$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3575d670-2848-43cf-bf5f-0e8d492dfe26.roa File: 3575d670-2848-43cf-bf5f-0e8d492dfe26.roa (raw, json) Hash identifier: tYneORqrYi2luInsxBNxEjgGjlfopQZQ1O6wzD2OOhg= Subject key identifier: A0:41:2E:E9:0D:B0:30:D9:F8:FC:0A:7F:0D:2A:7D:2B:D7:B4:F3:B8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 410968275DE83E08288518DE07FFA0225B45FDF7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3575d670-2848-43cf-bf5f-0e8d492dfe26.roa Signing time: Fri 13 Feb 2026 10:02:08 +0000 ROA not before: Fri 13 Feb 2026 10:02:08 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2f04::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:09:68:27:5d:e8:3e:08:28:85:18:de:07:ff:a0:22:5b:45:fd:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 10:02:08 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=af22391404b0ecb01ac875f7de3b6d3551baec6854cb189ddb1c9faf8e3611f0, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9a:0a:8d:69:4b:53:36:c2:ce:f7:c8:85:0c: eb:d8:29:b9:1d:ef:18:ae:8f:e3:e2:94:47:43:11: 74:05:ed:f9:b7:f5:36:5e:cd:32:7f:46:17:2c:b7: 44:ad:f8:ab:9b:18:c2:85:ce:c9:68:70:e8:c2:ca: 18:5d:a4:01:0a:09:20:b0:74:fd:7b:ae:78:6d:c3: 49:83:4e:f7:96:f0:96:ca:bf:80:19:74:7a:94:dc: 4c:35:8f:d2:d1:c9:63:b1:de:53:73:92:eb:de:c9: de:dd:8d:0e:78:f1:f6:ed:18:d3:c5:18:85:a7:ac: bb:fd:16:84:95:31:b6:b4:14:61:ac:d5:ba:f0:2a: 8e:7f:d7:e7:ba:43:cd:01:76:b8:c9:83:f1:21:21: 31:62:4a:e4:7b:4d:33:77:10:12:42:2e:de:67:b0: 9c:99:b7:ce:8f:d2:8d:10:08:0b:25:87:cd:28:e4: 27:7d:aa:89:39:e4:e6:15:51:17:ec:22:00:c7:b1: 4c:f1:d3:50:f1:13:b9:d1:94:1f:48:6d:39:c7:42: a9:dc:77:a3:6e:e0:fc:74:ed:df:c6:72:de:11:63: f5:73:7a:56:5e:d8:8e:cb:30:26:f4:6a:4f:5c:65: f1:e6:59:63:b3:d6:8b:81:31:c3:e1:b1:ac:8b:59: d9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:41:2E:E9:0D:B0:30:D9:F8:FC:0A:7F:0D:2A:7D:2B:D7:B4:F3:B8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3575d670-2848-43cf-bf5f-0e8d492dfe26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2f04::/46 Signature Algorithm: sha256WithRSAEncryption 1d:1f:1b:45:88:3e:3e:cc:a4:83:91:96:50:69:dd:5c:4e:d9: 91:62:30:45:a6:e9:18:89:d2:24:a6:a2:19:1d:aa:77:09:06: d0:cd:e7:92:fa:ca:a1:cb:30:41:b7:a9:cf:b6:19:a3:be:7c: 32:8b:09:74:64:5f:f1:c5:85:85:d7:07:e0:10:5a:63:be:de: fa:e5:9a:a9:55:b5:f1:aa:b0:ba:c7:4a:38:17:5c:ec:76:15: cd:2e:78:42:26:26:9f:24:0b:26:39:cf:b7:70:ea:62:89:a0: 27:99:15:0f:90:e7:37:3b:f4:b0:44:7e:ca:c8:ad:c7:be:40: b8:8c:9c:f0:08:db:66:09:4a:b5:d8:3d:52:73:1e:6d:9c:c9: b7:4b:63:0a:6f:d9:cb:d0:15:7a:d0:19:15:3c:f6:2c:f5:b4: 72:21:55:c6:b1:50:f4:07:e3:9c:ae:df:d7:18:f2:fe:a2:7a: 36:e5:89:31:b1:8b:20:78:9a:08:83:62:57:dc:5b:db:1e:bd: dd:dd:98:99:f0:e9:51:af:e2:98:92:de:0c:78:85:e1:b3:f1: ee:e7:6d:ec:19:e1:b5:a2:63:c5:56:61:f4:51:be:34:b3:7c: e3:88:4c:ea:c2:85:96:c9:94:95:3d:8c:96:a9:95:55:09:16: fa:2d:24:ac -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQQloJ13oPggohRjeB/+gIltF/fcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTAwMjA4WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjIyMzkxNDA0YjBlY2IwMWFjODc1ZjdkZTNiNmQzNTUx YmFlYzY4NTRjYjE4OWRkYjFjOWZhZjhlMzYxMWYwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvmgqNaUtTNsLO98iFDOvYKbkd7xiuj+PilEdDEXQF7fm3 9TZezTJ/Rhcst0St+KubGMKFzslocOjCyhhdpAEKCSCwdP17rnhtw0mDTveW8JbK v4AZdHqU3Ew1j9LRyWOx3lNzkuveyd7djQ548fbtGNPFGIWnrLv9FoSVMba0FGGs 1brwKo5/1+e6Q80BdrjJg/EhITFiSuR7TTN3EBJCLt5nsJyZt86P0o0QCAslh80o 5Cd9qok55OYVURfsIgDHsUzx01DxE7nRlB9IbTnHQqncd6Nu4Px07d/Gct4RY/Vz elZe2I7LMCb0ak9cZfHmWWOz1ouBMcPhsayLWdnfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoEEu6Q2wMNn4/Ap/DSp9K9e087gwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM1NzVkNjcwLTI4NDgtNDNjZi1iZjVmLTBlOGQ0OTJkZmUyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAALwQwDQYJKoZIhvcNAQELBQADggEBAB0fG0WIPj7MpIORllBp3VxO 2ZFiMEWm6RiJ0iSmohkdqncJBtDN55L6yqHLMEG3qc+2GaO+fDKLCXRkX/HFhYXX B+AQWmO+3vrlmqlVtfGqsLrHSjgXXOx2Fc0ueEImJp8kCyY5z7dw6mKJoCeZFQ+Q 5zc79LBEfsrIrce+QLiMnPAI22YJSrXYPVJzHm2cybdLYwpv2cvQFXrQGRU89iz1 tHIhVcaxUPQH45yu39cY8v6iejbliTGxiyB4mgiDYlfcW9sevd3dmJnw6VGv4piS 3gx4heGz8e7nbewZ4bWiY8VWYfRRvjSzfOOITOrChZbJlJU9jJaplVUJFvotJKw= -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:18 2026 by rpki-client