$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa File: e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa (raw, json) Hash identifier: khEvCOMpgithcgzhkG8/UHIicGfQIMS2enyQymxDeSU= Subject key identifier: 93:38:BF:A3:9E:FE:A7:EB:3E:5C:34:6F:F4:71:9E:85:3F:03:51:F6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2B05B777C6958434321189E5D84C96A2C73E086E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa Signing time: Tue 17 Feb 2026 00:30:18 +0000 ROA not before: Tue 17 Feb 2026 00:30:18 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:05:b7:77:c6:95:84:34:32:11:89:e5:d8:4c:96:a2:c7:3e:08:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 17 00:30:18 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=9dcefbfc600761460da6379fce927c5537a731573393bf16178b9731ffa76d0f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cf:1f:d4:88:aa:b0:66:60:79:8d:50:fc:44: e3:6d:f9:80:cc:54:25:62:5f:b1:8b:2a:dd:17:cc: ba:52:ae:a4:8a:3c:a1:ce:9f:51:9e:47:b0:8e:07: cb:93:6a:34:b2:6e:4f:25:53:04:00:33:ce:a7:10: f4:6c:59:ca:f5:8d:6b:cf:fe:01:11:36:62:dc:3c: bb:98:31:fb:46:ce:cf:a1:51:73:ad:18:ca:13:0a: 6f:cd:f1:23:49:ff:4c:14:b1:bc:fa:65:ee:97:1d: 7c:ee:61:bf:b4:a2:e6:12:f5:20:1b:71:15:43:fa: 73:c9:81:16:40:16:36:f9:96:1c:f0:3f:14:3e:66: f6:dd:3d:f7:5e:3b:4e:9a:68:e0:76:b0:43:c2:00: ee:b2:2c:d9:f9:d7:ff:b0:02:0d:9e:20:38:40:d1: 6f:3d:8b:3f:b4:18:c1:54:6c:b5:18:ea:fc:73:08: 95:99:90:e9:bd:48:f4:72:e8:2e:6f:80:94:39:c8: 2e:1c:bd:3d:8c:64:1f:a9:49:96:62:83:ba:d0:c8: a5:6b:65:11:18:20:ac:90:8b:b8:7e:ee:86:47:a3: d7:04:23:7f:ad:d1:ae:07:fa:e0:7d:35:56:04:f7: 9e:97:c0:a4:4a:61:54:6c:4e:60:0d:06:7b:35:4d: 8d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:38:BF:A3:9E:FE:A7:EB:3E:5C:34:6F:F4:71:9E:85:3F:03:51:F6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5400::/40 Signature Algorithm: sha256WithRSAEncryption 20:25:db:ea:6c:94:03:b6:e8:29:0f:e7:b8:37:56:c8:eb:a6: a3:84:0a:ed:65:cc:67:4e:9e:03:bb:ba:06:08:88:e2:3c:0c: fb:ae:e3:be:e2:ec:c5:79:25:12:20:f6:c9:cb:89:71:00:59: db:8e:82:42:97:40:5f:98:31:dd:50:c5:7e:3b:6e:c2:6e:be: 39:2d:d1:14:f1:4a:ad:be:f1:c4:09:47:44:e9:55:50:05:77: a1:04:39:27:29:84:67:a5:46:3f:51:39:bb:af:03:79:a9:00: 59:6c:c5:ce:b6:0a:81:be:f2:ee:7e:5d:4b:4c:ad:81:ed:45: ad:7f:b4:ae:7b:9d:6c:46:5d:80:10:ab:fa:17:23:38:0d:bc: 19:18:b6:2c:3f:4b:8c:b2:0c:de:95:00:76:08:08:fc:c3:80: cd:6d:a6:90:57:e3:de:be:84:b3:d7:9a:8e:49:33:a4:c8:d1: 2c:ac:6b:04:1a:24:6f:50:39:a9:f1:5c:63:d5:24:12:ba:5a: 4a:7c:f4:d6:68:fb:26:71:c3:f0:42:76:d8:65:f4:2d:a4:4b: a2:55:a8:01:ca:26:84:b4:12:ef:27:5a:54:71:af:86:97:fe: 28:02:d9:16:72:ba:f9:af:2e:f0:0e:4f:d9:a4:fe:53:2f:c3: 9c:e4:d1:36 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKwW3d8aVhDQyEYnl2EyWosc+CG4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjE3MDAzMDE4WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGNlZmJmYzYwMDc2MTQ2MGRhNjM3OWZjZTkyN2M1NTM3 YTczMTU3MzM5M2JmMTYxNzhiOTczMWZmYTc2ZDBmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrzx/UiKqwZmB5jVD8RONt+YDMVCViX7GLKt0XzLpSrqSK PKHOn1GeR7COB8uTajSybk8lUwQAM86nEPRsWcr1jWvP/gERNmLcPLuYMftGzs+h UXOtGMoTCm/N8SNJ/0wUsbz6Ze6XHXzuYb+0ouYS9SAbcRVD+nPJgRZAFjb5lhzw PxQ+ZvbdPfdeO06aaOB2sEPCAO6yLNn51/+wAg2eIDhA0W89iz+0GMFUbLUY6vxz CJWZkOm9SPRy6C5vgJQ5yC4cvT2MZB+pSZZig7rQyKVrZREYIKyQi7h+7oZHo9cE I3+t0a4H+uB9NVYE956XwKRKYVRsTmANBns1TY0VAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUkzi/o57+p+s+XDRv9HGehT8DUfYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UxYTQ0MWI5LTI0ZTUtNDFlOS05MWU4LTVlN2QxNGZiZGVmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwVDANBgkqhkiG9w0BAQsFAAOCAQEAICXb6myUA7boKQ/nuDdWyOum o4QK7WXMZ06eA7u6BgiI4jwM+67jvuLsxXklEiD2ycuJcQBZ246CQpdAX5gx3VDF fjtuwm6+OS3RFPFKrb7xxAlHROlVUAV3oQQ5JymEZ6VGP1E5u68DeakAWWzFzrYK gb7y7n5dS0ytge1FrX+0rnudbEZdgBCr+hcjOA28GRi2LD9LjLIM3pUAdggI/MOA zW2mkFfj3r6Es9eajkkzpMjRLKxrBBokb1A5qfFcY9UkErpaSnz01mj7JnHD8EJ2 2GX0LaRLolWoAcomhLQS7ydaVHGvhpf+KALZFnK6+a8u8A5P2aT+Uy/DnOTRNg== -----END CERTIFICATE-----Generated at Sun Mar 1 21:56:01 2026 by rpki-client