$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa File: c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa (raw, json) Hash identifier: zJ8lK/qEb01a4z0NIrKpBeJrt5Z5CllrinPB7JIG0lY= Subject key identifier: 64:F2:04:36:7B:BB:0A:BE:A1:DD:AB:7B:5B:B3:26:84:40:AC:04:BF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 69366908699117AB8FDFD1C8E11733A994879221 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa Signing time: Sat 28 Feb 2026 05:00:48 +0000 ROA not before: Sat 28 Feb 2026 05:00:48 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:300::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:36:69:08:69:91:17:ab:8f:df:d1:c8:e1:17:33:a9:94:87:92:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:48 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=2af5b608c9eb5fc9eb78c540ba9c5c35b1676a198b662df6b2cfbaf35cf60f40, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:43:17:5c:67:1c:b2:22:fe:10:b9:05:82:d7: 68:1e:0b:e2:93:3c:47:12:10:c2:6b:ce:6f:35:92: 43:30:ed:91:02:63:80:18:ce:45:2f:b0:13:22:86: 1a:1c:3d:99:f3:ca:07:04:22:74:70:ec:e5:85:ba: 11:33:dd:26:e9:96:2f:75:64:02:4c:25:b9:26:6f: 7b:ec:cb:f4:fb:d5:87:d9:8b:69:0f:24:3e:22:85: 00:99:40:3c:09:c3:2d:f9:1b:d7:50:f5:7a:b7:ba: aa:83:37:c0:03:30:34:80:cb:39:a4:d2:a6:f0:a9: 13:53:3a:99:2d:35:77:b2:65:41:db:50:54:6e:d0: 51:7a:0b:24:2a:a9:a8:1e:a4:b1:4f:9a:69:3e:04: 97:43:ad:18:9c:86:36:0f:48:af:82:35:94:63:d9: 1a:a8:69:44:8a:50:48:47:5c:1f:89:81:97:6b:ec: a0:01:d6:c2:d4:9e:21:4c:c2:33:8a:a6:71:24:f1: 06:49:6d:ca:ef:ea:3a:b1:21:fb:c4:ef:27:56:f6: 27:6b:1d:ef:1a:55:34:18:9f:21:56:1c:07:65:02: 6b:1a:3c:6d:03:a4:0e:f0:9c:5a:0f:9f:5a:46:ea: 39:aa:04:18:39:0a:96:48:40:b5:f3:aa:00:a0:83: c7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F2:04:36:7B:BB:0A:BE:A1:DD:AB:7B:5B:B3:26:84:40:AC:04:BF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:300::/44 Signature Algorithm: sha256WithRSAEncryption 70:a9:e8:ff:54:12:93:a4:87:65:05:84:42:69:41:0c:d6:3f: d2:ff:98:e2:aa:bd:08:a8:3c:0f:b8:5f:86:e5:5a:fe:3b:cf: ac:f1:80:8b:fb:8d:f5:7f:b3:f9:cb:ee:7b:4c:87:06:5f:1e: 6f:bd:bd:09:c1:61:28:2e:54:c5:74:de:54:64:22:7b:9b:5c: 9b:b4:3c:49:81:db:21:33:46:39:ee:bc:01:5a:75:80:47:06: 36:dc:76:71:6b:ff:26:2b:67:82:01:5e:fe:9d:01:e3:c4:6a: 14:be:6b:0b:f1:df:8a:f4:16:eb:65:fc:9d:dd:7d:18:e9:a4: a5:eb:5d:57:92:ca:b6:c2:ac:3c:49:b6:14:31:23:db:84:42: db:38:be:05:fa:9b:f8:6f:d8:74:2b:98:6f:9c:29:e8:eb:e6: c5:3d:a9:ef:2f:4a:56:08:5a:7c:46:89:25:3c:48:39:ea:4c: 76:b6:4a:a1:fc:2b:02:19:e5:d8:21:4d:0b:95:81:2f:52:95: 2b:a8:16:4e:39:cc:b1:4b:1a:5c:45:66:d1:c2:99:be:78:7e: 23:6c:f3:76:34:2d:2b:46:2b:fb:fc:83:5b:22:6b:3b:01:a9: 9e:19:19:4b:41:8e:59:23:e4:a7:0a:37:47:f8:1e:0a:f5:f1: de:d4:97:46 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaTZpCGmRF6uP39HI4RczqZSHkiEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDQ4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWY1YjYwOGM5ZWI1ZmM5ZWI3OGM1NDBiYTljNWMzNWIx Njc2YTE5OGI2NjJkZjZiMmNmYmFmMzVjZjYwZjQwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZQxdcZxyyIv4QuQWC12geC+KTPEcSEMJrzm81kkMw7ZEC Y4AYzkUvsBMihhocPZnzygcEInRw7OWFuhEz3Sbpli91ZAJMJbkmb3vsy/T71YfZ i2kPJD4ihQCZQDwJwy35G9dQ9Xq3uqqDN8ADMDSAyzmk0qbwqRNTOpktNXeyZUHb UFRu0FF6CyQqqagepLFPmmk+BJdDrRichjYPSK+CNZRj2RqoaUSKUEhHXB+JgZdr 7KAB1sLUniFMwjOKpnEk8QZJbcrv6jqxIfvE7ydW9idrHe8aVTQYnyFWHAdlAmsa PG0DpA7wnFoPn1pG6jmqBBg5CpZIQLXzqgCgg8f7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZPIENnu7Cr6h3at7W7MmhECsBL8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5YTdiZDIwLTQ4YmQtNGYwYS05MzdlLTJjY2M3MzAwOGY3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAwAwDQYJKoZIhvcNAQELBQADggEBAHCp6P9UEpOkh2UFhEJpQQzW P9L/mOKqvQioPA+4X4blWv47z6zxgIv7jfV/s/nL7ntMhwZfHm+9vQnBYSguVMV0 3lRkInubXJu0PEmB2yEzRjnuvAFadYBHBjbcdnFr/yYrZ4IBXv6dAePEahS+awvx 34r0Futl/J3dfRjppKXrXVeSyrbCrDxJthQxI9uEQts4vgX6m/hv2HQrmG+cKejr 5sU9qe8vSlYIWnxGiSU8SDnqTHa2SqH8KwIZ5dghTQuVgS9SlSuoFk45zLFLGlxF ZtHCmb54fiNs83Y0LStGK/v8g1siazsBqZ4ZGUtBjlkj5KcKN0f4Hgr18d7Ul0Y= -----END CERTIFICATE-----Generated at Sun Mar 1 22:03:25 2026 by rpki-client