$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa File: cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa (raw, json) Hash identifier: 6magCPFMxEeVHuxpAaSE9Wmr9dC2/XQkuW27Q/1f4Yo= Subject key identifier: 9A:CE:99:9A:F4:30:C5:98:5A:2E:16:69:E9:37:DA:71:B3:32:2A:46 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 640747CD895A95A8A063C0B72D056ACB42CB57C4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa Signing time: Sat 28 Feb 2026 05:00:29 +0000 ROA not before: Sat 28 Feb 2026 05:00:29 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5518::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:07:47:cd:89:5a:95:a8:a0:63:c0:b7:2d:05:6a:cb:42:cb:57:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:29 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=c183ca964d7d2dbba725b1828c0898db0fbe4d25d4790f96d76dae56a3e047cc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f1:a2:06:4a:bd:71:25:f6:5d:01:d3:b5:61: bf:01:0d:c7:1c:c4:37:85:d7:bf:de:64:cb:fc:eb: 8f:de:47:07:b9:39:a2:53:66:56:83:96:9d:57:a2: ac:20:e0:28:79:9a:e3:83:aa:43:a3:3b:1c:94:51: b2:41:ad:e7:49:72:7c:e4:48:46:44:4a:fb:1d:ec: b6:ec:16:59:eb:29:e9:42:30:a8:30:e1:66:f2:1e: b2:fe:2c:06:cd:0e:84:a2:b4:83:07:b5:28:33:a6: 0a:3f:8a:79:7c:86:5b:b1:0a:b9:5c:56:c2:b9:53: 3d:71:67:10:a4:72:90:01:05:e6:c6:98:ee:70:5d: e7:cf:f9:a5:90:94:90:85:7d:6d:38:d8:20:33:55: 3b:a4:07:24:b1:e5:38:d2:b1:12:af:70:cf:dc:5a: d3:a6:c8:61:49:fb:42:6e:ad:c3:f6:3e:cf:51:c6: 52:a9:d9:3d:c4:0e:bf:74:e3:fd:4a:3b:10:3c:fc: 2d:36:c2:0e:51:7a:c0:ed:ed:15:b7:ad:7b:c0:d1: a6:96:54:3a:8f:0e:45:1e:98:3b:b0:3e:ac:60:23: 55:d2:80:2e:88:89:9c:3b:9f:31:06:0c:86:7d:08: 9b:29:bf:f6:53:d7:10:d4:b7:7c:af:b2:7d:36:ef: 13:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:CE:99:9A:F4:30:C5:98:5A:2E:16:69:E9:37:DA:71:B3:32:2A:46 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5518::/48 Signature Algorithm: sha256WithRSAEncryption 57:29:46:cf:c8:86:86:02:d2:0b:1a:ca:2d:2f:57:90:1c:74: 51:e5:2a:cd:8f:b0:5b:64:1a:4b:2a:41:5b:4a:e2:9d:9f:67: 0d:6a:a4:d7:84:f2:97:ff:46:16:5a:0a:55:80:24:e3:8f:60: 81:87:d4:6f:93:7f:27:73:6b:b8:7c:0b:27:96:c8:22:11:6b: d6:f3:77:a5:cf:6b:97:6f:66:b4:ff:df:7f:ad:00:93:92:5a: 2d:43:90:cf:68:12:a9:71:a5:35:17:0a:14:c0:99:d7:d5:01: 06:01:36:50:2c:bd:93:a9:6e:79:9d:60:12:ad:ea:ec:a3:08: d5:40:95:08:c1:70:2d:08:7c:b4:ce:b2:6b:e4:fb:92:0b:98: 64:54:c0:9b:44:ed:10:08:38:3c:c3:db:d6:e3:23:22:ee:8f: 01:33:5c:5f:b1:79:3a:1b:9c:ab:fa:2a:ca:f6:60:b8:ab:b1: b4:d8:6e:de:cb:1e:a3:7d:d5:67:0f:21:33:dc:26:36:a7:4f: fc:6e:fb:51:2f:24:98:24:96:1d:45:51:f3:5f:b6:71:3f:b7: b6:95:6e:85:19:07:95:10:d7:e1:e6:ef:eb:4e:85:06:76:ca: ba:ae:c3:81:ed:a9:74:d2:69:cd:c2:ba:70:1a:ae:a8:2e:31: 09:e9:f0:54 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZAdHzYlalaigY8C3LQVqy0LLV8QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDI5WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTgzY2E5NjRkN2QyZGJiYTcyNWIxODI4YzA4OThkYjBm YmU0ZDI1ZDQ3OTBmOTZkNzZkYWU1NmEzZTA0N2NjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe8aIGSr1xJfZdAdO1Yb8BDcccxDeF17/eZMv864/eRwe5 OaJTZlaDlp1Xoqwg4Ch5muODqkOjOxyUUbJBredJcnzkSEZESvsd7LbsFlnrKelC MKgw4WbyHrL+LAbNDoSitIMHtSgzpgo/inl8hluxCrlcVsK5Uz1xZxCkcpABBebG mO5wXefP+aWQlJCFfW042CAzVTukBySx5TjSsRKvcM/cWtOmyGFJ+0JurcP2Ps9R xlKp2T3EDr904/1KOxA8/C02wg5ResDt7RW3rXvA0aaWVDqPDkUemDuwPqxgI1XS gC6IiZw7nzEGDIZ9CJspv/ZT1xDUt3yvsn027xMVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUms6ZmvQwxZhaLhZp6TfacbMyKkYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NiZjQzZDk5LTRkMDEtNGQyNC1hZGE5LTZlMzQzNjhkMWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRgwDQYJKoZIhvcNAQELBQADggEBAFcpRs/IhoYC0gsayi0vV5Ac dFHlKs2PsFtkGksqQVtK4p2fZw1qpNeE8pf/RhZaClWAJOOPYIGH1G+Tfydza7h8 CyeWyCIRa9bzd6XPa5dvZrT/33+tAJOSWi1DkM9oEqlxpTUXChTAmdfVAQYBNlAs vZOpbnmdYBKt6uyjCNVAlQjBcC0IfLTOsmvk+5ILmGRUwJtE7RAIODzD29bjIyLu jwEzXF+xeTobnKv6Ksr2YLirsbTYbt7LHqN91WcPITPcJjanT/xu+1EvJJgklh1F UfNftnE/t7aVboUZB5UQ1+Hm7+tOhQZ2yrquw4HtqXTSac3CunAarqguMQnp8FQ= -----END CERTIFICATE-----Generated at Sun Mar 1 23:50:52 2026 by rpki-client