$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ac6d2fe6-3840-4fd5-929f-c69e135ed01e.roa File: ac6d2fe6-3840-4fd5-929f-c69e135ed01e.roa (raw, json) Hash identifier: xKamUgVtiVUf9fAO0n1GmXwhY4jTqXhS4HAPGTOLssc= Subject key identifier: CD:08:82:76:1E:CE:88:B2:C6:54:0D:DC:F1:9B:E3:3C:C9:1F:99:65 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 07047A02EE568E909BBD5D10D8000DB88BDE7315 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ac6d2fe6-3840-4fd5-929f-c69e135ed01e.roa Signing time: Fri 13 Mar 2026 17:36:36 +0000 ROA not before: Fri 13 Mar 2026 17:36:36 +0000 ROA not after: Thu 11 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:c00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:04:7a:02:ee:56:8e:90:9b:bd:5d:10:d8:00:0d:b8:8b:de:73:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 13 17:36:36 2026 GMT Not After : Jun 11 23:59:59 2026 GMT Subject: serialNumber=89abaaae9090fe934e164a90f7683e0d67aed97bf6f043c4d32cbc16005a9fac, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6c:72:e9:70:2b:da:3b:06:a1:cc:c8:2b:ef: 1b:08:2c:48:03:1a:85:31:1d:54:f5:2e:45:0b:9c: de:83:25:8d:9c:9a:ee:64:0a:63:df:02:8f:6b:3e: 9d:74:0f:99:8f:95:ab:3a:6a:92:a6:86:12:c2:f5: a3:41:6b:04:73:ba:59:a2:00:e7:dd:9f:3c:e2:41: 92:29:5e:73:95:ca:de:8c:1b:96:2e:ef:9f:3e:9d: 65:06:dd:75:f6:2f:e8:e1:75:a8:c0:61:d9:22:23: 54:32:dd:3b:16:41:90:ce:81:c9:5a:8f:06:c8:f7: 14:54:6b:af:1a:d9:4c:d2:12:54:c8:3d:34:27:a3: 51:15:f2:d6:af:c2:b1:ca:e3:04:40:1f:92:29:32: c8:0f:68:2c:54:10:a6:f1:6f:61:71:15:ba:74:97: c8:6b:e1:85:8e:55:ca:e4:5e:79:7a:a1:c1:c8:f6: dc:96:c4:ca:47:a4:5b:1e:84:b4:39:51:21:df:bd: 89:39:f9:6f:a1:6f:8c:82:48:ec:b1:23:1d:bf:88: 32:23:45:8f:4f:2d:1d:13:e7:92:f2:67:ae:36:a9: d3:c9:e5:67:64:df:f0:6b:2f:53:d6:19:49:d7:5d: 2b:7c:74:66:3b:8e:67:98:bf:53:08:41:c2:c5:7b: cd:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:08:82:76:1E:CE:88:B2:C6:54:0D:DC:F1:9B:E3:3C:C9:1F:99:65 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ac6d2fe6-3840-4fd5-929f-c69e135ed01e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:c00::/40 Signature Algorithm: sha256WithRSAEncryption 8e:21:a2:a5:38:19:27:9c:33:24:eb:c3:9c:1d:f1:8e:e0:1c: fb:4e:fa:21:b5:87:87:f8:32:a5:57:bf:fd:a6:96:f2:8d:6b: f9:b0:d6:38:42:a1:cb:ff:ef:53:7c:91:76:d6:69:0f:14:d2: ca:58:44:8e:0a:d2:9d:44:5f:d5:6f:5d:09:a5:11:8d:ca:32: fc:30:5d:9d:4c:db:b5:7a:86:f5:b6:a2:55:d3:bc:ee:ce:5a: fd:6f:67:1b:43:97:ce:6e:f4:e5:72:c8:f4:ef:a6:f2:6e:39: f5:43:d4:44:12:90:b8:da:04:6f:6e:46:0c:aa:90:ac:65:44: 0f:be:1c:90:61:9e:a9:3a:52:90:31:c3:a4:df:55:fe:88:a1: 02:e0:41:e7:7a:ee:9f:24:31:67:b9:6d:f4:c5:e0:dc:f8:6d: bd:73:38:3a:67:a7:4e:16:53:50:34:78:1c:ff:58:e9:bc:4a: 64:ea:e9:55:7f:94:0f:48:7c:7f:77:4a:91:13:67:8e:27:96: e3:0d:1e:6b:6a:fa:61:da:a8:c2:96:a4:c0:61:99:83:08:63: 6d:fe:02:cd:fa:b1:7e:d4:d1:20:2f:ae:be:98:ae:46:91:6c: d9:aa:18:97:e8:7b:f4:1a:ad:8f:cd:0f:ab:31:ca:06:2b:0a: c3:8a:af:95 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBwR6Au5WjpCbvV0Q2AANuIvecxUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzEzMTczNjM2WhcNMjYwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWFiYWFhZTkwOTBmZTkzNGUxNjRhOTBmNzY4M2UwZDY3 YWVkOTdiZjZmMDQzYzRkMzJjYmMxNjAwNWE5ZmFjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+bHLpcCvaOwahzMgr7xsILEgDGoUxHVT1LkULnN6DJY2c mu5kCmPfAo9rPp10D5mPlas6apKmhhLC9aNBawRzulmiAOfdnzziQZIpXnOVyt6M G5Yu758+nWUG3XX2L+jhdajAYdkiI1Qy3TsWQZDOgclajwbI9xRUa68a2UzSElTI PTQno1EV8tavwrHK4wRAH5IpMsgPaCxUEKbxb2FxFbp0l8hr4YWOVcrkXnl6ocHI 9tyWxMpHpFsehLQ5USHfvYk5+W+hb4yCSOyxIx2/iDIjRY9PLR0T55LyZ642qdPJ 5Wdk3/BrL1PWGUnXXSt8dGY7jmeYv1MIQcLFe80xAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUzQiCdh7OiLLGVA3c8ZvjPMkfmWUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FjNmQyZmU2LTM4NDAtNGZkNS05MjlmLWM2OWUxMzVlZDAxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwDDANBgkqhkiG9w0BAQsFAAOCAQEAjiGipTgZJ5wzJOvDnB3xjuAc +076IbWHh/gypVe//aaW8o1r+bDWOEKhy//vU3yRdtZpDxTSylhEjgrSnURf1W9d CaURjcoy/DBdnUzbtXqG9baiVdO87s5a/W9nG0OXzm705XLI9O+m8m459UPURBKQ uNoEb25GDKqQrGVED74ckGGeqTpSkDHDpN9V/oihAuBB53runyQxZ7lt9MXg3Pht vXM4OmenThZTUDR4HP9Y6bxKZOrpVX+UD0h8f3dKkRNnjieW4w0ea2r6Ydqowpak wGGZgwhjbf4CzfqxftTRIC+uvpiuRpFs2aoYl+h79Bqtj80PqzHKBisKw4qvlQ== -----END CERTIFICATE-----Generated at Mon Mar 16 05:47:44 2026 by rpki-client