$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/68a847c5-5b6b-4519-af03-8a75125eb3be.roa File: 68a847c5-5b6b-4519-af03-8a75125eb3be.roa (raw, json) Hash identifier: YN5cfvsvJhxVwJip2bLI8JveHtH0AWUCQyZ0NwtioVc= Subject key identifier: 00:37:3B:4A:BF:1C:FA:6B:10:02:F6:2E:10:C2:B4:68:A3:2B:56:62 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7E3B13189772BD63A25A4C1C2674402D5F659AB0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/68a847c5-5b6b-4519-af03-8a75125eb3be.roa Signing time: Thu 12 Feb 2026 02:31:56 +0000 ROA not before: Thu 12 Feb 2026 02:31:56 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:329a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:3b:13:18:97:72:bd:63:a2:5a:4c:1c:26:74:40:2d:5f:65:9a:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 02:31:56 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=3074bfa614ad7d3affd24dcf0d9c789efd302518e994f4eb035668ac50e5f949, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:57:98:58:47:4d:0e:fc:5e:ca:a7:2a:f4:fd: 75:8c:f2:96:29:5a:27:8e:66:1b:3e:84:b7:61:dd: e2:27:64:62:ed:65:11:c8:b5:7e:a4:7e:71:df:c9: 7f:0e:f6:3a:e9:ab:8b:80:d9:f9:c0:1b:08:9a:01: 43:89:05:5e:89:5c:28:6c:37:78:72:5b:77:41:c7: bb:2c:3c:28:98:85:6b:c4:18:d8:f5:26:65:2e:44: ca:fc:bc:93:3f:bb:d4:4a:53:8c:3d:19:19:38:e2: 3c:2b:52:86:ec:36:88:5e:52:75:ed:f7:62:58:66: 55:6b:da:2e:19:1d:50:67:b9:da:2c:d3:d7:be:f6: 62:05:3e:62:4f:d4:83:cd:1e:6c:b1:30:2a:a9:c2: 20:e8:7d:10:f0:34:03:3b:52:32:19:df:43:4c:1e: c9:37:4a:a2:c5:c3:0d:0b:62:ca:56:4a:09:bc:a9: 84:7a:10:00:bd:4c:2e:06:25:13:02:65:e1:e3:d9: 39:20:c7:4c:9e:25:68:e4:ae:40:4b:2d:19:4f:68: bb:16:6b:c0:61:b4:68:81:2c:4a:a9:c5:35:95:33: 56:91:7a:14:40:16:97:ed:92:10:a3:29:6e:3c:71: 01:2a:a4:5f:3e:53:b9:be:fd:21:ad:81:4f:d7:9b: 8c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:37:3B:4A:BF:1C:FA:6B:10:02:F6:2E:10:C2:B4:68:A3:2B:56:62 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/68a847c5-5b6b-4519-af03-8a75125eb3be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:329a::/47 Signature Algorithm: sha256WithRSAEncryption 85:9b:90:c5:e6:34:34:8d:d6:bd:a1:4d:f7:ee:e6:67:f7:f6: be:8f:48:56:67:47:7d:ed:4c:5e:e0:68:36:e1:58:b9:62:8c: 24:f8:d1:ca:39:11:b2:e1:9e:c8:66:2d:8f:24:21:0b:90:04: 02:70:35:7d:2b:86:23:b9:36:3c:7d:26:22:f5:c1:69:50:66: 86:84:57:76:14:1b:65:a4:72:c8:b8:1f:3a:95:bf:9a:11:6e: 6c:e7:73:bb:39:5a:9e:ac:f7:3d:fd:6c:20:23:90:4a:c7:61: 0c:43:cb:75:40:32:38:a3:b7:b4:c1:e7:9c:71:60:f6:ad:de: 9c:3e:2c:24:07:09:14:d0:da:6d:ab:4f:2a:74:c4:28:77:5e: bf:0c:34:7f:07:74:69:fe:39:37:1f:bd:34:e4:2b:e7:a1:40: b7:55:79:b0:95:c2:42:b8:6b:89:cc:c0:4f:96:25:08:80:30: 0e:be:fa:1a:43:c2:57:cf:e1:92:76:4e:bd:f7:b6:20:db:87: 34:fa:92:1f:a5:82:0b:80:92:22:3f:b0:8d:14:87:4c:73:73: 34:20:9b:b7:03:5c:64:a5:bb:e5:a6:1b:7d:6e:a8:b7:e2:22: 86:41:12:76:f8:1c:07:d0:a2:42:f8:58:eb:97:37:a5:54:ba: 7c:58:d3:04 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfjsTGJdyvWOiWkwcJnRALV9lmrAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDIzMTU2WhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDc0YmZhNjE0YWQ3ZDNhZmZkMjRkY2YwZDljNzg5ZWZk MzAyNTE4ZTk5NGY0ZWIwMzU2NjhhYzUwZTVmOTQ5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD2V5hYR00O/F7Kpyr0/XWM8pYpWieOZhs+hLdh3eInZGLt ZRHItX6kfnHfyX8O9jrpq4uA2fnAGwiaAUOJBV6JXChsN3hyW3dBx7ssPCiYhWvE GNj1JmUuRMr8vJM/u9RKU4w9GRk44jwrUobsNoheUnXt92JYZlVr2i4ZHVBnudos 09e+9mIFPmJP1IPNHmyxMCqpwiDofRDwNAM7UjIZ30NMHsk3SqLFww0LYspWSgm8 qYR6EAC9TC4GJRMCZeHj2Tkgx0yeJWjkrkBLLRlPaLsWa8BhtGiBLEqpxTWVM1aR ehRAFpftkhCjKW48cQEqpF8+U7m+/SGtgU/Xm4w5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUADc7Sr8c+msQAvYuEMK0aKMrVmIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzY4YTg0N2M1LTViNmItNDUxOS1hZjAzLThhNzUxMjVlYjNiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAMpowDQYJKoZIhvcNAQELBQADggEBAIWbkMXmNDSN1r2hTffu5mf3 9r6PSFZnR33tTF7gaDbhWLlijCT40co5EbLhnshmLY8kIQuQBAJwNX0rhiO5Njx9 JiL1wWlQZoaEV3YUG2Wkcsi4HzqVv5oRbmznc7s5Wp6s9z39bCAjkErHYQxDy3VA Mjijt7TB55xxYPat3pw+LCQHCRTQ2m2rTyp0xCh3Xr8MNH8HdGn+OTcfvTTkK+eh QLdVebCVwkK4a4nMwE+WJQiAMA6++hpDwlfP4ZJ2Tr33tiDbhzT6kh+lgguAkiI/ sI0Uh0xzczQgm7cDXGSlu+WmG31uqLfiIoZBEnb4HAfQokL4WOuXN6VUunxY0wQ= -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:49 2026 by rpki-client