$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/29ef5680-83ff-4872-af1e-53b29265256c.roa File: 29ef5680-83ff-4872-af1e-53b29265256c.roa (raw, json) Hash identifier: FpzFl+IQOQXKb3wCpZstD5zuTqekjMltTi0sEqAFbY4= Subject key identifier: B2:99:90:25:F0:6A:AA:4E:AB:41:00:E6:F7:1A:86:96:9C:D8:78:A7 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 56C1E7A071B50CA4C0EFA5545428C8052510BCEA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/29ef5680-83ff-4872-af1e-53b29265256c.roa Signing time: Fri 13 Feb 2026 05:01:23 +0000 ROA not before: Fri 13 Feb 2026 05:01:23 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3d32::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:c1:e7:a0:71:b5:0c:a4:c0:ef:a5:54:54:28:c8:05:25:10:bc:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 05:01:23 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=bd27321b18237c65bd26b3e77b1e943b5a838222e57abb5bf726bec57e859bd1, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:0c:db:15:bb:39:d7:dc:ac:b2:32:04:d5:66: 0e:65:b7:ae:78:69:2f:00:8f:30:a7:66:66:73:5e: e5:bb:cf:6c:ae:43:5a:54:01:41:7c:83:34:0a:01: ab:cc:46:2f:bb:0b:90:79:71:1c:d4:a7:a9:7b:13: 9c:cf:92:a7:85:ea:62:2c:6d:be:c3:e5:9e:dd:e9: 3c:fc:3a:75:8b:3e:ac:73:45:40:5c:0d:34:82:ac: d1:16:60:f7:23:ed:72:3c:06:6f:8e:12:7d:32:c5: a1:c5:ab:7b:36:96:35:b6:0d:fa:c6:06:d5:da:a7: 2e:c5:bd:71:5d:3c:e4:4b:cd:96:cb:e6:9e:99:d7: 28:55:27:e2:86:9c:b0:e7:14:e1:ab:40:2e:d3:e9: b7:44:ec:85:1a:d7:c9:86:f0:aa:f7:e4:bf:55:07: 24:25:e2:a2:b3:cf:81:ad:d7:d6:d4:80:45:e9:e6: c7:31:51:2e:65:d2:4d:b5:c5:29:d4:61:d7:b8:29: d7:03:c0:e5:5a:63:b5:3c:fc:dc:76:6a:85:6b:06: 9b:58:9c:97:48:91:62:bb:33:69:ff:f3:0d:e8:be: 46:ef:fe:c6:3e:62:a0:7b:5c:00:96:c0:8c:ef:36: 04:89:41:e1:39:57:b1:3f:e9:48:41:20:87:3e:6b: 47:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:99:90:25:F0:6A:AA:4E:AB:41:00:E6:F7:1A:86:96:9C:D8:78:A7 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/29ef5680-83ff-4872-af1e-53b29265256c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3d32::/47 Signature Algorithm: sha256WithRSAEncryption 60:2b:3b:af:3d:cd:d3:0b:3f:c2:9f:da:d5:1c:91:fe:9d:34: 80:ee:18:d7:fe:70:0c:2e:14:39:2d:56:6f:63:7a:e9:a5:22: a4:e2:97:ec:32:29:7b:3e:0a:69:da:e8:22:5e:63:be:6d:5b: 0d:ec:c9:f0:65:8e:4e:8e:fc:88:26:84:a5:f9:0a:77:51:56: 24:43:41:86:36:1f:e0:80:4a:07:d4:fd:ed:70:4c:33:81:70: 7b:aa:4b:f9:59:05:54:bd:aa:1d:28:cd:bd:b9:6a:7f:81:7e: 6f:db:89:ed:42:75:c5:a9:0a:b8:53:da:fa:0b:77:7b:e3:3d: 9c:8b:fc:20:1f:5c:de:a7:93:d4:15:a4:71:c9:d4:17:60:4e: 20:36:cb:f4:41:2a:32:ba:d4:79:09:e7:6e:09:d7:0f:02:ac: 8d:b0:ca:25:cf:94:75:0c:c7:4a:25:6d:5d:43:ab:d9:4d:53: 85:56:a9:4e:9c:49:2e:e9:9b:b0:27:62:d5:e5:cc:a0:31:45: 25:71:e4:65:c3:6c:02:b4:eb:54:d8:36:82:39:f6:cb:25:c2: e2:91:3c:fa:de:bd:35:28:f0:63:ac:f6:d5:67:aa:82:11:62: f7:ee:b4:54:37:09:1b:32:9b:23:1f:69:e1:72:b1:6f:52:05: 4d:22:37:58 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVsHnoHG1DKTA76VUVCjIBSUQvOowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDUwMTIzWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDI3MzIxYjE4MjM3YzY1YmQyNmIzZTc3YjFlOTQzYjVh ODM4MjIyZTU3YWJiNWJmNzI2YmVjNTdlODU5YmQxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQDNsVuznX3KyyMgTVZg5lt654aS8AjzCnZmZzXuW7z2yu Q1pUAUF8gzQKAavMRi+7C5B5cRzUp6l7E5zPkqeF6mIsbb7D5Z7d6Tz8OnWLPqxz RUBcDTSCrNEWYPcj7XI8Bm+OEn0yxaHFq3s2ljW2DfrGBtXapy7FvXFdPORLzZbL 5p6Z1yhVJ+KGnLDnFOGrQC7T6bdE7IUa18mG8Kr35L9VByQl4qKzz4Gt19bUgEXp 5scxUS5l0k21xSnUYde4KdcDwOVaY7U8/Nx2aoVrBptYnJdIkWK7M2n/8w3ovkbv /sY+YqB7XACWwIzvNgSJQeE5V7E/6UhBIIc+a0crAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUspmQJfBqqk6rQQDm9xqGlpzYeKcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI5ZWY1NjgwLTgzZmYtNDg3Mi1hZjFlLTUzYjI5MjY1MjU2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAPTIwDQYJKoZIhvcNAQELBQADggEBAGArO689zdMLP8Kf2tUckf6d NIDuGNf+cAwuFDktVm9jeumlIqTil+wyKXs+Cmna6CJeY75tWw3syfBljk6O/Igm hKX5CndRViRDQYY2H+CASgfU/e1wTDOBcHuqS/lZBVS9qh0ozb25an+Bfm/bie1C dcWpCrhT2voLd3vjPZyL/CAfXN6nk9QVpHHJ1BdgTiA2y/RBKjK61HkJ524J1w8C rI2wyiXPlHUMx0olbV1Dq9lNU4VWqU6cSS7pm7AnYtXlzKAxRSVx5GXDbAK061TY NoI59sslwuKRPPrevTUo8GOs9tVnqoIRYvfutFQ3CRsymyMfaeFysW9SBU0iN1g= -----END CERTIFICATE-----Generated at Sun Mar 1 22:20:30 2026 by rpki-client