$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4bb7daf0-6fda-48f7-8ca8-a6aec0b1f7e8.roa File: 4bb7daf0-6fda-48f7-8ca8-a6aec0b1f7e8.roa (raw, json) Hash identifier: Fj0syIJ40WbhAF8P/h+3wymRC8RB0Q3iO9/3GIpqdrw= Subject key identifier: 28:44:B3:E8:82:58:15:58:0B:53:38:46:66:F1:36:0A:7D:0C:75:88 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3BAF8ADB9964965426CF30773F089746E1A29402 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4bb7daf0-6fda-48f7-8ca8-a6aec0b1f7e8.roa Signing time: Fri 13 Feb 2026 07:31:36 +0000 ROA not before: Fri 13 Feb 2026 07:31:36 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3940::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:af:8a:db:99:64:96:54:26:cf:30:77:3f:08:97:46:e1:a2:94:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 07:31:36 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=395c9cea4798adf6929998c4e9ffc6bf7ada8527409c2b212bc26b7e8e059214, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f4:9b:0a:e3:d8:53:83:f0:ef:66:b2:42:4f: 30:78:5b:20:c1:2f:50:41:7d:e3:6f:70:59:b2:d4: 86:c8:c8:f1:16:d0:3f:31:9c:c7:a1:25:f1:ef:6a: f4:9b:41:d4:f0:0c:41:59:d1:e1:e9:f4:aa:43:c7: fa:7e:2f:e5:58:c6:32:e6:8c:3d:37:3a:f6:e6:ab: 5d:8a:18:0b:b3:ca:94:17:76:1a:a7:d9:ca:75:fc: 40:c4:4a:f9:e3:07:7e:d7:7b:b1:26:9f:6c:c8:b9: 43:f1:bf:45:0e:2e:9d:3e:33:28:6b:49:e8:c6:fd: c0:be:23:e1:3a:96:f3:b4:e2:66:19:cc:9e:90:b3: 84:71:93:14:c5:db:1a:ed:e0:50:1e:9a:77:71:58: c5:e4:d6:a3:ca:d1:7b:87:75:50:05:8e:4e:eb:90: c4:c4:5f:44:1e:3a:46:fb:85:3b:68:4c:ee:86:5f: 7b:83:bd:15:b8:2c:6f:e7:84:6e:7c:a0:f6:4a:18: 83:36:c6:21:55:cc:ca:89:b8:93:19:8a:40:8d:cd: b3:c3:94:22:59:d8:52:32:84:47:2c:e0:ef:bc:44: 39:9e:3d:01:57:20:de:71:c4:3d:46:e4:39:11:fd: c0:d8:c2:c5:51:35:02:10:8f:56:35:0d:d5:1d:5c: c1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:44:B3:E8:82:58:15:58:0B:53:38:46:66:F1:36:0A:7D:0C:75:88 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4bb7daf0-6fda-48f7-8ca8-a6aec0b1f7e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3940::/43 Signature Algorithm: sha256WithRSAEncryption 34:bd:30:85:be:79:70:fa:07:78:e7:8c:2a:9a:f4:10:7f:25: a8:d7:0a:bd:d4:ba:1f:07:06:82:d9:24:52:c3:71:eb:76:4e: 40:d4:1b:a1:e7:fd:52:02:57:c8:c1:24:d8:c5:ef:11:99:91: 51:05:a5:a5:3e:e8:82:31:5f:2e:70:de:03:0b:25:5c:59:cf: e2:0d:16:32:7d:6a:bc:ef:ae:22:4e:71:96:83:92:ad:50:d3: 4a:15:d7:73:87:be:c0:46:e9:12:1f:ca:0f:f9:80:13:5c:b2: b3:28:e4:d0:c3:fc:7d:c0:9f:96:7f:8a:00:b6:dc:cd:c4:97: cc:cc:cd:77:7a:38:d4:7a:51:54:fa:64:d6:6c:13:1c:be:1b: 18:c5:b1:61:5c:ea:5e:e4:2f:b3:56:a5:f7:8b:bf:c0:30:31: 61:e7:ba:6d:9c:1a:1b:84:e4:f6:e3:d9:74:0d:26:9c:6b:c4: 37:36:eb:95:26:03:90:49:ee:5b:fa:bc:c5:0c:ec:69:cf:52: a0:3e:19:28:2a:c3:f1:5c:e3:af:e5:12:23:be:88:e2:39:2c: 18:dd:10:e5:43:c3:f4:d9:5b:e9:99:23:7f:d3:84:32:46:ac: bd:33:2e:e1:eb:71:ce:19:50:52:d2:d1:7c:a6:db:06:2e:11: 55:3a:07:09 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO6+K25lkllQmzzB3PwiXRuGilAIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDczMTM2WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTVjOWNlYTQ3OThhZGY2OTI5OTk4YzRlOWZmYzZiZjdh ZGE4NTI3NDA5YzJiMjEyYmMyNmI3ZThlMDU5MjE0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC49JsK49hTg/DvZrJCTzB4WyDBL1BBfeNvcFmy1IbIyPEW 0D8xnMehJfHvavSbQdTwDEFZ0eHp9KpDx/p+L+VYxjLmjD03Ovbmq12KGAuzypQX dhqn2cp1/EDESvnjB37Xe7Emn2zIuUPxv0UOLp0+MyhrSejG/cC+I+E6lvO04mYZ zJ6Qs4RxkxTF2xrt4FAemndxWMXk1qPK0XuHdVAFjk7rkMTEX0QeOkb7hTtoTO6G X3uDvRW4LG/nhG58oPZKGIM2xiFVzMqJuJMZikCNzbPDlCJZ2FIyhEcs4O+8RDme PQFXIN5xxD1G5DkR/cDYwsVRNQIQj1Y1DdUdXMF1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKESz6IJYFVgLUzhGZvE2Cn0MdYgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzRiYjdkYWYwLTZmZGEtNDhmNy04Y2E4LWE2YWVjMGIxZjdlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAAOUAwDQYJKoZIhvcNAQELBQADggEBADS9MIW+eXD6B3jnjCqa9BB/ JajXCr3Uuh8HBoLZJFLDcet2TkDUG6Hn/VICV8jBJNjF7xGZkVEFpaU+6IIxXy5w 3gMLJVxZz+INFjJ9arzvriJOcZaDkq1Q00oV13OHvsBG6RIfyg/5gBNcsrMo5NDD /H3An5Z/igC23M3El8zMzXd6ONR6UVT6ZNZsExy+GxjFsWFc6l7kL7NWpfeLv8Aw MWHnum2cGhuE5Pbj2XQNJpxrxDc265UmA5BJ7lv6vMUM7GnPUqA+GSgqw/Fc46/l EiO+iOI5LBjdEOVDw/TZW+mZI3/ThDJGrL0zLuHrcc4ZUFLS0Xym2wYuEVU6Bwk= -----END CERTIFICATE-----Generated at Mon Mar 2 09:38:47 2026 by rpki-client