$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ce480e25-f1bf-4dbe-9001-c4977aeb303b.roa File: ce480e25-f1bf-4dbe-9001-c4977aeb303b.roa (raw, json) Hash identifier: VcrfYxP4uUq1IxXJwAwH3ehS23qlgNEHvuiNaqX4vWI= Subject key identifier: D6:5C:FE:50:B7:96:A5:60:D2:41:2C:08:40:1B:3B:B7:8B:7C:C2:EB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2D2A6BE560ACA42A02C012CFF18E5A0D5828FD9C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ce480e25-f1bf-4dbe-9001-c4977aeb303b.roa Signing time: Fri 06 Mar 2026 23:36:53 +0000 ROA not before: Fri 06 Mar 2026 23:36:53 +0000 ROA not after: Thu 04 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 12 Mar 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:2a:6b:e5:60:ac:a4:2a:02:c0:12:cf:f1:8e:5a:0d:58:28:fd:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 6 23:36:53 2026 GMT Not After : Jun 4 23:59:59 2026 GMT Subject: serialNumber=9acc4e8d65e24c21a70c3250f63bb4e33492b97ad084b4b04a6f5bbdea6ff444, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d4:7d:61:67:e4:36:88:28:ce:93:9d:05:bd: d6:12:8f:c4:d3:aa:f3:55:be:c2:48:ba:dc:47:99: 6d:6a:ad:28:f6:ae:0a:9a:3a:2c:ef:7c:b7:23:21: 97:ae:74:52:c7:47:c9:bd:eb:4b:a5:7e:f1:f0:ad: b7:01:27:82:ad:89:bc:f7:57:e4:08:94:37:df:11: 82:1e:bc:a5:8a:8a:d9:05:5e:2c:e0:ea:0a:b4:20: ec:d9:a1:45:bc:a2:82:29:77:7f:df:b2:6f:2b:2c: 9a:11:06:3a:d1:54:04:58:f2:ad:af:6c:f3:6f:75: 5f:97:96:c8:7c:df:78:2c:c8:bc:63:a4:60:cf:f5: b0:b3:a4:36:64:59:07:1c:b1:0b:a3:0a:09:84:a5: 8c:b4:5d:ec:63:6c:d9:3d:d0:a3:37:7f:1f:a4:15: ee:b7:8e:aa:fe:ff:4f:03:e0:0c:64:05:c7:56:6e: bf:ec:2e:47:7a:25:bc:29:05:c4:a0:d2:f6:a0:ad: f3:d8:55:ce:45:ce:9f:4d:4f:d5:04:20:42:40:b7: 21:3a:be:fa:7c:6c:ca:4a:da:d7:10:81:e7:af:f5: cf:42:81:59:0b:c4:c5:17:b3:37:92:13:6d:5a:89: c3:11:0e:97:43:4e:eb:2c:6f:ef:7d:99:e3:ac:8d: 51:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:5C:FE:50:B7:96:A5:60:D2:41:2C:08:40:1B:3B:B7:8B:7C:C2:EB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ce480e25-f1bf-4dbe-9001-c4977aeb303b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f010::/44 Signature Algorithm: sha256WithRSAEncryption 9b:9a:39:89:c5:a4:78:31:cf:d1:e0:47:51:04:a9:f3:28:34: 91:4d:78:a8:ee:f4:8d:b7:78:37:2f:02:4a:aa:7c:f5:9b:a1: 74:39:a4:f7:1f:b2:bd:82:84:45:e2:aa:38:41:38:82:a7:14: 68:45:ca:f0:e9:1c:39:9d:a4:fc:5f:93:72:3f:84:ca:72:ce: 6c:f3:94:ab:bb:78:ae:88:87:2c:da:c1:b5:dc:e7:c8:46:6d: 23:a0:d4:35:d1:7e:96:05:1b:b7:dc:f4:cb:f5:64:c7:a2:22: ce:0c:eb:83:a5:78:b7:00:bc:43:de:e4:00:3c:a4:dc:a2:b3: 1f:f7:d3:ea:89:ed:66:f6:0b:17:fc:df:c3:a5:f7:a2:4d:b2: f9:8b:34:ba:3b:f3:3c:93:55:03:7a:21:86:50:f3:8b:0c:08: 4b:c5:13:27:8c:5c:76:68:27:79:fc:52:fc:4d:52:ee:5e:1c: 03:9e:97:b9:da:27:c4:21:b5:28:ed:85:80:fa:87:30:85:1d: 8d:22:16:a0:17:ff:fb:c9:77:e3:3b:22:d0:bd:2b:9c:27:e0: ca:99:c8:b1:b3:4e:c2:ca:01:f5:61:69:7e:6e:ef:e5:44:86: db:5e:a3:51:6b:c5:45:e9:42:52:eb:41:ce:43:2b:fc:97:9c: ad:71:2b:b7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULSpr5WCspCoCwBLP8Y5aDVgo/ZwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzA2MjMzNjUzWhcNMjYwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWNjNGU4ZDY1ZTI0YzIxYTcwYzMyNTBmNjNiYjRlMzM0 OTJiOTdhZDA4NGI0YjA0YTZmNWJiZGVhNmZmNDQ0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDk1H1hZ+Q2iCjOk50FvdYSj8TTqvNVvsJIutxHmW1qrSj2 rgqaOizvfLcjIZeudFLHR8m960ulfvHwrbcBJ4Ktibz3V+QIlDffEYIevKWKitkF Xizg6gq0IOzZoUW8ooIpd3/fsm8rLJoRBjrRVARY8q2vbPNvdV+Xlsh833gsyLxj pGDP9bCzpDZkWQccsQujCgmEpYy0XexjbNk90KM3fx+kFe63jqr+/08D4AxkBcdW br/sLkd6JbwpBcSg0vagrfPYVc5Fzp9NT9UEIEJAtyE6vvp8bMpK2tcQgeev9c9C gVkLxMUXszeSE21aicMRDpdDTussb+99meOsjVFzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1lz+ULeWpWDSQSwIQBs7t4t8wuswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NlNDgwZTI1LWYxYmYtNGRiZS05MDAxLWM0OTc3YWViMzAzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8BAwDQYJKoZIhvcNAQELBQADggEBAJuaOYnFpHgxz9HgR1EEqfMo NJFNeKju9I23eDcvAkqqfPWboXQ5pPcfsr2ChEXiqjhBOIKnFGhFyvDpHDmdpPxf k3I/hMpyzmzzlKu7eK6IhyzawbXc58hGbSOg1DXRfpYFG7fc9Mv1ZMeiIs4M64Ol eLcAvEPe5AA8pNyisx/30+qJ7Wb2Cxf838Ol96JNsvmLNLo78zyTVQN6IYZQ84sM CEvFEyeMXHZoJ3n8UvxNUu5eHAOel7naJ8QhtSjthYD6hzCFHY0iFqAX//vJd+M7 ItC9K5wn4MqZyLGzTsLKAfVhaX5u7+VEhtteo1FrxUXpQlLrQc5DK/yXnK1xK7c= -----END CERTIFICATE-----Generated at Wed Mar 11 10:32:48 2026 by rpki-client