$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1de4731e-341c-4735-9e5a-2cdbce03d004.roa File: 1de4731e-341c-4735-9e5a-2cdbce03d004.roa (raw, json) Hash identifier: A2+noPB6Wf+g1E5nxZewuicMBw7lp0Prb1cAS5hobFQ= Subject key identifier: 9C:28:B5:66:C5:AC:52:EE:59:45:7E:51:4B:A5:86:56:44:5D:59:E4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 35E1A1208BA3B33DB49463C771D1F05DA3390D38 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1de4731e-341c-4735-9e5a-2cdbce03d004.roa Signing time: Fri 13 Feb 2026 10:31:52 +0000 ROA not before: Fri 13 Feb 2026 10:31:52 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2af0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:e1:a1:20:8b:a3:b3:3d:b4:94:63:c7:71:d1:f0:5d:a3:39:0d:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 10:31:52 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=c166ae4403730958f9f2cb77927d424d3bab7eceafabbae1e889a16883c52706, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:63:09:00:2a:f9:a9:78:fb:85:4e:e6:f1:e4: ea:de:90:cc:ea:85:a5:b2:9e:a4:ee:26:cc:2c:5e: f7:e1:95:a9:2b:0e:ce:a3:a2:40:aa:b2:77:f6:42: 95:26:dc:13:46:30:3b:87:c9:ae:7b:56:b0:e0:0b: 29:65:2c:a4:0c:f9:da:dd:28:79:a1:78:fa:6c:ff: 88:48:0d:71:b7:6b:bd:45:94:cd:a8:cb:27:55:cd: fd:87:52:90:a8:e7:05:d5:2c:b8:7c:9b:cf:d4:4a: cc:23:2b:1a:ed:77:48:0d:cb:9d:31:06:bf:87:fe: 7c:d5:18:7e:4e:07:78:be:bc:49:39:18:b1:50:d5: 23:13:8a:35:48:fd:b4:31:fb:a2:cd:76:bf:5e:ab: ee:9a:86:f2:8e:4b:29:70:9e:16:ce:7f:b6:82:74: 2d:78:94:44:0b:98:41:09:e0:81:43:c4:e0:c0:1f: cc:c9:36:df:e1:d2:0f:f8:29:c6:bc:bb:5c:86:7c: fd:b8:9e:3b:29:f3:a1:66:b1:7c:78:32:78:5e:ae: c8:2e:d2:0e:4b:4f:0c:0e:98:f1:32:1d:fd:20:55: f2:fb:4c:03:1d:b2:0b:ef:89:81:47:5f:9e:45:02: 8c:88:1a:c4:7f:10:fb:84:40:15:cb:b0:2d:7d:9a: 1e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:28:B5:66:C5:AC:52:EE:59:45:7E:51:4B:A5:86:56:44:5D:59:E4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1de4731e-341c-4735-9e5a-2cdbce03d004.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2af0::/44 Signature Algorithm: sha256WithRSAEncryption 33:49:74:6f:51:3e:12:fa:a8:75:80:db:47:22:5c:0e:21:21: 00:a0:d3:ca:26:fe:56:37:17:34:95:f8:f4:98:b5:83:ec:61: ac:f9:58:a7:35:72:91:47:d3:2d:9b:ff:d9:be:0f:67:89:6f: f7:a6:a2:e8:d9:c6:57:65:3a:a8:56:e2:55:82:49:ba:0a:53: e2:d4:8c:d4:25:33:35:2e:7d:97:a5:9a:b4:db:c7:ee:a2:21: 0e:f5:d5:4e:30:d1:e8:74:b9:e9:9c:7a:f3:f4:b7:5f:32:f2: 80:67:ea:b8:4b:a7:ed:ef:83:3a:f1:57:ba:eb:60:ec:08:b8: 7f:66:4f:b5:ad:b1:46:7c:85:b0:28:64:cc:96:ee:ba:90:97: 59:7f:ba:90:4d:cf:7f:b3:f5:90:4f:3f:7f:a0:3a:25:29:e8: 5c:5f:b8:44:0c:4a:e5:3f:81:5c:66:d4:ac:38:24:bf:7c:ac: f8:68:40:0c:79:9a:a4:51:6f:ae:48:fb:97:0d:d7:79:57:a1: e3:ca:f6:51:99:3e:49:fc:02:53:4d:c4:e6:6c:9a:cc:2e:df: 26:49:90:03:32:04:f1:f1:f6:33:84:70:86:ec:c7:8a:91:99: 5a:02:ba:95:a4:ee:03:2a:4f:54:87:f4:ef:94:29:c5:e4:64: 1d:a4:40:01 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNeGhIIujsz20lGPHcdHwXaM5DTgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTAzMTUyWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTY2YWU0NDAzNzMwOTU4ZjlmMmNiNzc5MjdkNDI0ZDNi YWI3ZWNlYWZhYmJhZTFlODg5YTE2ODgzYzUyNzA2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIYwkAKvmpePuFTubx5OrekMzqhaWynqTuJswsXvfhlakr Ds6jokCqsnf2QpUm3BNGMDuHya57VrDgCyllLKQM+drdKHmhePps/4hIDXG3a71F lM2oyydVzf2HUpCo5wXVLLh8m8/USswjKxrtd0gNy50xBr+H/nzVGH5OB3i+vEk5 GLFQ1SMTijVI/bQx+6LNdr9eq+6ahvKOSylwnhbOf7aCdC14lEQLmEEJ4IFDxODA H8zJNt/h0g/4Kca8u1yGfP24njsp86FmsXx4Mnhersgu0g5LTwwOmPEyHf0gVfL7 TAMdsgvviYFHX55FAoyIGsR/EPuEQBXLsC19mh5JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnCi1ZsWsUu5ZRX5RS6WGVkRdWeQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFkZTQ3MzFlLTM0MWMtNDczNS05ZTVhLTJjZGJjZTAzZDAwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAKvAwDQYJKoZIhvcNAQELBQADggEBADNJdG9RPhL6qHWA20ciXA4h IQCg08om/lY3FzSV+PSYtYPsYaz5WKc1cpFH0y2b/9m+D2eJb/emoujZxldlOqhW 4lWCSboKU+LUjNQlMzUufZelmrTbx+6iIQ711U4w0eh0uemcevP0t18y8oBn6rhL p+3vgzrxV7rrYOwIuH9mT7WtsUZ8hbAoZMyW7rqQl1l/upBNz3+z9ZBPP3+gOiUp 6FxfuEQMSuU/gVxm1Kw4JL98rPhoQAx5mqRRb65I+5cN13lXoePK9lGZPkn8AlNN xOZsmswu3yZJkAMyBPHx9jOEcIbsx4qRmVoCupWk7gMqT1SH9O+UKcXkZB2kQAE= -----END CERTIFICATE-----Generated at Mon Mar 2 02:47:38 2026 by rpki-client