$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa File: f6334ad8-04a1-4b1e-af68-368584971f2f.roa (raw, json) Hash identifier: r8mZR17ymsBlbHbL8E10rYQKdxtw73hpFrsUz7rbH58= Subject key identifier: 38:97:0D:D1:04:91:EA:73:95:1C:55:D8:95:68:96:1A:B1:C1:3F:BB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 56F15E2D183B9C674BF7A119A8D5C6431DBF8009 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa Signing time: Sat 28 Feb 2026 02:00:07 +0000 ROA not before: Sat 28 Feb 2026 02:00:07 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f1:5e:2d:18:3b:9c:67:4b:f7:a1:19:a8:d5:c6:43:1d:bf:80:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 02:00:07 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=79846d080b7efc200120b2b64c0b30b588ea8d1b4e1b3ddcea73abce64c0fc1e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0f:4f:df:13:09:23:06:83:30:86:2b:44:e4: 77:00:13:18:36:38:72:2b:78:1b:4d:87:f7:c8:82: 58:59:e8:24:a4:66:ff:89:58:11:e6:bd:ea:a3:6f: 5c:04:99:fc:30:20:1e:29:a5:21:ce:b4:0c:88:ff: 1f:10:e0:6c:db:61:c4:31:60:f0:43:c7:12:29:6f: 2d:0f:7c:f4:96:3d:5e:9d:01:bc:56:9a:1c:4b:bf: f3:29:2d:74:77:98:29:97:ab:a2:7c:78:a3:aa:1d: ff:24:84:cf:bf:af:96:58:6e:58:7b:81:b8:e4:fa: 2c:f9:39:bb:1c:e4:75:1b:66:57:2e:81:d3:b5:43: e1:83:80:9d:b1:9a:c1:a1:7e:e1:0f:bc:66:42:39: e6:b4:c2:9f:3b:c4:c7:25:d3:ed:fb:06:3f:a6:d0: cf:61:64:de:11:da:f4:f4:03:6f:c4:a8:08:52:03: 24:16:87:41:84:e4:c8:7e:76:69:53:60:4e:3e:a7: 74:1d:fb:48:65:e2:ac:1b:ed:27:51:53:10:0a:54: d4:7a:a3:6e:a6:4a:b5:6c:dc:50:9e:de:9e:23:fc: 46:91:b5:68:b2:04:a1:ba:e3:a8:1b:08:47:7f:b6: b9:ab:35:de:40:4d:6a:96:0c:8c:94:6f:97:7b:73: e5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:97:0D:D1:04:91:EA:73:95:1C:55:D8:95:68:96:1A:B1:C1:3F:BB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/40 Signature Algorithm: sha256WithRSAEncryption 94:ff:5f:48:6c:fd:1c:99:42:cb:7d:89:f4:1f:1c:3f:dc:c2: 72:9c:3e:6c:cb:2a:a0:16:40:73:5d:55:4e:cd:16:a4:7d:dd: 5a:ae:ad:b4:b7:f5:49:60:79:59:3b:b0:3c:a8:71:de:b7:56: a2:40:b0:78:76:63:ac:e0:93:5c:44:d5:69:0e:00:fe:ec:e1: 71:be:21:19:68:7a:9c:fc:fa:95:9c:08:b9:31:3f:2a:a3:2a: bd:41:8d:ca:31:21:70:d1:a6:d4:c2:39:e9:7f:b9:b4:24:ce: 1a:fd:27:65:7f:76:d8:0b:5a:84:c0:09:02:c1:61:72:b3:3d: d0:bc:06:52:25:4e:d7:2b:4e:4e:e6:ae:f2:8e:1b:e3:b9:0b: f9:73:90:ea:8c:08:3b:4d:8a:6c:1e:8a:e1:a6:39:3b:4a:1e: 21:8f:dd:3b:ad:e8:3c:b5:3b:5d:a9:13:7a:2b:1b:24:f3:01: 1b:66:50:39:f7:55:ff:ad:1f:91:86:13:eb:ee:26:65:cb:26: b9:22:5a:fe:1f:ce:b1:41:5f:26:23:c2:c3:ed:c2:c8:dd:c5: fb:c7:27:b0:a8:27:90:b5:b3:af:a9:3e:5e:d1:71:90:56:01: 77:a2:aa:46:4c:f4:5f:cd:3d:4a:28:45:09:c5:66:95:3c:ab: 69:3b:db:05 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUVvFeLRg7nGdL96EZqNXGQx2/gAkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDIwMDA3WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTg0NmQwODBiN2VmYzIwMDEyMGIyYjY0YzBiMzBiNTg4 ZWE4ZDFiNGUxYjNkZGNlYTczYWJjZTY0YzBmYzFlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4D0/fEwkjBoMwhitE5HcAExg2OHIreBtNh/fIglhZ6CSk Zv+JWBHmveqjb1wEmfwwIB4ppSHOtAyI/x8Q4GzbYcQxYPBDxxIpby0PfPSWPV6d AbxWmhxLv/MpLXR3mCmXq6J8eKOqHf8khM+/r5ZYblh7gbjk+iz5Obsc5HUbZlcu gdO1Q+GDgJ2xmsGhfuEPvGZCOea0wp87xMcl0+37Bj+m0M9hZN4R2vT0A2/EqAhS AyQWh0GE5Mh+dmlTYE4+p3Qd+0hl4qwb7SdRUxAKVNR6o26mSrVs3FCe3p4j/EaR tWiyBKG646gbCEd/trmrNd5ATWqWDIyUb5d7c+VtAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUOJcN0QSR6nOVHFXYlWiWGrHBP7swHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y2MzM0YWQ4LTA0YTEtNGIxZS1hZjY4LTM2ODU4NDk3MWYyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74zANBgkqhkiG9w0BAQsFAAOCAQEAlP9fSGz9HJlCy32J9B8cP9zC cpw+bMsqoBZAc11VTs0WpH3dWq6ttLf1SWB5WTuwPKhx3rdWokCweHZjrOCTXETV aQ4A/uzhcb4hGWh6nPz6lZwIuTE/KqMqvUGNyjEhcNGm1MI56X+5tCTOGv0nZX92 2AtahMAJAsFhcrM90LwGUiVO1ytOTuau8o4b47kL+XOQ6owIO02KbB6K4aY5O0oe IY/dO63oPLU7XakTeisbJPMBG2ZQOfdV/60fkYYT6+4mZcsmuSJa/h/OsUFfJiPC w+3CyN3F+8cnsKgnkLWzr6k+XtFxkFYBd6KqRkz0X809SihFCcVmlTyraTvbBQ== -----END CERTIFICATE-----Generated at Mon Mar 2 10:37:23 2026 by rpki-client