$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3577203b-133f-42a8-a6bf-0678408b7e85.roa File: 3577203b-133f-42a8-a6bf-0678408b7e85.roa (raw, json) Hash identifier: C7NlndkC83cT2IR28jYIlId54GkfKI5e3f+xHtOzUw4= Subject key identifier: E9:0A:16:67:1B:E2:46:8C:12:A4:B1:A6:91:B0:75:B5:FC:A2:93:E6 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1BC157890BA483EB1EF4F1E9729F7B151643BE16 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3577203b-133f-42a8-a6bf-0678408b7e85.roa Signing time: Thu 12 Feb 2026 02:00:08 +0000 ROA not before: Thu 12 Feb 2026 02:00:08 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2aca::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c1:57:89:0b:a4:83:eb:1e:f4:f1:e9:72:9f:7b:15:16:43:be:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 02:00:08 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=832e7a2344ca052981c5f66b70f854d50a4a563d2354defe4c5258a2fc08ff3a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:39:56:94:34:ef:f7:e4:27:2a:19:3b:0d:de: bc:ae:3f:f1:72:8d:5d:fe:b6:55:64:a2:0e:bf:9a: 81:0a:e0:c0:aa:ed:07:86:c5:49:9d:0c:40:31:9d: af:df:56:e4:61:c2:13:74:59:00:c1:dd:0c:2e:19: ea:c0:9e:63:08:b0:c3:3d:05:69:c8:55:54:5d:7f: fd:cf:0a:2a:04:ca:30:49:e4:94:53:bf:d4:95:24: ce:94:54:13:10:b7:b5:53:5c:22:6c:27:40:f5:a5: 27:74:56:5c:a4:58:23:cb:05:80:f6:28:82:ce:98: f7:27:58:c0:16:c1:a3:04:1a:56:d9:16:27:52:09: e4:35:ea:ac:10:72:61:05:c5:a1:18:bb:23:25:28: 19:de:e5:70:9c:00:d3:1f:32:e6:51:21:f4:3d:0e: d8:d7:43:a3:91:2e:15:f5:b3:f8:15:ae:28:20:5a: 91:de:b9:2b:5f:a5:92:af:c1:bf:ba:45:d0:cd:5b: 43:de:88:e5:9d:9a:a3:fb:c5:4b:9a:be:dd:ec:9f: c1:19:7e:ca:db:87:bd:7c:dd:ef:46:03:48:5f:56: 8a:4c:f4:7a:00:63:5e:00:0f:53:c0:94:42:c6:c6: 13:e4:d3:ce:4f:8a:81:c3:83:cf:66:ef:9b:98:f5: 7c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:0A:16:67:1B:E2:46:8C:12:A4:B1:A6:91:B0:75:B5:FC:A2:93:E6 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3577203b-133f-42a8-a6bf-0678408b7e85.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2aca::/47 Signature Algorithm: sha256WithRSAEncryption 70:89:36:a8:43:8d:de:6b:e1:bf:8b:bf:97:fe:42:6c:a1:53: 3c:00:a9:ae:79:f9:92:3b:a1:a4:7a:b4:1d:db:cc:7e:99:31: 41:35:e8:31:eb:36:cb:f8:3b:4c:c1:a7:82:be:46:08:0e:e8: 28:d4:ec:08:af:56:40:a2:0d:c9:82:65:85:bc:d4:0f:6a:f7: 72:87:32:f0:ab:21:4e:26:a8:89:4a:e1:bc:ba:5f:0c:ac:f7: 99:b4:ac:d8:76:70:90:b4:3e:95:06:60:85:7f:53:e3:44:31: d2:4d:8a:6a:0d:29:51:3e:3b:ce:99:a5:69:45:98:25:6c:3a: 49:f6:fe:40:fa:e6:68:70:e9:8e:c0:a4:dc:4f:a4:1d:11:0f: b6:1f:4b:1d:b5:58:95:7d:ee:03:ea:18:4e:f0:c7:bf:2b:05: 64:7b:d7:7f:19:a1:a0:76:81:3b:7f:5c:37:1a:e6:97:c9:a6: cd:10:ca:5c:71:58:a9:6c:e0:b9:c2:d4:fe:04:f9:08:e6:15: dc:74:80:d3:e5:42:c8:bc:bd:02:3a:7d:fd:6d:d3:e9:e4:b2: 8d:ce:ab:00:78:dd:7f:2b:1e:86:93:22:47:4e:ee:49:05:41: 75:a0:e0:6b:23:a0:6b:35:d5:3b:6c:22:46:8b:fc:6b:6d:e2: 62:95:25:48 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG8FXiQukg+se9PHpcp97FRZDvhYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDIwMDA4WhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzJlN2EyMzQ0Y2EwNTI5ODFjNWY2NmI3MGY4NTRkNTBh NGE1NjNkMjM1NGRlZmU0YzUyNThhMmZjMDhmZjNhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXOVaUNO/35CcqGTsN3ryuP/FyjV3+tlVkog6/moEK4MCq 7QeGxUmdDEAxna/fVuRhwhN0WQDB3QwuGerAnmMIsMM9BWnIVVRdf/3PCioEyjBJ 5JRTv9SVJM6UVBMQt7VTXCJsJ0D1pSd0VlykWCPLBYD2KILOmPcnWMAWwaMEGlbZ FidSCeQ16qwQcmEFxaEYuyMlKBne5XCcANMfMuZRIfQ9DtjXQ6ORLhX1s/gVrigg WpHeuStfpZKvwb+6RdDNW0PeiOWdmqP7xUuavt3sn8EZfsrbh7183e9GA0hfVopM 9HoAY14AD1PAlELGxhPk085PioHDg89m75uY9XwpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6QoWZxviRowSpLGmkbB1tfyik+YwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM1NzcyMDNiLTEzM2YtNDJhOC1hNmJmLTA2Nzg0MDhiN2U4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKsowDQYJKoZIhvcNAQELBQADggEBAHCJNqhDjd5r4b+Lv5f+Qmyh UzwAqa55+ZI7oaR6tB3bzH6ZMUE16DHrNsv4O0zBp4K+RggO6CjU7AivVkCiDcmC ZYW81A9q93KHMvCrIU4mqIlK4by6Xwys95m0rNh2cJC0PpUGYIV/U+NEMdJNimoN KVE+O86ZpWlFmCVsOkn2/kD65mhw6Y7ApNxPpB0RD7YfSx21WJV97gPqGE7wx78r BWR7138ZoaB2gTt/XDca5pfJps0QylxxWKls4LnC1P4E+QjmFdx0gNPlQsi8vQI6 ff1t0+nkso3OqwB43X8rHoaTIkdO7kkFQXWg4GsjoGs11TtsIkaL/Gtt4mKVJUg= -----END CERTIFICATE-----Generated at Mon Mar 2 03:41:38 2026 by rpki-client