$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa File: f6cf58cb-08de-4e22-be98-43e3537a793b.roa (raw, json) Hash identifier: DlC+VMgdFjPgQL/vSe0VzGYa/lITN/iQvE/lEpyECD0= Subject key identifier: 3A:2B:69:73:07:44:7C:AA:65:B5:24:82:FF:84:72:74:1F:30:EF:E8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 68D19C3F7EAEACCBADBAEB3601C64A1ECDB66E37 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa Signing time: Sat 28 Feb 2026 04:50:38 +0000 ROA not before: Sat 28 Feb 2026 04:50:38 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d1:9c:3f:7e:ae:ac:cb:ad:ba:eb:36:01:c6:4a:1e:cd:b6:6e:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 04:50:38 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=dcedd2c82bcfab9cb6a3a8075d00525a3b8dc8bc7703bce449dc5bdc45f196e2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ee:44:fe:2f:13:e4:9c:fc:d1:43:e1:f4:4f: 6e:b2:1b:11:23:47:6d:b3:21:57:a3:ab:65:ff:68: 6b:d5:72:04:30:c6:22:db:0b:d3:43:81:fd:44:d9: 4b:0e:27:10:ab:04:e6:1f:f7:f4:e4:7e:5a:1a:6b: f6:39:ac:8a:b5:08:2e:06:0a:d4:a5:45:8f:9e:ec: 1c:3e:d8:92:dc:ef:70:6f:6f:bf:c8:81:e6:94:31: ce:b3:c4:e5:95:d3:fd:67:dc:3e:af:fa:50:78:2a: d7:15:4e:72:99:94:66:c1:5f:6e:01:02:f0:2d:29: 0b:89:e1:ff:7f:94:ae:a5:c9:ca:1b:1d:62:f8:88: 7f:ff:8a:1b:ac:4e:32:06:32:65:d4:12:48:53:86: b8:91:25:5c:ca:42:de:e8:79:9c:9f:a9:f5:bb:e0: 28:dd:ac:af:42:92:2c:94:be:6d:9c:77:89:f5:ae: 21:20:07:1f:4c:c1:6c:96:2c:3b:ad:60:c2:b9:23: 7e:2a:a5:28:85:a8:8a:dd:0e:ed:a0:65:40:0c:a5: cd:83:1b:f8:a2:e3:6f:81:2b:6f:06:0b:a6:22:59: 89:88:55:39:ff:69:4a:f3:2b:61:77:57:2a:aa:7a: 3a:5e:09:06:a1:32:a6:f1:e4:51:7c:1d:f7:34:12: df:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:2B:69:73:07:44:7C:AA:65:B5:24:82:FF:84:72:74:1F:30:EF:E8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/40 Signature Algorithm: sha256WithRSAEncryption a7:5f:89:ed:6c:bf:bd:15:86:a5:63:d5:58:be:91:52:59:7b: c7:ae:f8:3c:13:54:c9:92:ff:cb:28:26:a1:90:8a:da:f3:53: 68:82:7b:5d:63:ec:db:67:16:ad:f5:41:30:e0:1b:d0:7f:7f: ac:a1:fa:3a:8c:c3:0d:9d:07:de:fb:cc:fc:e8:68:06:43:a1: fb:c6:78:68:78:2c:37:c0:d4:b0:e2:da:b8:db:81:c1:7f:0f: 73:48:4e:4f:b5:b7:95:7c:6f:ee:14:c7:72:1d:56:1b:68:9b: b1:b0:71:b8:74:67:fd:6b:35:d4:2d:f6:91:48:32:dc:2c:3a: a6:b2:af:79:ea:4a:ab:96:b4:ba:d9:8f:3e:a9:e3:58:3a:59: b3:cc:41:c2:68:83:3c:63:15:50:e1:1f:8d:ff:9a:e5:6d:36: dd:f8:82:0c:07:b9:fe:28:20:e2:13:b4:4d:ed:fd:21:e9:5c: 54:7f:fd:77:64:f6:b0:11:ad:8b:2e:0e:ee:4c:50:57:2f:f1: 90:e3:2e:96:c3:58:c3:89:f9:a0:8b:f2:9a:aa:a5:31:4f:9b: 54:4a:73:34:a9:e6:13:8c:e7:8d:31:00:bf:c4:24:88:06:21: c9:52:b0:d1:3e:ff:2c:94:ce:e3:07:65:72:85:14:7c:41:da: 19:c3:b5:9f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaNGcP36urMutuus2AcZKHs22bjcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDQ1MDM4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2VkZDJjODJiY2ZhYjljYjZhM2E4MDc1ZDAwNTI1YTNi OGRjOGJjNzcwM2JjZTQ0OWRjNWJkYzQ1ZjE5NmUyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy7kT+LxPknPzRQ+H0T26yGxEjR22zIVejq2X/aGvVcgQw xiLbC9NDgf1E2UsOJxCrBOYf9/Tkfloaa/Y5rIq1CC4GCtSlRY+e7Bw+2JLc73Bv b7/IgeaUMc6zxOWV0/1n3D6v+lB4KtcVTnKZlGbBX24BAvAtKQuJ4f9/lK6lycob HWL4iH//ihusTjIGMmXUEkhThriRJVzKQt7oeZyfqfW74CjdrK9CkiyUvm2cd4n1 riEgBx9MwWyWLDutYMK5I34qpSiFqIrdDu2gZUAMpc2DG/ii42+BK28GC6YiWYmI VTn/aUrzK2F3VyqqejpeCQahMqbx5FF8Hfc0Et8dAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUOitpcwdEfKpltSSC/4RydB8w7+gwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y2Y2Y1OGNiLTA4ZGUtNGUyMi1iZTk4LTQzZTM1MzdhNzkzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74TANBgkqhkiG9w0BAQsFAAOCAQEAp1+J7Wy/vRWGpWPVWL6RUll7 x674PBNUyZL/yygmoZCK2vNTaIJ7XWPs22cWrfVBMOAb0H9/rKH6OozDDZ0H3vvM /OhoBkOh+8Z4aHgsN8DUsOLauNuBwX8Pc0hOT7W3lXxv7hTHch1WG2ibsbBxuHRn /Ws11C32kUgy3Cw6prKveepKq5a0utmPPqnjWDpZs8xBwmiDPGMVUOEfjf+a5W02 3fiCDAe5/igg4hO0Te39IelcVH/9d2T2sBGtiy4O7kxQVy/xkOMulsNYw4n5oIvy mqqlMU+bVEpzNKnmE4znjTEAv8QkiAYhyVKw0T7/LJTO4wdlcoUUfEHaGcO1nw== -----END CERTIFICATE-----Generated at Sun Mar 1 23:40:51 2026 by rpki-client