$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38d63030-ba46-4324-ac4c-117ed91d943e.roa File: 38d63030-ba46-4324-ac4c-117ed91d943e.roa (raw, json) Hash identifier: Tne23nRfVAKyk5CLdCtHMxCZxa3ff8BlNGcMiuvnV8o= Subject key identifier: DA:2F:20:0F:8A:7E:FD:23:F8:34:1D:75:8D:85:02:4C:6A:2A:4C:C4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4AB1D167E46875BB20EECCAFF044CA06AA6C43F0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38d63030-ba46-4324-ac4c-117ed91d943e.roa Signing time: Fri 13 Feb 2026 10:01:48 +0000 ROA not before: Fri 13 Feb 2026 10:01:48 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3788::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b1:d1:67:e4:68:75:bb:20:ee:cc:af:f0:44:ca:06:aa:6c:43:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 10:01:48 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=77284f95a97f28cbdf73d94af4061363d6d2ec05222e07ea2e252b29a582a5ce, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:35:14:b5:e1:ac:ad:45:2c:e2:86:bc:7a:0f: 6b:23:9e:64:50:fe:81:d0:d9:a6:83:c5:30:20:0e: f1:39:e6:9d:2a:52:0a:94:ad:70:90:d3:e3:2c:a2: e6:4f:eb:de:0a:a9:bb:9b:f9:eb:81:17:18:80:00: 8b:6d:4a:59:49:02:0b:d5:bd:b7:69:9a:33:80:b0: 66:96:63:2a:99:58:bc:25:13:08:88:97:f5:5e:ad: e1:4d:e6:dc:4f:d7:50:5a:05:b8:b6:17:73:73:4e: c6:99:ae:82:67:1e:bb:cd:2d:1f:d3:2c:b1:e6:fa: c8:c0:b3:48:22:29:d4:73:a8:51:27:6c:eb:5c:a8: ef:19:3d:73:61:eb:55:f6:76:3c:f2:c5:05:9d:b5: e9:78:31:31:63:d1:84:24:55:e5:37:5c:89:6a:b1: 09:61:77:87:f5:50:24:15:02:10:76:ab:a5:ad:20: eb:e8:a6:95:3f:3d:fa:7b:56:36:48:cf:5f:2f:ae: 1b:5b:70:04:b1:76:ea:f6:c9:a7:88:ab:0c:07:15: 79:8e:64:04:bc:18:22:4b:f1:45:cf:64:22:a8:51: 95:1d:63:4e:ee:bf:f0:1a:18:f7:b1:3a:ed:3d:10: 80:f1:61:ba:c3:8e:d2:37:f0:48:4d:af:a3:4e:e1: 2a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:2F:20:0F:8A:7E:FD:23:F8:34:1D:75:8D:85:02:4C:6A:2A:4C:C4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38d63030-ba46-4324-ac4c-117ed91d943e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3788::/45 Signature Algorithm: sha256WithRSAEncryption ac:f6:84:fb:d2:a5:4d:96:21:da:0c:74:67:03:72:99:0d:2c: 6d:84:86:61:c8:80:ff:cb:98:28:c1:b1:70:f5:e1:38:80:a0: e1:13:36:9c:83:38:14:d9:1c:38:85:bb:15:6f:6a:ac:30:21: ae:8e:67:00:21:1f:c2:b2:2b:38:f1:79:10:2c:ee:4c:5e:9c: 29:49:b5:3b:9a:ac:8f:25:a9:4a:79:52:a8:6f:4a:97:1f:2f: e4:05:68:ec:d3:5f:90:bd:ca:73:a3:75:6e:98:61:91:a8:44: ba:36:5a:ee:25:d1:07:39:77:cd:a2:25:b6:60:80:e1:c8:6c: 2c:b0:b7:b5:1e:5f:86:ee:f0:f5:aa:95:7d:15:34:5c:45:7f: 5b:d0:c6:e7:e9:c3:7d:51:ed:e2:e0:28:b8:3b:a6:ac:14:3d: 11:dd:96:bf:af:cb:cb:90:da:f8:e0:de:67:e8:73:0d:36:3e: 57:6a:37:eb:28:c5:4c:c8:2f:15:0d:35:46:b0:df:d0:73:41: 58:79:3c:93:a7:bf:57:b5:11:a4:00:09:f5:00:a0:c5:f0:c4: 92:8c:bc:0a:a4:5e:ad:63:fd:4a:6c:6b:da:3c:0a:47:9a:65: f8:aa:75:ad:8b:a0:55:c9:20:df:68:98:53:f8:33:26:e0:80: 7e:e8:d6:da -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSrHRZ+Rodbsg7syv8ETKBqpsQ/AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTAwMTQ4WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzI4NGY5NWE5N2YyOGNiZGY3M2Q5NGFmNDA2MTM2M2Q2 ZDJlYzA1MjIyZTA3ZWEyZTI1MmIyOWE1ODJhNWNlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzNRS14aytRSzihrx6D2sjnmRQ/oHQ2aaDxTAgDvE55p0q UgqUrXCQ0+MsouZP694Kqbub+euBFxiAAIttSllJAgvVvbdpmjOAsGaWYyqZWLwl EwiIl/VereFN5txP11BaBbi2F3NzTsaZroJnHrvNLR/TLLHm+sjAs0giKdRzqFEn bOtcqO8ZPXNh61X2djzyxQWdtel4MTFj0YQkVeU3XIlqsQlhd4f1UCQVAhB2q6Wt IOvoppU/Pfp7VjZIz18vrhtbcASxdur2yaeIqwwHFXmOZAS8GCJL8UXPZCKoUZUd Y07uv/AaGPexOu09EIDxYbrDjtI38EhNr6NO4SqhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2i8gD4p+/SP4NB11jYUCTGoqTMQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM4ZDYzMDMwLWJhNDYtNDMyNC1hYzRjLTExN2VkOTFkOTQzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAN4gwDQYJKoZIhvcNAQELBQADggEBAKz2hPvSpU2WIdoMdGcDcpkN LG2EhmHIgP/LmCjBsXD14TiAoOETNpyDOBTZHDiFuxVvaqwwIa6OZwAhH8KyKzjx eRAs7kxenClJtTuarI8lqUp5UqhvSpcfL+QFaOzTX5C9ynOjdW6YYZGoRLo2Wu4l 0Qc5d82iJbZggOHIbCywt7UeX4bu8PWqlX0VNFxFf1vQxufpw31R7eLgKLg7pqwU PRHdlr+vy8uQ2vjg3mfocw02PldqN+soxUzILxUNNUaw39BzQVh5PJOnv1e1EaQA CfUAoMXwxJKMvAqkXq1j/Upsa9o8CkeaZfiqda2LoFXJIN9omFP4MybggH7o1to= -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:10 2026 by rpki-client