$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71fca8fd-ce7b-4b7e-8be0-55ea446e724c.roa File: 71fca8fd-ce7b-4b7e-8be0-55ea446e724c.roa (raw, json) Hash identifier: R3DsTtF4C/AjnblYTK8UyyOMxuOdpkuhARtGFU67fmA= Subject key identifier: 49:2A:75:26:DD:B9:36:CB:59:5C:83:B2:B4:F6:77:D9:05:56:15:CD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4601CAF41634ABEE5D5F72AB44D5AFC49D2D21FC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71fca8fd-ce7b-4b7e-8be0-55ea446e724c.roa Signing time: Fri 13 Mar 2026 17:36:35 +0000 ROA not before: Fri 13 Mar 2026 17:36:35 +0000 ROA not after: Thu 11 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:cfd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:01:ca:f4:16:34:ab:ee:5d:5f:72:ab:44:d5:af:c4:9d:2d:21:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 13 17:36:35 2026 GMT Not After : Jun 11 23:59:59 2026 GMT Subject: serialNumber=eb306fd6bfc2ca077bfe00bb278fc14b9d0094fb2b92295279c203b2a578834b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c2:79:25:a5:45:d5:5f:53:52:76:9e:5a:46: 2b:c4:a9:34:6c:05:be:ee:5a:01:ac:4e:4c:cc:63: 9c:8b:26:5f:58:d3:bb:5f:2d:0b:06:0c:21:96:28: 23:73:ec:6d:1f:a0:fa:0f:c8:aa:3a:3c:62:4f:bf: cf:fd:9d:12:51:48:b9:c1:1b:81:84:89:97:f5:16: 9a:17:28:c7:bc:1f:99:7e:66:96:d4:c6:43:0b:a1: 09:ad:29:37:3a:0e:aa:84:42:8c:ed:53:68:86:ef: b9:44:e3:00:79:28:10:3c:f3:69:65:1b:8d:5a:15: 00:6b:1a:71:a9:46:99:25:cd:b5:b4:3e:fb:48:c5: 89:cd:ce:64:37:ca:91:b1:f3:b8:f1:fc:c3:97:82: ff:d1:a6:0f:23:60:b2:f1:cd:2c:8a:6d:05:60:f9: bc:f9:35:5b:6f:1e:39:b8:65:43:b7:4b:20:54:c0: 53:56:a9:b4:2a:98:13:2f:da:f5:f5:02:ff:96:27: ac:33:d1:1c:b0:af:21:c3:25:be:4f:f9:bb:3b:6e: 41:ef:cd:02:91:ee:f7:2c:ef:23:fe:0e:fa:85:8f: 15:cc:12:38:0a:7e:d2:8a:ff:97:e7:9c:aa:b4:14: ca:51:e9:fd:a7:91:8c:e7:9e:4e:25:86:f6:76:df: 3e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:2A:75:26:DD:B9:36:CB:59:5C:83:B2:B4:F6:77:D9:05:56:15:CD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71fca8fd-ce7b-4b7e-8be0-55ea446e724c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:cfd::/48 Signature Algorithm: sha256WithRSAEncryption 41:6a:e5:fc:ee:84:f6:16:b9:af:44:8c:6c:f8:64:9f:42:4e: c2:6c:90:75:14:86:c3:39:ce:c6:dc:ce:4a:da:8e:fe:ee:68: f0:f6:a2:25:22:07:52:51:bf:6f:22:76:f6:72:db:58:58:e5: f1:ed:4a:3f:d6:33:1c:de:c6:ce:52:6c:39:98:b1:e0:8c:f5: 44:19:c0:38:26:41:7c:36:8e:05:ac:d2:e5:2c:b0:04:a2:ff: 41:58:bd:5c:26:11:56:63:aa:48:49:28:4e:a3:1c:65:d4:d9: 3f:00:dd:0b:69:d7:d2:38:f2:75:bf:e3:d1:ee:c2:6f:60:b3: d2:92:15:d6:18:87:0e:d5:2c:5f:f8:ff:6c:57:3d:8f:24:56: 6b:f9:e0:ea:7f:8c:e4:08:2c:a4:5a:47:a6:20:14:c5:54:5e: 69:83:36:14:77:e9:fd:31:3f:45:3e:2f:35:22:72:ad:39:6d: 66:94:fe:bd:e6:99:c5:bd:30:21:23:6a:f2:e8:1d:6f:f3:71: b1:55:f2:c7:20:4c:c4:fb:4e:a4:ab:8a:9d:ff:7b:0b:68:ff: 19:20:ca:51:2f:0f:40:fc:52:e5:4e:63:cd:cb:4c:13:49:45: 7d:43:59:85:9f:49:7e:e1:e1:11:be:7c:1b:79:0f:f4:73:c2: 71:a1:43:b6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURgHK9BY0q+5dX3KrRNWvxJ0tIfwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzEzMTczNjM1WhcNMjYwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjMwNmZkNmJmYzJjYTA3N2JmZTAwYmIyNzhmYzE0Yjlk MDA5NGZiMmI5MjI5NTI3OWMyMDNiMmE1Nzg4MzRiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdwnklpUXVX1NSdp5aRivEqTRsBb7uWgGsTkzMY5yLJl9Y 07tfLQsGDCGWKCNz7G0foPoPyKo6PGJPv8/9nRJRSLnBG4GEiZf1FpoXKMe8H5l+ ZpbUxkMLoQmtKTc6DqqEQoztU2iG77lE4wB5KBA882llG41aFQBrGnGpRpklzbW0 PvtIxYnNzmQ3ypGx87jx/MOXgv/Rpg8jYLLxzSyKbQVg+bz5NVtvHjm4ZUO3SyBU wFNWqbQqmBMv2vX1Av+WJ6wz0RywryHDJb5P+bs7bkHvzQKR7vcs7yP+DvqFjxXM EjgKftKK/5fnnKq0FMpR6f2nkYznnk4lhvZ23z41AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSSp1Jt25NstZXIOytPZ32QVWFc0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcxZmNhOGZkLWNlN2ItNGI3ZS04YmUwLTU1ZWE0NDZlNzI0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwDP0wDQYJKoZIhvcNAQELBQADggEBAEFq5fzuhPYWua9EjGz4ZJ9C TsJskHUUhsM5zsbczkrajv7uaPD2oiUiB1JRv28idvZy21hY5fHtSj/WMxzexs5S bDmYseCM9UQZwDgmQXw2jgWs0uUssASi/0FYvVwmEVZjqkhJKE6jHGXU2T8A3Qtp 19I48nW/49Huwm9gs9KSFdYYhw7VLF/4/2xXPY8kVmv54Op/jOQILKRaR6YgFMVU XmmDNhR36f0xP0U+LzUicq05bWaU/r3mmcW9MCEjavLoHW/zcbFV8scgTMT7TqSr ip3/ewto/xkgylEvD0D8UuVOY83LTBNJRX1DWYWfSX7h4RG+fBt5D/RzwnGhQ7Y= -----END CERTIFICATE-----Generated at Mon Mar 16 05:47:44 2026 by rpki-client