$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/34540622-38dc-4f49-9a11-1b8ee0254c76.roa File: 34540622-38dc-4f49-9a11-1b8ee0254c76.roa (raw, json) Hash identifier: CNA5QRSPJw32WHYuHqXo2kacyCWplLh7sB77WRvvbhg= Subject key identifier: 8C:53:28:BB:2E:2F:A3:31:23:79:82:47:66:2A:AE:8A:46:11:1F:77 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4BA680051ED7BBF8EA680B3A9C7ED1753EEAFB84 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/34540622-38dc-4f49-9a11-1b8ee0254c76.roa Signing time: Thu 12 Feb 2026 02:40:47 +0000 ROA not before: Thu 12 Feb 2026 02:40:47 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2ff6::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:a6:80:05:1e:d7:bb:f8:ea:68:0b:3a:9c:7e:d1:75:3e:ea:fb:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 02:40:47 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=680071f2de9f470e6ecd243474f6d5ad17c0c71c303049b0760c9dbd19dfab96, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:eb:d7:06:d9:69:83:06:20:2f:c7:a5:18:f2: ac:39:32:d0:dd:42:55:9b:2e:7e:7f:c4:46:77:f9: db:b6:0e:cf:47:d6:87:13:f2:c6:3f:d7:b9:ac:b2: 89:6f:72:40:df:8a:81:06:fc:af:5b:c6:35:03:ab: ee:d8:be:3e:f6:6b:43:88:34:a0:7f:23:ba:d6:72: 87:9c:a0:29:db:7a:93:e2:83:78:a4:bc:80:83:5b: e2:82:b1:d3:34:86:8a:2e:33:3e:30:9c:41:37:91: ad:9e:12:b0:4b:c1:af:c8:21:13:8a:f2:06:0d:da: 43:de:0f:25:01:68:f4:8e:cd:df:58:8c:9f:b4:a8: 7b:c5:c5:40:29:1d:e0:62:ce:b8:ac:e0:c9:9a:58: 9b:69:23:22:41:85:b5:41:58:1b:bc:d7:57:7b:32: 62:aa:6b:3a:f6:a2:e6:8c:5d:1c:98:fd:f9:95:55: 1c:81:e3:d6:4a:15:11:55:a3:88:0b:98:90:08:24: ae:38:7e:52:37:f0:24:41:db:60:59:77:de:e9:36: 5e:8e:f3:39:a4:4b:26:33:59:6b:c0:13:8a:5a:2c: c1:50:26:e0:45:10:e2:cd:5f:f9:da:d4:3d:91:d3: a4:e3:fb:73:66:04:fe:f8:73:fa:4f:b8:7b:a8:7b: 1b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:53:28:BB:2E:2F:A3:31:23:79:82:47:66:2A:AE:8A:46:11:1F:77 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/34540622-38dc-4f49-9a11-1b8ee0254c76.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2ff6::/47 Signature Algorithm: sha256WithRSAEncryption 85:d5:97:0a:ae:c7:8b:1f:21:9a:8a:a6:f9:cb:b6:cd:1e:1d: 1c:a3:d4:37:0a:c7:62:d7:38:3a:7e:03:d5:d2:11:90:c2:67: 0c:e3:66:66:be:97:87:b0:af:1c:a0:cc:48:48:80:84:7b:a2: 59:ee:45:9b:4f:1a:53:34:fe:d9:db:ba:da:32:18:ca:a1:e5: f7:e2:ea:42:1f:20:89:f6:0b:0d:f2:b7:2a:8d:cd:fc:a1:e7: 9a:f6:44:87:95:fb:63:c4:d1:bf:14:72:96:f8:b7:34:ee:b9: 57:0c:49:37:46:b2:9e:71:c8:e8:47:dd:94:a2:99:e6:02:85: fd:0b:d3:f6:b2:ee:f4:ef:65:08:99:6b:57:b8:2f:6d:ad:06: ba:b6:74:e4:e7:a6:7d:e9:a3:97:8c:94:5b:c2:5e:e4:fd:b7: fd:e5:79:26:1a:bf:31:35:81:75:88:58:b3:c2:b1:5b:10:46: e0:7d:b2:85:79:b1:6c:2c:33:e8:97:1a:65:37:87:84:fd:49: f8:19:c4:53:c0:27:f7:98:56:58:a7:10:e3:08:5a:79:88:e4: 08:1f:8c:36:4d:e5:eb:c5:ae:a9:9b:ac:b8:a7:e3:af:46:9d: 25:2b:33:cb:c6:a7:c7:e1:03:f5:0d:4e:84:f0:01:c5:1a:17: 3f:50:4d:a8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS6aABR7Xu/jqaAs6nH7RdT7q+4QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDI0MDQ3WhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODAwNzFmMmRlOWY0NzBlNmVjZDI0MzQ3NGY2ZDVhZDE3 YzBjNzFjMzAzMDQ5YjA3NjBjOWRiZDE5ZGZhYjk2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC369cG2WmDBiAvx6UY8qw5MtDdQlWbLn5/xEZ3+du2Ds9H 1ocT8sY/17mssolvckDfioEG/K9bxjUDq+7Yvj72a0OINKB/I7rWcoecoCnbepPi g3ikvICDW+KCsdM0hoouMz4wnEE3ka2eErBLwa/IIROK8gYN2kPeDyUBaPSOzd9Y jJ+0qHvFxUApHeBizris4MmaWJtpIyJBhbVBWBu811d7MmKqazr2ouaMXRyY/fmV VRyB49ZKFRFVo4gLmJAIJK44flI38CRB22BZd97pNl6O8zmkSyYzWWvAE4paLMFQ JuBFEOLNX/na1D2R06Tj+3NmBP74c/pPuHuoext9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjFMouy4vozEjeYJHZiquikYRH3cwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM0NTQwNjIyLTM4ZGMtNGY0OS05YTExLTFiOGVlMDI1NGM3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAL/YwDQYJKoZIhvcNAQELBQADggEBAIXVlwqux4sfIZqKpvnLts0e HRyj1DcKx2LXODp+A9XSEZDCZwzjZma+l4ewrxygzEhIgIR7olnuRZtPGlM0/tnb utoyGMqh5ffi6kIfIIn2Cw3ytyqNzfyh55r2RIeV+2PE0b8Ucpb4tzTuuVcMSTdG sp5xyOhH3ZSimeYChf0L0/ay7vTvZQiZa1e4L22tBrq2dOTnpn3po5eMlFvCXuT9 t/3leSYavzE1gXWIWLPCsVsQRuB9soV5sWwsM+iXGmU3h4T9SfgZxFPAJ/eYVlin EOMIWnmI5AgfjDZN5evFrqmbrLin469GnSUrM8vGp8fhA/UNToTwAcUaFz9QTag= -----END CERTIFICATE-----Generated at Mon Mar 2 01:59:07 2026 by rpki-client