$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f37e75c0-e669-4410-b627-fae811cab6fc.roa File: f37e75c0-e669-4410-b627-fae811cab6fc.roa (raw, json) Hash identifier: lxUmldrndamAkg2ZUpjlzsOUzfytMhoaj1B0m+pHvvw= Subject key identifier: 54:0A:48:32:98:21:F0:79:35:C4:33:36:C4:AA:4E:99:78:08:D4:EA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 11C0E033975D8760B1E0F80FC5E85342B4C474A1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f37e75c0-e669-4410-b627-fae811cab6fc.roa Signing time: Thu 12 Mar 2026 20:51:37 +0000 ROA not before: Thu 12 Mar 2026 20:51:37 +0000 ROA not after: Wed 10 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8a10::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:c0:e0:33:97:5d:87:60:b1:e0:f8:0f:c5:e8:53:42:b4:c4:74:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 12 20:51:37 2026 GMT Not After : Jun 10 23:59:59 2026 GMT Subject: serialNumber=370ab441410d54272c575945453a330610faac26276072d7ae91907cd4a2fb28, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:da:fe:fe:a2:88:a8:56:7b:40:1d:9e:e8:a7: 75:bb:c5:75:d9:d3:f9:6d:31:96:71:21:54:44:dc: e8:df:b2:47:18:87:a6:6b:e6:e3:28:f4:4d:1a:5c: 63:00:4e:8b:d9:95:d2:ee:21:08:7b:97:0e:24:d8: 3e:da:d9:a5:c8:be:1b:3c:89:da:50:af:54:91:19: 75:6b:85:12:eb:a9:32:95:9a:09:78:a4:bd:8a:57: 66:a0:f1:26:df:a3:9e:b4:49:99:71:a6:a4:9a:40: be:62:68:fd:c9:ee:d6:26:62:3d:c7:ec:25:f8:1f: 48:09:55:8f:e8:2e:21:3e:f9:94:ba:e0:72:e1:0d: 5c:c0:6d:15:9d:2b:6f:16:e1:80:37:c7:7c:a8:91: 67:ee:72:e6:00:a7:30:c0:7f:38:b9:c7:5f:6e:fc: f0:52:10:89:60:63:58:d7:6b:5f:d9:2f:73:c0:b5: 0e:74:81:9f:8f:35:37:9d:8b:97:ee:47:39:ee:6d: c9:13:7c:ba:5e:84:31:d9:53:a3:17:9a:c7:90:3f: 05:28:0b:90:98:87:8e:62:04:38:34:5a:62:bc:ae: aa:3c:34:f3:da:31:59:99:9d:44:dd:06:c7:77:dd: e4:71:7a:ab:16:fb:cf:a5:61:6e:70:d1:6e:70:60: 2f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:0A:48:32:98:21:F0:79:35:C4:33:36:C4:AA:4E:99:78:08:D4:EA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f37e75c0-e669-4410-b627-fae811cab6fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8a10::/44 Signature Algorithm: sha256WithRSAEncryption 18:40:08:cc:e6:f0:03:f5:9b:9b:f2:9c:2e:f9:54:8d:58:cd: e0:6d:d5:ae:c8:72:32:3a:9b:a0:4c:50:24:73:42:15:aa:4d: c2:66:ce:1c:a4:0c:dc:c6:07:28:62:2f:9c:b8:5b:87:84:99: 54:f3:20:de:a4:d8:d4:9e:00:46:30:a2:2b:21:9a:2f:cd:3b: de:c9:d0:34:56:6a:d4:30:c6:8e:ae:bf:07:82:6e:2f:1b:ea: 0a:aa:cd:36:0b:16:6e:23:af:8d:03:00:7c:9d:e5:f7:b4:cd: d0:6c:85:24:cc:a3:b2:87:90:7f:0c:6d:69:0e:d7:a9:6c:df: 1c:90:03:3f:56:93:c4:6e:36:10:e0:53:60:ce:ba:7a:d6:5d: d6:da:d2:79:c4:55:a5:4f:1a:48:d6:af:36:69:d0:2c:6c:9e: 85:e9:64:06:d7:35:c8:07:4d:b8:da:50:83:83:59:d9:1f:b0: 8a:bf:8e:18:eb:4e:f1:53:3a:06:43:0e:a3:7e:f5:38:39:2d: d0:12:95:79:1e:db:5b:37:b5:ec:89:39:26:bb:7c:12:f7:c8: f1:5a:d2:cd:f7:75:ea:a3:a0:fa:e4:1d:02:3e:3f:e9:d9:73: ab:6f:fa:57:f6:bf:bd:22:1b:c9:d3:7c:13:c4:c8:a6:58:d4: 8f:81:6d:1b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEcDgM5ddh2Cx4PgPxehTQrTEdKEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzEyMjA1MTM3WhcNMjYwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzBhYjQ0MTQxMGQ1NDI3MmM1NzU5NDU0NTNhMzMwNjEw ZmFhYzI2Mjc2MDcyZDdhZTkxOTA3Y2Q0YTJmYjI4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC22v7+ooioVntAHZ7op3W7xXXZ0/ltMZZxIVRE3OjfskcY h6Zr5uMo9E0aXGMATovZldLuIQh7lw4k2D7a2aXIvhs8idpQr1SRGXVrhRLrqTKV mgl4pL2KV2ag8Sbfo560SZlxpqSaQL5iaP3J7tYmYj3H7CX4H0gJVY/oLiE++ZS6 4HLhDVzAbRWdK28W4YA3x3yokWfucuYApzDAfzi5x19u/PBSEIlgY1jXa1/ZL3PA tQ50gZ+PNTedi5fuRznubckTfLpehDHZU6MXmseQPwUoC5CYh45iBDg0WmK8rqo8 NPPaMVmZnUTdBsd33eRxeqsW+8+lYW5w0W5wYC89AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVApIMpgh8Hk1xDM2xKpOmXgI1OowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YzN2U3NWMwLWU2NjktNDQxMC1iNjI3LWZhZTgxMWNhYjZmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDxihAwDQYJKoZIhvcNAQELBQADggEBABhACMzm8AP1m5vynC75VI1Y zeBt1a7IcjI6m6BMUCRzQhWqTcJmzhykDNzGByhiL5y4W4eEmVTzIN6k2NSeAEYw oishmi/NO97J0DRWatQwxo6uvweCbi8b6gqqzTYLFm4jr40DAHyd5fe0zdBshSTM o7KHkH8MbWkO16ls3xyQAz9Wk8RuNhDgU2DOunrWXdba0nnEVaVPGkjWrzZp0Cxs noXpZAbXNcgHTbjaUIODWdkfsIq/jhjrTvFTOgZDDqN+9Tg5LdASlXke21s3teyJ OSa7fBL3yPFa0s33deqjoPrkHQI+P+nZc6tv+lf2v70iG8nTfBPEyKZY1I+BbRs= -----END CERTIFICATE-----Generated at Mon Mar 16 05:47:44 2026 by rpki-client