$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa File: bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa (raw, json) Hash identifier: X2rCtsx7RXjXtaDaWF7P0G8QEMEPNOdIOTM1OWvI1CY= Subject key identifier: A3:B0:3A:5D:1A:54:06:6F:D7:0A:F2:F1:A3:1B:BD:6C:55:D6:E3:15 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 315A793B24CA5CB71137CEA303A741F7813DE1EF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa Signing time: Sat 28 Feb 2026 04:50:34 +0000 ROA not before: Sat 28 Feb 2026 04:50:34 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e400::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:5a:79:3b:24:ca:5c:b7:11:37:ce:a3:03:a7:41:f7:81:3d:e1:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 04:50:34 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=fdee5fe908c4e7bfe7a30084cce04f6d85d04e313c6bb03274b1d93d407b152d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:42:80:b8:23:51:a3:05:8e:7e:db:56:e0:87: 07:63:25:89:6e:3c:cd:62:c2:1e:9c:c4:dd:f2:7f: 8f:3e:49:a5:cc:a5:db:c6:5a:fb:1b:ab:97:64:3a: 3b:47:a9:2e:24:e6:56:8d:57:87:39:ee:17:33:85: ee:64:c3:33:f3:d3:c6:13:e6:1a:9b:df:98:e7:06: f5:4e:bd:ed:04:82:ad:b8:a2:88:77:f6:ef:2a:32: 70:9c:33:39:03:29:77:4e:1b:4c:06:b1:0a:02:66: f4:9e:07:c9:50:d4:33:9f:f2:e3:a1:de:35:38:14: 59:0f:46:24:4c:40:bf:ac:dd:3e:ca:6d:54:a9:89: ef:3d:aa:51:65:60:57:fd:ab:a8:62:c2:30:29:1f: 31:d9:ed:73:a9:8f:5e:7b:b8:2e:8e:39:88:da:0b: 63:3a:3b:94:b2:dc:cd:91:ab:e5:a3:9a:9b:6b:c6: 6e:44:64:64:e1:ab:4d:7f:f8:c3:88:c1:92:62:56: 6d:cb:b2:f0:d8:76:68:be:96:90:47:66:3f:04:4d: 8d:a3:84:e0:81:aa:79:f0:86:af:5c:4e:3e:15:3f: a0:f1:21:9a:bb:ca:37:e3:b5:70:5c:73:90:86:37: f9:57:90:65:d6:0d:ce:17:99:ee:bd:8d:47:4d:0c: 1d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B0:3A:5D:1A:54:06:6F:D7:0A:F2:F1:A3:1B:BD:6C:55:D6:E3:15 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e400::/42 Signature Algorithm: sha256WithRSAEncryption 6f:1c:3a:c3:58:78:83:65:66:b0:c8:74:bc:83:c4:2d:f3:3d: 4c:64:77:0c:41:25:32:a4:06:ba:76:da:22:fd:27:d8:41:28: 4f:02:a5:48:64:bd:7a:e4:5f:94:1c:f4:60:e1:14:be:ea:c9: cb:1f:8c:25:4d:cc:8c:d4:39:36:2e:e2:ef:11:91:11:70:30: 75:29:4b:18:09:f9:37:ea:56:d9:71:4e:43:0c:e4:79:42:78: f1:3e:78:e5:dd:50:a8:ac:34:b7:3e:d0:b7:6a:01:9f:b8:b5: 6a:bc:f6:fa:a0:c1:5a:8e:7e:2f:69:f3:71:49:c3:df:63:6f: 6a:55:ab:7a:49:46:24:a8:0c:71:02:46:08:8b:60:ce:66:f0: 3c:7a:92:19:97:50:aa:7a:cd:02:c8:82:b2:9c:97:6b:f5:e6: 0c:f7:c3:29:6d:c3:35:40:74:74:f1:26:a2:b5:52:98:90:fd: 77:1a:87:0c:9b:e8:94:1c:ca:3f:26:55:04:0a:70:f7:d5:ff: a1:30:0a:92:75:d0:c8:4b:6d:98:63:3a:ce:5e:2f:dd:26:a1: 5c:c8:91:73:54:97:6d:54:97:0b:20:16:8a:dd:33:f2:96:4a: 35:f3:53:9e:c9:97:a3:11:6a:7d:50:16:cc:f7:9b:c9:05:d6: 2f:28:5b:80 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMVp5OyTKXLcRN86jA6dB94E94e8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDQ1MDM0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZGVlNWZlOTA4YzRlN2JmZTdhMzAwODRjY2UwNGY2ZDg1 ZDA0ZTMxM2M2YmIwMzI3NGIxZDkzZDQwN2IxNTJkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSQoC4I1GjBY5+21bghwdjJYluPM1iwh6cxN3yf48+SaXM pdvGWvsbq5dkOjtHqS4k5laNV4c57hczhe5kwzPz08YT5hqb35jnBvVOve0Egq24 ooh39u8qMnCcMzkDKXdOG0wGsQoCZvSeB8lQ1DOf8uOh3jU4FFkPRiRMQL+s3T7K bVSpie89qlFlYFf9q6hiwjApHzHZ7XOpj157uC6OOYjaC2M6O5Sy3M2Rq+Wjmptr xm5EZGThq01/+MOIwZJiVm3LsvDYdmi+lpBHZj8ETY2jhOCBqnnwhq9cTj4VP6Dx IZq7yjfjtXBcc5CGN/lXkGXWDc4Xme69jUdNDB0JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUo7A6XRpUBm/XCvLxoxu9bFXW4xUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JmMjdmZGI3LTg0YmYtNDBkMi05MDZhLTdiNGMxZmY0MDViMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75AAwDQYJKoZIhvcNAQELBQADggEBAG8cOsNYeINlZrDIdLyDxC3z PUxkdwxBJTKkBrp22iL9J9hBKE8CpUhkvXrkX5Qc9GDhFL7qycsfjCVNzIzUOTYu 4u8RkRFwMHUpSxgJ+TfqVtlxTkMM5HlCePE+eOXdUKisNLc+0LdqAZ+4tWq89vqg wVqOfi9p83FJw99jb2pVq3pJRiSoDHECRgiLYM5m8Dx6khmXUKp6zQLIgrKcl2v1 5gz3wyltwzVAdHTxJqK1UpiQ/Xcahwyb6JQcyj8mVQQKcPfV/6EwCpJ10MhLbZhj Os5eL90moVzIkXNUl21UlwsgFordM/KWSjXzU57Jl6MRan1QFsz3m8kF1i8oW4A= -----END CERTIFICATE-----Generated at Mon Mar 2 01:02:11 2026 by rpki-client