$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1394413a-d408-4495-8ba9-2499b912c60d.roa File: 1394413a-d408-4495-8ba9-2499b912c60d.roa (raw, json) Hash identifier: Tbtc+Xg6aRJ7DeszzF4BlhtEQ5zktKCnOIMv0ylFAgM= Subject key identifier: 50:D5:F4:6B:1F:72:CC:C4:48:41:D0:47:F8:98:A1:35:63:91:A0:BA Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 75696A9A8524BFBD99C909BCAC23629F8134B150 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1394413a-d408-4495-8ba9-2499b912c60d.roa Signing time: Fri 13 Feb 2026 10:41:35 +0000 ROA not before: Fri 13 Feb 2026 10:41:35 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3904::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:69:6a:9a:85:24:bf:bd:99:c9:09:bc:ac:23:62:9f:81:34:b1:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 10:41:35 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=c864e4e48f366353af37c3e3932dcf39928c81fd95d8490b682ac89c50aec39e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:07:a1:a5:50:5d:dd:a5:6a:0d:e0:c2:70:10: 3b:4d:6b:86:86:ce:55:e0:55:91:32:91:c9:2b:71: e9:c0:d0:51:4e:36:62:8b:c3:8c:8f:f2:ec:7b:d1: 01:12:fb:30:a2:30:be:b5:57:60:cc:57:e4:a7:81: 1b:4c:76:0c:7e:32:fa:af:f9:e3:78:85:58:53:4e: 96:e3:07:8b:e4:e4:38:58:7c:db:80:e0:a4:64:49: 94:0e:3d:d6:3e:f8:5f:de:a3:38:f6:bd:d6:2b:9c: 91:e0:f2:fb:12:79:a8:4e:ce:f2:1e:53:23:63:bf: 72:31:f2:fd:47:15:8d:03:fc:9c:6e:09:b2:55:e8: 85:fc:30:4d:16:d4:e8:04:fa:09:af:f1:2b:ed:5a: 4b:16:db:ac:ca:d7:0b:dc:05:80:a6:19:02:e2:69: 38:14:bd:34:d8:5c:f3:5c:df:8a:de:b4:28:ad:6f: 3e:c2:77:9a:b4:c0:03:c2:fb:77:a2:5c:c9:8d:ab: 2b:7d:66:31:76:fb:86:9a:42:a3:56:96:44:62:bc: 2b:7c:55:48:eb:40:b1:82:83:e2:c5:bf:b9:d3:b2: ea:c3:35:62:f3:f9:b2:a8:a9:1f:20:65:d8:2b:6d: 6d:13:50:67:fd:4e:6e:20:40:0e:aa:c1:d0:69:d0: c7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D5:F4:6B:1F:72:CC:C4:48:41:D0:47:F8:98:A1:35:63:91:A0:BA X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1394413a-d408-4495-8ba9-2499b912c60d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3904::/47 Signature Algorithm: sha256WithRSAEncryption 57:26:22:5e:9b:61:97:b0:0e:67:8e:32:1b:5b:8e:69:64:29: c6:75:0a:cd:15:46:47:39:f6:c6:33:ef:3d:d3:de:08:0a:f4: 2c:fd:ee:94:b6:e4:8c:62:6b:d6:da:c6:e8:60:95:46:8d:25: 1c:f6:1b:b0:1f:ab:bb:84:16:e0:ea:c2:b1:09:9d:28:10:29: 39:90:06:46:98:d4:9b:96:25:13:0d:a5:b0:81:7c:fe:38:86: af:a3:b0:7c:42:34:0f:5c:ec:f8:34:dc:15:ce:23:17:ad:c5: c1:f3:52:2e:8e:76:bc:86:9e:43:55:31:77:4f:2d:6e:5b:59: 61:9c:86:31:8d:ed:05:27:bc:47:24:4a:7d:c9:b1:6e:bf:3f: 89:74:62:c2:db:1b:11:9d:a7:06:f6:b3:11:b6:33:71:cb:87: cd:25:dc:8a:73:d9:a4:21:cb:e4:62:ed:ae:aa:55:6b:be:2c: 43:74:e4:b9:f2:3a:18:30:c7:5f:e1:bf:25:22:cd:45:06:59: b5:a7:2a:ad:6f:83:3d:c6:fd:4a:60:c9:95:60:3f:06:cc:3c: 51:01:e0:4c:27:db:2a:da:49:b0:29:15:4d:99:38:51:10:62: 81:27:a1:06:17:2e:22:39:fe:7a:fc:77:3a:34:c2:d3:9d:8a: 3c:52:a4:15 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdWlqmoUkv72ZyQm8rCNin4E0sVAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTA0MTM1WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjODY0ZTRlNDhmMzY2MzUzYWYzN2MzZTM5MzJkY2YzOTky OGM4MWZkOTVkODQ5MGI2ODJhYzg5YzUwYWVjMzllMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSB6GlUF3dpWoN4MJwEDtNa4aGzlXgVZEykckrcenA0FFO NmKLw4yP8ux70QES+zCiML61V2DMV+SngRtMdgx+Mvqv+eN4hVhTTpbjB4vk5DhY fNuA4KRkSZQOPdY++F/eozj2vdYrnJHg8vsSeahOzvIeUyNjv3Ix8v1HFY0D/Jxu CbJV6IX8ME0W1OgE+gmv8SvtWksW26zK1wvcBYCmGQLiaTgUvTTYXPNc34retCit bz7Cd5q0wAPC+3eiXMmNqyt9ZjF2+4aaQqNWlkRivCt8VUjrQLGCg+LFv7nTsurD NWLz+bKoqR8gZdgrbW0TUGf9Tm4gQA6qwdBp0MdTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUNX0ax9yzMRIQdBH+JihNWORoLowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzEzOTQ0MTNhLWQ0MDgtNDQ5NS04YmE5LTI0OTliOTEyYzYwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOQQwDQYJKoZIhvcNAQELBQADggEBAFcmIl6bYZewDmeOMhtbjmlk KcZ1Cs0VRkc59sYz7z3T3ggK9Cz97pS25Ixia9baxuhglUaNJRz2G7Afq7uEFuDq wrEJnSgQKTmQBkaY1JuWJRMNpbCBfP44hq+jsHxCNA9c7Pg03BXOIxetxcHzUi6O dryGnkNVMXdPLW5bWWGchjGN7QUnvEckSn3JsW6/P4l0YsLbGxGdpwb2sxG2M3HL h80l3Ipz2aQhy+Ri7a6qVWu+LEN05LnyOhgwx1/hvyUizUUGWbWnKq1vgz3G/Upg yZVgPwbMPFEB4Ewn2yraSbApFU2ZOFEQYoEnoQYXLiI5/nr8dzo0wtOdijxSpBU= -----END CERTIFICATE-----Generated at Sun Mar 1 22:30:58 2026 by rpki-client