$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/028fef29-7bea-4b1a-9e0b-6696724e2cea.roa File: 028fef29-7bea-4b1a-9e0b-6696724e2cea.roa (raw, json) Hash identifier: czSabPG9TsZINjuN9M33OyVnI4pld3VqIdr2Elpl2Os= Subject key identifier: 5F:2C:25:2F:89:F3:E0:6B:67:CA:85:14:92:4C:05:0A:8B:C0:EE:A8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 39F2C89078566BDE4CD2D2288DFAF6839A038C92 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/028fef29-7bea-4b1a-9e0b-6696724e2cea.roa Signing time: Fri 13 Feb 2026 05:50:48 +0000 ROA not before: Fri 13 Feb 2026 05:50:48 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:f000::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:f2:c8:90:78:56:6b:de:4c:d2:d2:28:8d:fa:f6:83:9a:03:8c:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 05:50:48 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=ca9789c41d3a1d17c7ad4bb8aeab4a689ca8803d6927488b3cd7505ff39ecbe5, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:19:d0:bb:07:38:41:89:47:ce:3b:42:f2:73: fd:80:dd:09:1a:bb:6f:8a:ab:3a:a3:cc:b8:36:78: 1e:84:16:91:92:63:90:1c:1e:37:ab:1c:2c:c6:9a: b7:d0:c2:41:b5:1a:fe:c8:8b:52:00:17:8f:3e:10: 48:a9:c8:95:01:2e:36:38:9c:03:69:ae:62:ef:a4: 38:1b:3d:4e:e8:3e:4f:08:89:e0:8c:55:2b:37:44: f4:ff:23:f8:00:da:68:30:14:d6:b9:60:7e:77:9b: a3:3e:46:cb:2d:c5:e3:08:fc:96:88:a0:76:e3:28: 06:45:10:3b:d9:ee:00:5b:4a:99:51:02:e1:f1:d9: fd:b2:a9:e6:eb:1c:03:5d:f6:9d:d9:59:28:fa:ec: 1e:8c:39:b6:73:c8:86:bc:12:e7:9a:6d:86:87:40: 52:84:43:28:68:e1:10:3a:96:f3:cf:8e:09:e3:a5: 9a:65:c0:d4:a0:2f:1c:86:73:df:2a:7f:4c:ef:7c: fc:2e:05:c2:2d:88:2d:02:c2:8f:bd:8a:39:5e:56: b1:f2:35:1c:78:a2:0c:fb:fc:a3:89:cf:7f:27:fe: 84:96:d2:d5:fd:10:0d:94:45:f2:fb:f4:a5:b4:63: 14:50:96:03:2b:46:2e:8d:9c:e9:ad:de:df:b7:59: be:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:2C:25:2F:89:F3:E0:6B:67:CA:85:14:92:4C:05:0A:8B:C0:EE:A8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/028fef29-7bea-4b1a-9e0b-6696724e2cea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:f000::/38 Signature Algorithm: sha256WithRSAEncryption 70:51:30:ac:2b:e1:dc:9b:70:21:67:f7:51:5d:4c:c6:66:73: 41:00:14:2e:a1:c9:80:48:04:07:ba:a1:c7:ec:f5:6a:4c:ba: c5:84:c2:a0:cd:31:09:1e:65:af:3d:ac:db:76:86:bf:6c:6d: dc:89:f7:57:fa:e6:14:eb:47:11:ae:9a:5b:df:59:d1:1b:d0: cd:22:1e:c9:47:f7:d8:f1:81:16:9e:17:4a:3a:6d:21:3b:20: 37:fb:c5:bc:24:67:91:be:ab:a4:af:79:74:03:f8:99:6f:f6: 2d:ee:69:8e:9a:d7:13:a2:3e:68:fb:c0:92:31:b4:10:f4:58: 86:65:ae:fb:f3:d2:d2:dd:b8:0c:e3:d6:1a:8a:43:51:d7:5a: 99:34:3c:d6:f4:93:d5:36:06:91:a8:15:8e:1a:3f:dd:3d:09: ab:66:d9:d7:57:cd:ec:32:25:f3:fd:27:24:e4:94:ae:7a:09: 22:50:cc:f2:a4:97:ae:4f:65:90:83:ef:7a:9a:53:88:09:43: 52:e7:18:d1:63:52:b1:f1:0f:bc:49:d9:81:1a:48:28:84:ea: 4e:a6:16:82:68:6d:a0:b2:9f:be:0f:84:2e:9e:fb:31:a5:e8: bb:9f:5e:89:ad:9f:82:d0:63:0b:2d:fe:56:0f:ce:0b:f0:5b: 3c:79:11:25 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOfLIkHhWa95M0tIojfr2g5oDjJIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDU1MDQ4WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYTk3ODljNDFkM2ExZDE3YzdhZDRiYjhhZWFiNGE2ODlj YTg4MDNkNjkyNzQ4OGIzY2Q3NTA1ZmYzOWVjYmU1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkGdC7BzhBiUfOO0Lyc/2A3Qkau2+KqzqjzLg2eB6EFpGS Y5AcHjerHCzGmrfQwkG1Gv7Ii1IAF48+EEipyJUBLjY4nANprmLvpDgbPU7oPk8I ieCMVSs3RPT/I/gA2mgwFNa5YH53m6M+RsstxeMI/JaIoHbjKAZFEDvZ7gBbSplR AuHx2f2yqebrHANd9p3ZWSj67B6MObZzyIa8EueabYaHQFKEQyho4RA6lvPPjgnj pZplwNSgLxyGc98qf0zvfPwuBcItiC0Cwo+9ijleVrHyNRx4ogz7/KOJz38n/oSW 0tX9EA2URfL79KW0YxRQlgMrRi6NnOmt3t+3Wb4HAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUXywlL4nz4GtnyoUUkkwFCovA7qgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzAyOGZlZjI5LTdiZWEtNGIxYS05ZTBiLTY2OTY3MjRlMmNlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAJAA8DANBgkqhkiG9w0BAQsFAAOCAQEAcFEwrCvh3JtwIWf3UV1MxmZz QQAULqHJgEgEB7qhx+z1aky6xYTCoM0xCR5lrz2s23aGv2xt3In3V/rmFOtHEa6a W99Z0RvQzSIeyUf32PGBFp4XSjptITsgN/vFvCRnkb6rpK95dAP4mW/2Le5pjprX E6I+aPvAkjG0EPRYhmWu+/PS0t24DOPWGopDUddamTQ81vST1TYGkagVjho/3T0J q2bZ11fN7DIl8/0nJOSUrnoJIlDM8qSXrk9lkIPveppTiAlDUucY0WNSsfEPvEnZ gRpIKITqTqYWgmhtoLKfvg+ELp77MaXou59eia2fgtBjCy3+Vg/OC/BbPHkRJQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:07:37 2026 by rpki-client