$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d040f02c-c962-433b-9282-37c1d283eaeb.roa File: d040f02c-c962-433b-9282-37c1d283eaeb.roa (raw, json) Hash identifier: 8qhaXOKl1DDppHEkgi9L54hmBlyoB3AW1BgAMphAs3Q= Subject key identifier: 50:C3:41:CE:5C:B9:7A:EB:2A:B8:B2:92:25:6A:CB:92:72:38:EB:AA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6F0D93762564A74C6CAE3482BC45B5670A778F42 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d040f02c-c962-433b-9282-37c1d283eaeb.roa Signing time: Sat 28 Feb 2026 05:00:30 +0000 ROA not before: Sat 28 Feb 2026 05:00:30 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:eb00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:0d:93:76:25:64:a7:4c:6c:ae:34:82:bc:45:b5:67:0a:77:8f:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:30 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=9663708fd852661d19a95e4b11d2b78efadc6936531f01eb688bd611a1737bc1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:7a:ba:4a:cd:57:c0:bb:58:76:c7:84:de:e1: 86:3f:7e:55:da:b0:40:27:b4:4f:36:26:b6:66:06: 4b:5f:c8:fe:54:1e:40:f0:ac:90:e9:01:34:d7:23: 33:89:5d:43:bf:73:25:38:14:ee:53:48:24:90:49: 12:fe:b7:45:91:81:f5:29:2d:08:a4:cd:52:64:5a: a4:26:c6:77:fa:16:ed:18:00:e5:8b:c5:3a:0f:e3: 1e:03:ec:75:38:ac:89:1a:37:e3:bf:6e:dd:ba:6b: c2:ea:dd:5b:7f:7e:1e:22:76:e0:7c:17:d4:bf:d9: 05:82:c5:2b:67:bb:b7:20:f5:bf:cf:a6:0c:b2:f3: 92:13:8a:07:b9:0e:05:32:e8:ae:cf:e0:b0:80:2f: c2:cd:ed:79:b1:84:73:4d:d9:3e:84:58:4d:09:30: 4d:d8:6e:1b:9a:22:08:d0:5f:42:34:72:92:95:72: 51:4a:73:e2:74:d4:10:b1:2b:a2:9e:f7:e6:30:59: fa:b4:8f:a7:01:23:40:8f:02:50:4a:4e:84:6e:30: b7:fc:f6:fe:50:c7:0e:c4:cc:1f:99:5d:91:67:28: e4:2d:8e:af:47:44:f8:7c:a0:06:c8:7c:e2:29:89: 94:25:a6:4b:45:2f:ef:00:e3:08:fa:b2:08:ba:ae: b8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:C3:41:CE:5C:B9:7A:EB:2A:B8:B2:92:25:6A:CB:92:72:38:EB:AA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d040f02c-c962-433b-9282-37c1d283eaeb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/40 Signature Algorithm: sha256WithRSAEncryption 4b:ea:da:2e:4d:0e:65:49:a5:07:d4:5b:32:5b:97:f6:e2:34: 00:8a:80:2f:64:8d:a2:41:46:2a:98:0e:a7:71:64:86:5d:34: 0b:f6:7c:ef:d6:4e:90:43:ae:9a:94:42:ad:ec:75:26:07:5c: a2:b0:a8:b4:49:5d:73:26:76:33:12:3a:d2:03:58:c2:6d:31: b1:2b:24:b1:84:27:1f:05:92:30:46:36:f1:f6:8e:d8:05:13: 65:46:e8:03:06:b1:fc:db:5a:08:6d:7e:50:40:2f:d7:90:b9: 43:54:cc:f2:19:c3:c9:89:db:15:2f:d5:c8:fb:14:54:02:0e: 08:ff:da:45:41:70:7d:4f:01:8b:aa:37:67:b5:0d:c0:9f:63: 69:77:b2:cc:4d:2f:cc:42:52:d5:3a:86:0b:a9:52:d9:42:13: 2c:28:0b:8f:2e:bd:fd:d7:00:15:1b:1d:d0:0c:12:3b:17:a6: 7f:6a:24:67:7b:26:94:90:55:b0:6b:7d:6a:7e:3e:9f:a7:79: d7:d2:ec:58:e9:b6:59:c5:a2:e7:5d:89:21:66:e7:9a:5e:f9: f7:ae:6a:e4:8b:49:d2:3f:d5:4f:d6:40:30:04:20:0d:9e:6e: d1:a6:fa:57:21:f4:31:a5:8c:83:d2:5a:43:be:53:67:b4:19: 3d:61:58:79 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbw2TdiVkp0xsrjSCvEW1Zwp3j0IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDMwWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjYzNzA4ZmQ4NTI2NjFkMTlhOTVlNGIxMWQyYjc4ZWZh ZGM2OTM2NTMxZjAxZWI2ODhiZDYxMWExNzM3YmMxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZerpKzVfAu1h2x4Te4YY/flXasEAntE82JrZmBktfyP5U HkDwrJDpATTXIzOJXUO/cyU4FO5TSCSQSRL+t0WRgfUpLQikzVJkWqQmxnf6Fu0Y AOWLxToP4x4D7HU4rIkaN+O/bt26a8Lq3Vt/fh4iduB8F9S/2QWCxStnu7cg9b/P pgyy85ITige5DgUy6K7P4LCAL8LN7XmxhHNN2T6EWE0JME3YbhuaIgjQX0I0cpKV clFKc+J01BCxK6Ke9+YwWfq0j6cBI0CPAlBKToRuMLf89v5Qxw7EzB+ZXZFnKOQt jq9HRPh8oAbIfOIpiZQlpktFL+8A4wj6sgi6rrhFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUUMNBzly5eusquLKSJWrLknI466owHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QwNDBmMDJjLWM5NjItNDMzYi05MjgyLTM3YzFkMjgzZWFlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76zANBgkqhkiG9w0BAQsFAAOCAQEAS+raLk0OZUmlB9RbMluX9uI0 AIqAL2SNokFGKpgOp3Fkhl00C/Z879ZOkEOumpRCrex1JgdcorCotEldcyZ2MxI6 0gNYwm0xsSsksYQnHwWSMEY28faO2AUTZUboAwax/NtaCG1+UEAv15C5Q1TM8hnD yYnbFS/VyPsUVAIOCP/aRUFwfU8Bi6o3Z7UNwJ9jaXeyzE0vzEJS1TqGC6lS2UIT LCgLjy69/dcAFRsd0AwSOxemf2okZ3smlJBVsGt9an4+n6d519LsWOm2WcWi512J IWbnml75965q5ItJ0j/VT9ZAMAQgDZ5u0ab6VyH0MaWMg9JaQ75TZ7QZPWFYeQ== -----END CERTIFICATE-----Generated at Sun Mar 1 21:57:57 2026 by rpki-client