$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/01dfe6b3-ce08-4386-8028-2afe3b322da6.roa File: 01dfe6b3-ce08-4386-8028-2afe3b322da6.roa (raw, json) Hash identifier: +WxnvDZqo1WOKRNYRlHMy1KPw6b0DPS70uKASTz7aEc= Subject key identifier: 4D:0A:42:08:54:27:C2:4F:13:EB:ED:E9:70:85:3A:1C:C8:DF:42:59 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2F2538CCF193B7FD78F9FA5D741EC180E04C338C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/01dfe6b3-ce08-4386-8028-2afe3b322da6.roa Signing time: Fri 13 Feb 2026 10:31:23 +0000 ROA not before: Fri 13 Feb 2026 10:31:23 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:399a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:25:38:cc:f1:93:b7:fd:78:f9:fa:5d:74:1e:c1:80:e0:4c:33:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 10:31:23 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=b7e8c5d973749198112a79e414ba427a49402e1883912adb94c4d12e4f03a721, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:34:9d:25:2c:62:70:d4:57:22:55:9d:e6:6e: c1:23:c9:28:c8:a2:5b:96:e7:a8:53:f4:b7:79:db: f8:98:ca:69:0e:be:7a:37:9e:a0:91:80:5f:c0:40: f1:f8:8f:87:0d:61:6b:07:d5:3d:ba:c7:6d:13:bc: 4c:f6:f0:6d:ff:87:83:dc:6a:ae:9e:45:c9:ad:c2: 1a:67:42:dc:82:d6:d8:58:01:ab:8b:5d:13:3b:76: d8:20:ca:9c:2f:57:42:f1:ba:c3:9b:b0:7e:c0:dc: a0:c4:c2:3f:e3:5f:bd:de:a9:fb:29:2d:3b:d1:00: 54:bb:b3:07:6c:78:59:fd:bc:fa:10:e3:c6:4c:e3: 07:82:47:c5:79:b7:7e:d4:3e:8d:0d:7b:a1:0d:86: c7:1a:fa:d3:a8:57:61:91:2c:89:1a:a7:cc:64:6c: 12:d7:29:6a:68:13:7a:d9:f8:d8:b9:4c:a9:03:fd: fd:80:3f:b1:17:05:a5:50:7a:a7:9b:19:35:45:c3: 65:d8:dd:66:2b:98:96:36:ce:23:72:12:c8:bb:cc: 79:c8:21:f3:4c:e1:bb:e6:e4:a7:92:b9:39:91:6b: 23:6b:22:15:b4:ad:06:f2:16:4d:61:f6:54:ce:52: ab:61:bb:64:39:a4:72:93:c1:23:3e:ec:61:63:0f: 57:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:0A:42:08:54:27:C2:4F:13:EB:ED:E9:70:85:3A:1C:C8:DF:42:59 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/01dfe6b3-ce08-4386-8028-2afe3b322da6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:399a::/47 Signature Algorithm: sha256WithRSAEncryption 45:dd:5d:ba:21:a2:d0:36:87:29:04:1b:ab:2d:7b:4b:ff:00: a6:91:be:33:c4:89:a3:bd:05:81:c4:c9:f6:0a:e1:cc:33:bc: 7c:54:36:d5:39:a5:00:b2:cd:e8:9d:b5:1c:ee:d5:11:57:24: 79:7a:90:17:13:91:fb:3d:df:3a:49:69:90:1d:9f:5a:b7:5f: 3a:b3:c6:63:f5:1b:6c:00:a1:b0:b1:25:e5:c1:31:43:19:28: 91:bc:e2:a7:32:10:6e:fa:db:5d:3e:d0:08:97:71:22:97:ee: 77:2c:68:30:84:e6:66:70:33:21:51:a9:38:24:4b:45:0f:60: 3d:af:9c:70:2d:be:6c:00:9f:9b:15:1a:d6:1f:c0:20:79:1a: eb:7c:e5:b5:5a:8e:5b:17:0d:be:aa:ba:0d:45:9c:c8:cc:16: 88:1d:8c:ab:4e:d1:2e:ad:63:eb:37:cd:a9:e4:90:cf:81:fc: 82:7f:c2:d7:38:13:e0:c5:44:f7:de:97:2b:91:ea:0d:ca:67: a6:4d:bc:8b:47:eb:57:94:5e:9a:f1:52:ee:a4:62:69:6f:cf: c8:eb:a7:e4:3f:25:1d:2e:64:c4:51:c8:93:d8:3a:b9:91:0a: 7c:f9:c2:f4:3d:5b:ee:28:74:24:31:0f:04:2c:74:0a:1d:e6: d3:17:24:16 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULyU4zPGTt/14+fpddB7BgOBMM4wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTAzMTIzWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiN2U4YzVkOTczNzQ5MTk4MTEyYTc5ZTQxNGJhNDI3YTQ5 NDAyZTE4ODM5MTJhZGI5NGM0ZDEyZTRmMDNhNzIxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHNJ0lLGJw1FciVZ3mbsEjySjIoluW56hT9Ld52/iYymkO vno3nqCRgF/AQPH4j4cNYWsH1T26x20TvEz28G3/h4Pcaq6eRcmtwhpnQtyC1thY AauLXRM7dtggypwvV0LxusObsH7A3KDEwj/jX73eqfspLTvRAFS7swdseFn9vPoQ 48ZM4weCR8V5t37UPo0Ne6ENhsca+tOoV2GRLIkap8xkbBLXKWpoE3rZ+Ni5TKkD /f2AP7EXBaVQeqebGTVFw2XY3WYrmJY2ziNyEsi7zHnIIfNM4bvm5KeSuTmRayNr IhW0rQbyFk1h9lTOUqthu2Q5pHKTwSM+7GFjD1fzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTQpCCFQnwk8T6+3pcIU6HMjfQlkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzAxZGZlNmIzLWNlMDgtNDM4Ni04MDI4LTJhZmUzYjMyMmRhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOZowDQYJKoZIhvcNAQELBQADggEBAEXdXbohotA2hykEG6ste0v/ AKaRvjPEiaO9BYHEyfYK4cwzvHxUNtU5pQCyzeidtRzu1RFXJHl6kBcTkfs93zpJ aZAdn1q3XzqzxmP1G2wAobCxJeXBMUMZKJG84qcyEG76210+0AiXcSKX7ncsaDCE 5mZwMyFRqTgkS0UPYD2vnHAtvmwAn5sVGtYfwCB5Gut85bVajlsXDb6qug1FnMjM FogdjKtO0S6tY+s3zankkM+B/IJ/wtc4E+DFRPfelyuR6g3KZ6ZNvItH61eUXprx Uu6kYmlvz8jrp+Q/JR0uZMRRyJPYOrmRCnz5wvQ9W+4odCQxDwQsdAod5tMXJBY= -----END CERTIFICATE-----Generated at Mon Mar 2 01:04:23 2026 by rpki-client