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa File: bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa (raw, json) Hash identifier: DhGmBCXdf/79ffT0OEqd2B6XoWOIIJvlsFGRaSP9X2A= Subject key identifier: 27:E5:13:E6:B9:13:09:BC:45:5B:5E:74:C4:8E:63:39:33:8B:D9:FB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 78E8EB10DF3C483EE4307D218B0065D56F2D491B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa Signing time: Sat 28 Feb 2026 05:10:37 +0000 ROA not before: Sat 28 Feb 2026 05:10:37 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5519::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:e8:eb:10:df:3c:48:3e:e4:30:7d:21:8b:00:65:d5:6f:2d:49:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:10:37 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=9083fc3dd2ea40e0552de37990aa169abe9a96426f6a2fa7a3b640d1c459ea35, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:43:0e:34:0d:8c:8f:6b:b9:9f:78:ff:fe:e1: 0a:58:79:90:1c:c8:0e:c8:0c:d7:7f:74:75:19:23: 06:60:b5:b0:67:df:11:c7:59:5d:40:e1:bb:2f:f2: 69:60:a1:97:c9:c9:11:4b:5d:ee:84:82:b2:d5:c0: 95:e7:cf:bc:59:d3:cb:ef:cc:ea:e9:60:7e:22:d9: 6a:00:b8:46:2a:7e:57:2d:6a:6b:43:e2:79:08:60: a2:d3:04:f3:e0:5e:fb:e2:08:12:d3:f3:dd:13:b0: b4:a4:6c:bf:63:9f:70:53:66:c0:f1:0e:32:52:cb: 2e:aa:a3:a6:f7:39:d9:d5:4d:9d:c6:50:5f:34:06: 16:a3:78:47:a3:7e:59:b5:f6:96:91:62:6d:e7:80: d4:9b:de:b8:54:fc:81:ef:6c:35:e1:8b:b0:74:74: 1d:48:a8:50:7d:ac:b1:a7:07:01:6a:5c:28:cc:99: d5:f6:56:10:fc:71:5e:de:ab:01:ff:fb:cf:da:79: e9:55:14:e5:05:59:a4:1c:4a:3c:c9:7a:27:41:60: 64:57:6b:39:17:0e:f4:17:98:da:e8:6d:09:33:f0: 26:c5:54:de:e0:c3:ea:12:e1:80:9f:15:fb:23:cf: 53:dc:17:99:4f:a8:bd:f3:07:85:14:42:47:60:51: 61:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E5:13:E6:B9:13:09:BC:45:5B:5E:74:C4:8E:63:39:33:8B:D9:FB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5519::/48 Signature Algorithm: sha256WithRSAEncryption 1c:41:2c:06:8b:c9:63:eb:1d:cc:02:48:92:4e:35:d3:03:64: 77:4c:78:d2:d9:07:77:6e:4d:80:f2:11:74:a7:10:c9:97:10: c4:ed:ea:70:27:8e:6d:91:da:5d:9a:ea:85:0f:fb:f8:59:87: c3:72:a0:41:a2:80:b6:fa:b7:2f:3b:aa:83:4b:5e:67:ba:48: ad:69:79:a5:bc:33:e1:a1:c4:e3:11:08:4a:46:e2:87:df:b6: 45:03:71:e0:d7:37:a8:ea:2e:6d:ba:0c:a9:a0:c1:f6:58:47: c3:a1:74:26:60:e3:25:9d:66:37:0e:5c:dd:13:29:db:ef:19: 45:32:b8:4f:b9:86:cf:86:e2:08:2f:1b:31:cb:8e:28:3f:03: 33:79:0b:c2:aa:0f:85:67:5f:1a:30:6a:9d:b7:e2:6a:ac:b5: 15:bf:9c:98:cb:83:76:ea:c2:03:ac:92:76:8d:d4:d3:03:99: 9b:95:86:2e:a6:68:c1:0d:0b:11:75:37:11:2c:d8:14:f2:52: 28:39:5e:c9:ca:12:b2:0b:8c:3e:38:40:00:4f:fc:1b:4d:e5: 49:14:8e:0e:0e:75:08:ad:b1:bd:61:6b:5d:fe:d6:5b:a4:3c: 2e:81:1a:d4:5c:2c:40:22:2f:5e:55:d3:52:94:6d:3d:73:a9: 54:d3:fe:b7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeOjrEN88SD7kMH0hiwBl1W8tSRswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUxMDM3WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDgzZmMzZGQyZWE0MGUwNTUyZGUzNzk5MGFhMTY5YWJl OWE5NjQyNmY2YTJmYTdhM2I2NDBkMWM0NTllYTM1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3Qw40DYyPa7mfeP/+4QpYeZAcyA7IDNd/dHUZIwZgtbBn 3xHHWV1A4bsv8mlgoZfJyRFLXe6EgrLVwJXnz7xZ08vvzOrpYH4i2WoAuEYqflct amtD4nkIYKLTBPPgXvviCBLT890TsLSkbL9jn3BTZsDxDjJSyy6qo6b3OdnVTZ3G UF80BhajeEejflm19paRYm3ngNSb3rhU/IHvbDXhi7B0dB1IqFB9rLGnBwFqXCjM mdX2VhD8cV7eqwH/+8/aeelVFOUFWaQcSjzJeidBYGRXazkXDvQXmNrobQkz8CbF VN7gw+oS4YCfFfsjz1PcF5lPqL3zB4UUQkdgUWF/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJ+UT5rkTCbxFW150xI5jOTOL2fswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JkYTMzODAwLTEwOGQtNGViNy1iYmM4LWYxZjNhNWEwODhlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRkwDQYJKoZIhvcNAQELBQADggEBABxBLAaLyWPrHcwCSJJONdMD ZHdMeNLZB3duTYDyEXSnEMmXEMTt6nAnjm2R2l2a6oUP+/hZh8NyoEGigLb6ty87 qoNLXme6SK1peaW8M+GhxOMRCEpG4offtkUDceDXN6jqLm26DKmgwfZYR8OhdCZg 4yWdZjcOXN0TKdvvGUUyuE+5hs+G4ggvGzHLjig/AzN5C8KqD4VnXxowap234mqs tRW/nJjLg3bqwgOsknaN1NMDmZuVhi6maMENCxF1NxEs2BTyUig5XsnKErILjD44 QABP/BtN5UkUjg4OdQitsb1ha13+1lukPC6BGtRcLEAiL15V01KUbT1zqVTT/rc= -----END CERTIFICATE-----Generated at Sun Mar 1 22:07:04 2026 by rpki-client