$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/20f222fa-ca8c-4134-a3a7-580069ba6608.roa File: 20f222fa-ca8c-4134-a3a7-580069ba6608.roa (raw, json) Hash identifier: 1G3E2RzkOBn9vJPW+0E/Zg8I8XsEV6olX1PMlebqH+E= Subject key identifier: EE:CA:FF:EF:8E:A2:45:0D:D4:13:4A:C8:B8:65:22:70:09:11:2C:F2 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 690ECE270172C9EF0B6054B90F7EB777487205CF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/20f222fa-ca8c-4134-a3a7-580069ba6608.roa Signing time: Fri 13 Feb 2026 10:01:04 +0000 ROA not before: Fri 13 Feb 2026 10:01:04 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3a1a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:0e:ce:27:01:72:c9:ef:0b:60:54:b9:0f:7e:b7:77:48:72:05:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 10:01:04 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=4d7508ef4cd55294a47e8ab964975ab47560566fe969edbc978a1be483144076, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cf:11:bb:51:f3:94:39:02:67:b9:e4:b2:15: 76:9f:96:f4:5a:75:5a:bc:64:cc:65:d1:b0:4a:8e: ac:b3:8f:67:02:0e:0e:b8:a0:45:32:1d:65:b9:ba: ed:79:1f:f1:3e:c7:26:74:e6:75:a4:7b:45:d5:ae: 13:79:04:f1:7e:05:b0:cb:0c:72:99:de:8b:05:84: 98:4c:32:11:79:ca:7c:2c:7e:16:50:c7:d5:04:88: 64:64:ce:f6:c8:a4:20:ee:b7:df:f1:7b:df:cc:87: a7:b0:9e:d3:18:cc:57:cc:b3:fe:cb:40:64:39:e0: da:32:15:8e:a5:1c:c0:1d:b8:61:aa:c5:90:a3:ea: 8a:54:05:14:c6:70:63:c4:42:fa:ac:75:94:b1:98: 32:25:f1:25:3f:0c:b2:d9:69:52:f0:97:92:a4:a2: 1f:c0:fc:5f:aa:ed:94:6d:13:87:e4:cf:d2:34:c2: f5:45:7e:48:b3:e4:f5:a3:75:ed:74:c9:dd:9b:9e: ed:bc:5b:2d:a9:98:35:d9:48:d0:5c:5a:7f:13:b0: 58:27:86:00:bc:9c:55:c8:35:b8:c9:8a:1d:7b:63: c2:47:4d:29:88:a9:22:10:03:b1:e9:e8:39:2e:54: bf:dd:65:50:aa:25:5f:c2:e4:b7:2f:c2:52:de:87: 7c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:CA:FF:EF:8E:A2:45:0D:D4:13:4A:C8:B8:65:22:70:09:11:2C:F2 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/20f222fa-ca8c-4134-a3a7-580069ba6608.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3a1a::/47 Signature Algorithm: sha256WithRSAEncryption b0:91:21:1e:c0:cf:38:a8:04:02:88:11:90:1d:e9:29:a2:02: 55:92:af:cb:20:c7:da:95:e5:28:8f:1d:82:d6:87:f2:39:e6: 31:6e:bb:bd:31:6c:dc:50:fc:ba:3b:ab:c5:4c:5f:12:4d:e6: 86:c0:9d:de:e3:cc:af:50:95:96:7c:66:fe:66:20:1f:ba:fa: 10:e5:d7:96:39:41:28:c0:9e:af:5b:b4:a5:e6:31:c8:24:e5: b0:d4:94:69:22:d7:17:c8:43:d0:b0:b1:05:60:73:ae:2a:79: 18:79:c2:2a:62:f8:c2:c6:a2:25:d3:c4:3a:27:30:34:2b:e9: 89:b5:ae:7e:94:cf:51:42:a1:8f:bd:b9:37:de:b1:62:fe:4c: 75:4e:63:03:5a:70:b2:b1:79:82:8d:2c:ee:2b:ec:4a:3d:fa: 7f:37:ac:b6:c2:99:4c:81:ba:aa:40:46:13:ba:ba:d9:c9:6f: 86:b5:f9:26:d7:0f:b0:fa:d1:3f:de:c9:4e:9a:55:16:f3:2f: 9e:2a:1d:ea:7c:88:1c:89:3e:f1:ee:90:cc:4d:62:bc:1f:57: 8f:13:22:6f:00:47:c5:88:42:f9:f3:51:ae:71:a4:2c:c7:67: f2:40:b5:ea:e7:91:6b:06:11:83:45:ed:b5:5b:de:9e:05:8f: 80:f6:a3:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaQ7OJwFyye8LYFS5D363d0hyBc8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTAwMTA0WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZDc1MDhlZjRjZDU1Mjk0YTQ3ZThhYjk2NDk3NWFiNDc1 NjA1NjZmZTk2OWVkYmM5NzhhMWJlNDgzMTQ0MDc2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9zxG7UfOUOQJnueSyFXaflvRadVq8ZMxl0bBKjqyzj2cC Dg64oEUyHWW5uu15H/E+xyZ05nWke0XVrhN5BPF+BbDLDHKZ3osFhJhMMhF5ynws fhZQx9UEiGRkzvbIpCDut9/xe9/Mh6ewntMYzFfMs/7LQGQ54NoyFY6lHMAduGGq xZCj6opUBRTGcGPEQvqsdZSxmDIl8SU/DLLZaVLwl5Kkoh/A/F+q7ZRtE4fkz9I0 wvVFfkiz5PWjde10yd2bnu28Wy2pmDXZSNBcWn8TsFgnhgC8nFXINbjJih17Y8JH TSmIqSIQA7Hp6DkuVL/dZVCqJV/C5LcvwlLeh3xnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7sr/746iRQ3UE0rIuGUicAkRLPIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIwZjIyMmZhLWNhOGMtNDEzNC1hM2E3LTU4MDA2OWJhNjYwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOhowDQYJKoZIhvcNAQELBQADggEBALCRIR7AzzioBAKIEZAd6Smi AlWSr8sgx9qV5SiPHYLWh/I55jFuu70xbNxQ/Lo7q8VMXxJN5obAnd7jzK9QlZZ8 Zv5mIB+6+hDl15Y5QSjAnq9btKXmMcgk5bDUlGki1xfIQ9CwsQVgc64qeRh5wipi +MLGoiXTxDonMDQr6Ym1rn6Uz1FCoY+9uTfesWL+THVOYwNacLKxeYKNLO4r7Eo9 +n83rLbCmUyBuqpARhO6utnJb4a1+SbXD7D60T/eyU6aVRbzL54qHep8iByJPvHu kMxNYrwfV48TIm8AR8WIQvnzUa5xpCzHZ/JAternkWsGEYNF7bVb3p4Fj4D2o3I= -----END CERTIFICATE-----Generated at Mon Mar 2 03:41:39 2026 by rpki-client