$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa File: fc2b5e45-8344-4038-8f8f-6229cecec136.roa (raw, json) Hash identifier: kn8pDjSSEH/EorxN7Bz22M8ZelANk7pdNimEaZv0/mE= Subject key identifier: CD:66:DC:09:91:E5:2D:31:0F:4C:8E:2C:97:31:31:A3:F4:0C:89:C8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7CE49B2DF00C950F26C789EF88D868E7CBD8C3AD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa Signing time: Fri 06 Feb 2026 00:30:26 +0000 ROA not before: Fri 06 Feb 2026 00:30:26 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:4141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:e4:9b:2d:f0:0c:95:0f:26:c7:89:ef:88:d8:68:e7:cb:d8:c3:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 6 00:30:26 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=4f5d24b897be4956e77b2ad00bb78d2abbf9a721ec24f85de597fe05242f20ac, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fe:9a:9d:ef:1a:01:63:9c:78:1c:e7:de:eb: c4:82:e7:d8:64:90:ca:69:b5:e8:1b:30:6a:ca:7a: 53:11:e5:7f:ee:9b:c5:27:4d:2a:57:39:44:5c:93: b1:b7:a1:26:66:33:2f:4f:b9:11:c3:1b:af:7b:d5: 44:1a:b9:ed:6d:81:30:d9:f5:23:2a:43:44:1e:0b: 95:b3:b7:2a:4f:34:77:f6:b5:35:af:87:5a:a2:64: 4c:09:b4:ef:bf:16:47:9d:9f:28:8b:14:9a:6f:c7: 0a:dc:da:67:12:c1:80:7e:25:2e:20:7e:9e:76:6c: 2c:a4:0b:11:0d:ed:7c:f4:0f:b0:b8:56:28:60:ad: fd:96:58:e5:43:05:86:83:82:5a:74:69:77:75:1d: 44:d8:64:95:b1:60:55:4d:f2:1b:bf:b6:9f:9a:51: d2:27:fd:39:52:00:cf:36:2a:3b:df:5f:a5:8c:fc: 06:98:16:72:56:db:29:fa:3a:d0:36:53:ed:5b:39: 7c:af:3c:be:a4:ef:07:f3:8a:b2:e4:85:7f:9f:74: 89:03:4e:58:0f:73:f6:64:40:1c:43:99:7f:72:3a: 25:8a:b3:5b:bc:fa:a5:e2:c1:31:bd:dc:b8:90:1c: fb:a7:e7:3a:14:d4:49:d5:0e:be:b6:a6:68:f3:e8: 3c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:66:DC:09:91:E5:2D:31:0F:4C:8E:2C:97:31:31:A3:F4:0C:89:C8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4141::/48 Signature Algorithm: sha256WithRSAEncryption 6b:e6:de:eb:43:10:03:a7:f0:e2:94:69:69:82:a4:88:f6:8b: 9e:73:56:73:23:87:8e:ff:bf:92:eb:d3:65:e4:24:bf:42:22: 4e:a4:c2:48:c0:c6:35:7b:90:69:5d:6d:b4:63:39:6d:fb:d3: 93:46:11:be:f7:eb:61:da:81:a6:25:05:99:62:62:54:0a:31: 6d:47:49:cd:8c:e2:e6:bd:81:8e:f0:bb:7d:30:e6:54:20:5c: 67:19:13:e9:6a:c0:42:e5:7c:0f:68:6c:8a:1f:e0:19:33:9a: 09:a4:21:a7:05:17:f8:ae:3a:45:45:39:6b:91:9d:9d:ff:01: 0e:a2:10:32:4a:51:e2:17:ec:fe:be:87:9c:7d:cf:7f:41:10: 27:88:57:28:3f:4b:d6:5d:d1:f1:f0:41:c6:2b:0a:dd:72:5c: 57:4a:ff:61:ce:ec:6a:21:ab:66:88:89:94:42:31:47:8d:7b: 04:fc:5c:a8:ff:b4:e5:e3:b3:b5:88:54:2f:fd:e7:70:8a:99: 8d:85:d9:6e:05:13:25:9c:72:14:ca:03:0a:57:7c:e2:8f:1e: 81:f1:75:db:7b:6c:a5:7d:26:c4:b2:ca:26:7f:83:51:fb:6a: 9f:60:26:b5:bd:75:86:dc:5b:c9:21:9c:91:b6:97:e1:cd:ce: dc:de:94:50 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfOSbLfAMlQ8mx4nviNho58vYw60wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjA2MDAzMDI2WhcNMjYwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjVkMjRiODk3YmU0OTU2ZTc3YjJhZDAwYmI3OGQyYWJi ZjlhNzIxZWMyNGY4NWRlNTk3ZmUwNTI0MmYyMGFjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi/pqd7xoBY5x4HOfe68SC59hkkMpptegbMGrKelMR5X/u m8UnTSpXOURck7G3oSZmMy9PuRHDG6971UQaue1tgTDZ9SMqQ0QeC5WztypPNHf2 tTWvh1qiZEwJtO+/FkednyiLFJpvxwrc2mcSwYB+JS4gfp52bCykCxEN7Xz0D7C4 Vihgrf2WWOVDBYaDglp0aXd1HUTYZJWxYFVN8hu/tp+aUdIn/TlSAM82KjvfX6WM /AaYFnJW2yn6OtA2U+1bOXyvPL6k7wfzirLkhX+fdIkDTlgPc/ZkQBxDmX9yOiWK s1u8+qXiwTG93LiQHPun5zoU1EnVDr62pmjz6DyXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzWbcCZHlLTEPTI4slzExo/QMicgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjMmI1ZTQ1LTgzNDQtNDAzOC04ZjhmLTYyMjljZWNlYzEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUEwDQYJKoZIhvcNAQELBQADggEBAGvm3utDEAOn8OKUaWmCpIj2 i55zVnMjh47/v5Lr02XkJL9CIk6kwkjAxjV7kGldbbRjOW3705NGEb7362HagaYl BZliYlQKMW1HSc2M4ua9gY7wu30w5lQgXGcZE+lqwELlfA9obIof4BkzmgmkIacF F/iuOkVFOWuRnZ3/AQ6iEDJKUeIX7P6+h5x9z39BECeIVyg/S9Zd0fHwQcYrCt1y XFdK/2HO7Gohq2aIiZRCMUeNewT8XKj/tOXjs7WIVC/953CKmY2F2W4FEyWcchTK AwpXfOKPHoHxddt7bKV9JsSyyiZ/g1H7ap9gJrW9dYbcW8khnJG2l+HNztzelFA= -----END CERTIFICATE-----Generated at Sun Mar 1 23:51:02 2026 by rpki-client