$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/538f9b4f-be3a-461d-8727-b458b5923c2b.roa File: 538f9b4f-be3a-461d-8727-b458b5923c2b.roa (raw, json) Hash identifier: JlDv3KklzM53FcXOG4ZM9pfeZYTomV3NdQlxIL/f0lI= Subject key identifier: 53:64:AE:77:77:BD:C9:8C:1D:5B:7D:6B:AB:E3:B8:15:3D:81:7F:AF Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 239325CA5BAAAE583C9B5E50D08B935A66836EAD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/538f9b4f-be3a-461d-8727-b458b5923c2b.roa Signing time: Fri 13 Feb 2026 06:50:41 +0000 ROA not before: Fri 13 Feb 2026 06:50:41 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3408::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:93:25:ca:5b:aa:ae:58:3c:9b:5e:50:d0:8b:93:5a:66:83:6e:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 06:50:41 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=bf067463275a53b96c3ea3a72d2a9275b413f2a6e8b7ef17160ad51de9a58657, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:70:d1:79:ce:8c:4b:d7:9e:70:36:7f:83:a7: 04:bb:5f:27:13:af:e2:14:98:5c:71:3e:5f:c9:fa: de:e2:15:b1:b1:d8:70:d7:65:05:6c:fe:9f:4c:95: 8b:9c:f8:8b:ee:1f:32:ec:97:e1:2b:6a:b5:3e:0c: c5:9f:fc:6c:6c:d8:da:27:ca:9b:8e:0c:13:99:91: f7:2c:8a:cb:37:4f:f2:a7:9b:5b:f5:d3:1a:00:99: a5:64:16:ee:92:92:3c:ac:7c:a8:34:89:a1:93:15: 9c:2e:c2:7b:97:52:c7:17:2d:22:c1:83:5d:98:b3: bb:82:7c:e7:31:ba:6e:fa:62:4a:e1:d3:5e:c0:1b: e9:2b:2c:f0:8c:8b:c9:7a:dc:58:6e:8f:cd:98:69: 26:b8:4d:32:34:72:d8:ba:09:a6:47:be:c3:25:0f: 24:4d:4f:8c:e4:b1:ef:2f:bc:d7:01:3d:ae:b1:a2: 91:4f:84:61:98:91:9e:64:6c:50:90:55:54:f2:f3: 07:6f:49:25:60:f0:2f:db:a1:72:70:2b:ef:27:0f: b6:c9:80:3d:f7:69:76:94:85:7a:81:ce:f8:67:d9: ba:ca:79:2b:08:d4:1d:e8:4e:89:c6:e6:63:1a:c9: c6:11:0b:0b:25:ab:3d:53:37:f0:d4:74:d2:48:57: 35:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:64:AE:77:77:BD:C9:8C:1D:5B:7D:6B:AB:E3:B8:15:3D:81:7F:AF X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/538f9b4f-be3a-461d-8727-b458b5923c2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3408::/47 Signature Algorithm: sha256WithRSAEncryption 5a:58:6a:9c:a1:13:0a:f4:e1:81:1b:1b:fd:33:4a:bf:c2:02: c4:55:3a:4b:9b:dc:c3:83:75:92:d1:4a:ce:b6:7c:a7:40:c7: a3:1a:2a:f5:20:0c:54:60:e3:c0:0e:75:4d:54:82:7e:27:7a: 64:be:d8:13:5d:ee:2c:21:f4:9b:b6:69:62:2f:f8:26:b6:45: cf:af:a5:88:8f:f6:b3:6f:c9:3e:6d:0c:5f:34:cf:8c:e9:9d: 82:90:ba:37:cd:82:62:b8:3b:ab:a2:f0:45:6a:5e:e8:a9:e1: 47:2a:1b:4d:c3:f0:3b:ab:8d:0a:b8:f8:d3:62:0a:b0:26:c0: 24:b9:75:02:63:2a:bd:cf:7b:03:2f:54:b4:d7:be:bc:7f:8b: 77:19:80:3a:d1:1e:57:2b:ec:d5:90:e8:33:a1:fe:30:7b:29: c4:79:f8:fd:c9:0d:89:8c:a0:61:13:02:b5:f3:88:95:8f:cf: fb:6b:aa:84:b3:58:88:f5:4c:fe:e7:71:0a:1b:f4:a6:cf:f4: 1c:d7:9b:a3:26:8e:56:a8:0d:28:15:bd:b5:93:69:b2:91:ed: d6:33:49:00:8a:2a:21:87:f7:a0:99:1d:17:24:b9:57:54:25: 92:30:46:ce:eb:e7:c0:db:93:47:d1:b1:97:87:01:a7:8a:f4: 39:0e:69:c0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI5Mlyluqrlg8m15Q0IuTWmaDbq0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDY1MDQxWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjA2NzQ2MzI3NWE1M2I5NmMzZWEzYTcyZDJhOTI3NWI0 MTNmMmE2ZThiN2VmMTcxNjBhZDUxZGU5YTU4NjU3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWcNF5zoxL155wNn+DpwS7XycTr+IUmFxxPl/J+t7iFbGx 2HDXZQVs/p9MlYuc+IvuHzLsl+ErarU+DMWf/Gxs2NonypuODBOZkfcsiss3T/Kn m1v10xoAmaVkFu6SkjysfKg0iaGTFZwuwnuXUscXLSLBg12Ys7uCfOcxum76Ykrh 017AG+krLPCMi8l63Fhuj82YaSa4TTI0cti6CaZHvsMlDyRNT4zkse8vvNcBPa6x opFPhGGYkZ5kbFCQVVTy8wdvSSVg8C/boXJwK+8nD7bJgD33aXaUhXqBzvhn2brK eSsI1B3oTonG5mMaycYRCwslqz1TN/DUdNJIVzW1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUU2Sud3e9yYwdW31rq+O4FT2Bf68wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzUzOGY5YjRmLWJlM2EtNDYxZC04NzI3LWI0NThiNTkyM2MyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANAgwDQYJKoZIhvcNAQELBQADggEBAFpYapyhEwr04YEbG/0zSr/C AsRVOkub3MODdZLRSs62fKdAx6MaKvUgDFRg48AOdU1Ugn4nemS+2BNd7iwh9Ju2 aWIv+Ca2Rc+vpYiP9rNvyT5tDF80z4zpnYKQujfNgmK4O6ui8EVqXuip4UcqG03D 8DurjQq4+NNiCrAmwCS5dQJjKr3PewMvVLTXvrx/i3cZgDrRHlcr7NWQ6DOh/jB7 KcR5+P3JDYmMoGETArXziJWPz/trqoSzWIj1TP7ncQob9KbP9BzXm6MmjlaoDSgV vbWTabKR7dYzSQCKKiGH96CZHRckuVdUJZIwRs7r58Dbk0fRsZeHAaeK9DkOacA= -----END CERTIFICATE-----Generated at Sun Mar 1 22:13:49 2026 by rpki-client