$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f504ccce-2eee-4202-842d-dad59cabe141.roa File: f504ccce-2eee-4202-842d-dad59cabe141.roa (raw, json) Hash identifier: 37uKoABwzLTgOAz8X7RczRCDBYP3ghc9No9uz+YrAJU= Subject key identifier: BF:32:EB:07:F0:CA:EA:FE:9B:DC:50:DE:BF:27:5E:38:3A:BC:D4:76 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 14C90C75944917407A6D2B1FC2A4BF5DC522A345 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f504ccce-2eee-4202-842d-dad59cabe141.roa Signing time: Sat 28 Feb 2026 05:10:09 +0000 ROA not before: Sat 28 Feb 2026 05:10:09 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c9:0c:75:94:49:17:40:7a:6d:2b:1f:c2:a4:bf:5d:c5:22:a3:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 05:10:09 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=5ecac36ce7fed9e90bb8effe7826b012a8e1b7f95c5a087284348094a6a74147, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c9:26:43:8a:3b:00:c9:7a:e2:80:6e:ef:ce: e8:4f:b5:3b:a0:7a:b6:c8:5f:4a:a1:88:d8:91:e4: 72:1d:7d:a2:4c:97:4f:bc:b2:b5:4e:c6:c8:a1:ad: 63:30:09:6b:d1:db:1f:fc:37:90:e1:2f:0b:33:ab: 54:b2:08:91:95:35:fd:10:d4:04:8b:c2:d0:54:1e: 03:87:ab:52:59:96:6e:34:9e:3a:de:ed:6e:fd:bf: a9:09:2a:e1:fa:18:05:b8:fd:ec:02:fb:a5:b7:7a: 34:17:d6:54:81:89:06:52:6c:36:b0:4c:b1:13:a9: 52:64:16:53:47:87:81:e4:18:cd:20:b0:83:d8:cb: fb:fe:07:e0:c5:2c:f6:9d:ca:68:06:97:31:6f:da: f9:c3:dd:ac:c4:27:e5:3a:79:22:b8:dd:e7:55:75: 9c:65:3f:30:80:aa:8a:7f:b4:c1:c7:c3:f5:5a:7a: 17:73:06:d3:cf:00:b7:be:81:dd:75:f8:06:39:45: 31:ff:59:36:e3:d3:7d:64:31:bc:11:28:8b:8d:35: 72:d5:66:ef:f4:37:bd:f8:4f:22:65:6e:d4:d8:2c: 15:af:be:16:b5:a2:a7:1b:8c:e3:da:f1:d5:29:62: f7:c8:f0:78:7a:59:14:52:d8:f2:88:11:15:13:e5: 75:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:32:EB:07:F0:CA:EA:FE:9B:DC:50:DE:BF:27:5E:38:3A:BC:D4:76 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f504ccce-2eee-4202-842d-dad59cabe141.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:8000::/40 Signature Algorithm: sha256WithRSAEncryption 68:f2:86:7d:ec:3b:d1:d4:50:83:c4:80:b1:6a:99:82:e4:d9: 7e:3c:c8:31:19:3f:5b:ba:4b:dd:d9:79:80:d7:41:50:fc:7f: f1:d9:d7:4a:df:7e:34:20:7b:f3:c9:e4:b0:d6:4d:43:b6:fe: 89:25:be:18:a5:78:92:47:79:dc:e4:34:11:9d:e2:cc:77:9e: 20:5a:e0:b1:17:54:40:a2:64:db:2f:fc:99:5f:86:c2:85:ac: e3:60:7e:d2:06:85:33:67:b2:9b:03:26:d5:02:ef:70:31:26: b4:9a:f8:ef:de:69:d5:ef:92:b6:7f:4b:cc:ad:38:15:80:c5: 15:83:a8:52:00:2f:f7:64:35:79:4d:03:32:9c:38:13:e8:a1: d0:99:5f:0d:0b:f7:db:f0:9e:60:2d:1d:87:0e:d9:07:41:84: 06:42:a8:8b:b9:ab:81:f7:17:00:f8:6c:09:95:a4:25:24:18: a8:57:cc:29:0e:5a:bc:8e:0e:76:06:5a:11:af:97:fd:c3:d0: b7:7f:d7:55:78:b2:53:f0:0d:e3:29:47:e0:dc:c5:b5:13:df: 36:7f:4e:8f:8b:fe:b8:ff:e9:3c:1a:8a:32:c8:cf:d9:d9:76: f8:96:89:c2:56:7b:ed:35:36:e7:61:99:5e:da:3a:0d:99:d1: a2:0e:04:07 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFMkMdZRJF0B6bSsfwqS/XcUio0UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDUxMDA5WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZWNhYzM2Y2U3ZmVkOWU5MGJiOGVmZmU3ODI2YjAxMmE4 ZTFiN2Y5NWM1YTA4NzI4NDM0ODA5NGE2YTc0MTQ3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZySZDijsAyXrigG7vzuhPtTugerbIX0qhiNiR5HIdfaJM l0+8srVOxsihrWMwCWvR2x/8N5DhLwszq1SyCJGVNf0Q1ASLwtBUHgOHq1JZlm40 njre7W79v6kJKuH6GAW4/ewC+6W3ejQX1lSBiQZSbDawTLETqVJkFlNHh4HkGM0g sIPYy/v+B+DFLPadymgGlzFv2vnD3azEJ+U6eSK43edVdZxlPzCAqop/tMHHw/Va ehdzBtPPALe+gd11+AY5RTH/WTbj031kMbwRKIuNNXLVZu/0N734TyJlbtTYLBWv vha1oqcbjOPa8dUpYvfI8Hh6WRRS2PKIERUT5XWXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvzLrB/DK6v6b3FDevydeODq81HYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y1MDRjY2NlLTJlZWUtNDIwMi04NDJkLWRhZDU5Y2FiZTE0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD7gDANBgkqhkiG9w0BAQsFAAOCAQEAaPKGfew70dRQg8SAsWqZguTZ fjzIMRk/W7pL3dl5gNdBUPx/8dnXSt9+NCB788nksNZNQ7b+iSW+GKV4kkd53OQ0 EZ3izHeeIFrgsRdUQKJk2y/8mV+GwoWs42B+0gaFM2eymwMm1QLvcDEmtJr4795p 1e+Stn9LzK04FYDFFYOoUgAv92Q1eU0DMpw4E+ih0JlfDQv32/CeYC0dhw7ZB0GE BkKoi7mrgfcXAPhsCZWkJSQYqFfMKQ5avI4OdgZaEa+X/cPQt3/XVXiyU/AN4ylH 4NzFtRPfNn9Oj4v+uP/pPBqKMsjP2dl2+JaJwlZ77TU252GZXto6DZnRog4EBw== -----END CERTIFICATE-----Generated at Mon Mar 2 09:40:18 2026 by rpki-client