$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ed489dd8-33df-4b42-9bde-ace356f6114a.roa File: ed489dd8-33df-4b42-9bde-ace356f6114a.roa (raw, json) Hash identifier: IkJmWSkBlIlzpjYNHQttWDl4/593iKa08HB6Zv6Gy34= Subject key identifier: 2E:32:A5:ED:FE:A8:29:43:74:B0:DB:CE:A3:06:21:01:96:8D:BD:BC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5B85806493617F3E7B91A26BF4F4EFD38AE29B3E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ed489dd8-33df-4b42-9bde-ace356f6114a.roa Signing time: Sun 01 Mar 2026 01:00:11 +0000 ROA not before: Sun 01 Mar 2026 01:00:11 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:85:80:64:93:61:7f:3e:7b:91:a2:6b:f4:f4:ef:d3:8a:e2:9b:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 01:00:11 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=fe3e4ebedd17c7712c1707cd41a91f08dbf85fe6f296c4689f6e07d610f74be7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:92:89:30:8e:0d:ce:38:d5:06:87:b6:35:3a: 76:c6:11:ef:10:82:b5:fe:86:37:67:23:8a:15:82: 8f:81:5b:fc:6e:11:c0:a0:e2:36:af:48:63:f8:27: 3b:b8:19:29:ff:6c:3f:db:04:a1:02:ca:8d:e0:e4: 59:46:6f:54:19:d0:58:b6:aa:25:d0:48:72:a5:a6: 92:d8:f3:de:9a:3c:da:25:a1:88:a1:59:d8:05:54: 72:f0:4f:6b:f2:92:3d:83:85:c4:62:a7:28:62:23: 72:87:b6:b8:8c:72:c0:35:1c:03:88:78:06:83:f2: 2c:39:ec:68:0d:ff:e8:9c:56:fa:cb:7e:e8:47:68: 49:5a:bc:03:b0:3c:38:5a:57:7c:1a:5f:a1:d3:37: 5e:b2:3c:e7:24:d3:bf:10:af:0a:42:b7:db:f7:2d: 56:6e:29:3b:57:23:6d:79:09:c7:25:4c:29:32:5a: 1b:0e:25:5d:e3:fb:ae:8e:27:c1:c2:c5:43:25:e4: 30:c7:d5:ef:cc:43:a6:8c:6d:96:80:fd:fd:cd:83: 38:9e:3c:9b:45:e9:dc:f9:46:42:4f:75:6a:67:c8: 2d:fc:b5:9c:3f:36:c9:5b:a3:d0:3c:63:7c:ff:c6: 51:d2:e1:ef:a8:fa:58:9f:ef:7d:81:49:23:46:79: 8b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:32:A5:ED:FE:A8:29:43:74:B0:DB:CE:A3:06:21:01:96:8D:BD:BC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ed489dd8-33df-4b42-9bde-ace356f6114a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f102::/48 Signature Algorithm: sha256WithRSAEncryption 6e:86:12:57:cf:e7:d7:62:d4:88:8d:a9:55:1b:05:c2:9e:b9: 5b:0e:d8:a6:a8:d7:8a:ee:21:07:0b:ad:12:90:03:a6:31:11: 41:70:b0:78:2c:b1:f6:1f:c6:fb:06:75:32:ef:9b:9f:1a:cb: eb:f4:d7:65:6e:57:a6:3a:6f:e7:22:d9:fc:d5:46:11:16:84: 4e:3d:f2:77:3d:8b:d5:14:07:a8:bd:35:1a:62:69:c0:31:29: 9a:4f:a5:20:95:63:ea:51:7d:f9:aa:f7:a2:fb:29:04:2b:14: 3a:ac:fd:04:71:cb:a5:17:15:0d:81:84:6a:bd:1a:d0:ab:6b: 47:7c:6e:aa:c9:86:54:36:d0:c9:db:61:51:03:52:26:53:6c: b9:ec:2e:3f:c9:9b:d4:cc:06:f7:48:89:9a:4c:e3:6e:d1:f4: 46:53:83:e4:17:26:f0:0f:84:1e:97:06:f6:fd:9f:04:9f:b0: c1:a3:ff:27:78:87:5e:94:e1:a5:2d:0c:82:0d:9b:20:1e:6b: 70:43:35:9b:21:6a:43:59:81:7c:09:2c:aa:7d:b8:72:7e:f5: 9f:78:da:ae:52:36:e4:6d:ae:71:ce:cb:3e:f5:8e:69:ef:48: 19:46:b9:e0:1a:a5:01:31:3d:53:4f:bc:61:4f:d0:cb:13:fb: e1:bd:a5:58 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW4WAZJNhfz57kaJr9PTv04rimz4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDEwMDExWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTNlNGViZWRkMTdjNzcxMmMxNzA3Y2Q0MWE5MWYwOGRi Zjg1ZmU2ZjI5NmM0Njg5ZjZlMDdkNjEwZjc0YmU3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/kokwjg3OONUGh7Y1OnbGEe8QgrX+hjdnI4oVgo+BW/xu EcCg4javSGP4Jzu4GSn/bD/bBKECyo3g5FlGb1QZ0Fi2qiXQSHKlppLY896aPNol oYihWdgFVHLwT2vykj2DhcRipyhiI3KHtriMcsA1HAOIeAaD8iw57GgN/+icVvrL fuhHaElavAOwPDhaV3waX6HTN16yPOck078QrwpCt9v3LVZuKTtXI215CcclTCky WhsOJV3j+66OJ8HCxUMl5DDH1e/MQ6aMbZaA/f3NgziePJtF6dz5RkJPdWpnyC38 tZw/Nslbo9A8Y3z/xlHS4e+o+lif732BSSNGeYvJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULjKl7f6oKUN0sNvOowYhAZaNvbwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VkNDg5ZGQ4LTMzZGYtNGI0Mi05YmRlLWFjZTM1NmY2MTE0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QIwDQYJKoZIhvcNAQELBQADggEBAG6GElfP59di1IiNqVUbBcKe uVsO2Kao14ruIQcLrRKQA6YxEUFwsHgssfYfxvsGdTLvm58ay+v012VuV6Y6b+ci 2fzVRhEWhE498nc9i9UUB6i9NRpiacAxKZpPpSCVY+pRffmq96L7KQQrFDqs/QRx y6UXFQ2BhGq9GtCra0d8bqrJhlQ20MnbYVEDUiZTbLnsLj/Jm9TMBvdIiZpM427R 9EZTg+QXJvAPhB6XBvb9nwSfsMGj/yd4h16U4aUtDIINmyAea3BDNZshakNZgXwJ LKp9uHJ+9Z942q5SNuRtrnHOyz71jmnvSBlGueAapQExPVNPvGFP0MsT++G9pVg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:10:16 2026 by rpki-client