$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa File: e1f114b0-d940-4fa0-8376-bac93d2868fc.roa (raw, json) Hash identifier: 2IHyq7KoK8j9m5S+idBD9mOY7KWQrgbiKqmN24ocpk4= Subject key identifier: 59:2B:45:0A:B8:97:30:14:47:74:C7:9B:73:8D:F1:21:E0:BB:95:44 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3275CF14A6005034386E3B7D55A95A9B7E9D7C7C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa Signing time: Fri 06 Feb 2026 00:30:28 +0000 ROA not before: Fri 06 Feb 2026 00:30:28 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:75:cf:14:a6:00:50:34:38:6e:3b:7d:55:a9:5a:9b:7e:9d:7c:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 6 00:30:28 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=1f79f489dcf942f87064e9fbd5a66f3181771f929721d4ebdc01f956b3b36e51, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6b:6c:75:5f:14:d8:c2:65:5d:95:b3:34:98: 8d:a4:03:40:cf:6f:30:78:8b:d9:f1:fd:63:f9:36: 24:77:3f:13:7e:6e:53:d4:7b:05:44:58:63:ac:68: b1:f3:b2:d0:fd:f0:c5:4f:ba:82:e1:fd:97:36:b7: 28:d7:25:60:5b:bf:8d:e4:5c:6c:a8:ad:8f:e5:a1: 23:54:af:c3:8a:37:95:bc:1e:0e:2c:0e:55:fd:30: f7:00:a0:18:20:b5:51:34:31:85:fd:60:ff:17:43: 67:46:a8:c8:2f:b2:43:0c:0e:c0:d0:e4:aa:37:81: 35:e2:8e:bf:4f:df:f1:73:97:58:6d:88:cf:99:1a: 41:37:c7:84:a9:19:90:4a:71:fb:f7:cc:8c:69:16: 50:13:4e:6e:fb:91:09:63:3a:ab:c6:d8:e7:43:63: 49:4c:59:10:d8:9f:d2:cd:6d:e1:3b:98:04:74:0b: 19:f0:29:22:55:bd:29:c4:28:f1:48:4d:f8:40:0b: df:bf:b7:d8:8b:73:0b:f3:7d:7d:5f:10:d7:3d:53: 5b:4b:02:e7:3d:47:5a:7e:5f:aa:5f:54:7d:af:41: d2:75:c9:7e:ff:d4:29:cc:ca:14:87:8a:e1:0d:08: ca:59:a0:6e:c7:7c:25:1b:66:d6:cf:fa:b8:49:46: 3a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:2B:45:0A:B8:97:30:14:47:74:C7:9B:73:8D:F1:21:E0:BB:95:44 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 1e:16:4e:21:bc:cf:0f:df:c8:90:04:2d:7e:65:0a:d4:e8:42: a3:e5:95:66:eb:f7:d2:72:17:c9:f6:eb:58:e2:6d:53:b7:a3: e5:20:bf:3a:92:3f:20:6e:76:99:8f:96:bf:4f:1c:b8:c2:7b: 92:d0:35:d2:3a:f2:6b:04:24:5d:00:66:96:86:41:41:72:3c: c8:49:f3:c2:7d:0c:ef:5a:d7:d6:bd:1d:0a:4e:c2:7c:59:3d: 77:b0:c9:90:44:cd:f9:05:d7:cf:98:62:8c:e7:ad:6f:39:f0: c2:30:07:06:81:89:1c:8c:ed:93:75:44:ce:7c:0e:b7:86:ef: e4:78:4c:ce:21:7c:cc:f3:cd:48:34:31:ca:91:92:6a:34:75: c4:39:af:7a:ae:b4:bb:0e:df:1d:6a:0d:10:3b:1f:a1:31:f3: cb:5f:a3:53:65:81:25:ae:ae:45:57:60:7c:72:27:fa:fe:3c: 35:8d:cb:1e:45:08:db:fc:e6:41:70:45:e6:44:60:14:3c:7f: 5e:1a:c4:ec:f5:82:20:05:8e:16:f9:f5:d5:b1:28:2a:bb:f5: 87:49:af:91:79:24:96:75:de:37:e1:e3:dd:e5:2c:6c:1a:95: 8d:d2:41:c7:03:60:99:7b:32:1b:05:b5:c5:64:99:fd:ff:90: b2:6c:1f:87 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMnXPFKYAUDQ4bjt9Valam36dfHwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjA2MDAzMDI4WhcNMjYwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjc5ZjQ4OWRjZjk0MmY4NzA2NGU5ZmJkNWE2NmYzMTgx NzcxZjkyOTcyMWQ0ZWJkYzAxZjk1NmIzYjM2ZTUxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2a2x1XxTYwmVdlbM0mI2kA0DPbzB4i9nx/WP5NiR3PxN+ blPUewVEWGOsaLHzstD98MVPuoLh/Zc2tyjXJWBbv43kXGyorY/loSNUr8OKN5W8 Hg4sDlX9MPcAoBggtVE0MYX9YP8XQ2dGqMgvskMMDsDQ5Ko3gTXijr9P3/Fzl1ht iM+ZGkE3x4SpGZBKcfv3zIxpFlATTm77kQljOqvG2OdDY0lMWRDYn9LNbeE7mAR0 CxnwKSJVvSnEKPFITfhAC9+/t9iLcwvzfX1fENc9U1tLAuc9R1p+X6pfVH2vQdJ1 yX7/1CnMyhSHiuENCMpZoG7HfCUbZtbP+rhJRjoZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUWStFCriXMBRHdMebc43xIeC7lUQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UxZjExNGIwLWQ5NDAtNGZhMC04Mzc2LWJhYzkzZDI4NjhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAHhZOIbzPD9/IkAQtfmUK1OhC o+WVZuv30nIXyfbrWOJtU7ej5SC/OpI/IG52mY+Wv08cuMJ7ktA10jryawQkXQBm loZBQXI8yEnzwn0M71rX1r0dCk7CfFk9d7DJkETN+QXXz5hijOetbznwwjAHBoGJ HIztk3VEznwOt4bv5HhMziF8zPPNSDQxypGSajR1xDmveq60uw7fHWoNEDsfoTHz y1+jU2WBJa6uRVdgfHIn+v48NY3LHkUI2/zmQXBF5kRgFDx/XhrE7PWCIAWOFvn1 1bEoKrv1h0mvkXkklnXeN+Hj3eUsbBqVjdJBxwNgmXsyGwW1xWSZ/f+Qsmwfhw== -----END CERTIFICATE-----Generated at Sun Mar 1 23:50:39 2026 by rpki-client