$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5ecbf5fb-ddc1-48cb-bba6-2702854e5045.roa File: 5ecbf5fb-ddc1-48cb-bba6-2702854e5045.roa (raw, json) Hash identifier: QnpgT4qJPDDWM259AJwoDakEUe0U6ZqKplXehxQehpg= Subject key identifier: D9:8D:AC:56:B8:F9:81:BB:CA:50:16:D3:0E:99:20:93:76:E4:75:86 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3BC9D7CF2E8908F832A4A076A3295603F4A22ADF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5ecbf5fb-ddc1-48cb-bba6-2702854e5045.roa Signing time: Thu 12 Feb 2026 00:40:48 +0000 ROA not before: Thu 12 Feb 2026 00:40:48 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2e68::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c9:d7:cf:2e:89:08:f8:32:a4:a0:76:a3:29:56:03:f4:a2:2a:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 00:40:48 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=1724e54ea4e92f699c9ea2b7e6e0a63d1675ea785a990dbf62d316890ac33701, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:51:49:b8:49:ef:75:50:9b:5f:a9:bf:ac:d3: 24:a0:23:1f:7a:4a:fa:41:23:41:cb:f0:bc:eb:6a: 50:4b:03:fc:fd:10:0c:ef:0a:2a:cb:8a:7e:2b:5a: f6:63:6a:b1:f6:64:0a:38:23:5a:c6:31:96:c9:2a: 0c:f3:24:01:73:06:2b:e7:2f:e7:63:dc:d5:c3:55: db:ef:26:9e:fe:24:5b:07:32:fc:de:62:fc:de:94: 06:2c:f6:df:2d:9e:1d:ba:c9:07:c9:be:e0:a5:6c: cf:6d:ee:3a:c9:82:e8:28:63:4f:1b:3e:45:1d:0c: 4e:18:06:9f:03:b8:df:73:38:0a:3e:6f:7a:33:4c: da:d5:50:a0:48:14:7b:b0:4f:ed:13:2b:91:09:28: 9c:7e:c4:51:5e:7c:1c:7c:68:39:0f:a9:15:5d:78: 74:66:7f:89:8a:aa:b4:87:3f:e2:f8:15:20:c0:02: f6:be:9f:11:97:ca:c2:a6:1a:63:59:64:89:27:60: e5:6b:d2:a5:d4:80:9b:bb:3d:df:13:23:9a:da:ca: 90:ff:2b:5d:2b:43:e8:f3:b4:7e:2b:29:b7:e9:34: 98:34:de:1a:bf:ab:db:c0:54:6c:7e:c5:55:b1:fb: 73:d9:49:c2:7a:e3:a2:c3:88:67:a9:dd:a1:35:3b: 11:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:8D:AC:56:B8:F9:81:BB:CA:50:16:D3:0E:99:20:93:76:E4:75:86 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5ecbf5fb-ddc1-48cb-bba6-2702854e5045.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2e68::/47 Signature Algorithm: sha256WithRSAEncryption 15:b4:a7:41:1c:fc:59:c0:e0:2d:be:82:58:cb:69:ff:be:83: 27:37:07:47:b6:04:3e:f6:85:ca:47:c6:0e:a9:fa:19:40:f2: 7e:14:d5:91:09:af:2f:95:40:07:81:4e:8d:63:69:ce:10:c5: 9f:2c:59:21:0d:b2:9a:df:f5:97:fa:19:f9:83:42:20:30:b9: 1a:88:f5:10:98:6e:3f:a3:00:2a:33:30:3f:e2:b2:93:82:7f: b2:e0:03:5d:bd:7f:81:90:48:ab:35:d9:44:5c:02:cd:91:1e: 4c:5f:ff:a2:7b:0c:44:7d:df:11:42:4f:4d:08:b1:5f:ef:06: 33:77:25:64:40:95:80:0b:25:bf:9b:6e:c2:24:60:ff:16:a5: e5:38:57:24:44:c0:a7:b8:5b:c6:e6:bc:74:18:08:49:9c:47: 18:7f:af:91:e9:e9:01:10:54:32:7c:13:c3:08:e1:e9:f3:f2: f1:c6:b5:3b:5a:f2:f7:8f:8c:da:aa:84:1d:01:dd:bb:91:31: bf:b4:13:0f:1e:c9:39:07:1e:81:02:e7:d6:a5:6f:d7:34:94: b7:8e:49:49:1a:01:b4:d8:3e:ca:96:ee:8c:eb:8c:57:57:55: 1c:c0:14:6c:2f:aa:3c:ad:64:88:2e:d5:86:2f:b7:b6:7a:8b: 96:63:f6:74 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO8nXzy6JCPgypKB2oylWA/SiKt8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDA0MDQ4WhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzI0ZTU0ZWE0ZTkyZjY5OWM5ZWEyYjdlNmUwYTYzZDE2 NzVlYTc4NWE5OTBkYmY2MmQzMTY4OTBhYzMzNzAxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGUUm4Se91UJtfqb+s0ySgIx96SvpBI0HL8LzralBLA/z9 EAzvCirLin4rWvZjarH2ZAo4I1rGMZbJKgzzJAFzBivnL+dj3NXDVdvvJp7+JFsH MvzeYvzelAYs9t8tnh26yQfJvuClbM9t7jrJgugoY08bPkUdDE4YBp8DuN9zOAo+ b3ozTNrVUKBIFHuwT+0TK5EJKJx+xFFefBx8aDkPqRVdeHRmf4mKqrSHP+L4FSDA Ava+nxGXysKmGmNZZIknYOVr0qXUgJu7Pd8TI5raypD/K10rQ+jztH4rKbfpNJg0 3hq/q9vAVGx+xVWx+3PZScJ646LDiGep3aE1OxE5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2Y2sVrj5gbvKUBbTDpkgk3bkdYYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzVlY2JmNWZiLWRkYzEtNDhjYi1iYmE2LTI3MDI4NTRlNTA0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALmgwDQYJKoZIhvcNAQELBQADggEBABW0p0Ec/FnA4C2+gljLaf++ gyc3B0e2BD72hcpHxg6p+hlA8n4U1ZEJry+VQAeBTo1jac4QxZ8sWSENsprf9Zf6 GfmDQiAwuRqI9RCYbj+jACozMD/ispOCf7LgA129f4GQSKs12URcAs2RHkxf/6J7 DER93xFCT00IsV/vBjN3JWRAlYALJb+bbsIkYP8WpeU4VyREwKe4W8bmvHQYCEmc Rxh/r5Hp6QEQVDJ8E8MI4enz8vHGtTta8vePjNqqhB0B3buRMb+0Ew8eyTkHHoEC 59alb9c0lLeOSUkaAbTYPsqW7ozrjFdXVRzAFGwvqjytZIgu1YYvt7Z6i5Zj9nQ= -----END CERTIFICATE-----Generated at Sun Mar 1 22:15:00 2026 by rpki-client