$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d17966f5-59b2-4e40-9068-579a0f07eb22.roa File: d17966f5-59b2-4e40-9068-579a0f07eb22.roa (raw, json) Hash identifier: AX/WdfI0RRYFFTCtiisNIiOLab41mirJelwUWnZdaFE= Subject key identifier: FE:B9:11:DC:08:0C:68:4D:BF:97:7B:B4:33:79:F9:E2:A6:B9:B7:8E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 203CC7AB74091076BA390C2765207B510ED602F0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d17966f5-59b2-4e40-9068-579a0f07eb22.roa Signing time: Tue 24 Feb 2026 00:30:08 +0000 ROA not before: Tue 24 Feb 2026 00:30:08 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:3c:c7:ab:74:09:10:76:ba:39:0c:27:65:20:7b:51:0e:d6:02:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 24 00:30:08 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=22e62e3744a007b135a2e07f8fb5e608babdd7c266e8673e6a4358b0e1b1f1e6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:08:ca:37:53:8f:b0:3a:75:f9:95:07:44:27: f8:07:38:0b:f4:f2:2d:aa:67:25:31:26:3b:f8:dd: ba:9e:8a:b3:02:20:3b:07:6d:73:38:d9:e3:76:ee: 4a:4a:83:28:40:54:57:59:dd:77:ea:a6:5b:34:0b: ca:e7:50:a3:0d:ae:61:15:ec:10:68:b4:e0:bd:0c: 4e:5e:23:0d:d7:f7:0e:87:33:3e:96:60:0a:d7:cb: 43:31:76:a3:8e:35:ee:ab:68:00:fb:04:a1:08:f4: 03:aa:3e:6e:93:7a:e9:e9:8a:ef:7d:e0:0b:8e:6b: 54:6c:48:a8:15:13:e5:94:1d:99:f7:66:37:4f:3f: f3:4e:6b:59:a4:66:fd:2b:7d:ad:51:c4:90:e4:2d: a2:3a:b3:c8:bf:e3:c6:55:27:82:c3:f7:a7:86:1d: b6:d4:3c:af:a8:c5:c9:b3:73:4f:9d:a6:8c:ea:2b: 6d:df:f4:5a:43:6c:6c:80:51:bf:32:70:d3:12:7c: d0:41:ec:a5:27:58:6f:e9:a3:1d:27:23:15:cb:9a: 88:c8:c7:3e:00:d3:27:69:11:2e:b6:ce:9e:5a:5a: de:75:79:d1:fa:14:d0:cf:8e:33:0d:4a:74:48:f2: 4a:0a:9b:dc:52:ec:f6:8b:79:c5:01:62:62:69:12: a7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:B9:11:DC:08:0C:68:4D:BF:97:7B:B4:33:79:F9:E2:A6:B9:B7:8E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d17966f5-59b2-4e40-9068-579a0f07eb22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8b00::/48 Signature Algorithm: sha256WithRSAEncryption 79:fe:06:e9:ab:07:de:ec:40:73:28:e8:45:8e:c8:1f:63:d2: 62:6f:3b:89:09:c5:aa:1c:e7:d4:53:22:62:f3:e1:f6:bc:ae: e0:e5:3c:d2:b5:c5:2c:9e:ff:e4:37:aa:58:f4:7e:d0:25:65: 5d:e8:7f:d4:17:52:6b:a5:2f:42:d0:89:9b:c1:44:b9:e3:f0: 83:3f:86:2d:06:27:22:d5:29:6c:26:95:49:bb:1e:bc:0a:a4: 0e:37:c2:eb:04:13:1d:ca:95:28:18:c7:b5:42:ab:bc:01:38: 0e:64:f9:b7:b6:6a:5e:b7:c1:ed:e4:d6:9d:06:e6:aa:70:2d: 87:8f:eb:99:e9:f9:70:75:85:b7:70:f3:b5:4c:16:b2:08:0f: a7:06:b9:bd:c6:c5:ab:f6:0a:aa:e7:4a:36:49:a1:a3:fe:8e: 57:2d:4b:39:bf:de:e4:49:06:ef:59:d4:3e:7d:56:14:f9:da: 7b:4b:a8:e7:5f:a8:55:85:2d:2e:10:54:25:3c:c3:c7:3f:3e: a0:16:05:ec:aa:3f:64:80:58:67:b5:3e:5a:a4:bd:bb:e1:5a: f8:5a:c8:c9:42:ee:17:e4:e1:2b:9d:ba:a7:f5:a5:c0:72:9f: 95:93:74:09:94:39:88:cd:d4:9f:3f:6e:67:68:51:69:85:a5: 57:68:1f:ef -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIDzHq3QJEHa6OQwnZSB7UQ7WAvAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI0MDAzMDA4WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmU2MmUzNzQ0YTAwN2IxMzVhMmUwN2Y4ZmI1ZTYwOGJh YmRkN2MyNjZlODY3M2U2YTQzNThiMGUxYjFmMWU2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1CMo3U4+wOnX5lQdEJ/gHOAv08i2qZyUxJjv43bqeirMC IDsHbXM42eN27kpKgyhAVFdZ3Xfqpls0C8rnUKMNrmEV7BBotOC9DE5eIw3X9w6H Mz6WYArXy0MxdqOONe6raAD7BKEI9AOqPm6Teunpiu994AuOa1RsSKgVE+WUHZn3 ZjdPP/NOa1mkZv0rfa1RxJDkLaI6s8i/48ZVJ4LD96eGHbbUPK+oxcmzc0+dpozq K23f9FpDbGyAUb8ycNMSfNBB7KUnWG/pox0nIxXLmojIxz4A0ydpES62zp5aWt51 edH6FNDPjjMNSnRI8koKm9xS7PaLecUBYmJpEqdXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/rkR3AgMaE2/l3u0M3n54qa5t44wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QxNzk2NmY1LTU5YjItNGU0MC05MDY4LTU3OWEwZjA3ZWIyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiwAwDQYJKoZIhvcNAQELBQADggEBAHn+BumrB97sQHMo6EWOyB9j 0mJvO4kJxaoc59RTImLz4fa8ruDlPNK1xSye/+Q3qlj0ftAlZV3of9QXUmulL0LQ iZvBRLnj8IM/hi0GJyLVKWwmlUm7HrwKpA43wusEEx3KlSgYx7VCq7wBOA5k+be2 al63we3k1p0G5qpwLYeP65np+XB1hbdw87VMFrIID6cGub3Gxav2CqrnSjZJoaP+ jlctSzm/3uRJBu9Z1D59VhT52ntLqOdfqFWFLS4QVCU8w8c/PqAWBeyqP2SAWGe1 PlqkvbvhWvhayMlC7hfk4Suduqf1pcByn5WTdAmUOYjN1J8/bmdoUWmFpVdoH+8= -----END CERTIFICATE-----Generated at Mon Mar 2 02:48:18 2026 by rpki-client