$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/21691b49-2580-406c-8b6c-f238d38236a9.roa File: 21691b49-2580-406c-8b6c-f238d38236a9.roa (raw, json) Hash identifier: MOlo5iSfJ69K0cKC6g2tZPljGXz+bTK4XOwGFmAYStk= Subject key identifier: 44:7A:13:34:74:96:3D:8B:5B:24:73:50:E4:82:E7:EC:F9:4E:3B:1E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2026FB40334301444E80AA75826BE9D94861C9C0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/21691b49-2580-406c-8b6c-f238d38236a9.roa Signing time: Tue 03 Mar 2026 19:36:52 +0000 ROA not before: Tue 03 Mar 2026 19:36:52 +0000 ROA not after: Mon 01 Jun 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:603::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 12 Mar 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:26:fb:40:33:43:01:44:4e:80:aa:75:82:6b:e9:d9:48:61:c9:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 3 19:36:52 2026 GMT Not After : Jun 1 23:59:59 2026 GMT Subject: serialNumber=2136f08cb957ac5426ee535bf3035fba05b69c98e24dcdac61561c4f4a555ab9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:47:b4:a9:43:b4:81:dc:1d:a0:f6:17:23:7a: b6:fd:30:50:b4:30:27:57:31:4a:53:74:52:a0:27: a6:9a:7e:0f:5f:03:c6:65:f4:7a:ac:98:c1:ee:dc: 60:9a:39:e4:90:7d:0e:8f:e9:1a:6d:ab:5c:15:05: 25:45:0f:fa:f7:71:44:cb:ea:4a:d5:6d:6b:67:ad: cc:63:6e:5a:01:7b:bd:fb:98:c9:33:5b:2f:2f:7b: 4b:de:5d:f0:d8:3f:71:61:f4:9b:35:dc:a7:cc:dd: 4a:58:98:73:17:8c:27:6c:3e:b3:dd:08:cd:8b:fc: f5:f6:81:92:c1:2b:49:c9:4e:74:7b:93:90:47:9f: b8:30:7b:ac:bd:06:f3:11:08:e0:f8:ea:44:e4:9e: dc:48:42:34:70:91:fd:8e:be:6b:c4:29:e9:c8:43: 4b:d4:37:d6:00:3e:b5:af:b0:e6:02:14:c8:ab:7c: dd:01:bf:46:ee:70:97:f0:55:bd:18:cb:bc:60:69: 19:dd:68:dd:0c:10:0a:1c:29:a8:fc:6e:a1:ad:da: 78:f8:16:7a:87:aa:3c:98:65:c0:cc:46:bc:a8:43: 2a:60:0a:ae:62:7c:aa:66:58:0e:a2:2a:72:52:a3: 1a:d5:44:b5:e3:e0:cc:64:2d:2b:e4:10:e8:b4:1c: 74:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:7A:13:34:74:96:3D:8B:5B:24:73:50:E4:82:E7:EC:F9:4E:3B:1E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/21691b49-2580-406c-8b6c-f238d38236a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:603::/48 Signature Algorithm: sha256WithRSAEncryption 73:64:34:dd:58:49:8b:b4:c4:92:44:28:1a:23:fb:e6:b8:1a: ad:e1:0f:0e:6e:48:bf:1e:2a:7d:92:16:13:cf:e8:59:e1:75: 3d:37:0b:20:2d:cf:bb:01:9c:65:b7:1d:0c:aa:b2:9c:0d:2a: a8:6f:f0:06:79:1a:61:a8:8a:5c:3e:ba:a2:4a:29:04:89:fc: bb:d9:df:7e:7a:e1:af:68:a7:b6:28:a7:fb:67:50:83:77:ad: 16:33:97:46:5c:2a:fd:8b:0e:85:b8:47:cc:0b:f3:6a:78:ea: 0b:c2:50:ce:41:f8:fa:32:f2:fb:e7:85:72:bb:c6:de:a0:7b: f3:7d:8f:1d:f3:cd:ec:a7:77:b2:40:e1:f6:39:f0:b3:e2:f5: dd:26:1e:9d:9d:16:38:8f:8d:65:1b:5f:5e:0c:e5:63:f9:cc: 8b:31:90:44:25:8e:e3:d7:75:de:36:a6:7f:b1:0d:ae:fd:66: 03:12:81:6e:d0:b9:62:9b:a4:2a:49:52:38:c0:95:0a:3e:d5: 2e:65:a9:3e:87:76:0b:e4:c4:1f:7c:60:6a:6c:0e:6b:b4:ad: 05:11:70:a7:ea:f6:12:78:1a:19:af:91:2f:5b:5e:d5:b7:83: ac:fc:f3:ea:8e:f7:0a:f0:e6:7c:c4:a5:c8:ea:b1:fc:2e:4f: a3:0e:97:1e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUICb7QDNDAUROgKp1gmvp2UhhycAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzAzMTkzNjUyWhcNMjYwNjAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTM2ZjA4Y2I5NTdhYzU0MjZlZTUzNWJmMzAzNWZiYTA1 YjY5Yzk4ZTI0ZGNkYWM2MTU2MWM0ZjRhNTU1YWI5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4R7SpQ7SB3B2g9hcjerb9MFC0MCdXMUpTdFKgJ6aafg9f A8Zl9HqsmMHu3GCaOeSQfQ6P6Rptq1wVBSVFD/r3cUTL6krVbWtnrcxjbloBe737 mMkzWy8ve0veXfDYP3Fh9Js13KfM3UpYmHMXjCdsPrPdCM2L/PX2gZLBK0nJTnR7 k5BHn7gwe6y9BvMRCOD46kTkntxIQjRwkf2OvmvEKenIQ0vUN9YAPrWvsOYCFMir fN0Bv0bucJfwVb0Yy7xgaRndaN0MEAocKaj8bqGt2nj4FnqHqjyYZcDMRryoQypg Cq5ifKpmWA6iKnJSoxrVRLXj4MxkLSvkEOi0HHQHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURHoTNHSWPYtbJHNQ5ILn7PlOOx4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIxNjkxYjQ5LTI1ODAtNDA2Yy04YjZjLWYyMzhkMzgyMzZhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBgMwDQYJKoZIhvcNAQELBQADggEBAHNkNN1YSYu0xJJEKBoj++a4 Gq3hDw5uSL8eKn2SFhPP6FnhdT03CyAtz7sBnGW3HQyqspwNKqhv8AZ5GmGoilw+ uqJKKQSJ/LvZ33564a9op7Yop/tnUIN3rRYzl0ZcKv2LDoW4R8wL82p46gvCUM5B +Poy8vvnhXK7xt6ge/N9jx3zzeynd7JA4fY58LPi9d0mHp2dFjiPjWUbX14M5WP5 zIsxkEQljuPXdd42pn+xDa79ZgMSgW7QuWKbpCpJUjjAlQo+1S5lqT6HdgvkxB98 YGpsDmu0rQURcKfq9hJ4GhmvkS9bXtW3g6z88+qO9wrw5nzEpcjqsfwuT6MOlx4= -----END CERTIFICATE-----Generated at Wed Mar 11 10:32:47 2026 by rpki-client