$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ceacf551-02ee-4f40-8abd-053509a65c13.roa File: ceacf551-02ee-4f40-8abd-053509a65c13.roa (raw, json) Hash identifier: f7hXw1Dcbxzcp6isxJcv/t0P5q0kLVbtJhqG/Np6D7M= Subject key identifier: 9D:5C:1C:10:33:95:81:1E:05:21:90:C4:D7:59:4A:EA:7D:4C:08:65 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 21CAC116EC57E15B8AB1E09980D2C79CD780A573 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ceacf551-02ee-4f40-8abd-053509a65c13.roa Signing time: Sat 28 Feb 2026 05:10:44 +0000 ROA not before: Sat 28 Feb 2026 05:10:44 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:ea00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:ca:c1:16:ec:57:e1:5b:8a:b1:e0:99:80:d2:c7:9c:d7:80:a5:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:10:44 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=142e33895c4cabf25f12d13c360db22fccb46d694885d0144e8617b42741a5eb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b6:33:f1:e2:27:04:ed:07:ed:76:4a:48:8f: a5:4d:36:42:5f:36:58:e7:6a:d2:9d:a1:40:9a:e6: 8e:a1:2d:1f:06:8b:9f:92:e3:bc:69:5a:bb:52:c9: 0b:30:00:58:ac:ad:51:3a:94:9f:8a:2f:ec:1a:28: 7e:e5:85:a6:79:44:ee:1c:a9:6c:1a:6e:c3:3d:78: 12:ec:d2:d0:93:7f:f0:df:49:2d:46:e4:9b:14:7c: 01:10:c8:8c:61:97:89:24:e6:8e:96:2b:7b:32:05: 6b:cf:41:2f:21:2d:86:fc:6a:e2:d3:68:db:a9:a9: 27:5f:c6:d4:85:4d:75:f4:d9:ee:bf:7e:24:ae:a0: 23:8d:b8:8d:11:bf:2c:db:ce:15:33:3b:34:50:46: 32:ac:4b:9d:0a:72:40:e6:3b:af:1f:8b:94:b9:b4: 1f:3b:3c:19:e5:d4:8a:aa:bb:02:d0:ad:d3:5b:df: a4:97:33:e5:18:b3:25:c6:9b:89:47:93:dd:18:dd: a4:53:09:47:48:4e:18:2e:b8:88:b0:44:e9:e6:08: 88:b5:d2:70:ab:75:9e:00:e5:d5:f8:74:e7:fb:55: 89:26:08:b7:d8:b7:7f:30:7a:6b:fc:57:a9:28:5b: 8d:7b:1b:a5:b0:cf:9b:6f:7c:df:bd:bd:26:93:57: 40:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:5C:1C:10:33:95:81:1E:05:21:90:C4:D7:59:4A:EA:7D:4C:08:65 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ceacf551-02ee-4f40-8abd-053509a65c13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ea00::/42 Signature Algorithm: sha256WithRSAEncryption 9e:7b:df:54:52:12:ec:42:57:fb:59:6b:09:89:c3:f4:49:7a: 6d:ed:c6:c1:05:7d:07:c5:5c:0c:62:4d:a1:46:68:01:db:c6: e1:4c:fe:92:be:09:14:1d:c2:7f:70:eb:c7:04:d1:2b:3b:71: aa:d1:7a:75:f1:41:20:55:95:76:16:25:4d:3b:50:e3:4c:7d: 7a:b0:c8:56:10:a6:cf:3c:db:3d:42:b4:c5:b8:1d:88:3b:a2: 7d:d7:24:45:9c:a8:5a:ae:51:4e:2c:f7:8b:0d:11:2a:06:2b: c0:98:c4:f3:29:48:04:78:4a:d0:f2:82:a3:eb:11:d4:43:8c: d6:92:13:ea:a4:02:0c:dc:07:66:23:d1:74:80:93:00:89:4c: 57:77:29:9a:34:1f:d7:1e:95:63:0d:15:95:09:af:7c:26:ef: 29:3c:d2:f1:0b:d9:55:94:14:f8:96:67:d3:f1:6f:1f:3f:f8: a0:bc:4a:d4:06:ad:43:c0:49:71:65:94:44:75:6c:5d:44:b0: a2:87:62:ab:25:7b:e3:3e:73:97:6f:8d:c3:54:fd:b5:a8:f1: a3:83:c8:94:be:5c:af:db:00:53:40:84:8b:e6:c9:11:04:09: a8:d4:d7:c9:28:19:36:51:e1:c7:46:d6:79:85:71:30:c1:7d: 67:87:11:2f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIcrBFuxX4VuKseCZgNLHnNeApXMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUxMDQ0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDJlMzM4OTVjNGNhYmYyNWYxMmQxM2MzNjBkYjIyZmNj YjQ2ZDY5NDg4NWQwMTQ0ZTg2MTdiNDI3NDFhNWViMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqtjPx4icE7QftdkpIj6VNNkJfNljnatKdoUCa5o6hLR8G i5+S47xpWrtSyQswAFisrVE6lJ+KL+waKH7lhaZ5RO4cqWwabsM9eBLs0tCTf/Df SS1G5JsUfAEQyIxhl4kk5o6WK3syBWvPQS8hLYb8auLTaNupqSdfxtSFTXX02e6/ fiSuoCONuI0RvyzbzhUzOzRQRjKsS50KckDmO68fi5S5tB87PBnl1IqquwLQrdNb 36SXM+UYsyXGm4lHk90Y3aRTCUdIThguuIiwROnmCIi10nCrdZ4A5dX4dOf7VYkm CLfYt38wemv8V6koW417G6Wwz5tvfN+9vSaTV0BJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnVwcEDOVgR4FIZDE11lK6n1MCGUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NlYWNmNTUxLTAyZWUtNGY0MC04YWJkLTA1MzUwOWE2NWMxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76gAwDQYJKoZIhvcNAQELBQADggEBAJ5731RSEuxCV/tZawmJw/RJ em3txsEFfQfFXAxiTaFGaAHbxuFM/pK+CRQdwn9w68cE0Ss7carRenXxQSBVlXYW JU07UONMfXqwyFYQps882z1CtMW4HYg7on3XJEWcqFquUU4s94sNESoGK8CYxPMp SAR4StDygqPrEdRDjNaSE+qkAgzcB2Yj0XSAkwCJTFd3KZo0H9celWMNFZUJr3wm 7yk80vEL2VWUFPiWZ9Pxbx8/+KC8StQGrUPASXFllER1bF1EsKKHYqsle+M+c5dv jcNU/bWo8aODyJS+XK/bAFNAhIvmyREECajU18koGTZR4cdG1nmFcTDBfWeHES8= -----END CERTIFICATE-----Generated at Sun Mar 1 22:14:20 2026 by rpki-client