$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa File: dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa (raw, json) Hash identifier: 8ZAJke2tfy8dJDhtZjkHQz36diMibFXyCalGUcT6o08= Subject key identifier: 35:3F:A3:25:80:38:19:2B:6A:9B:36:9D:E2:61:DB:45:89:FA:D9:67 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 60C9788DC799F53F1ECCA1FBC5A5D44AAAB1ADA8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa Signing time: Sat 28 Feb 2026 05:00:33 +0000 ROA not before: Sat 28 Feb 2026 05:00:33 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:c9:78:8d:c7:99:f5:3f:1e:cc:a1:fb:c5:a5:d4:4a:aa:b1:ad:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:33 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=7af183dafc06655d7e9d7e63d3b2374c5bcd66bd8dbbb85666a7c6ca417edc45, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:52:f3:74:36:d2:f3:bb:5c:f1:1f:2b:8f:db: 96:ca:5b:b8:1f:31:c6:91:0e:d3:4e:0c:f9:b1:34: 3d:25:a6:ef:c5:bc:d5:af:5e:16:94:58:1f:94:e3: d7:2f:20:38:d3:90:bc:0a:10:d9:a8:99:31:4c:8e: 4a:73:07:a5:df:e1:f6:c9:fd:3c:da:ff:66:44:71: 64:82:17:c9:94:c0:59:5b:de:56:e2:fb:23:26:b3: 85:4a:78:83:02:ef:46:5d:1a:0c:5d:bc:1f:55:e1: 8e:e2:ca:0e:e0:cb:d7:11:16:78:da:c5:8a:7c:0c: 33:89:81:f6:14:02:f3:2a:17:88:3c:c2:f1:69:89: 8c:b1:e5:7a:3d:ec:07:db:96:9a:0b:8a:fc:d9:bf: f2:38:62:64:b5:8a:37:51:4c:a9:a4:dd:71:35:23: ca:ff:b7:f0:de:96:6a:04:05:5a:d2:7a:56:b3:8c: cf:3e:8a:46:05:1c:dc:8d:d6:08:99:c4:be:7b:0f: ad:fc:87:c1:ca:13:d1:ec:f9:91:b4:b6:d4:e3:1a: db:0c:6b:df:d6:cd:01:d3:17:89:4d:cf:80:d4:fa: bc:c3:2b:4a:b1:a5:5e:15:c2:bc:72:47:c3:87:0a: d4:ad:78:43:50:20:b4:6f:10:48:12:14:cf:94:1f: 6d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3F:A3:25:80:38:19:2B:6A:9B:36:9D:E2:61:DB:45:89:FA:D9:67 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e000::/40 Signature Algorithm: sha256WithRSAEncryption 18:a3:74:f2:e3:d2:0f:bd:c1:6a:ff:52:2b:6a:db:89:d2:a8: 54:5f:fd:07:f7:22:35:27:39:16:c1:6d:0d:37:e5:89:65:aa: e7:b3:b4:a6:8b:4a:f2:cc:08:79:99:60:99:92:be:e9:e0:08: 88:78:4e:df:4f:92:76:79:7c:63:21:6c:13:eb:f9:fa:79:5d: d4:a7:2b:c4:39:87:89:15:cd:69:ff:89:ba:74:28:f1:31:a2: 2b:71:a9:6b:78:ba:3c:e9:a9:1d:f9:07:3d:73:d5:71:0b:14: 5f:73:0a:64:35:02:7b:c9:b4:84:8e:01:d8:a0:70:2b:99:ca: 7f:f3:1b:67:d9:7a:20:83:1e:5c:9e:11:97:f3:39:92:18:59: b0:ec:1e:a7:1c:3a:61:4f:ba:f5:13:a9:71:3a:35:da:4b:44: fe:2d:39:d2:f0:68:ed:99:7f:db:97:e1:74:fb:e0:da:b4:bc: 99:9f:94:03:47:28:90:f8:da:74:f8:b8:aa:c8:1a:df:c7:21: 6d:1a:f9:ec:ef:af:fa:ae:6f:6a:74:47:00:a9:97:56:42:84: 46:d2:58:84:43:4f:45:c6:87:d1:a4:25:e0:6b:81:2f:3c:3f: 17:87:2d:94:dc:0b:50:c7:94:17:df:28:c3:46:5a:27:ad:96: 3f:10:e1:50 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYMl4jceZ9T8ezKH7xaXUSqqxragwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDMzWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWYxODNkYWZjMDY2NTVkN2U5ZDdlNjNkM2IyMzc0YzVi Y2Q2NmJkOGRiYmI4NTY2NmE3YzZjYTQxN2VkYzQ1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfUvN0NtLzu1zxHyuP25bKW7gfMcaRDtNODPmxND0lpu/F vNWvXhaUWB+U49cvIDjTkLwKENmomTFMjkpzB6Xf4fbJ/Tza/2ZEcWSCF8mUwFlb 3lbi+yMms4VKeIMC70ZdGgxdvB9V4Y7iyg7gy9cRFnjaxYp8DDOJgfYUAvMqF4g8 wvFpiYyx5Xo97AfblpoLivzZv/I4YmS1ijdRTKmk3XE1I8r/t/DelmoEBVrSelaz jM8+ikYFHNyN1giZxL57D638h8HKE9Hs+ZG0ttTjGtsMa9/WzQHTF4lNz4DU+rzD K0qxpV4VwrxyR8OHCtSteENQILRvEEgSFM+UH21nAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUNT+jJYA4GStqmzad4mHbRYn62WcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RjMGUwZTczLWJiYmUtNDE3MC1iNzMzLTQ5MDRlY2MyN2Y5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74DANBgkqhkiG9w0BAQsFAAOCAQEAGKN08uPSD73Bav9SK2rbidKo VF/9B/ciNSc5FsFtDTfliWWq57O0potK8swIeZlgmZK+6eAIiHhO30+Sdnl8YyFs E+v5+nld1KcrxDmHiRXNaf+JunQo8TGiK3Gpa3i6POmpHfkHPXPVcQsUX3MKZDUC e8m0hI4B2KBwK5nKf/MbZ9l6IIMeXJ4Rl/M5khhZsOwepxw6YU+69ROpcTo12ktE /i050vBo7Zl/25fhdPvg2rS8mZ+UA0cokPjadPi4qsga38chbRr57O+v+q5vanRH AKmXVkKERtJYhENPRcaH0aQl4GuBLzw/F4ctlNwLUMeUF98ow0ZaJ62WPxDhUA== -----END CERTIFICATE-----Generated at Sun Mar 1 23:49:08 2026 by rpki-client