$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1c512c3-ecc9-453a-9a00-b2972e5cdefc.roa File: a1c512c3-ecc9-453a-9a00-b2972e5cdefc.roa (raw, json) Hash identifier: mSjNdnZyDYEWl05TGBekf2X9Wxh9JqRJ08SD0lcRB30= Subject key identifier: C4:55:54:0C:A8:30:37:FE:CA:92:F8:5A:4C:B8:B5:11:05:70:1D:75 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 06E231A7D7868458E874975B9F7BE4F3D707D4C1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1c512c3-ecc9-453a-9a00-b2972e5cdefc.roa Signing time: Fri 06 Mar 2026 00:00:06 +0000 ROA not before: Fri 06 Mar 2026 00:00:06 +0000 ROA not after: Thu 04 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7030::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Mar 2026 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e2:31:a7:d7:86:84:58:e8:74:97:5b:9f:7b:e4:f3:d7:07:d4:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 6 00:00:06 2026 GMT Not After : Jun 4 23:59:59 2026 GMT Subject: serialNumber=b7121f56de2938e685ae61948c3d8abe22062ad6d4999329393f5cf6620c8072, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bc:c4:f1:b1:66:96:3e:4a:c6:04:f8:af:75: ea:07:f1:3d:83:0c:6e:42:7b:d8:ac:63:4a:e4:56: da:47:dc:08:f5:86:e4:bf:11:fd:39:d2:52:4f:14: 85:74:e9:66:39:4a:51:f6:fe:18:bc:b6:b9:a9:79: 12:4e:34:b1:ff:f7:46:18:5b:34:aa:53:43:b3:dd: 9d:5a:30:b2:96:2d:bf:fa:32:3a:25:ce:71:d3:b1: 19:b1:4c:ca:4e:b4:56:c3:5f:04:60:5f:36:b4:e4: 27:ee:7c:f6:de:3a:71:84:3e:d0:f8:ce:3c:3c:2e: bf:64:71:29:c7:0a:cb:0f:e9:8a:89:09:dc:96:ff: 15:c5:4d:15:ac:78:04:58:e9:48:df:e5:a8:6d:05: 31:4e:50:57:e6:be:52:6a:77:e5:c2:70:3e:97:0b: 17:91:16:f5:ec:71:bb:89:bf:2f:6c:22:25:d2:47: 3f:d4:c4:30:39:aa:e9:59:44:e8:9b:19:18:9a:69: 14:2b:08:08:68:29:70:27:eb:8e:77:92:34:05:20: 37:58:2e:9e:4e:1d:19:7e:6a:cd:a0:cf:b4:7f:1f: 44:ed:f0:71:43:98:70:b9:d1:b9:5d:1d:99:ce:34: 96:72:5a:08:4e:93:3c:eb:70:d8:6a:0a:4b:6d:2e: bf:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:55:54:0C:A8:30:37:FE:CA:92:F8:5A:4C:B8:B5:11:05:70:1D:75 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1c512c3-ecc9-453a-9a00-b2972e5cdefc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7030::/44 Signature Algorithm: sha256WithRSAEncryption 94:08:25:52:c5:23:13:e9:e2:a0:b2:33:87:94:76:6e:81:30: 43:4d:4b:da:2b:ec:25:3b:88:76:d3:55:72:a9:5f:3d:d5:1c: 97:1e:64:fd:67:4b:4d:b7:cb:14:ab:53:6f:cd:22:43:04:91: 2d:e3:53:60:df:2f:fc:fe:d1:77:58:50:94:3f:bd:70:96:a9: 02:a7:56:bf:38:d8:c1:04:2a:2d:8c:ef:64:95:8b:18:60:15: 45:fe:dc:1a:f0:da:13:91:78:01:00:f5:c2:cf:6e:15:bc:2c: 53:dc:a4:a6:fc:d9:73:e3:38:c4:5c:1e:7b:b6:97:f0:c8:8a: 78:c0:e1:75:92:48:1f:1d:ee:43:a2:1e:af:90:69:80:1d:a9: cc:d3:60:d7:4c:fa:15:4a:5e:bd:16:8a:12:bd:ad:e4:83:34: a9:06:9e:26:9c:98:98:c8:0a:bc:84:da:91:52:1e:c1:fa:30: ac:9a:f5:0b:d2:18:e9:ee:67:fd:ec:db:95:33:02:f4:50:04: c3:87:ec:76:90:ab:19:61:38:74:e8:ca:01:32:41:90:8a:5d: b7:20:20:10:73:a6:4e:47:10:fb:99:1c:81:9c:ae:12:7d:90: 48:d1:be:d1:12:da:8a:62:2b:f5:12:29:f8:6d:9f:d3:bb:93: 65:8a:e1:4f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBuIxp9eGhFjodJdbn3vk89cH1MEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjYwMzA2MDAwMDA2WhcNMjYwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzEyMWY1NmRlMjkzOGU2ODVhZTYxOTQ4YzNkOGFiZTIy MDYyYWQ2ZDQ5OTkzMjkzOTNmNWNmNjYyMGM4MDcyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqvMTxsWaWPkrGBPivdeoH8T2DDG5Ce9isY0rkVtpH3Aj1 huS/Ef050lJPFIV06WY5SlH2/hi8trmpeRJONLH/90YYWzSqU0Oz3Z1aMLKWLb/6 MjolznHTsRmxTMpOtFbDXwRgXza05CfufPbeOnGEPtD4zjw8Lr9kcSnHCssP6YqJ CdyW/xXFTRWseARY6Ujf5ahtBTFOUFfmvlJqd+XCcD6XCxeRFvXscbuJvy9sIiXS Rz/UxDA5qulZROibGRiaaRQrCAhoKXAn6453kjQFIDdYLp5OHRl+as2gz7R/H0Tt 8HFDmHC50bldHZnONJZyWghOkzzrcNhqCkttLr//AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxFVUDKgwN/7KkvhaTLi1EQVwHXUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExYzUxMmMzLWVjYzktNDUzYS05YTAwLWIyOTcyZTVjZGVmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycDAwDQYJKoZIhvcNAQELBQADggEBAJQIJVLFIxPp4qCyM4eUdm6B MENNS9or7CU7iHbTVXKpXz3VHJceZP1nS023yxSrU2/NIkMEkS3jU2DfL/z+0XdY UJQ/vXCWqQKnVr842MEEKi2M72SVixhgFUX+3Brw2hOReAEA9cLPbhW8LFPcpKb8 2XPjOMRcHnu2l/DIinjA4XWSSB8d7kOiHq+QaYAdqczTYNdM+hVKXr0WihK9reSD NKkGniacmJjICryE2pFSHsH6MKya9QvSGOnuZ/3s25UzAvRQBMOH7HaQqxlhOHTo ygEyQZCKXbcgIBBzpk5HEPuZHIGcrhJ9kEjRvtES2opiK/USKfhtn9O7k2WK4U8= -----END CERTIFICATE-----Generated at Thu Mar 26 04:53:58 2026 by rpki-client