$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2f3e2009-8534-47c4-8751-274058da1e30.roa File: 2f3e2009-8534-47c4-8751-274058da1e30.roa (raw, json) Hash identifier: DEZUJBx3tV2U6hLfQoPnzg8zjWltZ2kOwxrA/bxICj0= Subject key identifier: 7D:B4:8C:44:0D:B9:2E:72:8F:42:DD:BE:EA:FF:9A:98:D3:25:1A:BD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1CE15DBFF7DEB8601B646D6384EEE657A01F3AFC Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2f3e2009-8534-47c4-8751-274058da1e30.roa Signing time: Fri 03 Apr 2026 01:31:01 +0000 ROA not before: Fri 03 Apr 2026 01:31:01 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:109f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:e1:5d:bf:f7:de:b8:60:1b:64:6d:63:84:ee:e6:57:a0:1f:3a:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 01:31:01 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=2259a1ffe21e6f12af9e622431f7f8b0b43b0917b8244c43b4a743ad23e4e25d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:04:95:91:de:f8:65:c1:e4:2d:b6:65:f4:fe: 0f:27:7b:fd:57:80:4d:ef:25:31:d7:c2:47:8e:b9: a2:67:74:f5:8c:10:de:5d:a9:60:45:43:a8:1e:f8: b9:60:14:6d:6b:8b:40:6a:6e:45:b3:0c:eb:98:1a: 31:3a:9c:5a:f5:9e:95:2c:87:85:3e:53:29:f0:3f: e7:d6:1d:37:d1:8e:8b:5d:65:33:db:70:78:8a:72: d8:8c:ca:77:7e:7b:3e:73:26:c6:cc:60:e1:c7:34: 8e:e6:b3:eb:98:4f:0b:f5:cc:d4:1d:62:fe:0a:25: 86:cf:c5:d0:21:9c:12:ee:74:72:5a:15:5a:f1:ab: 8b:4b:94:83:2f:35:78:75:d6:3a:47:5c:24:9b:d9: ea:bc:e6:43:fb:ea:dd:8f:fb:8e:93:da:52:bf:3d: 8e:03:6a:d7:1e:23:5c:de:f3:b9:a6:de:90:fe:c3: 08:fc:7e:d5:83:fb:1d:b4:69:ff:8b:c9:c7:ae:b5: f3:a4:d5:76:bd:7e:af:90:23:c7:93:c1:e3:95:9d: c8:94:53:f6:9c:4d:3c:59:3d:8e:f7:44:0d:82:f8: 44:73:45:6d:4b:24:14:77:51:66:90:cf:f5:22:54: 55:dc:9b:fe:5d:12:6b:70:50:b1:0a:cd:a0:bb:2d: db:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:B4:8C:44:0D:B9:2E:72:8F:42:DD:BE:EA:FF:9A:98:D3:25:1A:BD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2f3e2009-8534-47c4-8751-274058da1e30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:109f::/48 Signature Algorithm: sha256WithRSAEncryption 95:e6:06:6f:8a:be:af:a6:c5:be:77:8f:06:28:48:ab:16:e1: 69:3f:f8:39:b3:0a:dc:93:28:13:cf:ed:6f:54:18:ee:83:ae: 7f:28:0c:10:2d:ac:23:7b:3f:bb:41:51:63:ed:6f:59:ee:f2: 7d:ae:5e:38:1f:86:1c:37:29:27:ec:00:d0:17:f5:00:9b:01: 9b:c3:de:e2:f4:73:88:d7:89:fe:0f:58:c0:a2:c9:36:44:20: 29:9f:1c:00:b3:75:df:7b:99:71:bc:30:53:8b:1d:fb:3b:e8: 1b:1b:da:b8:52:d4:0c:ca:91:b7:2b:0b:8d:95:54:f7:50:eb: fe:34:f0:c6:27:b5:c6:e5:c3:59:bf:6e:b1:e6:b3:d0:ad:e0: 16:3b:0d:6d:27:03:66:91:bc:2c:e8:c7:64:52:cc:46:38:4a: c4:3c:39:da:68:91:a2:4d:7a:4b:28:f6:98:e8:dd:03:13:b2: f4:e5:46:a5:e7:b8:e2:4a:70:e5:c0:17:46:2e:ee:eb:27:34: 15:5a:eb:14:9a:16:d5:9d:5b:f8:65:2b:4c:dc:27:62:7f:39: 9f:d2:54:5d:12:0e:c9:b3:4c:d9:6e:62:de:08:af:84:70:8f: f4:f5:eb:1d:c8:48:a1:dc:c1:cd:43:b9:5d:b6:04:3a:85:a0: 1e:9a:d1:5c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHOFdv/feuGAbZG1jhO7mV6AfOvwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDEzMTAxWhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjU5YTFmZmUyMWU2ZjEyYWY5ZTYyMjQzMWY3ZjhiMGI0 M2IwOTE3YjgyNDRjNDNiNGE3NDNhZDIzZTRlMjVkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+BJWR3vhlweQttmX0/g8ne/1XgE3vJTHXwkeOuaJndPWM EN5dqWBFQ6ge+LlgFG1ri0BqbkWzDOuYGjE6nFr1npUsh4U+UynwP+fWHTfRjotd ZTPbcHiKctiMynd+ez5zJsbMYOHHNI7ms+uYTwv1zNQdYv4KJYbPxdAhnBLudHJa FVrxq4tLlIMvNXh11jpHXCSb2eq85kP76t2P+46T2lK/PY4DatceI1ze87mm3pD+ wwj8ftWD+x20af+LyceutfOk1Xa9fq+QI8eTweOVnciUU/acTTxZPY73RA2C+ERz RW1LJBR3UWaQz/UiVFXcm/5dEmtwULEKzaC7LdsHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfbSMRA25LnKPQt2+6v+amNMlGr0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJmM2UyMDA5LTg1MzQtNDdjNC04NzUxLTI3NDA1OGRhMWUzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAEJ8wDQYJKoZIhvcNAQELBQADggEBAJXmBm+Kvq+mxb53jwYoSKsW 4Wk/+DmzCtyTKBPP7W9UGO6Drn8oDBAtrCN7P7tBUWPtb1nu8n2uXjgfhhw3KSfs ANAX9QCbAZvD3uL0c4jXif4PWMCiyTZEICmfHACzdd97mXG8MFOLHfs76Bsb2rhS 1AzKkbcrC42VVPdQ6/408MYntcblw1m/brHms9Ct4BY7DW0nA2aRvCzox2RSzEY4 SsQ8OdpokaJNekso9pjo3QMTsvTlRqXnuOJKcOXAF0Yu7usnNBVa6xSaFtWdW/hl K0zcJ2J/OZ/SVF0SDsmzTNluYt4Ir4Rwj/T16x3ISKHcwc1DuV22BDqFoB6a0Vw= -----END CERTIFICATE-----Generated at Sun Apr 19 11:51:45 2026 by rpki-client