$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa File: da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa (raw, json) Hash identifier: 7PWU6N+NT/HAXgFyPHmByYpapxdi9dFsDB4AJn1/O+I= Subject key identifier: 3B:F6:F1:55:5B:30:C8:A8:06:A4:C7:B4:8B:0C:8C:61:88:1E:F4:0F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3A38C7A95244C3B8FB72272299C0F1B991B933C3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa Signing time: Sat 28 Feb 2026 05:00:40 +0000 ROA not before: Sat 28 Feb 2026 05:00:40 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:38:c7:a9:52:44:c3:b8:fb:72:27:22:99:c0:f1:b9:91:b9:33:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:40 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=384b502fca160ca2888f0874029b40df0c1135d1aea1490d911c60a34206c9b4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:54:b1:cc:11:93:8d:d8:d3:06:41:86:a3:34: cb:8f:65:85:66:28:89:f8:5f:ae:0d:a0:a0:c5:35: c3:a8:e1:81:5f:f9:f2:ed:08:d1:2f:c3:cd:1b:7d: 80:57:f5:cf:05:aa:34:bc:58:a2:65:ef:f7:b9:75: 5f:60:5f:70:de:3c:7c:54:de:64:75:f2:f4:e2:ba: f1:e8:c1:6b:5a:52:9f:23:09:aa:db:83:86:6b:da: 53:10:17:2c:ba:9d:d8:60:97:ec:04:c2:94:3b:93: 86:93:f9:ef:2c:f0:c9:9e:af:42:f9:6b:2d:f2:61: ac:61:41:6f:0c:d4:50:38:d6:6a:82:dd:fc:5e:00: 4b:5d:6e:46:a6:97:a0:bc:2a:41:e9:9b:09:de:c5: 48:51:30:a4:46:42:25:20:e7:0e:58:33:6e:f6:82: 3e:27:87:c8:79:58:85:34:0a:14:db:bd:b1:51:38: 9d:9e:45:6e:97:ca:a9:87:d3:7e:a5:3f:e6:6e:b2: 69:3d:26:c1:fe:55:42:92:88:75:28:94:70:17:da: 02:03:26:3c:b5:7a:dd:64:9b:2e:b2:6b:17:a3:ea: 1b:1e:45:3f:1f:ce:31:88:76:ff:86:83:6b:16:1f: 54:f5:b2:f8:1c:e5:6d:b1:1e:4f:a4:07:a2:83:7a: 20:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F6:F1:55:5B:30:C8:A8:06:A4:C7:B4:8B:0C:8C:61:88:1E:F4:0F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption 5c:62:b2:12:a0:c3:71:22:12:34:7f:26:da:81:ba:3d:8c:94: 6d:01:80:3c:09:d0:bf:f5:59:21:b6:c4:4f:cd:ad:0c:1d:c9: 74:dc:63:a6:f4:a8:10:4d:66:cd:d6:9c:a0:32:1b:f5:ce:12: 91:88:3f:96:b1:68:22:99:80:2f:dc:fa:bb:78:42:1e:35:78: f8:c2:68:13:1d:c6:28:e0:06:81:7d:75:5f:a9:28:93:62:b3: b9:ad:53:90:fb:62:bb:2e:73:1d:1f:db:7a:8a:09:40:48:17: 89:09:42:37:e4:66:c2:2f:40:e0:85:1a:ce:b8:32:5e:91:1e: c1:e9:d9:2c:f8:90:1f:85:b1:d9:b2:5e:f3:95:27:9c:55:ea: a7:aa:8a:10:b2:2a:6c:7b:27:50:31:50:c6:78:5e:6f:d7:b1: 8c:31:8e:cd:b9:9a:97:bc:84:19:05:02:0e:3e:38:e9:09:a2: d0:c7:2e:d6:be:b8:61:48:27:d9:9e:b5:4a:f0:b7:95:2e:21: f0:ca:5c:39:6d:fa:1f:c6:43:d7:4e:72:36:b2:ce:69:e1:2e: 20:a3:ca:0c:05:d8:6e:24:44:52:83:f8:d1:14:8f:44:c4:09: 56:1b:02:64:a0:2b:66:37:68:79:ef:d2:68:e4:72:65:e8:c3: 40:09:4c:80 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOjjHqVJEw7j7cicimcDxuZG5M8MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDQwWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODRiNTAyZmNhMTYwY2EyODg4ZjA4NzQwMjliNDBkZjBj MTEzNWQxYWVhMTQ5MGQ5MTFjNjBhMzQyMDZjOWI0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlVLHMEZON2NMGQYajNMuPZYVmKIn4X64NoKDFNcOo4YFf +fLtCNEvw80bfYBX9c8FqjS8WKJl7/e5dV9gX3DePHxU3mR18vTiuvHowWtaUp8j Carbg4Zr2lMQFyy6ndhgl+wEwpQ7k4aT+e8s8Mmer0L5ay3yYaxhQW8M1FA41mqC 3fxeAEtdbkaml6C8KkHpmwnexUhRMKRGQiUg5w5YM272gj4nh8h5WIU0ChTbvbFR OJ2eRW6XyqmH036lP+Zusmk9JsH+VUKSiHUolHAX2gIDJjy1et1kmy6yaxej6hse RT8fzjGIdv+Gg2sWH1T1svgc5W2xHk+kB6KDeiDTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUO/bxVVswyKgGpMe0iwyMYYge9A8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMGQwZjFmLWY4MmQtNDdiYi05YWM3LWVlMDlhNTFiM2YyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBAFxishKgw3EiEjR/JtqBuj2M lG0BgDwJ0L/1WSG2xE/NrQwdyXTcY6b0qBBNZs3WnKAyG/XOEpGIP5axaCKZgC/c +rt4Qh41ePjCaBMdxijgBoF9dV+pKJNis7mtU5D7Yrsucx0f23qKCUBIF4kJQjfk ZsIvQOCFGs64Ml6RHsHp2Sz4kB+FsdmyXvOVJ5xV6qeqihCyKmx7J1AxUMZ4Xm/X sYwxjs25mpe8hBkFAg4+OOkJotDHLta+uGFIJ9metUrwt5UuIfDKXDlt+h/GQ9dO cjayzmnhLiCjygwF2G4kRFKD+NEUj0TECVYbAmSgK2Y3aHnv0mjkcmXow0AJTIA= -----END CERTIFICATE-----Generated at Mon Mar 2 03:26:05 2026 by rpki-client