$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1d3cf3ef-5178-42f8-b72f-cad5c9eb438b.roa File: 1d3cf3ef-5178-42f8-b72f-cad5c9eb438b.roa (raw, json) Hash identifier: 8Lfw2OkaOyb6J/TLxKwQFRU6o4taijqf7y6mIDLOYDY= Subject key identifier: 8E:FC:1C:E8:8B:32:EC:26:58:3D:7B:1D:55:14:79:78:3A:37:97:3B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 22C6FF77E81B55752EEB88C44B9B4AD66EE3F5CF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1d3cf3ef-5178-42f8-b72f-cad5c9eb438b.roa Signing time: Fri 13 Feb 2026 10:00:10 +0000 ROA not before: Fri 13 Feb 2026 10:00:10 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3cd0::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:c6:ff:77:e8:1b:55:75:2e:eb:88:c4:4b:9b:4a:d6:6e:e3:f5:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 10:00:10 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=41ae1e3f3c81906b9906daa6f9f30744cc87f5dab0d9f8ef916f9d058c9ce8c9, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:01:f0:24:ef:3d:80:b4:e3:2d:fb:7e:e2:47: ce:fc:bd:b4:b7:ce:08:24:21:27:44:6b:f7:28:ab: e1:2f:d5:08:a6:e3:1f:60:d7:83:68:9f:a0:2d:d4: 29:0a:53:b3:e8:a2:e0:d9:70:f2:eb:dd:44:3b:0e: 0e:61:da:86:b4:c1:5a:5f:e7:43:de:fa:d0:c5:f6: 3e:91:39:be:3c:f9:ad:f3:b1:db:df:c8:f9:10:26: 07:de:71:8e:f2:dc:cb:8b:62:44:02:34:f3:5c:7f: 92:8e:f6:f6:5b:01:d1:5b:5a:5d:3d:d7:53:09:4e: 2a:2c:cb:97:64:84:9d:eb:0f:12:aa:ff:05:1f:3a: 25:4d:48:d0:55:e7:41:6d:af:5b:0f:60:41:aa:20: 92:fd:b9:6a:ac:12:c2:4e:45:e3:be:b8:8a:c3:f5: a9:6d:54:8c:bb:fe:41:f9:b7:89:c8:06:56:53:db: a6:05:53:b6:47:0c:b6:67:1b:f6:3e:c6:c1:88:6b: dc:f2:24:1d:bb:30:13:6a:9c:43:02:82:04:7a:7d: aa:cb:c0:96:dd:c3:b5:04:64:28:ed:75:a3:3c:54: f9:d9:72:ad:50:d2:6d:27:1d:3d:ea:84:bd:89:13: 4c:95:ee:7a:ae:38:eb:16:b4:85:88:40:1b:b1:ab: 17:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:FC:1C:E8:8B:32:EC:26:58:3D:7B:1D:55:14:79:78:3A:37:97:3B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1d3cf3ef-5178-42f8-b72f-cad5c9eb438b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3cd0::/45 Signature Algorithm: sha256WithRSAEncryption 0a:d3:c6:36:b2:85:fb:0c:64:1a:48:81:04:8f:a1:df:3f:b0: 54:00:38:3e:a0:1d:dd:5f:3b:bf:d5:e8:5e:1f:da:28:d9:b1: bd:a3:83:a3:f0:86:c3:a7:cf:8b:6a:9e:9f:10:86:b6:20:fa: 8c:b9:41:29:af:e1:3b:27:4d:73:94:25:66:1e:14:da:c9:0d: 83:89:bb:d7:05:0a:97:b9:4c:e1:96:ef:81:b2:80:37:e0:60: ef:5c:0b:35:c7:6f:64:c7:43:1d:a8:18:84:c4:e8:ef:62:c1: 98:c2:31:a5:7d:a0:e0:28:59:df:85:d6:98:44:9b:94:2a:a4: 03:49:2f:08:33:d5:1a:17:ed:79:93:36:6f:8b:cf:bc:73:a8: bc:13:ac:b1:6f:56:0f:6e:0f:08:0e:3f:98:e5:aa:18:7d:44: 0a:fd:e7:af:3b:47:06:2d:a1:a1:10:e2:d3:6b:37:9a:7d:7a: 07:8a:2d:7a:1a:65:0d:1a:0d:f3:75:5d:42:e4:83:b1:08:eb: 53:92:95:47:ad:60:d0:3c:e1:8d:aa:6b:5c:8e:dd:b8:02:8c: a5:20:55:2f:00:96:fd:8c:bd:24:0f:eb:7d:d6:59:f9:f9:a9: db:07:79:d1:08:0e:23:10:c7:1f:44:77:e2:b8:30:05:b7:a1: b9:c1:95:65 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIsb/d+gbVXUu64jES5tK1m7j9c8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTAwMDEwWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MWFlMWUzZjNjODE5MDZiOTkwNmRhYTZmOWYzMDc0NGNj ODdmNWRhYjBkOWY4ZWY5MTZmOWQwNThjOWNlOGM5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxAfAk7z2AtOMt+37iR878vbS3zggkISdEa/coq+Ev1Qim 4x9g14Non6At1CkKU7PoouDZcPLr3UQ7Dg5h2oa0wVpf50Pe+tDF9j6ROb48+a3z sdvfyPkQJgfecY7y3MuLYkQCNPNcf5KO9vZbAdFbWl0911MJTiosy5dkhJ3rDxKq /wUfOiVNSNBV50Ftr1sPYEGqIJL9uWqsEsJOReO+uIrD9altVIy7/kH5t4nIBlZT 26YFU7ZHDLZnG/Y+xsGIa9zyJB27MBNqnEMCggR6farLwJbdw7UEZCjtdaM8VPnZ cq1Q0m0nHT3qhL2JE0yV7nquOOsWtIWIQBuxqxfJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjvwc6Isy7CZYPXsdVRR5eDo3lzswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFkM2NmM2VmLTUxNzgtNDJmOC1iNzJmLWNhZDVjOWViNDM4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAPNAwDQYJKoZIhvcNAQELBQADggEBAArTxjayhfsMZBpIgQSPod8/ sFQAOD6gHd1fO7/V6F4f2ijZsb2jg6PwhsOnz4tqnp8QhrYg+oy5QSmv4TsnTXOU JWYeFNrJDYOJu9cFCpe5TOGW74GygDfgYO9cCzXHb2THQx2oGITE6O9iwZjCMaV9 oOAoWd+F1phEm5QqpANJLwgz1RoX7XmTNm+Lz7xzqLwTrLFvVg9uDwgOP5jlqhh9 RAr95687RwYtoaEQ4tNrN5p9egeKLXoaZQ0aDfN1XULkg7EI61OSlUetYNA84Y2q a1yO3bgCjKUgVS8Alv2MvSQP633WWfn5qdsHedEIDiMQxx9Ed+K4MAW3obnBlWU= -----END CERTIFICATE-----Generated at Sun Mar 1 22:11:58 2026 by rpki-client