$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0ffb53bc-11fa-4608-8008-58d71e8cf439.roa File: 0ffb53bc-11fa-4608-8008-58d71e8cf439.roa (raw, json) Hash identifier: XAhMBdcWiCucOtntvCpzeUUAYbzD/GtYAibosv9L+j8= Subject key identifier: 95:1A:2E:9D:0A:F6:91:1B:2D:B9:FA:86:52:70:B1:1E:87:F8:67:F8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3B4D5AE5702A0E4AC879B3C522515D00E1B5C770 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0ffb53bc-11fa-4608-8008-58d71e8cf439.roa Signing time: Fri 13 Feb 2026 12:20:07 +0000 ROA not before: Fri 13 Feb 2026 12:20:07 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:39bc::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:4d:5a:e5:70:2a:0e:4a:c8:79:b3:c5:22:51:5d:00:e1:b5:c7:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 12:20:07 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=0f6de08a130e803fb83edf9e5492acb70739286d916ac75a4285bc3fe8f2a8df, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fc:71:52:8a:91:3a:33:d6:e5:1e:ed:5d:b6: 64:10:e7:c5:fa:b6:a8:40:1f:09:b8:34:c2:00:43: 4c:be:32:b6:f7:a6:eb:f7:9d:1c:c4:92:5a:b6:11: a2:f1:f6:1d:1d:98:88:c6:92:97:2e:ac:cb:66:a4: da:e9:dc:c0:24:87:64:6e:cc:76:1b:05:64:ac:85: f9:c3:e6:fb:2e:5f:05:ae:55:39:6a:6d:e3:2f:f3: 72:4d:54:e5:6a:ea:57:1d:7e:d1:ca:24:91:f6:b5: 07:3f:2e:57:5a:4c:fa:35:40:08:28:65:7f:09:09: 39:ab:21:cd:8e:83:f1:3a:de:a4:4b:39:4f:44:09: 74:73:5d:d7:41:bd:d7:01:a0:72:48:3d:ea:a0:74: 85:b3:53:40:15:74:03:80:db:6a:dc:ed:e7:f8:2d: b8:49:c1:2e:28:2c:70:0b:49:25:74:4c:f3:96:7c: 31:f6:11:37:62:98:8e:8a:3d:b0:ca:3f:71:1d:21: 86:d8:4e:9c:f2:c7:1a:27:9c:a1:5c:49:1c:af:6c: 5d:3d:ea:d7:5e:fe:a0:73:8c:ef:7e:3e:fe:17:9d: bf:0d:bd:59:f2:46:7e:48:ad:c0:27:86:4d:9e:d3: 9d:04:d2:01:bd:e2:e6:25:44:8c:b4:1f:dd:f8:94: 76:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:1A:2E:9D:0A:F6:91:1B:2D:B9:FA:86:52:70:B1:1E:87:F8:67:F8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0ffb53bc-11fa-4608-8008-58d71e8cf439.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:39bc::/46 Signature Algorithm: sha256WithRSAEncryption 6a:65:69:8e:95:6b:22:a4:fe:78:f9:cc:99:8c:00:cb:72:2b: ac:b3:99:3d:77:ff:79:de:cd:2f:f0:80:0c:df:57:a5:32:0c: 87:cd:46:e9:ee:46:c3:ee:28:dd:d1:b2:12:50:64:6e:ad:e1: 25:09:f0:e6:49:5e:b9:ca:3e:f3:fa:b7:73:86:70:5f:07:c6: 3c:99:ae:1e:7a:2b:f6:11:e2:43:9c:28:ee:35:1b:b1:18:67: 9d:4d:40:6c:ef:e9:a2:48:50:aa:1c:05:b0:64:73:b5:62:8f: 26:55:cd:fb:5d:32:fc:98:a9:26:bf:72:a8:03:dd:79:37:01: 52:91:12:ee:91:27:28:56:d2:b5:67:ea:14:91:c8:af:e5:43: 5b:aa:57:d4:d7:4e:fb:96:55:8d:ad:ad:2b:ae:a1:cd:81:ae: 74:04:86:67:d4:d7:0b:a0:88:59:89:58:50:5c:6d:2f:3b:fd: 4a:6e:78:b4:d5:e4:8b:88:00:c2:d0:98:50:66:7a:4e:5f:06: fe:3b:49:c1:19:2e:e0:36:10:d5:35:c9:a3:c4:ba:71:e9:1c: 2d:5b:03:c1:47:f7:85:40:45:16:7c:26:32:5f:ba:5f:5d:7a: 83:9d:22:6e:e0:87:23:a2:08:00:6b:30:6e:27:1b:01:f5:e3: fc:f7:63:91 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO01a5XAqDkrIebPFIlFdAOG1x3AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTIyMDA3WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjZkZTA4YTEzMGU4MDNmYjgzZWRmOWU1NDkyYWNiNzA3 MzkyODZkOTE2YWM3NWE0Mjg1YmMzZmU4ZjJhOGRmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4/HFSipE6M9blHu1dtmQQ58X6tqhAHwm4NMIAQ0y+Mrb3 puv3nRzEklq2EaLx9h0dmIjGkpcurMtmpNrp3MAkh2RuzHYbBWSshfnD5vsuXwWu VTlqbeMv83JNVOVq6lcdftHKJJH2tQc/LldaTPo1QAgoZX8JCTmrIc2Og/E63qRL OU9ECXRzXddBvdcBoHJIPeqgdIWzU0AVdAOA22rc7ef4LbhJwS4oLHALSSV0TPOW fDH2ETdimI6KPbDKP3EdIYbYTpzyxxonnKFcSRyvbF096tde/qBzjO9+Pv4Xnb8N vVnyRn5IrcAnhk2e050E0gG94uYlRIy0H934lHbHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlRounQr2kRstufqGUnCxHof4Z/gwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzBmZmI1M2JjLTExZmEtNDYwOC04MDA4LTU4ZDcxZThjZjQzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAObwwDQYJKoZIhvcNAQELBQADggEBAGplaY6VayKk/nj5zJmMAMty K6yzmT13/3nezS/wgAzfV6UyDIfNRunuRsPuKN3RshJQZG6t4SUJ8OZJXrnKPvP6 t3OGcF8HxjyZrh56K/YR4kOcKO41G7EYZ51NQGzv6aJIUKocBbBkc7VijyZVzftd MvyYqSa/cqgD3Xk3AVKREu6RJyhW0rVn6hSRyK/lQ1uqV9TXTvuWVY2trSuuoc2B rnQEhmfU1wugiFmJWFBcbS87/UpueLTV5IuIAMLQmFBmek5fBv47ScEZLuA2ENU1 yaPEunHpHC1bA8FH94VARRZ8JjJful9deoOdIm7ghyOiCABrMG4nGwH14/z3Y5E= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:23 2026 by rpki-client