$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1a47a69-1d53-4fa8-bab2-1b1f60e74655.roa File: c1a47a69-1d53-4fa8-bab2-1b1f60e74655.roa (raw, json) Hash identifier: WlyhGOHy6tnvo4z8LH2DvWf/Fjw+wO6XV/t53YZplrM= Subject key identifier: 65:B3:43:3F:1C:A9:1F:8D:13:3D:BB:15:FD:84:4D:02:35:EB:EA:EA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5414EBCC5D1F386753691A961B105317EAAA6E0C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1a47a69-1d53-4fa8-bab2-1b1f60e74655.roa Signing time: Sun 01 Mar 2026 01:00:10 +0000 ROA not before: Sun 01 Mar 2026 01:00:10 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:14:eb:cc:5d:1f:38:67:53:69:1a:96:1b:10:53:17:ea:aa:6e:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 01:00:10 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=faadcb194a262441ce0fb17b302b630c2b6a69d2189fba56ebbfde76e000c2ac, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e8:44:e9:f3:46:7a:49:d9:04:b7:94:51:bd: 25:79:3d:bc:e6:01:59:62:0f:ac:f2:d5:56:58:16: 88:d3:ec:bd:af:9a:1c:fa:cc:ea:a5:18:c8:52:18: 1e:aa:8f:3c:d9:df:67:7c:cf:15:87:66:a2:69:b6: 2b:18:29:06:fc:aa:1f:da:a9:e4:74:38:a5:b9:14: 3b:a7:1a:4a:06:5b:63:bf:12:5f:19:fd:ec:ec:79: b3:78:7a:79:df:f5:3f:5f:90:49:12:33:8a:f0:20: 72:ed:90:ad:e8:8a:e8:51:f7:86:b3:8d:b0:da:72: 09:2f:77:fc:7e:2a:c1:b7:87:b8:af:73:4f:28:f6: 6a:0d:9a:c7:f2:bd:30:5d:ed:5d:6a:11:76:15:2d: ca:a9:44:25:e4:67:8a:7f:f5:4b:65:e9:fd:eb:c0: 6a:8a:13:32:e3:8a:6c:5a:e8:d4:0c:e2:0d:b2:25: 99:55:54:ad:2d:6d:30:68:26:0b:66:84:37:00:1b: 5d:d1:2f:3d:6e:41:65:d9:e6:9c:8e:b7:e1:ce:1e: 3d:66:8f:0c:97:1d:60:f3:45:07:22:b4:14:87:f3: 50:7a:dc:32:b5:ad:34:c1:39:cd:6b:39:03:69:bd: e9:99:42:4d:c2:0f:de:06:26:35:64:61:d5:46:b7: 7b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B3:43:3F:1C:A9:1F:8D:13:3D:BB:15:FD:84:4D:02:35:EB:EA:EA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1a47a69-1d53-4fa8-bab2-1b1f60e74655.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f102::/48 Signature Algorithm: sha256WithRSAEncryption a3:90:53:a5:41:74:71:e1:8e:45:9a:5a:7d:51:44:59:0c:57: 83:fe:63:1b:4d:e4:5a:32:4b:5d:42:24:ad:f7:c2:a2:59:06: e5:3a:1c:36:2c:07:8f:7c:07:6c:4f:69:b8:bf:85:d6:36:ab: 35:50:90:d7:f8:be:17:4d:31:d0:a7:0d:83:35:a4:15:db:97: 91:db:6f:85:8e:5d:1c:2a:19:c1:03:ee:1b:fd:8c:ce:df:d5: 2a:52:d1:0d:45:70:30:3d:e6:24:be:1e:79:55:fc:d4:07:62: a5:87:ba:e7:cd:8e:b0:7c:7c:91:27:4a:d9:5a:35:55:95:7c: fd:98:64:70:bf:16:10:d3:6f:e1:ab:ef:23:5d:cb:20:2e:1e: 33:8f:b8:1b:3b:ed:27:d1:32:33:ab:2e:be:c6:60:9a:73:47: 73:92:30:a5:60:75:c9:b9:d2:32:8e:f0:76:dd:35:7e:e8:15: a3:3e:ab:d2:20:43:ff:2e:3a:57:28:37:39:02:fd:65:f9:5e: c1:75:a6:0e:fc:b8:e5:51:45:fe:0f:6d:35:5b:fe:42:22:59: 27:10:ce:60:36:67:9a:47:51:d0:ba:e5:da:ad:52:20:43:e3: c3:86:3e:c6:36:71:a3:f8:d8:6e:75:18:4d:41:d5:3e:a2:44: 72:76:de:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVBTrzF0fOGdTaRqWGxBTF+qqbgwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDEwMDEwWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYWFkY2IxOTRhMjYyNDQxY2UwZmIxN2IzMDJiNjMwYzJi NmE2OWQyMTg5ZmJhNTZlYmJmZGU3NmUwMDBjMmFjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT6ETp80Z6SdkEt5RRvSV5PbzmAVliD6zy1VZYFojT7L2v mhz6zOqlGMhSGB6qjzzZ32d8zxWHZqJptisYKQb8qh/aqeR0OKW5FDunGkoGW2O/ El8Z/ezsebN4ennf9T9fkEkSM4rwIHLtkK3oiuhR94azjbDacgkvd/x+KsG3h7iv c08o9moNmsfyvTBd7V1qEXYVLcqpRCXkZ4p/9Utl6f3rwGqKEzLjimxa6NQM4g2y JZlVVK0tbTBoJgtmhDcAG13RLz1uQWXZ5pyOt+HOHj1mjwyXHWDzRQcitBSH81B6 3DK1rTTBOc1rOQNpvemZQk3CD94GJjVkYdVGt3sHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZbNDPxypH40TPbsV/YRNAjXr6uowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxYTQ3YTY5LTFkNTMtNGZhOC1iYWIyLTFiMWY2MGU3NDY1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QIwDQYJKoZIhvcNAQELBQADggEBAKOQU6VBdHHhjkWaWn1RRFkM V4P+YxtN5FoyS11CJK33wqJZBuU6HDYsB498B2xPabi/hdY2qzVQkNf4vhdNMdCn DYM1pBXbl5Hbb4WOXRwqGcED7hv9jM7f1SpS0Q1FcDA95iS+HnlV/NQHYqWHuufN jrB8fJEnStlaNVWVfP2YZHC/FhDTb+Gr7yNdyyAuHjOPuBs77SfRMjOrLr7GYJpz R3OSMKVgdcm50jKO8HbdNX7oFaM+q9IgQ/8uOlcoNzkC/WX5XsF1pg78uOVRRf4P bTVb/kIiWScQzmA2Z5pHUdC65dqtUiBD48OGPsY2caP42G51GE1B1T6iRHJ23hg= -----END CERTIFICATE-----Generated at Sun Mar 1 23:51:04 2026 by rpki-client