$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa File: d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa (raw, json) Hash identifier: sXrOI5rBgBJ5rkR4PwVOuGpSrTjTJRrBsYdosezHR20= Subject key identifier: 58:00:D9:9D:EA:C7:4E:22:E2:D5:20:A4:E1:E5:77:D1:DE:5D:78:C7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 485336D89EF3849EB61F4C2DBBD4E2557317273A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa Signing time: Fri 06 Feb 2026 00:30:27 +0000 ROA not before: Fri 06 Feb 2026 00:30:27 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:53:36:d8:9e:f3:84:9e:b6:1f:4c:2d:bb:d4:e2:55:73:17:27:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 6 00:30:27 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=99d68636798c7992a8131f0e275d5fd00b2d8cb5cb6300f546f31a9f3ad1577d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f5:85:3f:52:87:00:b2:7d:13:70:3c:c6:10: 60:c2:76:3f:e4:22:9e:7f:39:7b:7f:f6:50:4e:e9: ff:6f:90:4b:27:73:86:a3:78:6d:15:85:d6:82:6a: 6b:1e:9a:f8:84:1e:65:08:6f:76:00:53:48:4e:71: e6:5d:36:2d:29:20:5b:8f:68:c5:f7:f3:e6:c4:8a: f5:68:45:c2:63:ca:b7:a3:89:2d:62:43:7e:56:2c: 00:11:6b:5b:ba:21:70:2a:3a:f6:f2:69:ac:f3:63: 59:c9:21:a7:ba:61:89:ad:c5:f6:9f:72:b6:46:d5: a0:41:7b:55:60:b7:d8:ed:37:7f:85:94:95:71:e3: 39:bb:cd:bb:e1:cf:e7:69:57:e5:93:39:6d:af:2c: df:5a:e4:f6:c5:b8:af:22:af:b3:9c:b7:4a:d3:15: b5:58:23:06:89:89:ac:12:af:28:7f:dc:a7:f8:7d: fd:44:7e:d8:4a:ad:50:86:27:56:60:a5:f0:ab:60: 84:7e:05:2f:b8:e0:d1:00:16:06:99:6b:61:5a:8b: 59:20:05:b3:e6:14:5f:45:6f:87:bf:bf:55:2c:6c: ec:22:3a:bd:8d:0a:ef:e3:61:fe:66:41:d9:43:ba: 91:16:83:b1:8a:d4:d6:75:fa:94:7e:07:03:f5:45: 32:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:00:D9:9D:EA:C7:4E:22:E2:D5:20:A4:E1:E5:77:D1:DE:5D:78:C7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4141::/48 Signature Algorithm: sha256WithRSAEncryption 00:14:14:f5:23:33:59:00:d1:fc:ee:bd:4c:46:1f:40:aa:91: 3f:59:38:8d:86:e0:21:1b:7d:75:f4:e8:09:9e:36:1f:b9:2e: 83:cf:b0:e3:61:de:22:3c:02:33:f5:ca:5c:7d:bc:b0:72:16: 44:a0:e5:6a:14:86:f7:85:2c:22:07:b0:e5:b5:25:a1:11:9c: ab:5c:3f:08:2a:51:53:c3:7e:43:eb:ae:ee:80:c0:fe:c5:92: dd:4b:03:15:d1:c3:fc:c3:bc:d7:59:1e:ba:c0:d4:cc:d9:d6: 14:68:02:bc:b9:3f:13:4b:e7:d0:8c:d0:29:d9:f4:4c:d7:6d: 05:fb:73:86:52:d1:2d:7a:4d:4d:c4:5c:ea:51:4c:d4:c8:89: 04:65:4c:83:df:bb:fd:99:92:a4:d8:bd:8e:eb:8c:fa:c1:28: e2:e1:34:d8:ef:27:a3:4e:2a:8c:7d:a6:a3:98:07:78:ec:72: cf:01:af:89:b8:45:e1:c7:73:49:22:4b:82:80:93:89:39:20: c6:44:76:5b:cf:13:10:8f:37:48:01:51:fd:6c:7b:ab:e5:1e: f8:6f:24:b8:a4:1f:c6:af:cf:cd:a2:c6:c8:0f:63:17:42:92: 41:f1:39:8f:56:68:31:f0:4b:86:99:f3:0c:ff:f8:39:4a:cf: 3f:57:05:56 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSFM22J7zhJ62H0wtu9TiVXMXJzowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjA2MDAzMDI3WhcNMjYwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OWQ2ODYzNjc5OGM3OTkyYTgxMzFmMGUyNzVkNWZkMDBi MmQ4Y2I1Y2I2MzAwZjU0NmYzMWE5ZjNhZDE1NzdkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo9YU/UocAsn0TcDzGEGDCdj/kIp5/OXt/9lBO6f9vkEsn c4ajeG0VhdaCamsemviEHmUIb3YAU0hOceZdNi0pIFuPaMX38+bEivVoRcJjyrej iS1iQ35WLAARa1u6IXAqOvbyaazzY1nJIae6YYmtxfafcrZG1aBBe1Vgt9jtN3+F lJVx4zm7zbvhz+dpV+WTOW2vLN9a5PbFuK8ir7Oct0rTFbVYIwaJiawSryh/3Kf4 ff1EfthKrVCGJ1ZgpfCrYIR+BS+44NEAFgaZa2Fai1kgBbPmFF9Fb4e/v1UsbOwi Or2NCu/jYf5mQdlDupEWg7GK1NZ1+pR+BwP1RTK1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWADZnerHTiLi1SCk4eV30d5deMcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QyZTNjOTllLTNlMDMtNDExNS04NTZiLWIyNWQ3ZTk3YzRmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUEwDQYJKoZIhvcNAQELBQADggEBAAAUFPUjM1kA0fzuvUxGH0Cq kT9ZOI2G4CEbfXX06AmeNh+5LoPPsONh3iI8AjP1ylx9vLByFkSg5WoUhveFLCIH sOW1JaERnKtcPwgqUVPDfkPrru6AwP7Fkt1LAxXRw/zDvNdZHrrA1MzZ1hRoAry5 PxNL59CM0CnZ9EzXbQX7c4ZS0S16TU3EXOpRTNTIiQRlTIPfu/2ZkqTYvY7rjPrB KOLhNNjvJ6NOKox9pqOYB3jscs8Br4m4ReHHc0kiS4KAk4k5IMZEdlvPExCPN0gB Uf1se6vlHvhvJLikH8avz82ixsgPYxdCkkHxOY9WaDHwS4aZ8wz/+DlKzz9XBVY= -----END CERTIFICATE-----Generated at Sun Mar 1 21:56:51 2026 by rpki-client