$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa File: ef295804-89a7-4ec3-826e-73e32733dc02.roa (raw, json) Hash identifier: XVMRw+Bwwaajvup07B9nt52amXMXrLjTnVjmsqJ+/D8= Subject key identifier: E9:28:72:8F:54:8C:9D:C4:DF:30:0E:1A:4B:74:5A:58:BB:E4:D2:23 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 583244AFA88786F41023533332B4826D1FC607EA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa Signing time: Sat 28 Feb 2026 05:00:45 +0000 ROA not before: Sat 28 Feb 2026 05:00:45 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:32:44:af:a8:87:86:f4:10:23:53:33:32:b4:82:6d:1f:c6:07:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:00:45 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=141c734d60f797a0b924b47aa7497bc5faf2888570a64c09e2e2017829b18cd6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9a:4e:01:bc:d7:a0:e2:e6:24:6c:0b:50:e5: 53:cd:f1:d2:35:56:26:db:5a:7e:05:cb:9a:02:47: 56:46:31:e5:eb:a3:cf:dd:bb:0b:8f:27:3e:e4:4b: 53:a4:37:99:0b:30:31:7a:5e:28:52:bc:07:f4:f4: 5b:87:c6:bf:6c:65:5b:bd:d7:aa:dc:3b:9c:c8:2f: 9e:2a:c5:9b:c5:c1:26:4b:61:7b:d0:a9:6f:ed:f6: e4:12:bd:a0:69:ba:04:20:31:d3:5d:c1:d9:de:db: 25:0e:1f:a5:cc:12:f7:28:d8:e0:51:a0:74:8d:38: 53:0c:b8:67:ad:e2:35:0c:4d:25:84:89:17:c4:03: 0b:b7:da:90:a9:c6:f3:25:dc:11:c5:5b:45:20:e7: 56:75:ba:fe:6f:38:33:3a:78:ed:5c:6f:57:12:8a: dc:17:69:6d:5b:95:7c:94:7f:2c:c6:b4:68:2a:3c: ca:0f:c4:54:99:fb:41:02:02:26:e0:42:5e:a1:48: f3:04:80:e1:a8:1c:1b:83:6e:31:54:55:a8:0f:2b: 7b:f0:bf:f1:30:0b:68:37:9f:b5:d6:b7:ab:32:c6: 06:79:50:8d:11:74:14:42:4e:e3:c0:af:3a:a6:60: 8a:0b:5c:64:31:70:7e:c1:6e:18:cc:00:0b:14:5f: b2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:28:72:8F:54:8C:9D:C4:DF:30:0E:1A:4B:74:5A:58:BB:E4:D2:23 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption 4c:55:91:5d:f0:a1:ab:96:1f:4f:cc:d3:84:b0:48:60:38:27: 8e:d8:50:1c:39:da:3a:6c:c8:7f:62:1a:09:72:b3:d4:64:39: b0:4a:9b:b3:09:91:9b:12:ff:62:90:54:ad:2d:d2:a6:89:13: ca:4b:81:ea:ea:54:9e:53:34:b7:cc:d8:c6:95:fa:ba:5e:0c: 5d:7a:bf:0d:dc:42:ee:f0:da:89:44:14:40:ae:3a:61:c4:b3: 8c:d4:67:88:f0:67:03:c9:16:00:a6:81:26:d2:4e:21:c2:19: 3d:e7:77:11:66:9e:06:85:43:19:3e:f5:88:e0:36:c7:40:37: 7d:7b:82:54:c1:80:42:e3:8e:9e:cd:ea:ec:29:3f:33:3f:e8: 2a:13:e8:b9:d6:a3:3d:81:c2:60:d7:7f:49:a8:6d:65:0e:c5: c6:21:67:8f:d8:1f:51:14:57:d0:5e:6c:bf:94:2b:60:4e:b7: e2:a6:1a:e2:ff:c2:c0:06:6a:84:d3:b0:12:e2:11:f5:54:23: 95:94:5f:e5:0a:e6:5e:c9:76:bd:e5:83:78:b7:13:c5:f3:18: 67:63:f3:4f:2b:fa:b5:89:60:16:36:03:6e:11:e0:78:dc:c4: f2:d9:08:89:bf:39:8e:d0:e1:6a:74:31:d7:6c:c0:22:2a:a1: 78:3d:81:98 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWDJEr6iHhvQQI1MzMrSCbR/GB+owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUwMDQ1WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDFjNzM0ZDYwZjc5N2EwYjkyNGI0N2FhNzQ5N2JjNWZh ZjI4ODg1NzBhNjRjMDllMmUyMDE3ODI5YjE4Y2Q2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMmk4BvNeg4uYkbAtQ5VPN8dI1VibbWn4Fy5oCR1ZGMeXr o8/duwuPJz7kS1OkN5kLMDF6XihSvAf09FuHxr9sZVu916rcO5zIL54qxZvFwSZL YXvQqW/t9uQSvaBpugQgMdNdwdne2yUOH6XMEvco2OBRoHSNOFMMuGet4jUMTSWE iRfEAwu32pCpxvMl3BHFW0Ug51Z1uv5vODM6eO1cb1cSitwXaW1blXyUfyzGtGgq PMoPxFSZ+0ECAibgQl6hSPMEgOGoHBuDbjFUVagPK3vwv/EwC2g3n7XWt6syxgZ5 UI0RdBRCTuPArzqmYIoLXGQxcH7BbhjMAAsUX7IjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6Shyj1SMncTfMA4aS3RaWLvk0iMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VmMjk1ODA0LTg5YTctNGVjMy04MjZlLTczZTMyNzMzZGMwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAExVkV3woauWH0/M04SwSGA4 J47YUBw52jpsyH9iGglys9RkObBKm7MJkZsS/2KQVK0t0qaJE8pLgerqVJ5TNLfM 2MaV+rpeDF16vw3cQu7w2olEFECuOmHEs4zUZ4jwZwPJFgCmgSbSTiHCGT3ndxFm ngaFQxk+9YjgNsdAN317glTBgELjjp7N6uwpPzM/6CoT6LnWoz2BwmDXf0mobWUO xcYhZ4/YH1EUV9BebL+UK2BOt+KmGuL/wsAGaoTTsBLiEfVUI5WUX+UK5l7Jdr3l g3i3E8XzGGdj808r+rWJYBY2A24R4HjcxPLZCIm/OY7Q4Wp0MddswCIqoXg9gZg= -----END CERTIFICATE-----Generated at Sun Mar 1 23:50:11 2026 by rpki-client