$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/245576c4-866d-4491-a1bc-ed3332f631b3.roa File: 245576c4-866d-4491-a1bc-ed3332f631b3.roa (raw, json) Hash identifier: 7ueZZC5KId4Grb0v6Aj6bE4vlFSbBIcI1s3G8CNniIw= Subject key identifier: BB:DF:E8:5E:6D:8F:41:5A:4C:67:39:4F:3D:42:80:76:38:BD:05:00 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 17144A51ADC8B7A84EDF339BC08130843F76250B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/245576c4-866d-4491-a1bc-ed3332f631b3.roa Signing time: Thu 12 Feb 2026 01:31:52 +0000 ROA not before: Thu 12 Feb 2026 01:31:52 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2b88::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:14:4a:51:ad:c8:b7:a8:4e:df:33:9b:c0:81:30:84:3f:76:25:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 01:31:52 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=4cb962c558eaa477c8a202f2d1855f1262b81685edd29f4046cb2b1c484fbe7f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:32:b9:6e:bf:fb:6c:4e:9d:39:9e:7d:5a:1a: 89:be:d9:2b:e3:a0:ca:51:47:fa:63:78:71:70:70: 7a:90:56:99:01:e7:07:6a:00:ce:9e:5b:81:32:62: 3f:b0:97:15:86:d3:77:db:57:d0:ef:d0:fc:19:e0: 5e:02:50:6e:de:63:c6:2f:db:6e:0b:63:67:27:8c: 0a:09:66:b0:90:16:a7:6b:bf:6c:4d:18:e4:29:8c: e8:15:79:7e:80:bd:39:37:e3:f1:e1:39:83:b0:0c: 32:7c:f9:29:dc:69:0e:6f:d4:42:c4:9c:c0:e0:97: 5c:3f:f9:c6:af:c8:aa:2d:f8:0f:c8:5f:46:12:f9: f8:e2:ab:9f:39:23:70:b7:df:b7:cd:51:69:68:44: 23:06:01:9e:be:be:c4:df:9f:8f:e3:7d:92:45:89: d7:a5:43:3b:c5:73:ee:4b:97:2d:cf:07:5c:86:70: a7:5f:3f:8f:80:8f:8a:22:62:48:3a:88:70:91:eb: fe:82:a2:31:df:2f:21:97:30:3d:23:c1:15:98:91: 7e:59:58:d2:f7:2d:3d:46:0c:3f:72:81:99:31:f4: a4:a3:b6:93:56:31:84:47:6c:2e:28:0e:74:3b:ae: 47:e6:10:45:dd:65:23:4f:e6:2e:17:21:3c:19:5b: b9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DF:E8:5E:6D:8F:41:5A:4C:67:39:4F:3D:42:80:76:38:BD:05:00 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/245576c4-866d-4491-a1bc-ed3332f631b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2b88::/47 Signature Algorithm: sha256WithRSAEncryption 48:38:a8:cc:13:eb:16:2e:bf:f1:83:df:a5:56:70:d3:49:23: 14:e3:51:e2:b6:7b:bf:7d:d5:ec:ef:08:8a:64:93:a3:01:a5: 41:a2:4f:1d:dd:ba:b0:a3:8a:0c:81:3c:43:4c:4e:ca:9c:ff: 00:81:d0:ef:f8:79:39:94:7c:20:e2:56:fa:5f:12:7b:e6:85: 7a:9a:88:c9:49:11:36:99:83:94:9b:3b:98:ff:ae:79:13:e7: 79:52:9d:90:1b:58:be:93:f5:8f:50:10:cf:9d:fe:34:49:61: fa:c7:51:0d:9a:d1:a7:c0:95:61:0f:39:aa:de:b7:75:ee:ba: d1:25:d8:10:cc:4b:fb:bb:66:53:d2:81:4c:72:7e:b6:93:53: 1c:54:1c:06:b2:be:55:4e:16:98:ed:c1:5d:02:4e:e5:3f:76: 32:8a:ee:48:1b:fd:d8:1a:a4:6b:14:d5:a4:9f:60:d6:b3:0b: 37:ac:bc:3f:32:22:8a:a7:2f:d9:4d:40:73:2d:eb:a7:6e:4a: c2:ee:44:81:4d:6a:a2:58:7f:fb:d3:3e:67:4f:39:63:8f:88: 27:ce:64:a4:55:17:56:60:37:52:48:c7:41:a1:28:07:36:1c: 23:ac:91:e4:6b:38:cc:59:ab:3b:71:09:61:28:65:b8:5a:50: 01:1e:ec:21 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFxRKUa3It6hO3zObwIEwhD92JQswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDEzMTUyWhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2I5NjJjNTU4ZWFhNDc3YzhhMjAyZjJkMTg1NWYxMjYy YjgxNjg1ZWRkMjlmNDA0NmNiMmIxYzQ4NGZiZTdmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuMrluv/tsTp05nn1aGom+2SvjoMpRR/pjeHFwcHqQVpkB 5wdqAM6eW4EyYj+wlxWG03fbV9Dv0PwZ4F4CUG7eY8Yv224LY2cnjAoJZrCQFqdr v2xNGOQpjOgVeX6AvTk34/HhOYOwDDJ8+SncaQ5v1ELEnMDgl1w/+cavyKot+A/I X0YS+fjiq585I3C337fNUWloRCMGAZ6+vsTfn4/jfZJFidelQzvFc+5Lly3PB1yG cKdfP4+Aj4oiYkg6iHCR6/6CojHfLyGXMD0jwRWYkX5ZWNL3LT1GDD9ygZkx9KSj tpNWMYRHbC4oDnQ7rkfmEEXdZSNP5i4XITwZW7k1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUu9/oXm2PQVpMZzlPPUKAdji9BQAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI0NTU3NmM0LTg2NmQtNDQ5MS1hMWJjLWVkMzMzMmY2MzFiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAK4gwDQYJKoZIhvcNAQELBQADggEBAEg4qMwT6xYuv/GD36VWcNNJ IxTjUeK2e7991ezvCIpkk6MBpUGiTx3durCjigyBPENMTsqc/wCB0O/4eTmUfCDi VvpfEnvmhXqaiMlJETaZg5SbO5j/rnkT53lSnZAbWL6T9Y9QEM+d/jRJYfrHUQ2a 0afAlWEPOaret3XuutEl2BDMS/u7ZlPSgUxyfraTUxxUHAayvlVOFpjtwV0CTuU/ djKK7kgb/dgapGsU1aSfYNazCzesvD8yIoqnL9lNQHMt66duSsLuRIFNaqJYf/vT PmdPOWOPiCfOZKRVF1ZgN1JIx0GhKAc2HCOskeRrOMxZqztxCWEoZbhaUAEe7CE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:34:09 2026 by rpki-client