$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aa804a0f-35a0-41f6-8200-7bdcce97b7aa.roa File: aa804a0f-35a0-41f6-8200-7bdcce97b7aa.roa (raw, json) Hash identifier: QmNzGg9SXc87Tei90XSsbv+GYqst0XaMN5Ze8Aa8MII= Subject key identifier: FB:A6:67:F6:AA:8A:63:B4:FA:F3:95:86:22:5B:DA:04:E4:BD:59:3F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 209BDD35AAE1C11C18A661598F3E92CA0679A7E9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aa804a0f-35a0-41f6-8200-7bdcce97b7aa.roa Signing time: Thu 19 Feb 2026 19:36:49 +0000 ROA not before: Thu 19 Feb 2026 19:36:49 +0000 ROA not after: Wed 20 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:602::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 24 Feb 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:9b:dd:35:aa:e1:c1:1c:18:a6:61:59:8f:3e:92:ca:06:79:a7:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Feb 19 19:36:49 2026 GMT Not After : May 20 23:59:59 2026 GMT Subject: serialNumber=b798577849fcc2abdca2d0d0895b3c0ccb789a6fc74912e03003b1619662347c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:10:67:00:86:7f:d3:23:60:6a:93:72:aa:93: c4:4c:90:7e:a5:2c:71:c6:7e:1f:04:03:e6:0f:15: 31:5a:9d:e2:05:8e:43:bf:5e:98:72:f9:46:12:da: 81:a5:54:9a:9a:54:ac:67:46:77:7c:7d:71:ab:4f: f9:fc:98:5d:98:d3:7a:ec:65:d7:64:76:86:9d:f6: ce:1f:9b:b7:1d:4b:b6:91:43:2d:62:49:dd:a6:01: 4f:49:05:9c:25:b9:e6:7c:89:35:6b:66:55:86:6d: ee:52:ff:4b:53:bf:bb:1c:b4:8b:87:28:6c:a1:a3: 9f:6e:f5:6a:a7:4a:69:e4:59:36:e7:7a:95:53:23: 11:04:77:38:b0:39:94:8f:56:0c:ec:25:ba:74:7b: 9e:64:17:58:67:2c:f5:0f:1f:1d:f2:5e:b9:0e:6c: 00:ae:38:0d:b0:e1:59:3e:6c:37:ed:50:5c:fa:c5: eb:71:1d:dd:80:3b:47:1a:f1:1e:d8:c7:20:4c:f4: 8e:3f:e0:cb:11:61:13:c4:47:6a:11:6f:6c:f4:9b: d8:51:9e:e6:76:67:4d:14:f9:43:85:cb:85:29:16: af:19:fc:c9:ff:a7:18:bc:f1:23:34:d1:d8:5d:18: a9:45:41:4d:20:84:90:ca:a9:e2:66:a5:bf:52:2b: aa:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A6:67:F6:AA:8A:63:B4:FA:F3:95:86:22:5B:DA:04:E4:BD:59:3F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aa804a0f-35a0-41f6-8200-7bdcce97b7aa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:602::/47 Signature Algorithm: sha256WithRSAEncryption 24:90:2a:b7:9f:78:68:dc:c7:55:c6:59:f2:03:6f:7e:2f:45: 1e:bd:02:3d:1a:1b:6e:8a:8d:95:47:5c:7c:69:d8:9c:59:49: f3:28:61:16:33:3d:46:df:24:48:79:17:37:59:3c:ef:14:d3: 4f:09:f4:58:24:b7:02:4e:b3:a0:aa:34:93:ea:0a:8f:32:d2: 05:aa:8c:12:41:97:bd:7f:f4:47:08:1d:49:23:d6:4e:0d:61: cc:05:92:be:b0:00:40:88:f8:08:0e:31:bf:81:85:e9:e4:66: fd:1b:14:9d:59:ea:1d:de:d1:8d:0b:fa:1d:67:d9:df:39:ce: 51:43:ff:f3:8c:6c:a9:42:16:a9:f3:8b:ef:4f:71:7a:e1:a7: e0:bd:e0:67:b1:42:19:de:b3:ef:fd:82:b6:70:15:5f:ba:89: 7c:75:1e:79:45:ce:30:d9:0c:9a:ee:8b:5b:98:01:e0:1c:49: 13:2c:ed:8d:66:da:0e:78:13:f8:d6:ea:65:a1:7b:a9:c8:e1: 57:6e:fd:81:ec:ae:68:8c:e7:fc:43:ba:4f:97:0d:c4:13:ab: 6e:a2:f2:72:87:81:d6:2c:ed:0f:ca:6b:86:b9:69:ef:c4:fc: c3:d1:67:e8:7a:e1:18:25:a3:d3:65:ad:e6:38:d1:1a:1b:44: df:23:74:77 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIJvdNarhwRwYpmFZjz6SygZ5p+kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMjE5MTkzNjQ5WhcNMjYwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzk4NTc3ODQ5ZmNjMmFiZGNhMmQwZDA4OTViM2MwY2Ni Nzg5YTZmYzc0OTEyZTAzMDAzYjE2MTk2NjIzNDdjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZEGcAhn/TI2Bqk3Kqk8RMkH6lLHHGfh8EA+YPFTFaneIF jkO/Xphy+UYS2oGlVJqaVKxnRnd8fXGrT/n8mF2Y03rsZddkdoad9s4fm7cdS7aR Qy1iSd2mAU9JBZwlueZ8iTVrZlWGbe5S/0tTv7sctIuHKGyho59u9WqnSmnkWTbn epVTIxEEdziwOZSPVgzsJbp0e55kF1hnLPUPHx3yXrkObACuOA2w4Vk+bDftUFz6 xetxHd2AO0ca8R7YxyBM9I4/4MsRYRPER2oRb2z0m9hRnuZ2Z00U+UOFy4UpFq8Z /Mn/pxi88SM00dhdGKlFQU0ghJDKqeJmpb9SK6rNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+6Zn9qqKY7T685WGIlvaBOS9WT8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhODA0YTBmLTM1YTAtNDFmNi04MjAwLTdiZGNjZTk3YjdhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwBgIwDQYJKoZIhvcNAQELBQADggEBACSQKrefeGjcx1XGWfIDb34v RR69Aj0aG26KjZVHXHxp2JxZSfMoYRYzPUbfJEh5FzdZPO8U008J9FgktwJOs6Cq NJPqCo8y0gWqjBJBl71/9EcIHUkj1k4NYcwFkr6wAECI+AgOMb+BhenkZv0bFJ1Z 6h3e0Y0L+h1n2d85zlFD//OMbKlCFqnzi+9PcXrhp+C94GexQhnes+/9grZwFV+6 iXx1HnlFzjDZDJrui1uYAeAcSRMs7Y1m2g54E/jW6mWhe6nI4Vdu/YHsrmiM5/xD uk+XDcQTq26i8nKHgdYs7Q/Ka4a5ae/E/MPRZ+h64Rglo9NlreY40RobRN8jdHc= -----END CERTIFICATE-----Generated at Mon Feb 23 05:36:51 2026 by rpki-client