$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f933dc9a-6cb0-4836-9711-454fb0e2e364.roa File: f933dc9a-6cb0-4836-9711-454fb0e2e364.roa (raw, json) Hash identifier: GdsSb1YSz+HQv518+l0ZTp5CK7M2p3PE6cmRO4BYEgM= Subject key identifier: 8E:D2:A0:67:DC:38:FE:E8:95:12:51:16:F2:D1:B1:79:7D:4C:16:59 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 89C9A3C64C63906B138FECC5465036021D27E5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f933dc9a-6cb0-4836-9711-454fb0e2e364.roa Signing time: Sun 01 Mar 2026 00:50:18 +0000 ROA not before: Sun 01 Mar 2026 00:50:18 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f104::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89:c9:a3:c6:4c:63:90:6b:13:8f:ec:c5:46:50:36:02:1d:27:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 1 00:50:18 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=d75f51a5c8de0319977cf2d67ae7f6d288913f8f560d647f7ec5842fe3c7b822, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a4:74:bb:a9:92:8f:06:d3:ed:9b:20:1b:5c: 65:0e:0e:4e:41:7c:ab:e3:89:9e:0d:9f:02:d6:ab: 4a:66:55:a5:c2:27:6d:56:71:41:5e:4b:83:72:49: 7e:22:6f:a9:47:1d:bd:1c:cd:f2:73:be:8e:33:69: e2:b0:8c:45:23:c4:57:69:12:04:51:db:3b:4e:95: 03:12:a3:65:f6:a7:51:c9:77:dc:14:4c:a2:e2:4a: ba:ab:7b:10:74:60:1f:a7:33:fa:6d:90:fd:be:16: 51:51:54:8d:20:dc:5f:a2:62:f1:82:ca:3e:ca:2e: 3d:f3:bf:c7:07:ea:ca:99:a5:eb:a2:41:c8:74:a7: 4a:de:50:86:a9:fa:64:8f:d0:15:d7:dc:af:93:a1: b2:68:2c:38:ca:9b:aa:c9:fd:42:af:1a:18:86:77: 09:8b:1c:b4:04:7d:d3:83:6c:fd:b9:31:3d:9e:28: 80:6c:b7:5d:4d:01:f4:cf:88:39:71:35:05:0f:bd: 8b:14:4e:e3:e2:a0:49:1b:f9:b6:12:cb:75:b5:58: 6e:d5:1a:43:85:23:09:52:ac:d0:a1:36:d0:43:dd: 27:39:2a:79:4b:c1:f1:21:89:a1:bd:46:53:b2:24: f1:44:6f:48:4d:1d:48:9f:3b:0c:f6:48:0f:fe:4e: a2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D2:A0:67:DC:38:FE:E8:95:12:51:16:F2:D1:B1:79:7D:4C:16:59 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f933dc9a-6cb0-4836-9711-454fb0e2e364.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f104::/48 Signature Algorithm: sha256WithRSAEncryption a4:8c:b3:9f:25:95:40:74:0a:d3:32:21:6a:88:f0:11:db:af: 4c:a1:0f:44:e7:df:97:1f:6d:f6:7f:88:99:5d:8a:1c:e9:b7: e1:b9:de:7e:15:4a:27:f2:b4:96:5e:ab:6d:9c:82:71:f3:4d: 7d:54:b4:4a:26:35:29:80:81:dd:80:8f:11:47:13:eb:29:70: 82:32:b9:b7:25:b0:3f:e8:f9:f2:23:2b:35:a6:71:e9:a3:19: f7:14:13:ad:fa:31:99:8c:58:7e:56:50:30:b9:76:e3:50:cd: e8:00:57:a5:d8:2a:fb:fe:8d:7b:82:32:bb:9d:72:7c:de:15: 54:73:41:1b:d8:65:d0:7e:b1:e1:dd:d0:56:2b:3c:d0:1a:aa: 8a:a9:a3:a0:b1:70:e8:1d:f8:8d:ee:28:cc:52:ec:1b:77:4f: d9:3c:eb:87:2c:a9:ec:a0:47:fe:c2:97:74:1c:22:26:f8:39: bf:7f:d2:54:1b:42:a1:0d:6c:2f:37:bd:8b:89:92:5e:ea:2e: e6:91:ff:83:41:bb:0a:31:1c:f9:c1:25:26:cb:93:0b:c5:69: 09:cd:08:29:9d:b3:c1:3c:f9:84:cc:56:ea:8a:6f:9c:7e:b0: 49:3f:3d:04:7d:da:30:7c:89:5b:c9:d2:59:fe:6a:cf:c6:6c: 4e:e1:61:07 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAInJo8ZMY5BrE4/sxUZQNgIdJ+UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAxMDA1MDE4WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzVmNTFhNWM4ZGUwMzE5OTc3Y2YyZDY3YWU3ZjZkMjg4 OTEzZjhmNTYwZDY0N2Y3ZWM1ODQyZmUzYzdiODIyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnpHS7qZKPBtPtmyAbXGUODk5BfKvjiZ4NnwLWq0pmVaXC J21WcUFeS4NySX4ib6lHHb0czfJzvo4zaeKwjEUjxFdpEgRR2ztOlQMSo2X2p1HJ d9wUTKLiSrqrexB0YB+nM/ptkP2+FlFRVI0g3F+iYvGCyj7KLj3zv8cH6sqZpeui Qch0p0reUIap+mSP0BXX3K+TobJoLDjKm6rJ/UKvGhiGdwmLHLQEfdODbP25MT2e KIBst11NAfTPiDlxNQUPvYsUTuPioEkb+bYSy3W1WG7VGkOFIwlSrNChNtBD3Sc5 KnlLwfEhiaG9RlOyJPFEb0hNHUifOwz2SA/+TqIXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjtKgZ9w4/uiVElEW8tGxeX1MFlkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y5MzNkYzlhLTZjYjAtNDgzNi05NzExLTQ1NGZiMGUyZTM2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QQwDQYJKoZIhvcNAQELBQADggEBAKSMs58llUB0CtMyIWqI8BHb r0yhD0Tn35cfbfZ/iJldihzpt+G53n4VSifytJZeq22cgnHzTX1UtEomNSmAgd2A jxFHE+spcIIyubclsD/o+fIjKzWmcemjGfcUE636MZmMWH5WUDC5duNQzegAV6XY Kvv+jXuCMrudcnzeFVRzQRvYZdB+seHd0FYrPNAaqoqpo6CxcOgd+I3uKMxS7Bt3 T9k864csqeygR/7Cl3QcIib4Ob9/0lQbQqENbC83vYuJkl7qLuaR/4NBuwoxHPnB JSbLkwvFaQnNCCmds8E8+YTMVuqKb5x+sEk/PQR92jB8iVvJ0ln+as/GbE7hYQc= -----END CERTIFICATE-----Generated at Mon Mar 2 01:02:36 2026 by rpki-client