$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/eddb8990-86be-4e35-823b-2b9b4245b4ac.roa File: eddb8990-86be-4e35-823b-2b9b4245b4ac.roa (raw, json) Hash identifier: vupoin1YuUy5NVT+KVe48Ctnpezt9sAaKXBw+PBMyzA= Subject key identifier: 13:8B:91:69:C4:B3:85:E4:52:5A:54:89:78:43:0F:AE:61:E0:C7:39 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 369F04D34B8BBF9F5CE6536C399336A99624F5FD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/eddb8990-86be-4e35-823b-2b9b4245b4ac.roa Signing time: Sun 01 Mar 2026 01:00:13 +0000 ROA not before: Sun 01 Mar 2026 01:00:13 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6123::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:9f:04:d3:4b:8b:bf:9f:5c:e6:53:6c:39:93:36:a9:96:24:f5:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 01:00:13 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=cea5cd547530217650677d19d6bd23f56ec5a61b0f468a871055bd5f96beaa1c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:65:92:f2:5c:76:17:27:da:fd:f5:22:e1:60: 9b:11:2c:8a:f9:44:07:9b:5f:8b:b3:e2:1d:89:5a: f2:4a:0c:48:83:da:bc:cc:7b:b8:3e:72:3a:11:57: 1b:a6:7f:36:6d:ab:d8:6e:4d:24:09:dd:c6:c0:93: f3:d9:83:c0:c8:ee:54:fe:e0:e5:66:8e:84:69:b2: db:bb:30:39:a9:3e:75:5b:e8:38:05:c8:79:68:29: f9:3d:bd:ae:ee:48:d7:a3:b1:ef:d4:12:55:25:8e: 8c:a5:76:1e:c1:80:dd:f0:63:46:a1:12:c7:bf:f6: 8e:ec:4e:bf:f6:bb:75:c9:4d:c8:80:ea:04:57:b2: 4f:82:36:e0:06:f4:12:fc:97:08:d4:04:3a:97:a2: 05:d2:bf:9e:34:6a:a3:68:1c:fe:bd:09:24:da:b6: 6f:75:a3:ed:7d:15:ae:1c:bd:b7:f1:a3:5d:98:c7: f0:03:ed:80:0c:43:ef:53:db:fe:35:0f:e2:c8:d5: 45:d5:3e:a1:c2:3f:02:39:25:a0:d0:b5:5b:6b:fb: 0e:23:73:75:53:80:84:ba:57:48:9a:69:1f:3b:19: 54:28:99:d2:d6:57:28:c4:6a:fa:e1:da:3a:2a:37: 9f:3c:a4:10:8a:b0:cf:f2:6c:c7:94:56:33:49:46: a8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:8B:91:69:C4:B3:85:E4:52:5A:54:89:78:43:0F:AE:61:E0:C7:39 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/eddb8990-86be-4e35-823b-2b9b4245b4ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6123::/48 Signature Algorithm: sha256WithRSAEncryption 19:d4:59:1e:37:cf:5f:3b:37:14:64:67:3e:7b:57:91:0a:aa: be:6e:eb:aa:3f:3e:73:c9:87:2c:8c:5d:7f:eb:61:76:3e:2d: b8:ea:2b:0d:b2:a3:ae:10:25:6d:d2:ac:42:82:49:20:18:53: db:ec:5c:9d:2d:d7:4a:24:48:23:88:9b:2f:cb:14:71:1d:53: 0c:6b:d7:de:f8:65:eb:9f:5a:3f:2a:bc:f2:bb:22:db:e4:ff: c0:50:95:2f:85:e6:66:42:10:98:b7:6d:f1:9f:f3:a6:f5:af: e6:b9:1c:f3:15:d9:e3:45:5d:0e:b4:3c:f0:a6:d4:7e:de:be: 70:78:79:43:04:b9:49:15:71:80:6d:2e:e3:b2:31:32:9d:dd: 6d:cc:8f:c6:b8:01:19:7b:32:77:1d:f2:2a:63:ce:6c:26:dc: 5a:4b:b0:95:96:ab:93:52:d0:90:7a:0f:52:e1:5f:a0:c3:87: 5d:40:11:b3:ae:c7:93:27:f3:ce:3f:7a:a0:a5:26:21:48:cf: f3:be:ab:f8:52:90:d7:69:4a:c0:e6:82:93:54:bd:c7:45:d3: 03:93:74:b1:95:6d:f7:cf:0e:75:8e:e1:39:64:d4:6e:20:7e: bd:fe:0f:85:eb:c6:90:11:f1:c1:18:29:6f:de:9c:c3:e2:25: af:24:1c:d0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNp8E00uLv59c5lNsOZM2qZYk9f0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDEwMDEzWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZWE1Y2Q1NDc1MzAyMTc2NTA2NzdkMTlkNmJkMjNmNTZl YzVhNjFiMGY0NjhhODcxMDU1YmQ1Zjk2YmVhYTFjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChZZLyXHYXJ9r99SLhYJsRLIr5RAebX4uz4h2JWvJKDEiD 2rzMe7g+cjoRVxumfzZtq9huTSQJ3cbAk/PZg8DI7lT+4OVmjoRpstu7MDmpPnVb 6DgFyHloKfk9va7uSNejse/UElUljoyldh7BgN3wY0ahEse/9o7sTr/2u3XJTciA 6gRXsk+CNuAG9BL8lwjUBDqXogXSv540aqNoHP69CSTatm91o+19Fa4cvbfxo12Y x/AD7YAMQ+9T2/41D+LI1UXVPqHCPwI5JaDQtVtr+w4jc3VTgIS6V0iaaR87GVQo mdLWVyjEavrh2joqN588pBCKsM/ybMeUVjNJRqhzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUE4uRacSzheRSWlSJeEMPrmHgxzkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VkZGI4OTkwLTg2YmUtNGUzNS04MjNiLTJiOWI0MjQ1YjRhYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSMwDQYJKoZIhvcNAQELBQADggEBABnUWR43z187NxRkZz57V5EK qr5u66o/PnPJhyyMXX/rYXY+LbjqKw2yo64QJW3SrEKCSSAYU9vsXJ0t10okSCOI my/LFHEdUwxr1974ZeufWj8qvPK7Itvk/8BQlS+F5mZCEJi3bfGf86b1r+a5HPMV 2eNFXQ60PPCm1H7evnB4eUMEuUkVcYBtLuOyMTKd3W3Mj8a4ARl7Mncd8ipjzmwm 3FpLsJWWq5NS0JB6D1LhX6DDh11AEbOux5Mn884/eqClJiFIz/O+q/hSkNdpSsDm gpNUvcdF0wOTdLGVbffPDnWO4Tlk1G4gfr3+D4XrxpAR8cEYKW/enMPiJa8kHNA= -----END CERTIFICATE-----Generated at Sun Mar 1 22:03:18 2026 by rpki-client