$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c95d920e-7e95-4907-9edf-29509d14ad36.roa File: c95d920e-7e95-4907-9edf-29509d14ad36.roa (raw, json) Hash identifier: drNkEA7gSWr82EPFzRlE1btK78NRMWKePpTOHvNdfDU= Subject key identifier: 9E:B5:A8:60:DE:EA:90:D4:1E:34:06:1D:0F:D9:39:B8:D5:3F:D4:BF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4CAB290BC8424F6CF571D5FCBE2BBDE2FAC03C1C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c95d920e-7e95-4907-9edf-29509d14ad36.roa Signing time: Sat 28 Feb 2026 05:00:06 +0000 ROA not before: Sat 28 Feb 2026 05:00:06 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:eb00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:ab:29:0b:c8:42:4f:6c:f5:71:d5:fc:be:2b:bd:e2:fa:c0:3c:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:06 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=a5774ffcd72ebcc5348e540b95f2ba6288cbf7102edabd00e9eaef50da6518a7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f9:72:10:4b:3c:22:6b:bc:99:a2:88:4e:83: f0:5b:7b:a5:c6:4b:77:bc:db:a1:a6:c7:25:e3:3b: c2:f3:5c:ee:1f:7c:2d:7b:a1:f2:23:9c:c9:a3:a4: 0b:df:22:7d:7f:f6:5c:84:8f:a8:b7:80:ac:03:fe: e1:7e:dc:f1:2d:59:5d:74:64:71:a2:89:58:b7:0d: 6c:90:8c:bd:f7:12:f1:74:0e:7e:7f:96:15:83:b3: 8c:dd:95:af:f3:73:05:d5:00:8d:a7:b0:a3:ef:0f: 10:f8:69:25:62:8a:b4:3c:48:80:e0:b9:a4:7e:a0: 46:24:f2:59:af:47:d7:b6:23:a1:8a:69:c7:59:1f: 1e:3d:ea:91:b0:a1:ac:e9:4a:a2:bf:ef:64:01:19: 73:21:84:43:ff:78:da:2c:87:37:a4:04:ba:1b:5b: 48:8a:29:b3:75:46:9a:5c:00:89:15:3d:1d:46:60: 1f:a3:07:92:30:61:5e:b0:63:22:36:f8:88:9c:86: 7f:e4:1d:b4:23:d4:b8:d3:72:fb:6a:70:af:58:79: 4d:71:99:54:ee:45:41:21:25:e5:6c:3a:47:64:24: ef:40:2f:e2:38:ba:66:8a:bd:cc:1f:d7:2e:68:81: 4d:f5:5c:51:ec:80:1b:f5:51:41:46:9e:da:12:05: c9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:B5:A8:60:DE:EA:90:D4:1E:34:06:1D:0F:D9:39:B8:D5:3F:D4:BF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c95d920e-7e95-4907-9edf-29509d14ad36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/42 Signature Algorithm: sha256WithRSAEncryption 30:d5:c8:d4:e1:e3:1e:fa:69:14:fe:f1:ed:fd:f4:c8:98:1c: 40:1e:3d:f1:8c:64:ef:ee:fb:bb:b3:e0:63:64:0b:d9:7a:d2: 06:1a:bf:9e:ea:a6:76:2c:82:01:fe:61:1f:1e:8e:5c:a5:79: fa:e6:d4:9c:dd:dd:22:86:61:56:64:d2:2e:56:fe:bc:92:d8: 63:55:2f:02:b0:06:75:c8:2b:ce:6a:14:50:fa:87:6c:df:45: 2c:c8:f4:c3:df:c1:c6:d2:62:77:51:f6:d1:2d:89:f1:9f:d8: bc:fc:3e:05:79:e1:3c:81:d4:3f:d4:54:62:73:13:fd:3d:2a: 56:b5:eb:b3:35:29:41:60:5d:65:c6:f2:8f:34:90:c7:f2:3c: 4f:a6:f7:7a:87:28:4a:9f:eb:53:47:f8:6f:20:f7:9b:41:0d: 59:8d:d0:b2:21:d6:e2:a9:d0:f1:f7:57:02:4a:5d:8b:15:9f: 8d:f3:63:6e:0d:5d:10:ba:b9:02:b3:7d:1c:e7:9d:7d:73:5f: f5:26:de:fb:46:7f:fe:f6:03:ef:c7:4d:ef:81:8a:f7:18:f2: bf:8c:02:43:1a:36:87:7c:c1:1c:bf:5a:f7:2f:36:90:0a:d8: 60:f8:d7:7f:e3:94:d2:b0:30:b7:60:fb:01:c8:8d:bb:18:f4: c3:a1:5d:e7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTKspC8hCT2z1cdX8viu94vrAPBwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDA2WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTc3NGZmY2Q3MmViY2M1MzQ4ZTU0MGI5NWYyYmE2Mjg4 Y2JmNzEwMmVkYWJkMDBlOWVhZWY1MGRhNjUxOGE3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV+XIQSzwia7yZoohOg/Bbe6XGS3e826GmxyXjO8LzXO4f fC17ofIjnMmjpAvfIn1/9lyEj6i3gKwD/uF+3PEtWV10ZHGiiVi3DWyQjL33EvF0 Dn5/lhWDs4zdla/zcwXVAI2nsKPvDxD4aSViirQ8SIDguaR+oEYk8lmvR9e2I6GK acdZHx496pGwoazpSqK/72QBGXMhhEP/eNoshzekBLobW0iKKbN1RppcAIkVPR1G YB+jB5IwYV6wYyI2+Iichn/kHbQj1LjTcvtqcK9YeU1xmVTuRUEhJeVsOkdkJO9A L+I4umaKvcwf1y5ogU31XFHsgBv1UUFGntoSBckNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnrWoYN7qkNQeNAYdD9k5uNU/1L8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5NWQ5MjBlLTdlOTUtNDkwNy05ZWRmLTI5NTA5ZDE0YWQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76wAwDQYJKoZIhvcNAQELBQADggEBADDVyNTh4x76aRT+8e399MiY HEAePfGMZO/u+7uz4GNkC9l60gYav57qpnYsggH+YR8ejlylefrm1Jzd3SKGYVZk 0i5W/ryS2GNVLwKwBnXIK85qFFD6h2zfRSzI9MPfwcbSYndR9tEtifGf2Lz8PgV5 4TyB1D/UVGJzE/09Kla167M1KUFgXWXG8o80kMfyPE+m93qHKEqf61NH+G8g95tB DVmN0LIh1uKp0PH3VwJKXYsVn43zY24NXRC6uQKzfRznnX1zX/Um3vtGf/72A+/H Te+BivcY8r+MAkMaNod8wRy/WvcvNpAK2GD413/jlNKwMLdg+wHIjbsY9MOhXec= -----END CERTIFICATE-----Generated at Sun Mar 1 22:07:40 2026 by rpki-client