$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/397a6938-3cab-4a20-9861-404aa9ee5119.roa File: 397a6938-3cab-4a20-9861-404aa9ee5119.roa (raw, json) Hash identifier: C1HvjtPc9jqRlFy9iMFmgOarH9f8AdOT+blma0h7Jtw= Subject key identifier: 57:2B:71:13:5A:71:B2:2B:81:11:74:E2:71:11:15:09:BB:D8:91:75 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 10A297A647B65F495B0520D976B05C9D053FF92C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/397a6938-3cab-4a20-9861-404aa9ee5119.roa Signing time: Fri 13 Feb 2026 07:40:48 +0000 ROA not before: Fri 13 Feb 2026 07:40:48 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2a00::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a2:97:a6:47:b6:5f:49:5b:05:20:d9:76:b0:5c:9d:05:3f:f9:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 07:40:48 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=dd9d1c91a26676db4f2c1804e3a464a7641937fb4006d5c5be50f3ccc6d76463, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ab:24:3a:9c:1e:d3:50:c4:23:88:75:8a:17: 61:31:3f:26:44:a4:ea:fe:07:fb:79:d8:89:d7:fb: 22:0c:2e:c6:f1:50:fe:f9:05:a6:26:4a:45:a5:69: fa:8b:d7:a9:b4:e2:21:28:33:c7:16:cf:b9:3b:44: 4e:4d:0b:a9:a0:ae:2e:06:85:70:3b:8e:ed:b5:05: 75:13:c3:80:3d:92:b0:65:43:92:7e:ce:ba:9d:d1: 5f:b2:fc:0d:b4:c9:1e:a1:4c:97:74:7b:e1:5f:b4: a2:1c:e7:9d:7b:c2:65:cc:71:de:f3:44:08:5b:1d: 18:ae:e6:81:37:25:1c:a4:f2:12:31:46:d5:82:bc: 82:d0:53:75:7c:34:44:14:c5:dc:b7:f1:dd:07:1a: fb:ff:b2:5d:04:85:d8:49:ba:a6:35:2e:ec:2c:6f: ea:7d:14:eb:00:27:96:0f:44:5d:b3:fb:d2:fe:6f: 63:0c:ff:71:23:a6:81:08:6b:35:a5:e0:1a:84:4d: 76:0f:51:7f:57:d7:6f:17:09:18:a0:4f:93:95:c3: f4:45:9c:ab:17:6a:b9:8d:b3:9c:58:78:e4:fe:b7: 2a:a9:07:50:9f:ae:89:5b:d2:45:57:e7:c6:b3:83: cf:23:35:71:3c:76:5d:3d:54:24:5f:3b:f1:f9:8b: 1f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:2B:71:13:5A:71:B2:2B:81:11:74:E2:71:11:15:09:BB:D8:91:75 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/397a6938-3cab-4a20-9861-404aa9ee5119.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2a00::/44 Signature Algorithm: sha256WithRSAEncryption 3f:17:24:3a:ac:8f:d4:59:7d:e2:20:a1:6d:88:1f:48:56:61: 21:28:fa:1e:6c:ba:f1:6d:19:22:57:3f:31:3a:1a:96:68:f6: 13:15:31:d0:23:01:c8:9d:51:51:12:1a:11:eb:16:80:e4:21: 1e:20:6b:06:ea:40:f7:e9:50:fe:18:3a:41:c9:03:c3:a2:a2: b4:10:1d:91:80:bc:ec:11:dc:8d:15:05:c8:f5:6c:4f:cb:2b: d3:4e:71:b5:c9:ea:d8:3e:a9:c4:1b:b2:58:49:8f:33:e1:85: 17:d9:87:3b:66:e1:12:28:45:24:d0:65:c2:77:53:76:d1:ee: 44:b5:6c:73:c7:6a:01:d7:eb:bf:92:7b:8f:44:dc:66:dd:72: e2:4b:b7:6d:75:5a:6e:c2:50:81:0a:1a:83:d9:ae:89:96:d2: 15:0c:b0:42:14:88:52:a4:be:d1:59:84:2d:9d:f6:c0:77:97: 20:0e:b2:f6:42:e2:76:da:07:aa:bf:da:d6:67:55:ff:78:ab: 5d:af:fb:e6:0f:f2:c9:f0:da:a7:50:51:05:47:0a:9b:72:60: 58:1b:91:2c:be:3a:e1:b2:a7:90:26:64:80:40:18:8c:b5:85: 6a:e9:44:34:42:69:c7:bf:f5:44:f1:ff:2e:fb:14:19:e3:bd: 7b:13:3b:bb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEKKXpke2X0lbBSDZdrBcnQU/+SwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDc0MDQ4WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDlkMWM5MWEyNjY3NmRiNGYyYzE4MDRlM2E0NjRhNzY0 MTkzN2ZiNDAwNmQ1YzViZTUwZjNjY2M2ZDc2NDYzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9qyQ6nB7TUMQjiHWKF2ExPyZEpOr+B/t52InX+yIMLsbx UP75BaYmSkWlafqL16m04iEoM8cWz7k7RE5NC6mgri4GhXA7ju21BXUTw4A9krBl Q5J+zrqd0V+y/A20yR6hTJd0e+FftKIc5517wmXMcd7zRAhbHRiu5oE3JRyk8hIx RtWCvILQU3V8NEQUxdy38d0HGvv/sl0EhdhJuqY1Luwsb+p9FOsAJ5YPRF2z+9L+ b2MM/3EjpoEIazWl4BqETXYPUX9X128XCRigT5OVw/RFnKsXarmNs5xYeOT+tyqp B1Cfrolb0kVX58azg88jNXE8dl09VCRfO/H5ix83AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVytxE1pxsiuBEXTicREVCbvYkXUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM5N2E2OTM4LTNjYWItNGEyMC05ODYxLTQwNGFhOWVlNTExOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAKgAwDQYJKoZIhvcNAQELBQADggEBAD8XJDqsj9RZfeIgoW2IH0hW YSEo+h5suvFtGSJXPzE6GpZo9hMVMdAjAcidUVESGhHrFoDkIR4gawbqQPfpUP4Y OkHJA8OiorQQHZGAvOwR3I0VBcj1bE/LK9NOcbXJ6tg+qcQbslhJjzPhhRfZhztm 4RIoRSTQZcJ3U3bR7kS1bHPHagHX67+Se49E3GbdcuJLt211Wm7CUIEKGoPZromW 0hUMsEIUiFKkvtFZhC2d9sB3lyAOsvZC4nbaB6q/2tZnVf94q12v++YP8snw2qdQ UQVHCptyYFgbkSy+OuGyp5AmZIBAGIy1hWrpRDRCace/9UTx/y77FBnjvXsTO7s= -----END CERTIFICATE-----Generated at Mon Mar 2 02:00:40 2026 by rpki-client