$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/593de047-8cb7-4766-930c-6971361f5e40.roa File: 593de047-8cb7-4766-930c-6971361f5e40.roa (raw, json) Hash identifier: 003IXZ8dYntRqlG44ac1IBmIx95XPC77D7memONwjHA= Subject key identifier: 56:2B:DE:49:AE:51:33:C1:CC:1C:2D:B6:A6:26:51:B4:5B:2D:8E:29 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7758AEFDC3D3A0A66E5D8C6A38A2E178FBF17B2D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/593de047-8cb7-4766-930c-6971361f5e40.roa Signing time: Fri 13 Feb 2026 02:50:57 +0000 ROA not before: Fri 13 Feb 2026 02:50:57 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3348::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:58:ae:fd:c3:d3:a0:a6:6e:5d:8c:6a:38:a2:e1:78:fb:f1:7b:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 02:50:57 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=e2204b600f40df9e1f48f34926196ef52a960d0c50825611fdefc6b9356263ac, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9c:9c:25:bd:cf:52:b8:9c:5d:2f:6e:6b:63: 16:3a:39:34:a8:2a:ca:f1:cb:61:34:31:81:c0:29: a9:7e:8a:29:ff:cc:16:ce:d7:09:ae:f1:9c:aa:8f: 32:34:bc:8a:9c:3c:73:f4:b6:fa:02:f7:c0:ff:f2: 3d:f8:70:b1:d8:bd:7a:8d:3e:5d:e8:ab:c6:88:53: d3:43:30:74:c4:14:58:10:b9:b4:cd:90:b5:dd:e1: ab:7a:d5:56:9b:e7:f0:00:d0:f9:5d:01:9e:2d:a4: 87:ca:22:1a:d2:69:7d:e8:23:6a:65:7f:ad:b1:00: e8:90:69:8e:86:dc:cd:d2:49:7d:ff:50:cb:ac:61: ed:f5:97:99:4d:99:55:ed:77:f6:91:be:9d:50:6c: 36:8b:27:0a:df:eb:a7:eb:01:69:ae:f7:81:ec:fd: b1:f4:96:7c:64:60:59:05:58:e3:c6:b0:39:8c:ad: 1d:a1:b1:f1:98:16:0c:a5:44:b2:31:fd:d8:f4:60: ee:4b:e4:50:1c:f8:14:97:7a:6e:36:6c:1f:56:5c: ae:1d:81:02:6c:8f:55:b9:b1:d0:c5:37:c5:7d:45: 89:81:0d:e3:c9:47:30:db:85:11:a8:88:5c:fc:40: 4e:49:63:b9:74:3a:b3:7d:a0:38:03:6c:53:db:f8: 14:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:2B:DE:49:AE:51:33:C1:CC:1C:2D:B6:A6:26:51:B4:5B:2D:8E:29 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/593de047-8cb7-4766-930c-6971361f5e40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3348::/45 Signature Algorithm: sha256WithRSAEncryption 61:b6:32:2e:50:cb:5e:b2:9a:82:73:21:d3:05:8f:6d:11:24: d2:fe:a4:2b:08:e0:2d:fc:ce:a7:79:48:de:67:f4:97:e4:dc: b8:ce:ac:11:36:96:92:df:e9:b6:2e:1c:53:1b:a6:b3:56:90: 6b:bd:1a:61:1b:7a:c9:af:37:7b:af:cb:b0:26:a6:0f:0a:1f: 24:02:01:a7:01:47:d8:c4:4a:e0:b5:c6:94:ef:ae:b3:d9:59: ab:d2:78:35:42:5f:3d:3a:5c:57:f6:34:5c:fa:27:5e:fd:12: d7:6a:21:02:81:b7:a2:e6:a1:8a:38:52:78:0c:99:f7:26:8a: 5d:02:65:da:d4:eb:3f:e2:2c:7d:8e:fd:b3:d5:15:d5:7e:bf: 6a:0a:15:60:7e:7b:45:c1:75:bb:86:30:f7:7a:fa:e0:f6:69: 84:ec:74:75:57:57:92:48:3e:5c:d7:b7:83:0d:48:c8:bb:21: 9e:09:5f:2e:46:ce:85:aa:a5:c7:08:1e:e2:18:ac:7e:5c:81: 95:a3:47:6f:78:bf:b2:a5:b9:3c:dc:b6:b7:7d:78:11:46:45: 72:06:26:53:31:23:0c:64:bf:76:7c:92:78:44:88:5e:7c:13: 93:dd:69:aa:0a:11:c3:3e:d4:4c:e1:60:86:64:a7:a1:c9:21: b7:9e:32:7d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUd1iu/cPToKZuXYxqOKLhePvxey0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDI1MDU3WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjIwNGI2MDBmNDBkZjllMWY0OGYzNDkyNjE5NmVmNTJh OTYwZDBjNTA4MjU2MTFmZGVmYzZiOTM1NjI2M2FjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxnJwlvc9SuJxdL25rYxY6OTSoKsrxy2E0MYHAKal+iin/ zBbO1wmu8ZyqjzI0vIqcPHP0tvoC98D/8j34cLHYvXqNPl3oq8aIU9NDMHTEFFgQ ubTNkLXd4at61Vab5/AA0PldAZ4tpIfKIhrSaX3oI2plf62xAOiQaY6G3M3SSX3/ UMusYe31l5lNmVXtd/aRvp1QbDaLJwrf66frAWmu94Hs/bH0lnxkYFkFWOPGsDmM rR2hsfGYFgylRLIx/dj0YO5L5FAc+BSXem42bB9WXK4dgQJsj1W5sdDFN8V9RYmB DePJRzDbhRGoiFz8QE5JY7l0OrN9oDgDbFPb+BTTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUViveSa5RM8HMHC22piZRtFstjikwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzU5M2RlMDQ3LThjYjctNDc2Ni05MzBjLTY5NzEzNjFmNWU0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAM0gwDQYJKoZIhvcNAQELBQADggEBAGG2Mi5Qy16ymoJzIdMFj20R JNL+pCsI4C38zqd5SN5n9Jfk3LjOrBE2lpLf6bYuHFMbprNWkGu9GmEbesmvN3uv y7Ampg8KHyQCAacBR9jESuC1xpTvrrPZWavSeDVCXz06XFf2NFz6J179EtdqIQKB t6LmoYo4UngMmfcmil0CZdrU6z/iLH2O/bPVFdV+v2oKFWB+e0XBdbuGMPd6+uD2 aYTsdHVXV5JIPlzXt4MNSMi7IZ4JXy5GzoWqpccIHuIYrH5cgZWjR294v7KluTzc trd9eBFGRXIGJlMxIwxkv3Z8knhEiF58E5PdaaoKEcM+1EzhYIZkp6HJIbeeMn0= -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:11 2026 by rpki-client