$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25aa7b6a-0fc3-4147-bf5a-50d01bca664d.roa File: 25aa7b6a-0fc3-4147-bf5a-50d01bca664d.roa (raw, json) Hash identifier: 96IVvnz6bg9NslpGDUFQDWrW5pCnbb/0YXDnREkJUgg= Subject key identifier: BD:20:CB:EF:93:E0:65:41:9E:21:5E:50:A0:87:62:06:5A:68:59:AD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5487B411D302E9549BC0962E19E103E1756970DA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25aa7b6a-0fc3-4147-bf5a-50d01bca664d.roa Signing time: Fri 13 Feb 2026 11:41:33 +0000 ROA not before: Fri 13 Feb 2026 11:41:33 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2f28::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:87:b4:11:d3:02:e9:54:9b:c0:96:2e:19:e1:03:e1:75:69:70:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 11:41:33 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=caa06736d87ef2380e2eeb592f9b89c5d1490a865207b02a8d57d6d8ca4cae88, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c7:00:27:98:8d:03:da:52:ab:22:0f:20:46: a4:f5:80:08:51:4a:e6:c1:e7:3d:26:7e:d4:39:9d: f6:b5:d7:8b:b8:64:f2:a9:b8:ce:36:7d:6d:3b:59: ad:93:3e:cd:0f:22:14:67:9f:8f:8b:93:8f:d2:b6: 9a:cd:45:73:b6:7d:0f:f6:ea:63:3b:d5:1e:88:5a: da:16:30:99:a9:02:e0:76:37:43:f2:6b:a5:8e:9b: 12:66:4e:6b:fc:92:78:eb:6a:2e:83:55:79:8c:92: d7:cc:04:b9:13:6a:3a:19:7d:b3:ef:9d:ac:d0:2d: 9a:85:9e:c8:05:d9:38:ba:20:d8:de:1d:d6:d3:e6: ab:d4:33:ae:be:4f:54:de:48:16:1e:c8:b9:0d:da: f0:53:a8:07:2c:e0:65:fd:44:d5:fb:c2:95:81:89: 43:a6:af:c4:eb:6a:55:19:df:7a:17:7a:2f:b5:eb: 41:35:5f:9c:59:f0:44:83:0f:a4:6d:c9:7e:cb:b9: 11:38:b5:05:69:e0:6c:61:4f:f1:7f:2e:0f:1e:8a: 34:39:5e:87:43:73:be:ab:a3:d8:bb:10:42:ba:e5: e2:4d:a8:f4:b1:e6:2c:ed:96:4f:ab:d9:3b:7a:df: 5e:20:ab:d7:a3:ec:bd:62:b7:dc:e4:96:d9:7f:1b: 1f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:20:CB:EF:93:E0:65:41:9E:21:5E:50:A0:87:62:06:5A:68:59:AD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25aa7b6a-0fc3-4147-bf5a-50d01bca664d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2f28::/45 Signature Algorithm: sha256WithRSAEncryption 69:94:0f:45:fc:f2:57:25:43:76:b5:e7:b8:4c:bb:b3:17:9c: 77:aa:1c:67:ab:f0:5c:3c:8f:c7:98:a9:d5:c8:26:85:3c:c0: 3b:35:7c:2b:18:b7:b2:90:67:17:1e:17:71:af:cf:f6:82:6b: b0:bc:29:ef:a6:40:f0:00:73:4e:fd:f3:bc:74:0d:12:03:f9: 85:c2:ad:91:b9:ff:84:78:9f:ef:bc:2f:b2:b0:48:24:c6:62: 3c:70:16:65:31:51:df:26:bc:e2:f5:ad:18:1d:47:e8:f3:15: db:86:cf:a6:f5:dc:06:27:37:e2:65:ae:70:56:95:24:fb:a1: 9b:a1:ba:f9:e2:40:86:0e:4e:8f:5b:e8:2f:a1:7b:cf:78:a1: 95:1e:70:8c:ad:a9:fa:37:d8:f9:3f:68:1e:82:39:da:d7:90: 06:3c:72:6e:e9:ef:dc:af:96:f8:56:e8:1e:a0:7e:ec:cf:10: ca:87:f1:78:a5:0f:da:8d:15:87:9f:fa:14:4c:2d:5a:62:cc: 62:f3:e0:ba:80:8f:0d:c3:df:78:60:86:7e:12:03:4f:9d:bf: dc:06:c7:18:c3:41:dc:2e:16:12:20:b0:3f:e2:21:32:d4:fa: 5b:86:13:43:dc:57:17:de:3f:17:29:1b:2a:83:02:88:11:5f: 91:24:2b:b3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVIe0EdMC6VSbwJYuGeED4XVpcNowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTE0MTMzWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWEwNjczNmQ4N2VmMjM4MGUyZWViNTkyZjliODljNWQx NDkwYTg2NTIwN2IwMmE4ZDU3ZDZkOGNhNGNhZTg4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCxwAnmI0D2lKrIg8gRqT1gAhRSubB5z0mftQ5nfa114u4 ZPKpuM42fW07Wa2TPs0PIhRnn4+Lk4/StprNRXO2fQ/26mM71R6IWtoWMJmpAuB2 N0Pya6WOmxJmTmv8knjrai6DVXmMktfMBLkTajoZfbPvnazQLZqFnsgF2Ti6INje HdbT5qvUM66+T1TeSBYeyLkN2vBTqAcs4GX9RNX7wpWBiUOmr8TralUZ33oXei+1 60E1X5xZ8ESDD6RtyX7LuRE4tQVp4GxhT/F/Lg8eijQ5XodDc76ro9i7EEK65eJN qPSx5iztlk+r2Tt6314gq9ej7L1it9zkltl/Gx/nAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvSDL75PgZUGeIV5QoIdiBlpoWa0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI1YWE3YjZhLTBmYzMtNDE0Ny1iZjVhLTUwZDAxYmNhNjY0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAALygwDQYJKoZIhvcNAQELBQADggEBAGmUD0X88lclQ3a157hMu7MX nHeqHGer8Fw8j8eYqdXIJoU8wDs1fCsYt7KQZxceF3Gvz/aCa7C8Ke+mQPAAc079 87x0DRID+YXCrZG5/4R4n++8L7KwSCTGYjxwFmUxUd8mvOL1rRgdR+jzFduGz6b1 3AYnN+JlrnBWlST7oZuhuvniQIYOTo9b6C+he894oZUecIytqfo32Pk/aB6COdrX kAY8cm7p79yvlvhW6B6gfuzPEMqH8XilD9qNFYef+hRMLVpizGLz4LqAjw3D33hg hn4SA0+dv9wGxxjDQdwuFhIgsD/iITLU+luGE0PcVxfePxcpGyqDAogRX5EkK7M= -----END CERTIFICATE-----Generated at Sun Mar 1 23:54:12 2026 by rpki-client