$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa File: ec42dc47-0cc9-474a-9470-19700f756d36.roa (raw, json) Hash identifier: KfTTv4EsyM5W3zlkAtQLUgeQK6+JDBKfiRqMlhIy9zY= Subject key identifier: F4:D2:C2:BA:3F:00:E6:9E:19:F5:63:59:CB:99:D4:9D:04:5F:6A:95 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 02949D0FFDCB8B5CD3413FFC30157B572A2908EB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa Signing time: Sat 28 Feb 2026 04:50:06 +0000 ROA not before: Sat 28 Feb 2026 04:50:06 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:94:9d:0f:fd:cb:8b:5c:d3:41:3f:fc:30:15:7b:57:2a:29:08:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 04:50:06 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=6b6d532a6db49902a7cbe542da485d4651b6a00c01b18d0c1212eba9e8479166, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c9:bf:60:fa:55:d1:3d:c8:f2:b2:cb:8b:65: e6:cf:69:ae:bf:a5:9e:85:b8:de:c9:8b:8d:c0:b7: 97:10:57:13:2b:73:1b:88:3e:5f:78:4f:a6:31:78: cf:f3:4d:6c:3e:98:aa:9c:80:98:c3:bf:c3:1b:ed: b8:57:59:81:ca:e2:c8:8c:56:94:8d:5c:67:06:66: 5d:2a:36:67:49:31:49:b7:eb:d3:76:ea:91:53:76: 95:0d:91:37:c9:7d:3e:63:b7:78:34:7e:76:c5:26: d4:e1:93:d8:ff:d6:f9:19:d6:4f:48:40:75:79:0c: 65:e1:9a:b0:15:4b:c1:8e:f6:b1:87:66:ac:c8:be: 2f:18:b7:e5:b0:c9:65:a3:05:e6:02:14:96:25:41: 04:b6:6a:68:2d:02:00:4e:02:80:52:b3:df:bd:c2: 96:36:b6:83:21:0e:72:58:c5:84:c6:4a:a8:45:cc: e4:f9:37:0f:eb:bd:66:84:04:43:76:a6:c0:c8:b3: 9f:e9:bb:6e:f9:ad:cb:09:2d:9f:ca:a4:5c:4f:09: 65:9b:44:e4:eb:f5:b6:f7:76:5f:9b:30:4f:59:fc: 87:7b:5d:cb:4d:e7:2d:92:6a:b7:51:03:85:65:ce: 20:af:d2:0e:14:3d:25:1f:25:bc:41:c4:54:90:a4: fb:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D2:C2:BA:3F:00:E6:9E:19:F5:63:59:CB:99:D4:9D:04:5F:6A:95 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 16:6d:3b:4e:d9:66:00:d6:4d:1c:a1:c4:f7:7b:d9:fc:ce:c5: e2:fa:bf:34:08:f9:e0:60:be:46:9e:72:ca:85:f3:12:2c:9b: 6e:e7:b7:ce:c7:7b:e9:4c:11:30:a9:10:98:1a:b9:99:ac:bd: 8d:e7:25:3e:f3:52:d5:48:60:d8:b1:73:ce:03:3c:62:c7:3d: 7f:c1:18:0a:66:f5:ba:55:e5:b3:04:4e:f2:1a:12:b4:49:d3: 3a:95:9f:a4:fc:a7:0d:4a:ea:2b:67:e3:0e:d7:71:6a:ff:81: ee:6b:45:ab:32:07:e3:f9:ea:aa:2d:6c:fd:04:0d:0c:22:36: ca:23:54:1f:12:fa:8b:77:7c:df:35:1a:bd:79:b9:7b:d4:ae: 29:50:05:8d:62:ad:04:f7:14:71:55:9b:7a:cb:60:e2:5c:28: 6a:43:fa:ea:dd:bc:44:4a:8b:3a:5d:4e:32:c3:d9:a5:e7:19: 2e:9f:83:96:78:80:21:28:40:76:aa:5b:cb:59:a3:1f:4e:97: 5e:74:ba:54:12:95:b8:a8:69:d4:25:4c:35:84:e8:70:ac:69: 62:1d:f9:9f:04:5e:85:f2:6e:aa:6f:08:c5:e8:3f:ea:54:80: f6:1d:82:39:2d:c6:b9:00:d7:4e:ed:aa:82:e9:91:5b:b6:d4: 66:b7:85:73 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUApSdD/3Li1zTQT/8MBV7VyopCOswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDQ1MDA2WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjZkNTMyYTZkYjQ5OTAyYTdjYmU1NDJkYTQ4NWQ0NjUx YjZhMDBjMDFiMThkMGMxMjEyZWJhOWU4NDc5MTY2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyyb9g+lXRPcjyssuLZebPaa6/pZ6FuN7Ji43At5cQVxMr cxuIPl94T6YxeM/zTWw+mKqcgJjDv8Mb7bhXWYHK4siMVpSNXGcGZl0qNmdJMUm3 69N26pFTdpUNkTfJfT5jt3g0fnbFJtThk9j/1vkZ1k9IQHV5DGXhmrAVS8GO9rGH ZqzIvi8Yt+WwyWWjBeYCFJYlQQS2amgtAgBOAoBSs9+9wpY2toMhDnJYxYTGSqhF zOT5Nw/rvWaEBEN2psDIs5/pu275rcsJLZ/KpFxPCWWbROTr9bb3dl+bME9Z/Id7 XctN5y2SardRA4VlziCv0g4UPSUfJbxBxFSQpPsVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9NLCuj8A5p4Z9WNZy5nUnQRfapUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VjNDJkYzQ3LTBjYzktNDc0YS05NDcwLTE5NzAwZjc1NmQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBABZtO07ZZgDWTRyhxPd72fzO xeL6vzQI+eBgvkaecsqF8xIsm27nt87He+lMETCpEJgauZmsvY3nJT7zUtVIYNix c84DPGLHPX/BGApm9bpV5bMETvIaErRJ0zqVn6T8pw1K6itn4w7XcWr/ge5rRasy B+P56qotbP0EDQwiNsojVB8S+ot3fN81Gr15uXvUrilQBY1irQT3FHFVm3rLYOJc KGpD+urdvERKizpdTjLD2aXnGS6fg5Z4gCEoQHaqW8tZox9Ol150ulQSlbioadQl TDWE6HCsaWId+Z8EXoXybqpvCMXoP+pUgPYdgjktxrkA107tqoLpkVu21Ga3hXM= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:40 2026 by rpki-client