$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/24bd33fa-8526-478a-af3a-e24be01b6877.roa File: 24bd33fa-8526-478a-af3a-e24be01b6877.roa (raw, json) Hash identifier: ogF3+kfq7CF9ye+U8uUVWJX+o3jk8yzdYAN1mI6YGCg= Subject key identifier: 5B:3D:4C:F1:BE:49:13:B8:26:0E:0A:CE:93:4A:43:CC:D1:16:97:99 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 25FCDC8DC6B9482EACB6B4AD5184640151CC0F44 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/24bd33fa-8526-478a-af3a-e24be01b6877.roa Signing time: Fri 06 Mar 2026 00:00:07 +0000 ROA not before: Fri 06 Mar 2026 00:00:07 +0000 ROA not after: Thu 04 Jun 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f2:7020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:fc:dc:8d:c6:b9:48:2e:ac:b6:b4:ad:51:84:64:01:51:cc:0f:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 6 00:00:07 2026 GMT Not After : Jun 4 23:59:59 2026 GMT Subject: serialNumber=b1feeccae417a4f7a2f9ef7cf71b1918d907cf8a36747be1f1a80929535cdbaf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0a:fa:d9:96:ed:e5:2a:11:a5:a7:68:9a:e4: 91:76:09:d6:42:2a:84:54:96:dd:6d:8b:e2:57:8a: d1:b2:41:9a:3f:0d:ec:62:36:71:7a:b3:18:04:aa: 62:68:d4:c3:5f:b8:a0:ec:e6:70:e8:9a:1f:71:02: 97:9b:5e:c4:53:26:a6:6f:6e:41:c9:87:2b:53:8f: 07:96:28:da:cf:c9:ab:71:54:34:9a:00:61:72:2e: 99:d4:a9:cd:87:96:85:e3:8a:4b:0a:6f:ee:5f:d0: 96:90:c7:ba:11:ab:48:72:78:90:45:41:75:25:b3: f0:a7:9e:ac:47:6f:4a:56:36:81:f0:e1:42:8f:e0: 65:c2:4f:22:c3:70:fb:96:af:2d:93:a4:fa:f7:ec: b0:d0:c5:48:fb:e6:0e:90:9c:8b:a6:f7:ff:bb:ea: 82:9a:d5:b6:09:f8:9d:3e:fc:df:95:5a:02:b9:c2: ec:38:6f:0d:8e:dc:b7:91:65:18:99:48:a5:eb:37: 98:11:e5:fd:fa:2e:7e:0f:04:e9:4d:9a:a9:dc:42: 4c:56:2d:83:9a:fd:a5:b5:cc:80:47:63:9c:f8:b3: 7f:0e:98:fd:ce:36:56:7b:fe:20:83:c0:b0:70:47: 8b:4b:99:fd:48:7b:f0:2a:31:49:c0:3d:13:15:31: 7c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:3D:4C:F1:BE:49:13:B8:26:0E:0A:CE:93:4A:43:CC:D1:16:97:99 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/24bd33fa-8526-478a-af3a-e24be01b6877.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7020::/44 Signature Algorithm: sha256WithRSAEncryption 1b:20:e8:79:a0:f9:80:20:e4:cf:84:73:11:29:f6:86:2e:a1: ba:a1:12:65:73:c3:a2:b3:1a:44:b7:3d:fd:e4:ce:ce:8f:22: bf:54:3f:79:7c:5f:43:14:8d:fc:95:6e:1c:0e:bb:df:b9:f5: cd:67:61:ac:f6:25:29:c7:8c:fd:5c:45:c0:72:52:29:3c:4c: 58:31:18:71:eb:90:37:3d:49:f3:6b:ce:3d:23:dc:22:87:c1: 03:75:f7:a2:04:c2:07:a3:1e:71:b9:e4:cc:b0:80:18:de:c2: 10:36:61:69:86:a8:30:f1:8f:fd:e4:61:f0:f6:e7:ec:6b:c9: 18:88:c7:3e:fc:92:70:75:9c:b5:b2:8e:78:b3:bc:ec:b7:16: 46:c5:bb:b0:9c:3f:96:f3:52:1d:67:83:3b:d7:5e:25:10:c0: 85:04:9d:87:ff:3d:00:88:4d:92:40:91:17:87:7a:14:f9:11: 69:4f:12:3d:90:25:7f:e7:9b:da:7a:a7:a0:98:9a:32:60:b5: f7:1c:0d:67:6d:1d:00:11:86:b0:69:8b:97:5b:5c:ee:f8:2a: 5f:95:ff:ac:0f:9a:55:5a:05:51:e6:04:a1:04:32:32:23:42: 19:17:08:af:4c:53:76:e7:e3:a1:c1:24:b0:36:d5:b4:0d:0f: 87:d3:af:03 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJfzcjca5SC6strStUYRkAVHMD0QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzA2MDAwMDA3WhcNMjYwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWZlZWNjYWU0MTdhNGY3YTJmOWVmN2NmNzFiMTkxOGQ5 MDdjZjhhMzY3NDdiZTFmMWE4MDkyOTUzNWNkYmFmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXCvrZlu3lKhGlp2ia5JF2CdZCKoRUlt1ti+JXitGyQZo/ DexiNnF6sxgEqmJo1MNfuKDs5nDomh9xApebXsRTJqZvbkHJhytTjweWKNrPyatx VDSaAGFyLpnUqc2HloXjiksKb+5f0JaQx7oRq0hyeJBFQXUls/CnnqxHb0pWNoHw 4UKP4GXCTyLDcPuWry2TpPr37LDQxUj75g6QnIum9/+76oKa1bYJ+J0+/N+VWgK5 wuw4bw2O3LeRZRiZSKXrN5gR5f36Ln4PBOlNmqncQkxWLYOa/aW1zIBHY5z4s38O mP3ONlZ7/iCDwLBwR4tLmf1Ie/AqMUnAPRMVMXxbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWz1M8b5JE7gmDgrOk0pDzNEWl5kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI0YmQzM2ZhLTg1MjYtNDc4YS1hZjNhLWUyNGJlMDFiNjg3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycCAwDQYJKoZIhvcNAQELBQADggEBABsg6Hmg+YAg5M+EcxEp9oYu obqhEmVzw6KzGkS3Pf3kzs6PIr9UP3l8X0MUjfyVbhwOu9+59c1nYaz2JSnHjP1c RcByUik8TFgxGHHrkDc9SfNrzj0j3CKHwQN196IEwgejHnG55MywgBjewhA2YWmG qDDxj/3kYfD25+xryRiIxz78knB1nLWyjnizvOy3FkbFu7CcP5bzUh1ngzvXXiUQ wIUEnYf/PQCITZJAkReHehT5EWlPEj2QJX/nm9p6p6CYmjJgtfccDWdtHQARhrBp i5dbXO74Kl+V/6wPmlVaBVHmBKEEMjIjQhkXCK9MU3bn46HBJLA21bQND4fTrwM= -----END CERTIFICATE-----Generated at Thu Mar 26 03:09:10 2026 by rpki-client