$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c8a22460-1c12-4314-8b13-6a586edac27c.roa File: c8a22460-1c12-4314-8b13-6a586edac27c.roa (raw, json) Hash identifier: S/MGQe9XSRXYuDzXhKqG+2Qte6zQns9s7XYUrI0Q9z8= Subject key identifier: B7:A3:EB:36:13:C0:46:FD:0A:D8:77:8C:E6:54:80:35:0D:C9:C0:EE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6164C158B4056FDA8DE023EEF98B6ED9137511AF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c8a22460-1c12-4314-8b13-6a586edac27c.roa Signing time: Sat 28 Feb 2026 04:50:10 +0000 ROA not before: Sat 28 Feb 2026 04:50:10 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ec00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:64:c1:58:b4:05:6f:da:8d:e0:23:ee:f9:8b:6e:d9:13:75:11:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 04:50:10 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=748f977e6a276518ffbb001754647e0d89e531b9528dc92f01f0ff8ef821861b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3c:a5:70:c8:b1:a5:c4:85:59:8e:5a:9a:18: b8:68:e9:8a:c8:5b:78:bf:01:9b:89:4a:6a:17:02: 5a:ab:85:00:d6:34:4a:36:86:fe:19:c7:63:86:43: c7:9d:40:ba:08:72:06:95:d2:44:66:08:26:26:17: 64:72:a9:f9:b2:3a:1c:17:f5:c4:9b:78:cf:8a:2d: 55:6f:58:c7:6f:a5:3c:40:13:f6:e7:34:25:21:3a: 43:14:dd:99:e4:29:a3:f0:22:ef:bd:4a:d7:bf:2d: 1a:1b:4c:af:01:11:bb:5e:b1:1a:b8:a4:e1:99:09: 2c:ae:be:0c:06:5f:57:38:c0:fe:c6:c0:5f:ce:fb: 72:77:0a:f8:53:0c:b3:6d:ad:7a:27:33:c9:e4:e4: 86:6d:2b:65:d8:4a:e7:a7:50:b7:43:a4:a2:63:4b: 7b:b6:4a:fd:7a:90:71:5a:86:26:66:86:c2:5c:46: cd:58:72:be:d6:2a:c2:a1:dd:f9:a1:b3:58:8f:4a: 79:85:57:4f:98:2e:82:e2:b3:31:0f:b2:be:9f:6b: cd:53:55:ed:61:cd:32:65:a3:a2:56:77:dc:f6:1d: 1d:50:ad:6c:43:74:96:ea:7f:03:2f:9c:27:48:e9: c9:f7:a0:2b:59:6d:36:a3:55:b7:77:dc:01:dc:f7: 99:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A3:EB:36:13:C0:46:FD:0A:D8:77:8C:E6:54:80:35:0D:C9:C0:EE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c8a22460-1c12-4314-8b13-6a586edac27c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 4d:64:76:c5:48:5f:38:5b:95:ed:5f:bc:44:c6:bb:2e:df:17: a7:c2:e9:58:13:b0:ed:5d:7a:aa:8b:00:6c:8e:cd:ea:ed:df: 3d:0d:24:c2:04:fa:1d:d3:c7:a2:8e:78:8d:81:00:59:b9:3c: 1c:55:64:c8:e3:d8:ed:9d:8a:7e:cd:0d:73:b0:27:11:4a:dc: bc:5d:92:cb:94:7f:6e:ad:79:f7:d1:19:4d:de:c4:60:e2:fa: be:9c:e0:f0:b6:18:68:32:13:db:22:9b:01:60:30:1c:f7:3d: 86:bc:26:6e:4a:f0:ff:30:83:75:42:4a:9e:78:50:b3:70:fc: a0:c4:c8:bc:cb:3b:5b:d7:cd:d7:fb:88:83:73:c1:d6:58:cd: a7:dc:df:82:8d:70:b2:39:65:18:a8:ee:21:09:0b:56:3a:db: d1:25:22:23:b8:49:8b:b6:43:58:71:47:31:e8:b6:04:09:c2: f7:d8:c1:1e:50:67:64:b8:d9:84:50:88:c1:68:62:15:59:7d: 54:34:6c:1f:27:62:89:29:f1:a6:c5:be:a1:81:78:c3:35:3a: a1:3b:3e:c9:13:c6:42:f8:f6:b3:d8:2a:bf:7a:26:4c:13:2f: 8b:f3:fd:d8:c6:a3:e2:40:cf:9e:64:c3:e3:33:42:2c:5e:12: 47:0e:ac:b2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYWTBWLQFb9qN4CPu+Ytu2RN1Ea8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDQ1MDEwWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDhmOTc3ZTZhMjc2NTE4ZmZiYjAwMTc1NDY0N2UwZDg5 ZTUzMWI5NTI4ZGM5MmYwMWYwZmY4ZWY4MjE4NjFiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnPKVwyLGlxIVZjlqaGLho6YrIW3i/AZuJSmoXAlqrhQDW NEo2hv4Zx2OGQ8edQLoIcgaV0kRmCCYmF2RyqfmyOhwX9cSbeM+KLVVvWMdvpTxA E/bnNCUhOkMU3ZnkKaPwIu+9Ste/LRobTK8BEbtesRq4pOGZCSyuvgwGX1c4wP7G wF/O+3J3CvhTDLNtrXonM8nk5IZtK2XYSuenULdDpKJjS3u2Sv16kHFahiZmhsJc Rs1Ycr7WKsKh3fmhs1iPSnmFV0+YLoLiszEPsr6fa81TVe1hzTJlo6JWd9z2HR1Q rWxDdJbqfwMvnCdI6cn3oCtZbTajVbd33AHc95lvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUt6PrNhPARv0K2HeM5lSANQ3JwO4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M4YTIyNDYwLTFjMTItNDMxNC04YjEzLTZhNTg2ZWRhYzI3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77DANBgkqhkiG9w0BAQsFAAOCAQEATWR2xUhfOFuV7V+8RMa7Lt8X p8LpWBOw7V16qosAbI7N6u3fPQ0kwgT6HdPHoo54jYEAWbk8HFVkyOPY7Z2Kfs0N c7AnEUrcvF2Sy5R/bq1599EZTd7EYOL6vpzg8LYYaDIT2yKbAWAwHPc9hrwmbkrw /zCDdUJKnnhQs3D8oMTIvMs7W9fN1/uIg3PB1ljNp9zfgo1wsjllGKjuIQkLVjrb 0SUiI7hJi7ZDWHFHMei2BAnC99jBHlBnZLjZhFCIwWhiFVl9VDRsHydiiSnxpsW+ oYF4wzU6oTs+yRPGQvj2s9gqv3omTBMvi/P92Maj4kDPnmTD4zNCLF4SRw6ssg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:14:48 2026 by rpki-client