$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38ce225e-ccc5-4316-84a6-ab9bb54a3d77.roa File: 38ce225e-ccc5-4316-84a6-ab9bb54a3d77.roa (raw, json) Hash identifier: KKz4yb9QLOSSA1OvU+UV99VROkAN0WDBFJ0H9zUuhl0= Subject key identifier: 22:C6:B3:3B:54:64:C7:D9:2E:0B:71:70:0C:B6:36:1C:D7:81:5A:A7 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 590B50665333ED456139BAE4FF5244C3AD67AF44 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38ce225e-ccc5-4316-84a6-ab9bb54a3d77.roa Signing time: Fri 13 Feb 2026 07:21:57 +0000 ROA not before: Fri 13 Feb 2026 07:21:57 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3638::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:0b:50:66:53:33:ed:45:61:39:ba:e4:ff:52:44:c3:ad:67:af:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 07:21:57 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=0b42cedc7570f260a11d367d6c6a2f95d0803201f85cd0fbb8ae905954f4a058, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f1:42:b4:e6:1b:bd:82:3a:d0:57:85:c0:9e: a2:4c:25:ba:68:b5:47:53:1f:73:49:fc:ab:d0:6c: 9d:1d:07:ce:95:8b:95:78:78:83:79:19:a3:5b:d8: 1f:c1:02:46:d6:27:f7:bf:3d:0d:6e:50:2e:0d:e0: d0:8b:0b:11:0f:c9:d8:86:9c:9c:eb:9c:15:44:a0: 87:bd:5c:50:3d:9f:c8:89:de:49:d0:16:0f:cb:94: 2f:40:00:f9:55:2d:44:62:d4:e7:d7:19:2d:63:7a: 94:54:3d:b4:83:02:dd:5e:53:71:69:52:4a:a8:31: ca:cc:56:93:65:f1:da:e8:38:97:02:6c:13:bc:d4: b3:9a:de:27:40:6c:d7:75:bc:f7:83:5c:7a:b8:25: 52:70:b8:44:ef:b1:28:26:95:76:16:d5:08:88:7e: 6d:98:47:ce:b2:41:1c:de:d6:f3:56:cd:17:c3:c4: 59:66:d8:a3:f9:49:e1:7c:54:41:69:95:2e:e1:76: e9:4d:13:3f:e6:22:2b:d4:9a:a7:58:43:58:b2:79: 9d:65:a6:63:05:d3:c1:f1:13:46:9d:62:93:f4:f0: bb:4e:b3:a6:8d:52:c3:ed:d9:46:85:a9:71:f1:91: 9c:fd:93:ca:f6:62:39:8a:8a:81:e1:12:d1:59:02: 94:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C6:B3:3B:54:64:C7:D9:2E:0B:71:70:0C:B6:36:1C:D7:81:5A:A7 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38ce225e-ccc5-4316-84a6-ab9bb54a3d77.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3638::/47 Signature Algorithm: sha256WithRSAEncryption 5a:50:0d:57:58:fb:34:07:fe:a9:43:fb:b2:77:b9:29:6b:97: 0b:78:8c:ad:5a:44:ba:45:c8:d2:8a:0b:b4:0b:bb:39:c6:7c: e8:2b:69:d7:d0:3e:66:14:6f:33:89:21:97:fc:61:4a:02:9c: ab:45:28:61:23:06:ee:0a:e0:53:e9:d6:9a:ca:59:81:40:8d: ae:8f:cd:70:99:6d:5e:12:a4:03:91:b8:b9:3b:b3:07:9d:8e: f3:16:48:7a:2f:8f:3e:f3:b7:5b:eb:00:df:db:71:a0:32:b4: e2:b8:4c:04:74:8f:9f:7a:88:dd:c0:3b:a4:11:eb:36:61:e6: c6:47:83:7e:03:16:e3:51:d6:d2:c9:26:f9:fc:9c:ea:be:6c: 58:40:af:91:4b:d0:bb:28:bd:75:e8:b6:e1:1d:05:df:bc:23: a0:85:2d:d5:7f:5b:2e:b4:6f:e3:9e:f7:65:58:4e:bd:43:c0: fd:51:8b:9a:56:5f:71:38:70:4e:65:ab:3b:23:3f:54:f0:1e: 8e:3e:37:0d:e1:01:46:45:40:92:29:05:45:8f:6c:9a:19:69: 6f:f1:44:ce:28:10:68:7d:65:c6:fe:dd:00:24:02:72:f0:ce: c7:87:00:61:d4:d4:e8:be:ed:4d:f6:1f:ea:2b:98:7b:03:fd: 66:b5:ad:11 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWQtQZlMz7UVhObrk/1JEw61nr0QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDcyMTU3WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjQyY2VkYzc1NzBmMjYwYTExZDM2N2Q2YzZhMmY5NWQw ODAzMjAxZjg1Y2QwZmJiOGFlOTA1OTU0ZjRhMDU4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ8UK05hu9gjrQV4XAnqJMJbpotUdTH3NJ/KvQbJ0dB86V i5V4eIN5GaNb2B/BAkbWJ/e/PQ1uUC4N4NCLCxEPydiGnJzrnBVEoIe9XFA9n8iJ 3knQFg/LlC9AAPlVLURi1OfXGS1jepRUPbSDAt1eU3FpUkqoMcrMVpNl8droOJcC bBO81LOa3idAbNd1vPeDXHq4JVJwuETvsSgmlXYW1QiIfm2YR86yQRze1vNWzRfD xFlm2KP5SeF8VEFplS7hdulNEz/mIivUmqdYQ1iyeZ1lpmMF08HxE0adYpP08LtO s6aNUsPt2UaFqXHxkZz9k8r2YjmKioHhEtFZApQhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIsazO1Rkx9kuC3FwDLY2HNeBWqcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM4Y2UyMjVlLWNjYzUtNDMxNi04NGE2LWFiOWJiNTRhM2Q3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANjgwDQYJKoZIhvcNAQELBQADggEBAFpQDVdY+zQH/qlD+7J3uSlr lwt4jK1aRLpFyNKKC7QLuznGfOgradfQPmYUbzOJIZf8YUoCnKtFKGEjBu4K4FPp 1prKWYFAja6PzXCZbV4SpAORuLk7swedjvMWSHovjz7zt1vrAN/bcaAytOK4TAR0 j596iN3AO6QR6zZh5sZHg34DFuNR1tLJJvn8nOq+bFhAr5FL0LsovXXotuEdBd+8 I6CFLdV/Wy60b+Oe92VYTr1DwP1Ri5pWX3E4cE5lqzsjP1TwHo4+Nw3hAUZFQJIp BUWPbJoZaW/xRM4oEGh9Zcb+3QAkAnLwzseHAGHU1Oi+7U32H+ormHsD/Wa1rRE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:01 2026 by rpki-client