$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e261d9a6-4c2a-42cf-aec3-29a76a536226.roa File: e261d9a6-4c2a-42cf-aec3-29a76a536226.roa (raw, json) Hash identifier: hnzUX6MX6iiMtyyJhD9pmFxzUMLey9s/8UKJJwCn5YQ= Subject key identifier: 82:72:75:BE:55:12:5D:69:CE:39:AC:6C:26:5D:67:15:A8:F8:6E:D0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 656A53203DD0A8AB5EFB4B48E8B41F90E29A9FD1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e261d9a6-4c2a-42cf-aec3-29a76a536226.roa Signing time: Thu 26 Feb 2026 20:36:50 +0000 ROA not before: Thu 26 Feb 2026 20:36:50 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5504::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:6a:53:20:3d:d0:a8:ab:5e:fb:4b:48:e8:b4:1f:90:e2:9a:9f:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 26 20:36:50 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=c5dc1e6bbec322b51405c6192df0664cdce833228027db756723abc2c6dc2ca2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:32:0c:b5:e3:9e:eb:25:81:13:99:19:22:45: 31:c5:54:65:60:e7:d5:ae:35:e4:95:dc:4f:13:c3: 19:e2:63:cb:b5:4b:df:22:70:1b:3e:31:fc:5a:97: 9a:88:d4:42:77:55:61:a1:26:59:f4:92:ea:50:03: ca:69:39:15:54:9b:cf:dd:8c:78:bf:a6:96:4c:02: f5:15:d9:55:b9:f8:8e:7a:79:ee:43:e9:ca:e0:96: 15:6f:a1:45:0c:a2:78:d0:8a:5a:63:54:5f:a9:33: 3b:cc:ca:2d:a2:c8:fd:2e:1a:fc:41:3f:49:18:3f: 71:d6:9c:84:ff:d2:c9:3c:73:8c:60:66:b2:b7:1c: 96:a7:2f:5c:4c:57:3c:69:0c:82:cc:fa:c4:31:be: dd:a3:10:fa:47:d8:b7:e2:21:1a:fe:ad:91:6a:cf: 19:6a:0e:8e:2f:46:96:01:9e:c1:35:83:5a:9f:a9: 44:38:57:d8:41:d8:2e:53:c8:6c:f6:9e:f9:99:4a: 00:bb:60:68:41:7f:fa:e9:18:9a:a6:71:ff:1b:dc: 08:5c:71:a2:7a:e8:17:6b:11:5c:33:d9:9f:37:7a: c9:a5:b9:27:13:89:3e:0e:f2:74:43:75:89:6a:c2: 76:a6:8e:b9:1d:9f:c9:84:5c:e7:90:9a:97:b2:49: 6a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:72:75:BE:55:12:5D:69:CE:39:AC:6C:26:5D:67:15:A8:F8:6E:D0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e261d9a6-4c2a-42cf-aec3-29a76a536226.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5504::/48 Signature Algorithm: sha256WithRSAEncryption 78:1f:b6:f4:8a:49:8f:fa:de:d5:8c:cc:27:6d:a0:27:69:5f: 93:54:3d:a2:69:20:e9:3c:a5:47:d5:35:4f:7a:2c:bf:da:9d: 31:1d:c3:95:1b:89:93:18:c8:11:6b:98:d1:92:10:e5:34:7e: 74:00:58:36:7a:49:11:70:ab:1c:cd:9e:6f:6a:8a:06:f3:d4: 43:92:32:46:bf:fc:ad:f7:3e:8d:a5:4f:13:1a:7b:56:8c:ee: df:7f:dc:a5:e2:5c:c8:3c:fe:b3:fa:27:8c:9c:0c:63:d9:d1: 4b:58:5d:7d:44:b6:c0:91:20:83:fc:ca:b2:75:29:dd:ea:67: 6f:59:c3:61:90:09:e0:b1:17:3d:7d:5f:34:a8:1a:39:95:e4: 17:87:08:a2:eb:90:7f:10:fa:e2:1c:7b:ca:44:86:09:a2:53: b3:a8:74:8a:03:08:9e:f8:a3:fa:89:5d:e1:c3:ff:17:90:01: 03:4e:71:1f:97:4d:67:f7:88:37:6d:44:6a:16:24:0d:86:2c: 3d:f9:f4:dd:f1:94:49:96:15:15:b5:c4:ab:5d:28:b7:83:31: 7f:9e:05:76:ef:80:1a:33:bf:fe:41:a5:41:b7:28:0b:a5:10: d1:70:40:4c:9e:a5:c2:5d:ec:82:bb:8d:58:b0:a0:f4:8a:01: 14:ff:63:ed -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZWpTID3QqKte+0tI6LQfkOKan9EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI2MjAzNjUwWhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNWRjMWU2YmJlYzMyMmI1MTQwNWM2MTkyZGYwNjY0Y2Rj ZTgzMzIyODAyN2RiNzU2NzIzYWJjMmM2ZGMyY2EyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuMgy1457rJYETmRkiRTHFVGVg59WuNeSV3E8TwxniY8u1 S98icBs+Mfxal5qI1EJ3VWGhJln0kupQA8ppORVUm8/djHi/ppZMAvUV2VW5+I56 ee5D6crglhVvoUUMonjQilpjVF+pMzvMyi2iyP0uGvxBP0kYP3HWnIT/0sk8c4xg ZrK3HJanL1xMVzxpDILM+sQxvt2jEPpH2LfiIRr+rZFqzxlqDo4vRpYBnsE1g1qf qUQ4V9hB2C5TyGz2nvmZSgC7YGhBf/rpGJqmcf8b3AhccaJ66BdrEVwz2Z83esml uScTiT4O8nRDdYlqwnamjrkdn8mEXOeQmpeySWo3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgnJ1vlUSXWnOOaxsJl1nFaj4btAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UyNjFkOWE2LTRjMmEtNDJjZi1hZWMzLTI5YTc2YTUzNjIyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQQwDQYJKoZIhvcNAQELBQADggEBAHgftvSKSY/63tWMzCdtoCdp X5NUPaJpIOk8pUfVNU96LL/anTEdw5UbiZMYyBFrmNGSEOU0fnQAWDZ6SRFwqxzN nm9qigbz1EOSMka//K33Po2lTxMae1aM7t9/3KXiXMg8/rP6J4ycDGPZ0UtYXX1E tsCRIIP8yrJ1Kd3qZ29Zw2GQCeCxFz19XzSoGjmV5BeHCKLrkH8Q+uIce8pEhgmi U7OodIoDCJ74o/qJXeHD/xeQAQNOcR+XTWf3iDdtRGoWJA2GLD359N3xlEmWFRW1 xKtdKLeDMX+eBXbvgBozv/5BpUG3KAulENFwQEyepcJd7IK7jViwoPSKART/Y+0= -----END CERTIFICATE-----Generated at Sun Mar 1 21:47:59 2026 by rpki-client