$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa File: ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa (raw, json) Hash identifier: CF46DXMp3NC6UJLYdITF6fZ//NdcwaO1PXTAYPXbk4w= Subject key identifier: 00:63:EB:F3:3A:20:1E:07:57:E9:36:0E:9B:F7:AD:CA:03:E5:20:CB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5CE804BF156300C5B49EDA339029A1E46168BF9D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa Signing time: Sat 28 Feb 2026 04:50:05 +0000 ROA not before: Sat 28 Feb 2026 04:50:05 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e8:04:bf:15:63:00:c5:b4:9e:da:33:90:29:a1:e4:61:68:bf:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 28 04:50:05 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=dd4389d3c43ec194bd334095aa99ecec9e110ae90c0e2c6b0920b9ed04082450, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:14:da:28:a4:19:ae:fd:d0:be:f6:6b:da:f0: 78:02:18:a1:3e:19:59:be:62:3a:09:5c:cb:de:48: f3:81:18:33:0f:26:6b:d8:40:20:5d:b3:3d:da:b9: bb:ca:00:46:98:da:a7:56:ad:03:80:b9:4c:dc:54: f0:2d:27:ad:41:95:d1:d9:f7:7a:ee:e4:03:d8:3b: 9a:ce:60:04:c0:16:c0:37:de:53:e1:54:6a:4a:9b: 72:dd:c1:d9:24:5f:db:d0:b2:95:ab:86:02:39:3c: e7:fe:e7:36:3b:80:68:9e:59:e5:51:ac:32:91:60: 50:1c:80:5f:1b:01:4c:46:98:c7:5c:19:3f:c6:f9: 89:cc:5b:4f:ac:83:fc:ec:54:e7:89:8c:28:59:17: b5:66:cc:33:67:51:ee:71:d0:87:40:48:a9:d7:0d: 4e:d4:82:5c:da:e6:87:1a:82:e7:82:b1:3c:36:47: ba:10:40:d2:1f:ed:e1:dd:89:a7:cc:fb:ab:fe:7e: 03:07:63:a7:dc:a6:61:90:62:16:de:44:0a:14:a7: f2:d9:83:88:7b:b6:2d:0d:66:4d:19:d3:6b:b2:d8: 4d:6f:cf:98:92:c1:aa:8d:86:ef:e9:5c:10:f2:64: 3e:66:15:16:b8:91:65:60:85:cc:11:23:02:32:b4: bb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:63:EB:F3:3A:20:1E:07:57:E9:36:0E:9B:F7:AD:CA:03:E5:20:CB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e200::/40 Signature Algorithm: sha256WithRSAEncryption 1f:b8:39:ba:2f:aa:45:f8:09:c9:27:f0:3f:4c:65:d6:bc:67: c2:44:9d:fc:f1:95:3e:7e:5a:67:23:48:f4:f1:08:0b:cd:6d: 56:6f:83:01:19:dd:45:e5:72:f8:a8:e1:51:6f:dc:07:06:0e: 31:da:94:45:6f:b3:d0:48:67:f3:cd:20:2d:5a:9c:a1:61:4d: 5d:2b:6d:9b:9d:ff:ef:d1:90:fe:e9:8b:ab:9a:e2:61:f6:9d: 41:5d:47:0b:8d:52:46:66:5f:2e:27:d2:50:eb:c7:b1:07:b6: 98:6a:e9:e5:8f:c2:27:cd:58:c3:1b:bd:00:5c:70:2d:cf:1a: ed:fd:4e:18:1a:c3:96:00:ea:3e:33:05:82:11:9c:19:cf:da: 34:41:e6:c1:16:dc:04:ff:db:52:08:e6:20:df:ee:56:d4:51: c3:cd:f6:46:08:d7:25:71:86:c0:0b:8a:31:f7:3d:ba:e1:89: 32:9f:5e:db:4d:d6:d5:4b:ec:a5:85:8b:47:e4:74:22:3e:d0: b3:c6:75:6d:f2:22:6c:f6:fd:df:cb:8a:e2:d5:17:b5:01:b0: 7c:43:5e:40:f8:7a:96:e2:2e:d9:6c:fc:6f:79:90:2a:7d:d8: b5:67:05:f3:1b:33:5d:6e:db:e8:c5:3a:5a:a1:4a:db:e3:b6: 58:db:a8:13 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXOgEvxVjAMW0ntozkCmh5GFov50wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjI4MDQ1MDA1WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDQzODlkM2M0M2VjMTk0YmQzMzQwOTVhYTk5ZWNlYzll MTEwYWU5MGMwZTJjNmIwOTIwYjllZDA0MDgyNDUwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBFNoopBmu/dC+9mva8HgCGKE+GVm+YjoJXMveSPOBGDMP JmvYQCBdsz3aubvKAEaY2qdWrQOAuUzcVPAtJ61BldHZ93ru5APYO5rOYATAFsA3 3lPhVGpKm3LdwdkkX9vQspWrhgI5POf+5zY7gGieWeVRrDKRYFAcgF8bAUxGmMdc GT/G+YnMW0+sg/zsVOeJjChZF7VmzDNnUe5x0IdASKnXDU7Uglza5ocagueCsTw2 R7oQQNIf7eHdiafM+6v+fgMHY6fcpmGQYhbeRAoUp/LZg4h7ti0NZk0Z02uy2E1v z5iSwaqNhu/pXBDyZD5mFRa4kWVghcwRIwIytLsHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUAGPr8zogHgdX6TYOm/etygPlIMswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZmZDJjM2UyLTRkODktNDFhMy1iNDUwLWI1M2Y5NWE5ZGNkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74jANBgkqhkiG9w0BAQsFAAOCAQEAH7g5ui+qRfgJySfwP0xl1rxn wkSd/PGVPn5aZyNI9PEIC81tVm+DARndReVy+KjhUW/cBwYOMdqURW+z0Ehn880g LVqcoWFNXSttm53/79GQ/umLq5riYfadQV1HC41SRmZfLifSUOvHsQe2mGrp5Y/C J81Ywxu9AFxwLc8a7f1OGBrDlgDqPjMFghGcGc/aNEHmwRbcBP/bUgjmIN/uVtRR w832RgjXJXGGwAuKMfc9uuGJMp9e203W1UvspYWLR+R0Ij7Qs8Z1bfIibPb938uK 4tUXtQGwfENeQPh6luIu2Wz8b3mQKn3YtWcF8xszXW7b6MU6WqFK2+O2WNuoEw== -----END CERTIFICATE-----Generated at Mon Mar 2 10:10:45 2026 by rpki-client