$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6808dd41-5daa-4aa0-8ba1-143402906212.roa File: 6808dd41-5daa-4aa0-8ba1-143402906212.roa (raw, json) Hash identifier: Mq2ip9R8XPTzdLWDWHgTcFfk/PSIgiKstYeYd6iHlvk= Subject key identifier: 4B:58:AE:14:2C:AF:9C:06:4C:CF:70:F0:E1:6D:AE:A9:43:1C:22:0F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0A1A405CB4F4CBA072E644F62D798802F0889B2E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6808dd41-5daa-4aa0-8ba1-143402906212.roa Signing time: Fri 03 Apr 2026 00:51:17 +0000 ROA not before: Fri 03 Apr 2026 00:51:17 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:11c2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:1a:40:5c:b4:f4:cb:a0:72:e6:44:f6:2d:79:88:02:f0:88:9b:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 00:51:17 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=5501c004c8b2aef67d8b7f428722d6275692ac52857256ef9d17dc795886e302, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:53:2f:e8:cd:92:d4:80:9c:56:15:71:6b:28: 17:a2:03:8a:38:18:85:ac:6d:af:dc:6f:fe:36:27: f0:ce:ba:ef:dd:52:07:c6:12:b2:73:77:5b:be:96: e0:37:d9:68:ff:a5:67:ba:7b:f2:51:ec:bc:78:d9: 79:50:73:eb:a9:4f:9f:9e:a9:26:0a:2b:32:b6:b2: 30:59:42:6a:6f:ca:0d:b7:67:db:a8:ec:17:89:09: aa:a5:c9:3d:95:43:ba:93:96:5d:cc:12:e5:e8:33: a2:f5:4c:1d:69:99:a6:05:07:b7:3d:20:1a:15:e1: d0:ea:c3:2c:8f:46:04:54:a8:94:c7:cd:0f:7d:d7: 25:1b:af:8b:61:01:05:3e:86:4e:c4:15:1e:b2:59: 76:ae:03:36:d6:7d:aa:5c:ae:eb:c1:ef:4d:bd:8b: b8:57:ba:34:e3:67:bb:a1:a8:69:64:ad:af:e0:d3: 7e:5c:21:fc:eb:1b:a0:26:d6:f9:38:41:24:65:1a: 97:2e:8d:3c:ee:12:73:88:f0:80:7b:ce:05:26:86: fd:6e:4f:d9:c3:fb:48:84:a0:65:fa:7f:8f:f2:20: de:8f:a1:fe:8a:91:57:42:2c:cb:69:a4:a3:70:57: 06:92:ac:7d:6b:a4:50:dd:39:dd:72:34:ce:bf:55: 35:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:58:AE:14:2C:AF:9C:06:4C:CF:70:F0:E1:6D:AE:A9:43:1C:22:0F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6808dd41-5daa-4aa0-8ba1-143402906212.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:11c2::/48 Signature Algorithm: sha256WithRSAEncryption 43:ff:04:32:51:c9:54:b5:30:73:c4:04:f6:15:b4:1b:83:3d: 99:9f:45:cc:20:5a:5c:cd:bb:0b:a1:00:b2:5a:a8:3c:49:6a: 21:6c:c9:38:92:bc:bb:a1:59:12:d6:0d:25:5e:10:9b:3b:89: 3a:af:4f:72:83:f4:e6:f4:5d:1b:36:25:f9:bc:c2:44:76:4c: 39:c6:41:0d:61:aa:1c:47:5c:b6:5c:ac:a9:d5:27:db:51:f1: 01:97:4f:72:c1:d5:4b:bd:19:36:4f:61:d3:b4:15:a5:88:82: 43:3b:97:8b:6c:63:09:1b:af:14:74:35:c6:cd:80:6d:9e:22: 32:0f:ac:f2:a4:3f:eb:26:ae:df:99:6f:57:c9:24:9f:b7:63: 54:33:3c:10:b0:9c:1b:4a:65:8a:08:fd:cd:70:d5:40:ef:29: 20:a4:dd:79:87:91:d3:37:08:80:6d:57:3b:81:b3:e2:c1:2a: 04:c5:07:ba:df:48:be:51:a6:e0:a6:94:0c:b8:b9:f5:55:e8: 49:17:59:cf:a4:99:b1:ba:64:12:4a:c2:ce:9e:0a:15:35:59: 01:d8:41:75:7f:f4:00:a7:63:aa:b8:8b:45:fe:aa:99:5f:6c: 6b:46:7d:c1:ec:3c:19:e9:be:19:1b:b6:2a:36:08:00:e6:d3: 94:0f:10:9e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUChpAXLT0y6By5kT2LXmIAvCImy4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDA1MTE3WhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTAxYzAwNGM4YjJhZWY2N2Q4YjdmNDI4NzIyZDYyNzU2 OTJhYzUyODU3MjU2ZWY5ZDE3ZGM3OTU4ODZlMzAyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgUy/ozZLUgJxWFXFrKBeiA4o4GIWsba/cb/42J/DOuu/d UgfGErJzd1u+luA32Wj/pWe6e/JR7Lx42XlQc+upT5+eqSYKKzK2sjBZQmpvyg23 Z9uo7BeJCaqlyT2VQ7qTll3MEuXoM6L1TB1pmaYFB7c9IBoV4dDqwyyPRgRUqJTH zQ991yUbr4thAQU+hk7EFR6yWXauAzbWfapcruvB7029i7hXujTjZ7uhqGlkra/g 035cIfzrG6Am1vk4QSRlGpcujTzuEnOI8IB7zgUmhv1uT9nD+0iEoGX6f4/yIN6P of6KkVdCLMtppKNwVwaSrH1rpFDdOd1yNM6/VTU1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUS1iuFCyvnAZMz3Dw4W2uqUMcIg8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzY4MDhkZDQxLTVkYWEtNGFhMC04YmExLTE0MzQwMjkwNjIxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAEcIwDQYJKoZIhvcNAQELBQADggEBAEP/BDJRyVS1MHPEBPYVtBuD PZmfRcwgWlzNuwuhALJaqDxJaiFsyTiSvLuhWRLWDSVeEJs7iTqvT3KD9Ob0XRs2 Jfm8wkR2TDnGQQ1hqhxHXLZcrKnVJ9tR8QGXT3LB1Uu9GTZPYdO0FaWIgkM7l4ts YwkbrxR0NcbNgG2eIjIPrPKkP+smrt+Zb1fJJJ+3Y1QzPBCwnBtKZYoI/c1w1UDv KSCk3XmHkdM3CIBtVzuBs+LBKgTFB7rfSL5RpuCmlAy4ufVV6EkXWc+kmbG6ZBJK ws6eChU1WQHYQXV/9ACnY6q4i0X+qplfbGtGfcHsPBnpvhkbtio2CADm05QPEJ4= -----END CERTIFICATE-----Generated at Fri Apr 17 09:36:40 2026 by rpki-client