$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4f839c8a-0cb0-4544-8859-9487e253eae1.roa File: 4f839c8a-0cb0-4544-8859-9487e253eae1.roa (raw, json) Hash identifier: Kh5GNrVWUIEPTwcgvNKF+wR9ReZCGwKZ7g6l16s5K94= Subject key identifier: 14:A3:DD:A1:18:40:45:BF:85:FC:74:3B:F1:38:AD:B7:49:DD:76:DE Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 113C6374188F7DA73D29ECD95F89142AF20D23A4 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4f839c8a-0cb0-4544-8859-9487e253eae1.roa Signing time: Fri 13 Feb 2026 13:10:48 +0000 ROA not before: Fri 13 Feb 2026 13:10:48 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3370::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:3c:63:74:18:8f:7d:a7:3d:29:ec:d9:5f:89:14:2a:f2:0d:23:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 13:10:48 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=b6601e0b7ef00f4fd266958611978be6504f2ec949c9165297edef4013659ccf, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:39:d8:d0:2a:cc:06:88:82:73:7b:70:42:98: f1:2d:8f:e0:fc:5d:a6:c4:79:7e:ff:10:24:97:59: b3:7c:47:7e:f6:7e:a1:1d:b9:cd:18:1b:9c:40:a8: 89:72:83:65:64:73:d7:5e:89:fd:b8:2c:be:cd:b0: b3:25:e6:a2:68:62:0e:f3:28:47:2d:84:17:83:10: 69:2b:23:d9:e9:34:9a:fb:80:71:36:42:42:b4:0a: 47:70:d5:25:46:c0:be:12:05:55:5a:75:b3:4e:d2: 9f:0c:4e:2e:76:6a:3e:71:d6:89:52:50:c2:b6:1f: 47:70:97:fc:9a:f5:85:a2:c6:97:c8:0c:90:88:0b: 06:54:35:70:7b:63:e1:2f:46:63:13:e7:13:cd:ae: 92:c8:5e:5d:be:10:e0:68:03:6e:38:c5:aa:69:f0: 74:d8:22:65:3c:08:10:98:14:93:78:6b:93:4f:9d: b8:2d:c3:3b:5f:a7:44:5f:26:82:4a:22:56:3a:c6: cd:79:25:31:59:21:75:df:e2:79:84:2f:94:2b:50: e4:e8:05:48:6c:d6:1f:37:5f:74:54:f6:96:32:89: 45:b3:12:8b:40:21:7e:2d:d9:be:d0:e1:05:68:de: 4e:41:79:2d:cb:fc:a7:22:e4:42:f3:ca:5b:88:9d: 8f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A3:DD:A1:18:40:45:BF:85:FC:74:3B:F1:38:AD:B7:49:DD:76:DE X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4f839c8a-0cb0-4544-8859-9487e253eae1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3370::/46 Signature Algorithm: sha256WithRSAEncryption 16:82:c8:f1:18:c0:1c:9a:66:4e:6c:3f:fc:55:20:0a:57:47: 53:73:d4:96:f2:4f:22:21:1d:db:e3:5c:19:a5:fb:5d:d3:81: 23:47:e7:29:40:2e:a3:5d:6e:73:3e:00:e6:05:3f:b2:c1:39: 9e:a4:8f:65:cc:b4:8d:e4:cb:67:4b:c5:be:e1:ce:f5:30:10: 24:07:7a:a8:a9:c3:ad:66:bc:af:eb:d5:50:34:e2:54:60:73: ad:37:11:ee:34:9d:ca:75:49:06:04:b8:92:a8:aa:23:21:a0: c3:46:df:83:c0:95:2a:2f:9f:fd:58:f8:11:ef:1c:3c:5e:57: 80:5c:7b:de:97:25:61:df:1b:60:9d:9c:82:70:65:18:67:ee: 71:40:a0:4d:16:84:92:9c:7c:d8:72:4e:94:e1:ab:9e:fd:80: d1:61:af:09:d1:ad:e6:3b:ec:bf:32:a0:68:66:e7:8d:78:5c: 46:86:ab:3c:b9:1f:92:c0:68:01:dd:c2:74:58:bc:e7:91:36: 14:50:c0:96:5a:67:c0:4d:3f:d1:ff:52:6d:7f:7c:73:04:f2: 7e:29:30:c3:1d:1e:09:cf:ae:d1:61:2f:f2:a3:f5:e7:fe:50: ed:b5:fb:7b:2b:22:90:7e:d6:98:52:c2:14:13:c4:7f:cc:c9: 84:7c:b6:3f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUETxjdBiPfac9KezZX4kUKvINI6QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTMxMDQ4WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjYwMWUwYjdlZjAwZjRmZDI2Njk1ODYxMTk3OGJlNjUw NGYyZWM5NDljOTE2NTI5N2VkZWY0MDEzNjU5Y2NmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnOdjQKswGiIJze3BCmPEtj+D8XabEeX7/ECSXWbN8R372 fqEduc0YG5xAqIlyg2Vkc9deif24LL7NsLMl5qJoYg7zKEcthBeDEGkrI9npNJr7 gHE2QkK0Ckdw1SVGwL4SBVVadbNO0p8MTi52aj5x1olSUMK2H0dwl/ya9YWixpfI DJCICwZUNXB7Y+EvRmMT5xPNrpLIXl2+EOBoA244xapp8HTYImU8CBCYFJN4a5NP nbgtwztfp0RfJoJKIlY6xs15JTFZIXXf4nmEL5QrUOToBUhs1h83X3RU9pYyiUWz EotAIX4t2b7Q4QVo3k5BeS3L/Kci5ELzyluInY/tAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFKPdoRhARb+F/HQ78Titt0nddt4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzRmODM5YzhhLTBjYjAtNDU0NC04ODU5LTk0ODdlMjUzZWFlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAM3AwDQYJKoZIhvcNAQELBQADggEBABaCyPEYwByaZk5sP/xVIApX R1Nz1JbyTyIhHdvjXBml+13TgSNH5ylALqNdbnM+AOYFP7LBOZ6kj2XMtI3ky2dL xb7hzvUwECQHeqipw61mvK/r1VA04lRgc603Ee40ncp1SQYEuJKoqiMhoMNG34PA lSovn/1Y+BHvHDxeV4Bce96XJWHfG2CdnIJwZRhn7nFAoE0WhJKcfNhyTpThq579 gNFhrwnRreY77L8yoGhm5414XEaGqzy5H5LAaAHdwnRYvOeRNhRQwJZaZ8BNP9H/ Um1/fHME8n4pMMMdHgnPrtFhL/Kj9ef+UO21+3srIpB+1phSwhQTxH/MyYR8tj8= -----END CERTIFICATE-----Generated at Sun Mar 1 23:53:50 2026 by rpki-client