$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa File: cdcc47d5-338b-4adc-9bc7-703261ddd214.roa (raw, json) Hash identifier: z1qgX29b/oEV9qiTZSLuUuBPvGBiG9YkinkotrgX3yk= Subject key identifier: B7:40:06:A9:BA:2B:F9:4A:8C:EA:25:23:A9:13:3D:FF:94:92:D3:7D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 51176A86EB553B7F53B702FF7A85049D105ED27A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa Signing time: Sat 28 Feb 2026 05:00:27 +0000 ROA not before: Sat 28 Feb 2026 05:00:27 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:17:6a:86:eb:55:3b:7f:53:b7:02:ff:7a:85:04:9d:10:5e:d2:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:27 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=52f3147344f308bf3114cd9ac8a6ec09a7a424c6229b758ce03400cecd06f0eb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ce:c1:6a:e9:f8:ed:21:c3:3c:e6:61:1b:a9: db:36:e2:b1:ee:d6:87:46:fd:8a:a2:97:51:e4:01: 0e:19:a4:85:56:b1:e0:c8:d2:26:28:8c:5e:09:a8: 08:13:24:68:56:4d:69:d3:b6:3b:06:49:d0:3a:05: 0c:07:d3:20:73:3a:c9:e7:d1:27:5c:45:9b:87:1e: 3a:3d:3f:e5:45:ab:b6:ab:7f:b3:a0:6b:e7:66:69: 55:36:c1:bb:21:5c:ac:38:46:43:21:76:cd:6b:bb: a6:bd:4e:f5:e8:8e:8b:3b:3f:92:d7:1a:25:fd:4a: 7d:87:e2:10:5f:96:38:80:96:5b:07:38:2e:a4:55: 5c:38:9b:2e:02:0e:85:2e:8c:e6:5c:95:de:9d:ea: 28:74:b2:01:64:68:7b:63:93:a3:03:b4:db:d9:46: ab:cc:88:8e:1a:e3:24:1c:3a:40:b0:52:64:9d:a0: b5:fb:e9:d4:91:c2:dd:db:7c:c6:0e:5a:c8:f5:45: 64:8a:7c:10:b6:79:a3:17:ec:25:bd:e1:c4:d9:29: ab:ee:4f:66:d2:6d:94:09:34:9c:84:c9:c8:0d:25: ea:ae:bd:da:99:aa:4a:16:89:69:38:c0:23:b8:89: de:a0:de:e1:ef:4f:3f:68:1e:1b:f1:82:64:1c:20: 78:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:40:06:A9:BA:2B:F9:4A:8C:EA:25:23:A9:13:3D:FF:94:92:D3:7D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6000::/44 Signature Algorithm: sha256WithRSAEncryption 7f:ab:c3:65:f1:59:37:3d:2b:a9:7e:bb:8b:07:18:ec:ea:6c: 4f:e3:57:69:56:74:18:95:fa:70:13:11:0d:3d:a1:c7:b5:01: 21:78:9e:6a:cb:82:2e:c0:ee:45:57:18:2c:5c:00:ae:40:2e: 85:2d:9d:59:a5:4e:7a:5b:16:14:3b:58:95:a2:78:c0:b3:39: a6:6e:2a:6a:91:6c:33:ff:db:c2:ca:cd:b3:c8:62:06:47:da: 11:36:02:e9:51:5f:65:bf:75:6a:b3:fe:ad:76:2f:1b:80:87: f6:54:63:79:33:a4:f7:61:31:d8:7c:cb:ea:06:de:93:48:4e: 51:2f:62:74:2c:2d:c4:c8:a3:d0:b4:ea:9e:66:0c:84:6f:f3: 63:55:9b:d2:3d:5c:9f:85:c7:c8:9f:32:56:7a:af:1a:8d:03: 35:23:07:9e:12:e8:ca:24:ad:5d:b4:23:1e:11:b0:2d:2f:a2: c2:67:66:28:7c:6a:db:07:b0:8b:8f:84:84:42:72:bd:f5:fc: a0:da:44:71:d0:f9:b3:7f:9c:33:80:39:17:70:32:dd:8a:b8: 9f:2a:7d:bc:5c:be:70:a7:03:49:99:03:e9:00:b8:d1:71:52: 68:9b:b3:ef:e1:b4:83:de:dd:f9:70:d4:ae:cb:c7:2d:f1:9c: d1:7b:aa:2b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUURdqhutVO39TtwL/eoUEnRBe0nowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDI3WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmYzMTQ3MzQ0ZjMwOGJmMzExNGNkOWFjOGE2ZWMwOWE3 YTQyNGM2MjI5Yjc1OGNlMDM0MDBjZWNkMDZmMGViMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnzsFq6fjtIcM85mEbqds24rHu1odG/Yqil1HkAQ4ZpIVW seDI0iYojF4JqAgTJGhWTWnTtjsGSdA6BQwH0yBzOsnn0SdcRZuHHjo9P+VFq7ar f7Oga+dmaVU2wbshXKw4RkMhds1ru6a9TvXojos7P5LXGiX9Sn2H4hBfljiAllsH OC6kVVw4my4CDoUujOZcld6d6ih0sgFkaHtjk6MDtNvZRqvMiI4a4yQcOkCwUmSd oLX76dSRwt3bfMYOWsj1RWSKfBC2eaMX7CW94cTZKavuT2bSbZQJNJyEycgNJequ vdqZqkoWiWk4wCO4id6g3uHvTz9oHhvxgmQcIHgxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUt0AGqbor+UqM6iUjqRM9/5SS030wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NkY2M0N2Q1LTMzOGItNGFkYy05YmM3LTcwMzI2MWRkZDIxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYAAwDQYJKoZIhvcNAQELBQADggEBAH+rw2XxWTc9K6l+u4sHGOzq bE/jV2lWdBiV+nATEQ09oce1ASF4nmrLgi7A7kVXGCxcAK5ALoUtnVmlTnpbFhQ7 WJWieMCzOaZuKmqRbDP/28LKzbPIYgZH2hE2AulRX2W/dWqz/q12LxuAh/ZUY3kz pPdhMdh8y+oG3pNITlEvYnQsLcTIo9C06p5mDIRv82NVm9I9XJ+Fx8ifMlZ6rxqN AzUjB54S6MokrV20Ix4RsC0vosJnZih8atsHsIuPhIRCcr31/KDaRHHQ+bN/nDOA ORdwMt2KuJ8qfbxcvnCnA0mZA+kAuNFxUmibs+/htIPe3flw1K7Lxy3xnNF7qis= -----END CERTIFICATE-----Generated at Mon Mar 2 09:40:17 2026 by rpki-client