$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5c3c84ff-715a-4026-b6d5-0da2452d291c.roa File: 5c3c84ff-715a-4026-b6d5-0da2452d291c.roa (raw, json) Hash identifier: h+RD9f5UjuyJadYlu3MmNVCl4Og57p4UE1v0VKc5Sr0= Subject key identifier: 63:E4:9E:67:76:DA:05:D2:44:4A:84:E1:01:5D:FF:E2:C3:FD:F1:EB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 14F1DB24E71CAE3133EC0F46D6639E51CF2737F8 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5c3c84ff-715a-4026-b6d5-0da2452d291c.roa Signing time: Fri 13 Feb 2026 11:40:40 +0000 ROA not before: Fri 13 Feb 2026 11:40:40 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3fd4::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f1:db:24:e7:1c:ae:31:33:ec:0f:46:d6:63:9e:51:cf:27:37:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 11:40:40 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=be88103ec71f974009bf409098de2456aed97a2d923941a9d3d9b38ea768af1b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:66:04:07:a3:68:57:8d:d9:82:aa:34:48:f2: b6:6d:e8:e1:4c:28:f7:03:ed:6f:23:37:05:90:ec: 68:b6:33:1e:82:0b:9a:7d:59:07:57:8b:79:dd:47: 30:f0:08:68:af:20:37:6c:7c:23:62:82:ba:fe:8f: 36:ad:5b:c7:b9:e5:a2:ae:d4:6b:66:b6:a6:c0:ac: 7c:dc:48:25:49:73:44:c3:53:69:ae:3d:18:08:e8: ad:07:f6:ec:62:7b:ce:7e:46:4a:72:8d:5c:15:b1: 29:95:3f:47:91:25:51:90:0c:5f:2b:b0:6d:5e:77: 88:4b:74:3e:dd:f4:0c:40:5b:67:4b:e7:61:ff:51: be:35:83:23:9f:71:9b:e5:a4:8b:57:c0:51:32:c3: d3:9b:87:c2:22:b0:26:eb:ff:c2:51:95:42:75:22: 47:98:79:bd:bf:f0:2b:96:f4:16:70:ed:63:24:90: bb:f5:5d:06:60:30:62:25:0c:96:df:bc:c2:e0:82: 42:a0:d2:73:15:5b:4c:96:50:25:81:8f:52:56:d1: ac:24:a0:10:c8:d6:ce:4e:7e:48:d7:07:af:8a:e7: 9b:2d:32:6d:68:55:b8:b0:3b:46:b6:c9:b8:ed:82: da:70:8b:59:86:56:ae:68:0b:ff:9e:34:e6:88:31: 04:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E4:9E:67:76:DA:05:D2:44:4A:84:E1:01:5D:FF:E2:C3:FD:F1:EB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5c3c84ff-715a-4026-b6d5-0da2452d291c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3fd4::/47 Signature Algorithm: sha256WithRSAEncryption 7f:b4:ca:e3:e6:35:43:98:ef:63:c3:f1:b5:da:75:0a:47:be: b1:82:71:d9:de:b9:96:e6:0e:94:c3:a3:75:99:81:bb:d7:70: d4:28:be:a3:3b:43:54:00:09:36:68:e6:2c:64:74:da:b9:65: f4:d2:f1:17:76:71:b6:e4:6b:ea:1c:21:78:da:93:e7:d4:f2: 68:e3:b2:5c:c1:03:8b:8d:4e:73:42:40:22:1f:43:1e:9f:04: 7a:52:67:29:d2:58:c2:e5:c2:f0:91:ee:99:a2:31:48:60:35: a2:7e:44:58:c6:c4:31:17:12:93:5f:d5:24:b8:06:14:03:3c: 4c:e5:cd:ee:88:14:b5:69:26:ef:84:31:36:0e:b3:c0:55:84: 3b:10:a3:4a:24:8a:83:90:0c:5d:09:09:4a:ce:5b:ae:b7:78: ac:05:63:1b:bb:ac:de:ac:56:0c:f3:8d:42:ff:a0:d2:03:87: 0d:b2:da:d1:a2:43:48:8e:99:57:9c:39:ca:00:dd:84:18:6c: b0:7d:73:36:8b:a5:06:94:c5:58:7f:71:64:96:f8:db:c0:93: cc:ed:20:da:42:e8:f6:58:8d:42:f4:ca:29:b4:fb:ec:ae:37: cf:6e:d2:92:47:d0:17:b6:9b:ee:26:b3:8f:1d:e4:4e:ed:70: 05:97:58:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFPHbJOccrjEz7A9G1mOeUc8nN/gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTE0MDQwWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTg4MTAzZWM3MWY5NzQwMDliZjQwOTA5OGRlMjQ1NmFl ZDk3YTJkOTIzOTQxYTlkM2Q5YjM4ZWE3NjhhZjFiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0ZgQHo2hXjdmCqjRI8rZt6OFMKPcD7W8jNwWQ7Gi2Mx6C C5p9WQdXi3ndRzDwCGivIDdsfCNigrr+jzatW8e55aKu1GtmtqbArHzcSCVJc0TD U2muPRgI6K0H9uxie85+RkpyjVwVsSmVP0eRJVGQDF8rsG1ed4hLdD7d9AxAW2dL 52H/Ub41gyOfcZvlpItXwFEyw9Obh8IisCbr/8JRlUJ1IkeYeb2/8CuW9BZw7WMk kLv1XQZgMGIlDJbfvMLggkKg0nMVW0yWUCWBj1JW0awkoBDI1s5OfkjXB6+K55st Mm1oVbiwO0a2ybjtgtpwi1mGVq5oC/+eNOaIMQQ1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUY+SeZ3baBdJESoThAV3/4sP98eswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzVjM2M4NGZmLTcxNWEtNDAyNi1iNmQ1LTBkYTI0NTJkMjkxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAP9QwDQYJKoZIhvcNAQELBQADggEBAH+0yuPmNUOY72PD8bXadQpH vrGCcdneuZbmDpTDo3WZgbvXcNQovqM7Q1QACTZo5ixkdNq5ZfTS8Rd2cbbka+oc IXjak+fU8mjjslzBA4uNTnNCQCIfQx6fBHpSZynSWMLlwvCR7pmiMUhgNaJ+RFjG xDEXEpNf1SS4BhQDPEzlze6IFLVpJu+EMTYOs8BVhDsQo0okioOQDF0JCUrOW663 eKwFYxu7rN6sVgzzjUL/oNIDhw2y2tGiQ0iOmVecOcoA3YQYbLB9czaLpQaUxVh/ cWSW+NvAk8ztINpC6PZYjUL0yim0++yuN89u0pJH0Be2m+4ms48d5E7tcAWXWKs= -----END CERTIFICATE-----Generated at Mon Mar 2 12:34:20 2026 by rpki-client