$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/07ddc39a-0de5-4776-9478-6e0891131342.roa File: 07ddc39a-0de5-4776-9478-6e0891131342.roa (raw, json) Hash identifier: 5js29BlWB3wrV5q2f2c7WGNQpL0P8FJXwagwYYcqAdE= Subject key identifier: C2:B7:F8:A9:E9:68:A7:FA:AB:EC:ED:31:38:84:67:BB:43:47:99:51 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 587F337FD63C70B06164BD5ADD8A3A0B728CA955 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/07ddc39a-0de5-4776-9478-6e0891131342.roa Signing time: Thu 12 Feb 2026 01:10:43 +0000 ROA not before: Thu 12 Feb 2026 01:10:43 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2c8e::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:7f:33:7f:d6:3c:70:b0:61:64:bd:5a:dd:8a:3a:0b:72:8c:a9:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 01:10:43 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=083ff4901473a5d4d608114764716d268d698e44603050e27dc7d7d8e1905487, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e5:93:3d:48:5b:4f:46:70:31:6b:13:03:25: 75:60:27:38:b7:84:e7:d1:28:2f:09:11:84:a8:9e: 3f:52:fc:52:42:19:a7:15:aa:97:6d:13:d4:bf:c2: 04:a0:22:93:58:ac:dc:82:8e:bb:d4:22:84:fb:44: f4:30:ee:c3:08:b3:f4:1b:1b:00:d0:27:b9:7a:9c: ec:55:da:1a:bd:f5:e6:14:92:77:6b:83:00:3b:e9: 82:9c:d3:04:42:bd:d5:3d:93:f9:c0:19:59:7f:e7: 77:e7:76:73:c2:96:6a:f3:04:bf:b8:05:69:bc:f6: c5:d9:61:3f:a4:69:c8:36:fc:65:0f:ae:ce:d8:ea: 9c:57:b5:c9:45:07:bc:ac:95:dd:dd:4e:2d:e7:c4: 23:2d:3c:09:5b:5c:ef:ba:84:b3:32:70:99:2b:c0: 9c:4e:d7:ec:e0:9e:5f:d2:b9:7d:ef:a6:17:37:9e: 32:64:ba:4f:eb:c9:03:cb:75:b7:90:33:5f:d4:ca: 99:b3:bf:95:d8:00:10:b9:fb:0a:8c:02:4b:ff:be: 5a:a5:3f:2a:57:fc:3d:0d:fb:38:78:33:dc:cc:13: 6d:4f:44:d7:e1:ac:b0:31:31:1d:a1:da:98:21:f9: 54:b8:40:9b:f6:f4:ad:3a:a1:b6:f8:1d:39:5f:c4: 0d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:B7:F8:A9:E9:68:A7:FA:AB:EC:ED:31:38:84:67:BB:43:47:99:51 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/07ddc39a-0de5-4776-9478-6e0891131342.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2c8e::/47 Signature Algorithm: sha256WithRSAEncryption 50:f7:f7:26:08:25:dc:2d:d4:cf:79:ee:8a:e2:f2:d1:24:ba: 33:80:bd:3b:19:90:cd:f2:62:48:dc:01:7c:65:52:1f:5e:fa: 74:60:17:1a:5e:d6:f2:63:7f:ad:51:d5:d3:ff:4f:03:1f:d9: de:82:7a:bb:32:16:ab:68:43:77:e8:49:78:52:e1:ff:92:30: f8:68:08:8f:6a:1f:69:71:53:90:1d:3a:56:e6:c7:e9:d5:47: f0:ac:3a:f9:c2:bf:5c:f5:93:9a:d8:8a:60:da:1f:fe:fc:81: 10:2d:f0:1f:f4:0c:a0:62:74:b4:96:fe:b2:cc:1e:13:da:0d: b3:37:16:9d:33:0b:97:d6:67:bd:fc:d7:49:ea:97:1a:3a:71: e0:f3:2f:05:6e:a6:64:8c:20:c0:15:2c:e6:11:6c:33:f8:da: b8:d1:58:6d:52:84:4b:93:bb:3e:46:00:30:e5:80:ab:44:fc: 4f:cb:59:8c:1c:58:46:c3:b4:73:47:00:41:91:9f:02:a0:20: 1f:16:1c:6e:9d:76:19:fd:01:ef:c8:ce:f7:ce:c2:98:4c:a0: df:55:c1:c6:b3:a1:12:12:d3:be:26:79:e7:2b:e1:58:43:61: 03:9b:4c:e3:6d:af:ed:de:6e:0c:b7:4e:61:f8:dc:6b:57:08: d7:7e:82:5f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWH8zf9Y8cLBhZL1a3Yo6C3KMqVUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDExMDQzWhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwODNmZjQ5MDE0NzNhNWQ0ZDYwODExNDc2NDcxNmQyNjhk Njk4ZTQ0NjAzMDUwZTI3ZGM3ZDdkOGUxOTA1NDg3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk5ZM9SFtPRnAxaxMDJXVgJzi3hOfRKC8JEYSonj9S/FJC GacVqpdtE9S/wgSgIpNYrNyCjrvUIoT7RPQw7sMIs/QbGwDQJ7l6nOxV2hq99eYU kndrgwA76YKc0wRCvdU9k/nAGVl/53fndnPClmrzBL+4BWm89sXZYT+kacg2/GUP rs7Y6pxXtclFB7ysld3dTi3nxCMtPAlbXO+6hLMycJkrwJxO1+zgnl/SuX3vphc3 njJkuk/ryQPLdbeQM1/Uypmzv5XYABC5+wqMAkv/vlqlPypX/D0N+zh4M9zME21P RNfhrLAxMR2h2pgh+VS4QJv29K06obb4HTlfxA0LAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwrf4qelop/qr7O0xOIRnu0NHmVEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzA3ZGRjMzlhLTBkZTUtNDc3Ni05NDc4LTZlMDg5MTEzMTM0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALI4wDQYJKoZIhvcNAQELBQADggEBAFD39yYIJdwt1M957ori8tEk ujOAvTsZkM3yYkjcAXxlUh9e+nRgFxpe1vJjf61R1dP/TwMf2d6CersyFqtoQ3fo SXhS4f+SMPhoCI9qH2lxU5AdOlbmx+nVR/CsOvnCv1z1k5rYimDaH/78gRAt8B/0 DKBidLSW/rLMHhPaDbM3Fp0zC5fWZ73810nqlxo6ceDzLwVupmSMIMAVLOYRbDP4 2rjRWG1ShEuTuz5GADDlgKtE/E/LWYwcWEbDtHNHAEGRnwKgIB8WHG6ddhn9Ae/I zvfOwphMoN9VwcazoRIS074meecr4VhDYQObTONtr+3ebgy3TmH43GtXCNd+gl8= -----END CERTIFICATE-----Generated at Sun Mar 1 22:30:44 2026 by rpki-client