$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38af88ac-4f8c-450f-872b-e2931905431f.roa File: 38af88ac-4f8c-450f-872b-e2931905431f.roa (raw, json) Hash identifier: G9xotg4012Ol2PGUOW3CAil75ALkrBdkL/5AdOky9ws= Subject key identifier: DD:5A:46:2E:64:94:72:4B:C7:BD:9A:92:D8:E7:E6:D1:3D:F2:44:80 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 721BEAB8FD944E82C8D97CA0D4DDACF28070F7AF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38af88ac-4f8c-450f-872b-e2931905431f.roa Signing time: Fri 13 Feb 2026 06:51:49 +0000 ROA not before: Fri 13 Feb 2026 06:51:49 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:363c::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:1b:ea:b8:fd:94:4e:82:c8:d9:7c:a0:d4:dd:ac:f2:80:70:f7:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 06:51:49 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=2ae4e930c8864fbc514ed1fa0eea1ba11b07f28bf26a6cf670c730715a264fee, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:b2:46:ac:a0:fa:48:7b:03:cd:30:bb:b5:25: bf:6a:28:6c:6b:d6:f7:94:10:65:9e:a5:11:9f:4d: c5:27:6b:c1:97:51:9e:15:f0:95:92:26:a9:4c:a9: e1:2c:a9:e2:1a:ba:83:42:98:d2:f8:a6:57:b2:20: ef:39:9b:31:c7:5d:cf:04:e0:f2:b6:ba:b9:94:e8: de:bb:19:16:94:1e:90:f2:7a:fb:f9:2b:14:e9:f3: f3:47:85:b4:24:9a:d2:1e:38:11:cc:18:e8:c7:7b: a8:6a:24:c6:ac:34:f4:94:a1:e0:4f:8c:3b:11:33: 60:9d:08:a9:04:1b:c7:bd:f1:38:4c:b9:dc:b5:f0: a9:57:93:5e:82:c6:af:d3:4c:f8:c5:7d:4f:16:23: 68:58:e1:35:a5:77:ab:2f:4c:38:63:5e:f3:2b:a6: a2:97:30:f4:65:6d:20:54:94:3c:1d:04:10:e4:8c: c2:14:e0:d3:93:be:fa:bb:6b:9e:b4:60:67:2b:c3: 6f:3e:5b:00:c6:48:35:60:2f:7e:d1:f1:2a:53:88: f7:87:87:83:f5:5c:42:9d:c7:da:1e:ba:47:08:16: de:03:12:59:a5:b7:d8:2c:65:3e:b8:bd:70:bc:4d: 11:a8:dd:a5:a7:a8:c2:a2:de:a0:85:2e:c6:0f:e2: 50:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:5A:46:2E:64:94:72:4B:C7:BD:9A:92:D8:E7:E6:D1:3D:F2:44:80 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38af88ac-4f8c-450f-872b-e2931905431f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:363c::/46 Signature Algorithm: sha256WithRSAEncryption 2d:db:06:a6:c9:68:31:0b:35:9d:20:2f:c4:3b:fd:90:df:bd: a4:00:f3:e5:e2:4a:23:4c:a7:83:31:ef:28:90:f2:2d:ca:4e: d4:6b:c2:76:5e:6f:b0:f3:64:b0:36:bb:f6:4d:52:01:70:ba: c2:1f:cf:6d:af:17:88:1f:fc:f9:33:eb:e0:71:be:bc:61:79: 15:3c:07:7c:1d:6d:05:1c:d8:d0:b0:eb:eb:55:2a:e3:3a:4e: 47:a5:b6:b0:9d:35:d3:0b:fa:42:84:0a:b8:15:92:d4:05:22: ce:01:11:d8:93:59:34:9e:42:ee:1e:96:ec:cb:b9:16:52:d2: ea:36:d5:72:d9:af:25:f2:ec:3b:aa:9a:b4:31:16:cd:75:21: 79:13:51:a5:b0:03:03:d9:e5:38:2f:30:50:1c:50:65:e7:1c: 86:27:4f:7a:c2:49:38:37:89:b1:f9:78:58:ee:58:b9:af:3c: 43:d3:aa:d9:9b:8c:2d:fd:df:97:a0:54:4e:d2:86:6f:c5:ee: 8d:d1:b2:80:79:07:4e:40:e2:1c:8b:03:32:a3:1b:d8:a4:1f: 23:c6:5f:93:a5:30:05:b6:a0:0a:3b:01:06:23:14:e6:61:ee: eb:33:f6:27:ee:42:8d:bc:da:35:08:bf:0d:cd:0f:e7:ac:87: 9e:c0:30:b8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUchvquP2UToLI2Xyg1N2s8oBw968wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDY1MTQ5WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWU0ZTkzMGM4ODY0ZmJjNTE0ZWQxZmEwZWVhMWJhMTFi MDdmMjhiZjI2YTZjZjY3MGM3MzA3MTVhMjY0ZmVlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD7skasoPpIewPNMLu1Jb9qKGxr1veUEGWepRGfTcUna8GX UZ4V8JWSJqlMqeEsqeIauoNCmNL4pleyIO85mzHHXc8E4PK2urmU6N67GRaUHpDy evv5KxTp8/NHhbQkmtIeOBHMGOjHe6hqJMasNPSUoeBPjDsRM2CdCKkEG8e98ThM udy18KlXk16Cxq/TTPjFfU8WI2hY4TWld6svTDhjXvMrpqKXMPRlbSBUlDwdBBDk jMIU4NOTvvq7a560YGcrw28+WwDGSDVgL37R8SpTiPeHh4P1XEKdx9oeukcIFt4D Elmlt9gsZT64vXC8TRGo3aWnqMKi3qCFLsYP4lDjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3VpGLmSUckvHvZqS2Ofm0T3yRIAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM4YWY4OGFjLTRmOGMtNDUwZi04NzJiLWUyOTMxOTA1NDMxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAANjwwDQYJKoZIhvcNAQELBQADggEBAC3bBqbJaDELNZ0gL8Q7/ZDf vaQA8+XiSiNMp4Mx7yiQ8i3KTtRrwnZeb7DzZLA2u/ZNUgFwusIfz22vF4gf/Pkz 6+BxvrxheRU8B3wdbQUc2NCw6+tVKuM6TkeltrCdNdML+kKECrgVktQFIs4BEdiT WTSeQu4eluzLuRZS0uo21XLZryXy7DuqmrQxFs11IXkTUaWwAwPZ5TgvMFAcUGXn HIYnT3rCSTg3ibH5eFjuWLmvPEPTqtmbjC3935egVE7Shm/F7o3RsoB5B05A4hyL AzKjG9ikHyPGX5OlMAW2oAo7AQYjFOZh7usz9ifuQo282jUIvw3ND+esh57AMLg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:23:29 2026 by rpki-client