$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2f3bc258-26bb-4147-9558-dc29c8a57e1e.roa File: 2f3bc258-26bb-4147-9558-dc29c8a57e1e.roa (raw, json) Hash identifier: IcCcvYd8HHt33mRg5TaMVprjjPCz6QPohQJRPE+U9AM= Subject key identifier: DA:7F:86:01:9C:92:C0:A8:B8:9E:8D:42:15:A3:9B:06:AF:26:5C:77 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1908351DA417EDC5BE7A252111374E55162C9AD9 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2f3bc258-26bb-4147-9558-dc29c8a57e1e.roa Signing time: Fri 13 Feb 2026 10:41:42 +0000 ROA not before: Fri 13 Feb 2026 10:41:42 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:350a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:08:35:1d:a4:17:ed:c5:be:7a:25:21:11:37:4e:55:16:2c:9a:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 10:41:42 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=6057697bfd81ffd2ec5da89fd5da89f665ab9022a4ed9dfca20884024814e2ab, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:80:1b:0e:c5:77:b3:3a:ea:d2:0f:62:59:f6: 05:ab:cb:b4:2b:2e:e2:1c:92:a7:50:d9:b0:f8:c2: 93:08:20:bf:c2:45:f2:da:3f:cb:85:be:cc:42:4b: cc:28:d4:4c:0e:a8:91:0d:74:80:4e:fd:90:14:b4: f8:36:7c:ce:58:38:7f:8b:e3:bb:69:37:dc:0e:1c: 12:fc:b8:67:6a:d6:6b:4a:8a:6e:6e:79:32:ab:98: 0f:8a:c1:3b:55:b4:0a:7d:ab:31:4d:25:30:3c:e1: 74:33:3e:7d:98:2e:a0:59:5e:36:b3:76:80:9b:80: 4e:bd:8c:e2:45:16:6a:f0:7b:1d:07:5d:d5:60:f3: 98:1e:e3:13:e9:99:84:80:9f:65:88:48:26:3a:52: 3d:d4:7c:33:83:8e:25:00:75:fd:3d:98:e7:7f:e1: 09:bf:90:b9:25:31:54:c9:49:c1:8e:d5:14:71:6f: 6a:36:de:ab:49:9a:66:f4:2d:0a:8c:77:9f:d2:12: 5c:27:41:97:dd:ca:da:08:b8:fc:31:00:16:fd:88: 9f:e2:d3:36:ce:34:28:5f:82:99:32:d0:ef:dd:e3: 98:38:70:81:59:79:f4:2d:e7:fd:97:b7:52:93:5d: f2:87:19:93:3c:e8:18:db:94:98:d4:dc:ce:81:00: 7a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:7F:86:01:9C:92:C0:A8:B8:9E:8D:42:15:A3:9B:06:AF:26:5C:77 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2f3bc258-26bb-4147-9558-dc29c8a57e1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:350a::/47 Signature Algorithm: sha256WithRSAEncryption 64:ef:6a:23:67:e0:94:d0:af:83:67:36:97:67:c4:4d:7e:46: 7d:0a:d2:51:5a:21:c9:80:44:84:c7:80:8c:83:b4:f8:6d:df: 16:e5:7f:5a:c2:f0:4e:08:b2:1c:74:85:e8:28:c9:c9:67:69: 1f:c0:65:aa:0e:cd:93:d4:61:8b:c9:ea:de:d4:02:1f:dd:00: e1:c2:d3:3a:e2:4e:f4:37:6a:77:30:99:59:ef:d4:2f:5d:ad: 83:0a:c9:88:a0:f7:f0:84:4f:5c:9e:81:3c:80:c3:dd:5b:c4: 75:b6:c4:2f:1c:86:0b:c3:e9:16:7a:8e:b4:e1:d7:f3:5b:40: e8:d8:a1:21:93:ff:ed:59:d1:e7:58:03:20:1c:86:ca:de:f1: 6b:d6:b3:4f:f9:50:b4:a8:c1:19:1d:df:53:8b:c8:4c:ab:b1: a9:af:c8:ee:51:3b:55:2a:29:85:cc:7e:b7:9f:d8:25:6b:9c: af:44:bd:f4:42:49:ac:1e:3d:d0:58:a6:02:1b:e0:fc:37:4c: 4f:a7:e7:60:14:11:1f:d2:68:c7:5a:78:c8:b6:4e:2f:29:1b: d5:3c:20:ea:04:58:e6:10:35:b8:0f:82:ad:5d:7d:a6:43:01: c4:4c:77:9f:2a:6c:a2:f9:18:96:35:99:0c:d7:80:5b:50:fa: 58:77:6d:50 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGQg1HaQX7cW+eiUhETdOVRYsmtkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTA0MTQyWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDU3Njk3YmZkODFmZmQyZWM1ZGE4OWZkNWRhODlmNjY1 YWI5MDIyYTRlZDlkZmNhMjA4ODQwMjQ4MTRlMmFiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3gBsOxXezOurSD2JZ9gWry7QrLuIckqdQ2bD4wpMIIL/C RfLaP8uFvsxCS8wo1EwOqJENdIBO/ZAUtPg2fM5YOH+L47tpN9wOHBL8uGdq1mtK im5ueTKrmA+KwTtVtAp9qzFNJTA84XQzPn2YLqBZXjazdoCbgE69jOJFFmrwex0H XdVg85ge4xPpmYSAn2WISCY6Uj3UfDODjiUAdf09mOd/4Qm/kLklMVTJScGO1RRx b2o23qtJmmb0LQqMd5/SElwnQZfdytoIuPwxABb9iJ/i0zbONChfgpky0O/d45g4 cIFZefQt5/2Xt1KTXfKHGZM86BjblJjU3M6BAHqFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2n+GAZySwKi4no1CFaObBq8mXHcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJmM2JjMjU4LTI2YmItNDE0Ny05NTU4LWRjMjljOGE1N2UxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANQowDQYJKoZIhvcNAQELBQADggEBAGTvaiNn4JTQr4NnNpdnxE1+ Rn0K0lFaIcmARITHgIyDtPht3xblf1rC8E4Ishx0hegoyclnaR/AZaoOzZPUYYvJ 6t7UAh/dAOHC0zriTvQ3ancwmVnv1C9drYMKyYig9/CET1yegTyAw91bxHW2xC8c hgvD6RZ6jrTh1/NbQOjYoSGT/+1Z0edYAyAchsre8WvWs0/5ULSowRkd31OLyEyr samvyO5RO1UqKYXMfref2CVrnK9EvfRCSawePdBYpgIb4Pw3TE+n52AUER/SaMda eMi2Ti8pG9U8IOoEWOYQNbgPgq1dfaZDAcRMd58qbKL5GJY1mQzXgFtQ+lh3bVA= -----END CERTIFICATE-----Generated at Sun Mar 1 21:56:24 2026 by rpki-client