$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da202649-b5ac-45d7-ab2c-22fec234c600.roa File: da202649-b5ac-45d7-ab2c-22fec234c600.roa (raw, json) Hash identifier: GRytPfJxKU4pejzYEe7LLaP2WveRbnqc1WQREbrXbdM= Subject key identifier: 75:D4:DB:06:70:F3:F1:AA:00:57:25:15:88:21:32:8A:DB:DD:54:38 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2CF59E1133806CED98A15A9CEE0BFA63DA3C381C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da202649-b5ac-45d7-ab2c-22fec234c600.roa Signing time: Sun 01 Mar 2026 00:50:08 +0000 ROA not before: Sun 01 Mar 2026 00:50:08 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f106::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:f5:9e:11:33:80:6c:ed:98:a1:5a:9c:ee:0b:fa:63:da:3c:38:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 00:50:08 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=129c97563ef1d801a433263d2daaf24567e9809fa0bd09a646069b26d3ea575d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:07:ff:78:13:c8:74:58:9d:7b:2d:e9:ec:2b: 76:a0:87:d4:e0:8e:cd:b0:12:26:55:94:a3:bc:82: 2b:9a:5d:c8:a4:e4:bc:23:e0:63:d2:ed:35:ba:8b: 53:a2:88:f9:de:a5:4a:9a:35:cd:0d:c3:a1:c7:21: af:f0:b1:ba:33:c5:5d:3f:fc:a6:95:2e:aa:92:1a: c6:75:28:f9:bf:28:9d:18:b4:f7:c5:68:1c:69:89: 4b:22:57:f7:30:ed:81:83:24:48:77:eb:aa:d2:6d: 81:7f:ff:d7:d0:ec:7e:ad:e3:d8:b8:f1:b5:e4:d3: cd:75:4d:1f:28:ee:d8:a4:1c:c0:41:cd:cd:cc:b8: b6:d3:b4:1a:2d:8a:23:8d:f3:08:30:74:0e:81:d9: 28:ab:43:81:da:92:ed:fd:9a:01:8b:36:a1:14:f1: 9f:ff:e9:05:c7:e0:5f:e5:bc:da:cf:18:b9:88:83: 69:c3:ac:2d:0d:14:df:00:e5:e8:c7:5e:41:a8:02: bb:11:ae:0d:02:22:76:36:1d:0b:06:79:69:f9:e3: eb:f8:3a:83:82:da:eb:4b:f9:f8:0a:d9:b0:be:a8: 76:4d:a8:c9:6b:1d:6e:23:a4:b8:ec:fe:b2:6d:ec: 9f:37:95:46:85:65:c1:1f:aa:58:86:51:5b:86:ed: 56:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D4:DB:06:70:F3:F1:AA:00:57:25:15:88:21:32:8A:DB:DD:54:38 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da202649-b5ac-45d7-ab2c-22fec234c600.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f106::/48 Signature Algorithm: sha256WithRSAEncryption 5f:bd:76:21:f0:89:b8:eb:7f:ad:b6:fa:4e:05:86:65:9d:3e: b6:db:45:50:0a:9c:32:88:37:10:b2:e7:2e:13:ee:08:87:c3: 43:13:f5:be:5e:a8:5c:03:59:23:51:6f:58:64:26:1e:98:b1: db:a8:23:1f:25:d6:82:04:8e:4b:d4:11:f4:45:bb:8a:dc:c1: da:7a:e6:13:72:ab:74:98:d5:89:3d:c8:c8:dc:aa:90:14:44: 29:7c:98:73:5e:6a:b5:d5:ab:91:da:b1:b6:dd:40:5e:82:5a: 1d:c6:2c:61:87:ab:18:7a:45:fc:c4:89:c9:45:61:ab:c8:85: d0:b6:51:1b:8b:10:39:9d:42:6b:fa:c6:4a:3c:3f:2c:5f:d5: 88:10:ca:2a:3d:ad:63:a7:9f:52:39:2c:34:83:74:f8:b9:b0: 33:e4:9b:28:d0:2a:29:96:2a:f1:81:89:4f:ac:fb:6a:83:7d: d5:4c:c2:53:28:14:27:a1:96:00:03:9b:9e:33:6b:fc:87:b8: 19:1d:45:a7:a0:e7:02:5d:49:dd:2a:ef:6a:c6:80:8e:3c:b1: c5:63:a2:e2:d2:03:36:c4:e3:9f:3c:29:9a:a2:e9:d3:b4:5e: 9c:cb:0f:fc:ba:7b:39:f4:d2:0a:bb:91:e4:07:84:88:5e:e8: 7f:91:8c:67 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULPWeETOAbO2YoVqc7gv6Y9o8OBwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDA1MDA4WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjljOTc1NjNlZjFkODAxYTQzMzI2M2QyZGFhZjI0NTY3 ZTk4MDlmYTBiZDA5YTY0NjA2OWIyNmQzZWE1NzVkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrB/94E8h0WJ17LensK3agh9Tgjs2wEiZVlKO8giuaXcik 5Lwj4GPS7TW6i1OiiPnepUqaNc0Nw6HHIa/wsbozxV0//KaVLqqSGsZ1KPm/KJ0Y tPfFaBxpiUsiV/cw7YGDJEh366rSbYF//9fQ7H6t49i48bXk0811TR8o7tikHMBB zc3MuLbTtBotiiON8wgwdA6B2SirQ4Haku39mgGLNqEU8Z//6QXH4F/lvNrPGLmI g2nDrC0NFN8A5ejHXkGoArsRrg0CInY2HQsGeWn54+v4OoOC2utL+fgK2bC+qHZN qMlrHW4jpLjs/rJt7J83lUaFZcEfqliGUVuG7VbDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUddTbBnDz8aoAVyUViCEyitvdVDgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMjAyNjQ5LWI1YWMtNDVkNy1hYjJjLTIyZmVjMjM0YzYwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QYwDQYJKoZIhvcNAQELBQADggEBAF+9diHwibjrf622+k4FhmWd PrbbRVAKnDKINxCy5y4T7giHw0MT9b5eqFwDWSNRb1hkJh6YsduoIx8l1oIEjkvU EfRFu4rcwdp65hNyq3SY1Yk9yMjcqpAURCl8mHNearXVq5HasbbdQF6CWh3GLGGH qxh6RfzEiclFYavIhdC2URuLEDmdQmv6xko8Pyxf1YgQyio9rWOnn1I5LDSDdPi5 sDPkmyjQKimWKvGBiU+s+2qDfdVMwlMoFCehlgADm54za/yHuBkdRaeg5wJdSd0q 72rGgI48scVjouLSAzbE4588KZqi6dO0XpzLD/y6ezn00gq7keQHhIhe6H+RjGc= -----END CERTIFICATE-----Generated at Mon Mar 2 03:34:09 2026 by rpki-client