$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3d223e19-6050-4179-8b2c-dba3272aaad4.roa File: 3d223e19-6050-4179-8b2c-dba3272aaad4.roa (raw, json) Hash identifier: nF/VhHAgXGEb6GJVj0C8lAfFYyOfOF1s3sbnXorB02k= Subject key identifier: A2:1C:78:20:32:7C:7B:44:63:51:96:D4:7D:D6:41:10:33:F5:BF:32 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2E784147C9C926E5CA040B13CD5E022E7729498B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3d223e19-6050-4179-8b2c-dba3272aaad4.roa Signing time: Fri 03 Apr 2026 01:51:24 +0000 ROA not before: Fri 03 Apr 2026 01:51:24 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:78:41:47:c9:c9:26:e5:ca:04:0b:13:cd:5e:02:2e:77:29:49:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 01:51:24 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=08ada60e7ba3723c40e1a19309c1379a93eb4fedbcb11432aa85f13fe697f19b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:f5:cc:18:b1:5a:94:3f:6f:d0:57:8c:70:15: 47:6e:97:8c:82:60:18:2f:6c:f8:89:93:f7:f7:1e: a7:3a:07:1d:7a:4f:76:16:dc:92:5a:0b:99:49:0a: 70:4d:3e:29:36:de:1f:e9:44:ee:55:a4:9e:a5:e5: 0f:19:be:f3:2f:ec:fb:9a:5a:5a:53:97:95:6e:44: 26:bc:94:d4:e0:52:0a:0f:33:97:6f:bb:44:b9:c3: 4a:38:87:85:65:cd:d8:84:18:10:42:cb:fa:b3:22: 1f:34:d0:30:74:57:9f:72:e6:9c:7d:22:ac:10:73: 1a:28:ba:e2:b3:ac:b1:31:fd:b1:7f:1a:ac:e4:b2: cd:92:ee:ce:9e:0f:03:f8:61:a1:63:70:7a:71:4c: 66:3a:56:88:6c:76:b2:e8:30:c4:60:67:e0:4f:cf: ea:6a:f7:7e:95:c9:ae:c8:25:1f:6b:88:26:aa:3c: b5:c8:b3:99:ac:ef:6f:c3:5e:8c:1b:97:8c:94:b9: c3:8c:f9:1c:7c:e1:9f:c1:06:68:98:34:3d:43:2a: b2:84:29:71:4d:07:03:df:56:8b:43:ad:e1:5e:1b: 42:d9:69:a2:00:b7:71:25:b2:29:3c:82:06:13:e1: 06:02:ac:19:e7:4a:70:4c:30:87:05:90:5e:95:ea: 8a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:1C:78:20:32:7C:7B:44:63:51:96:D4:7D:D6:41:10:33:F5:BF:32 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3d223e19-6050-4179-8b2c-dba3272aaad4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1100::/48 Signature Algorithm: sha256WithRSAEncryption af:2e:f1:cb:5f:a7:1f:c0:b0:8b:23:be:ce:ce:fe:be:59:4f: 04:18:6b:c3:d8:0e:1b:6e:39:dd:bb:c4:59:23:ee:c4:52:a5: e4:e1:8b:28:a8:5e:67:f3:25:8f:0a:21:7f:ae:a1:85:80:ee: 77:f5:5d:ad:43:59:2b:20:63:33:59:a4:4a:86:26:36:20:03: a5:44:8b:c8:44:03:ae:ac:25:65:e8:45:98:61:80:1c:e2:81: 61:b4:2c:7c:ac:4d:65:bd:17:3f:d6:16:65:df:38:c0:88:5d: e3:f6:fb:b1:31:b4:d9:8b:84:71:1e:7f:32:05:6e:74:6a:0a: 92:e9:73:a3:28:09:f1:96:66:76:e4:a6:4e:13:70:6f:63:de: 69:f9:48:34:ff:03:b3:3b:94:fa:c4:72:2c:67:b2:1b:98:33: f4:10:20:12:69:d2:e5:8e:1d:84:8c:e7:8c:b4:22:94:f9:0d: df:c7:6d:04:6c:3a:7a:bd:db:6d:5b:23:88:c2:6a:23:e0:54: d8:37:37:19:1e:fa:0a:0f:28:91:9e:64:74:bb:a6:c3:aa:36: 49:48:60:3f:f4:0d:dc:1a:6a:c6:df:d9:e7:c6:98:d1:aa:f4: b7:e4:14:f4:dd:c0:6d:fe:57:e5:89:87:d0:d1:a5:99:f6:3c: 7e:49:d8:14 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULnhBR8nJJuXKBAsTzV4CLncpSYswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDE1MTI0WhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGFkYTYwZTdiYTM3MjNjNDBlMWExOTMwOWMxMzc5YTkz ZWI0ZmVkYmNiMTE0MzJhYTg1ZjEzZmU2OTdmMTliMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCD9cwYsVqUP2/QV4xwFUdul4yCYBgvbPiJk/f3Hqc6Bx16 T3YW3JJaC5lJCnBNPik23h/pRO5VpJ6l5Q8ZvvMv7PuaWlpTl5VuRCa8lNTgUgoP M5dvu0S5w0o4h4VlzdiEGBBCy/qzIh800DB0V59y5px9IqwQcxoouuKzrLEx/bF/ Gqzkss2S7s6eDwP4YaFjcHpxTGY6VohsdrLoMMRgZ+BPz+pq936Vya7IJR9riCaq PLXIs5ms72/DXowbl4yUucOM+Rx84Z/BBmiYND1DKrKEKXFNBwPfVotDreFeG0LZ aaIAt3Elsik8ggYT4QYCrBnnSnBMMIcFkF6V6optAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUohx4IDJ8e0RjUZbUfdZBEDP1vzIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzNkMjIzZTE5LTYwNTAtNDE3OS04YjJjLWRiYTMyNzJhYWFkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAEQAwDQYJKoZIhvcNAQELBQADggEBAK8u8ctfpx/AsIsjvs7O/r5Z TwQYa8PYDhtuOd27xFkj7sRSpeThiyioXmfzJY8KIX+uoYWA7nf1Xa1DWSsgYzNZ pEqGJjYgA6VEi8hEA66sJWXoRZhhgBzigWG0LHysTWW9Fz/WFmXfOMCIXeP2+7Ex tNmLhHEefzIFbnRqCpLpc6MoCfGWZnbkpk4TcG9j3mn5SDT/A7M7lPrEcixnshuY M/QQIBJp0uWOHYSM54y0IpT5Dd/HbQRsOnq9221bI4jCaiPgVNg3Nxke+goPKJGe ZHS7psOqNklIYD/0Ddwaasbf2efGmNGq9LfkFPTdwG3+V+WJh9DRpZn2PH5J2BQ= -----END CERTIFICATE-----Generated at Sun Apr 19 10:10:53 2026 by rpki-client