$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2d7de881-6844-422c-bb6f-261baf9f9428.roa File: 2d7de881-6844-422c-bb6f-261baf9f9428.roa (raw, json) Hash identifier: 6daII6TXv6CwLQcy/QlVmCtCFtc3loxRlJw01dE34EY= Subject key identifier: E9:85:08:8E:D1:D5:74:8E:9B:54:E7:46:D9:D0:AE:98:40:99:02:25 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 351887D70C731433EDE65A548887D5AC839AE8AC Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2d7de881-6844-422c-bb6f-261baf9f9428.roa Signing time: Fri 13 Feb 2026 11:41:31 +0000 ROA not before: Fri 13 Feb 2026 11:41:31 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3540::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:18:87:d7:0c:73:14:33:ed:e6:5a:54:88:87:d5:ac:83:9a:e8:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 11:41:31 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=3280058fe93aac032f515f7bdde199d10ec5e54e910fe22608fd23f3512f60f2, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:cb:f0:bc:60:29:2e:74:4b:d0:ff:89:83:03: fc:76:e8:86:0b:83:8d:4e:a6:01:f8:50:0f:f4:01: d0:07:b4:2b:d5:53:c2:2b:fc:78:67:c3:4d:10:37: 58:1f:74:51:e8:98:b6:ba:fa:de:6c:e0:80:86:72: cb:fe:fe:37:35:c6:85:87:52:ea:23:5f:6f:ad:1c: f1:1a:6e:92:a0:39:1e:1f:cd:04:77:f1:35:b7:40: fe:c4:95:49:31:24:3c:7f:18:97:c3:d1:a1:bc:e7: f1:b2:bf:c1:98:a9:e3:44:fb:74:2c:3d:56:53:6e: 38:d8:00:77:6c:3d:6f:9f:b7:c0:6b:d6:1a:7b:15: e7:08:11:7b:ba:b2:d0:64:48:0d:7a:d7:62:1b:c2: 97:36:be:6f:1f:56:f4:dd:21:c9:59:c9:3a:7b:e0: 5e:75:96:f2:0b:65:4d:74:f1:fa:c6:19:94:44:f9: f1:3e:d6:72:b3:93:be:c2:8f:ad:b3:2e:7f:98:3c: f9:8c:cb:84:5b:15:be:25:ea:49:80:7c:07:c4:55: 8e:ac:1e:37:da:b3:ac:a1:37:67:f7:bb:80:e2:87: b2:1c:c5:40:91:e5:4a:ef:ef:b7:ce:24:ea:8e:b1: 5e:8b:db:4c:40:6f:9a:e4:59:ee:4b:51:aa:cb:30: 09:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:85:08:8E:D1:D5:74:8E:9B:54:E7:46:D9:D0:AE:98:40:99:02:25 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2d7de881-6844-422c-bb6f-261baf9f9428.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3540::/43 Signature Algorithm: sha256WithRSAEncryption ac:38:a6:eb:0e:10:ab:4f:47:37:6d:2e:ab:ce:17:c8:c0:3f: 9f:b6:92:9f:b2:f6:62:7d:79:56:a1:90:5f:7e:8d:02:ff:b0: af:23:c2:ed:41:2d:19:ef:7a:99:df:78:25:39:fd:f1:3a:08: 85:2e:85:af:c7:0d:0b:0a:e8:bd:11:c8:49:32:4e:e2:b5:0f: 4a:4f:89:fb:ea:52:de:68:8e:7e:13:13:61:6e:14:93:03:0a: 82:88:9f:81:fa:37:a0:63:ef:69:63:74:08:a1:20:63:ee:d4: fa:74:7b:1f:7e:6f:fa:1e:a5:22:b6:9e:07:ac:0b:b8:ea:26: 2d:9d:64:70:c0:18:eb:9f:93:eb:2a:f0:bc:62:fe:11:fb:ae: 8f:1e:b0:3f:33:95:cc:6a:9d:95:ef:bb:59:6f:0e:88:9d:4e: db:d4:b9:33:51:7c:e9:ba:d9:a9:e8:a8:89:09:d4:c3:06:62: 02:bf:62:e8:64:82:78:a1:fb:62:3a:2a:27:44:e1:f6:ec:0b: ea:78:4a:31:9d:a2:77:9e:e1:9f:62:7f:d6:96:8a:c5:b7:2b: db:d0:bb:03:7e:f2:23:f7:f7:39:0d:74:5b:ac:41:0f:fb:d1: 41:2a:03:63:28:35:d4:09:7f:45:b5:f8:76:78:e6:9a:c8:1e: 11:75:ca:09 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNRiH1wxzFDPt5lpUiIfVrIOa6KwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTE0MTMxWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjgwMDU4ZmU5M2FhYzAzMmY1MTVmN2JkZGUxOTlkMTBl YzVlNTRlOTEwZmUyMjYwOGZkMjNmMzUxMmY2MGYyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmy/C8YCkudEvQ/4mDA/x26IYLg41OpgH4UA/0AdAHtCvV U8Ir/Hhnw00QN1gfdFHomLa6+t5s4ICGcsv+/jc1xoWHUuojX2+tHPEabpKgOR4f zQR38TW3QP7ElUkxJDx/GJfD0aG85/Gyv8GYqeNE+3QsPVZTbjjYAHdsPW+ft8Br 1hp7FecIEXu6stBkSA1612Ibwpc2vm8fVvTdIclZyTp74F51lvILZU108frGGZRE +fE+1nKzk77Cj62zLn+YPPmMy4RbFb4l6kmAfAfEVY6sHjfas6yhN2f3u4Dih7Ic xUCR5Urv77fOJOqOsV6L20xAb5rkWe5LUarLMAlfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6YUIjtHVdI6bVOdG2dCumECZAiUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJkN2RlODgxLTY4NDQtNDIyYy1iYjZmLTI2MWJhZjlmOTQyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAANUAwDQYJKoZIhvcNAQELBQADggEBAKw4pusOEKtPRzdtLqvOF8jA P5+2kp+y9mJ9eVahkF9+jQL/sK8jwu1BLRnvepnfeCU5/fE6CIUuha/HDQsK6L0R yEkyTuK1D0pPifvqUt5ojn4TE2FuFJMDCoKIn4H6N6Bj72ljdAihIGPu1Pp0ex9+ b/oepSK2ngesC7jqJi2dZHDAGOufk+sq8Lxi/hH7ro8esD8zlcxqnZXvu1lvDoid TtvUuTNRfOm62anoqIkJ1MMGYgK/Yuhkgnih+2I6KidE4fbsC+p4SjGdonee4Z9i f9aWisW3K9vQuwN+8iP39zkNdFusQQ/70UEqA2MoNdQJf0W1+HZ45prIHhF1ygk= -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:04 2026 by rpki-client