$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3c3951fb-3970-47a3-95d6-95c9e273a018.roa File: 3c3951fb-3970-47a3-95d6-95c9e273a018.roa (raw, json) Hash identifier: JNT34eE4KYwb5Pzbg0q1iTrbwgUVAP+w0WhTZRBNdq8= Subject key identifier: 98:43:64:1B:F0:09:F6:D3:F7:D1:9D:DB:C3:47:53:F1:71:40:E8:99 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 076DA797954EA0FFC1B6E82DDBF0CA22A33D0FCB Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3c3951fb-3970-47a3-95d6-95c9e273a018.roa Signing time: Fri 13 Feb 2026 13:40:05 +0000 ROA not before: Fri 13 Feb 2026 13:40:05 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3d36::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:6d:a7:97:95:4e:a0:ff:c1:b6:e8:2d:db:f0:ca:22:a3:3d:0f:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 13:40:05 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=87cd0195eb82a5d87b07d8788a56433ecf6c10011ded296c96182650e4b99277, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c7:2e:45:84:71:62:e9:3f:77:71:7c:96:a0: 5a:36:7e:65:5c:04:f6:6d:d8:b3:ce:08:a9:34:e6: c4:80:6e:90:5f:71:ce:39:b1:f0:9a:b2:f8:16:b5: 57:98:b1:ab:e0:e2:52:5a:16:b4:77:11:b8:bd:58: 91:6e:8a:69:87:db:3c:7b:ea:bf:f4:06:e3:6a:94: 00:0c:9b:43:1f:9a:e1:12:21:35:0e:f6:3b:7b:ff: f7:1d:0b:d5:40:6d:d4:a3:a0:ad:50:51:f6:04:bf: 6c:8b:06:a8:ff:62:f7:32:23:60:cf:66:f7:f5:4e: 9a:7b:b9:be:a9:df:1d:cc:10:a4:bb:9a:18:23:b8: e5:08:09:5f:b2:a8:0a:c7:07:93:a6:88:7c:b4:39: 47:f4:20:b4:e1:33:0c:b1:63:79:28:0b:d2:1e:e6: 49:be:1f:e3:b1:72:b2:23:07:b3:bf:c1:25:8c:9f: 13:94:3b:ba:29:fc:f8:0c:c8:73:e7:ee:f6:18:af: e9:5d:02:4b:12:8b:04:3f:eb:84:54:24:0e:61:e9: 02:5f:a2:b4:b1:41:63:15:d7:81:81:56:f3:d6:c9: b0:fa:ba:14:83:47:43:1b:3c:96:40:ed:7f:d5:b8: 37:88:de:d6:b6:ee:4f:d6:af:0b:7d:d7:9b:a0:f5: 6e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:43:64:1B:F0:09:F6:D3:F7:D1:9D:DB:C3:47:53:F1:71:40:E8:99 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3c3951fb-3970-47a3-95d6-95c9e273a018.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3d36::/47 Signature Algorithm: sha256WithRSAEncryption 27:e7:a7:7d:30:5d:4f:08:43:6f:57:f3:70:cb:b5:34:6a:a4: ab:81:29:ae:49:33:16:d8:72:3a:ef:60:7a:64:53:eb:fe:c3: 72:94:e7:d6:e8:b4:57:f6:2c:83:58:70:55:f7:33:ad:4d:38: 54:3a:b4:96:54:9d:e1:2f:cc:5a:e2:58:da:0c:83:e9:71:ff: ae:b8:17:01:6b:f5:89:bb:ad:8c:08:71:3d:4e:5a:31:de:41: a3:77:e5:40:8f:1d:96:24:ba:fc:7c:34:fe:39:01:34:13:8d: 96:03:1d:c2:1d:71:ab:94:24:83:75:08:f7:4c:74:32:a2:4d: f7:e2:5d:34:70:7a:21:35:bc:b6:81:e9:24:62:28:bf:74:fb: c6:db:59:72:71:4b:39:d8:0f:66:9a:1f:cf:10:83:ab:a1:26: 12:7b:10:55:f5:01:b8:f3:e5:44:5b:eb:67:ef:03:c6:7d:7e: c4:14:a9:6b:33:d8:37:ad:9a:f3:51:b3:79:b9:81:ce:89:6e: 6d:37:2b:54:03:75:70:f9:be:d7:fc:5c:c2:49:e0:ae:52:53: d0:09:3b:74:48:45:50:5a:cc:1a:b8:65:3a:e9:a7:c2:fe:90: e6:12:5d:ee:12:60:ac:50:00:76:d2:d4:d7:da:9d:de:37:ca: 0f:1f:6b:30 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUB22nl5VOoP/Btugt2/DKIqM9D8swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTM0MDA1WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4N2NkMDE5NWViODJhNWQ4N2IwN2Q4Nzg4YTU2NDMzZWNm NmMxMDAxMWRlZDI5NmM5NjE4MjY1MGU0Yjk5Mjc3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJxy5FhHFi6T93cXyWoFo2fmVcBPZt2LPOCKk05sSAbpBf cc45sfCasvgWtVeYsavg4lJaFrR3Ebi9WJFuimmH2zx76r/0BuNqlAAMm0MfmuES ITUO9jt7//cdC9VAbdSjoK1QUfYEv2yLBqj/YvcyI2DPZvf1Tpp7ub6p3x3MEKS7 mhgjuOUICV+yqArHB5OmiHy0OUf0ILThMwyxY3koC9Ie5km+H+OxcrIjB7O/wSWM nxOUO7op/PgMyHPn7vYYr+ldAksSiwQ/64RUJA5h6QJforSxQWMV14GBVvPWybD6 uhSDR0MbPJZA7X/VuDeI3ta27k/Wrwt915ug9W4RAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmENkG/AJ9tP30Z3bw0dT8XFA6JkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzNjMzk1MWZiLTM5NzAtNDdhMy05NWQ2LTk1YzllMjczYTAxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAPTYwDQYJKoZIhvcNAQELBQADggEBACfnp30wXU8IQ29X83DLtTRq pKuBKa5JMxbYcjrvYHpkU+v+w3KU59botFf2LINYcFX3M61NOFQ6tJZUneEvzFri WNoMg+lx/664FwFr9Ym7rYwIcT1OWjHeQaN35UCPHZYkuvx8NP45ATQTjZYDHcId cauUJIN1CPdMdDKiTffiXTRweiE1vLaB6SRiKL90+8bbWXJxSznYD2aaH88Qg6uh JhJ7EFX1Abjz5URb62fvA8Z9fsQUqWsz2DetmvNRs3m5gc6Jbm03K1QDdXD5vtf8 XMJJ4K5SU9AJO3RIRVBazBq4ZTrpp8L+kOYSXe4SYKxQAHbS1Nfand43yg8fazA= -----END CERTIFICATE-----Generated at Mon Mar 2 02:03:47 2026 by rpki-client