$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7086fa19-1a9e-4a4d-beed-388d52bb28ac.roa File: 7086fa19-1a9e-4a4d-beed-388d52bb28ac.roa (raw, json) Hash identifier: 09alEkuLYetrhbwwAC6JQMiGYLIDO2DJmkhWv9BHcBU= Subject key identifier: B2:3D:A9:C3:E7:F0:56:33:0C:95:8B:04:C9:68:3C:37:44:52:12:83 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 232692C60CF539A317D3B0B5FF22B5C739585ACD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7086fa19-1a9e-4a4d-beed-388d52bb28ac.roa Signing time: Fri 13 Feb 2026 13:20:46 +0000 ROA not before: Fri 13 Feb 2026 13:20:46 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3868::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:26:92:c6:0c:f5:39:a3:17:d3:b0:b5:ff:22:b5:c7:39:58:5a:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 13:20:46 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=bf2eb36498cc42b6823f8832414fcbd3ac45d67ff0e03086f2e40dea6552e2cb, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:42:61:25:21:aa:39:81:67:b2:3e:77:24:44: e3:ba:3c:02:6d:04:75:05:98:dc:65:ac:e6:0b:cb: f5:70:8e:82:61:43:ba:13:11:44:e1:5c:61:80:78: fd:59:90:ec:b3:20:61:81:0f:e3:14:a8:70:2f:72: 9d:3d:1b:a7:e6:dd:f4:09:d1:27:46:ce:09:73:06: c1:bb:78:40:ae:36:a3:aa:71:98:b9:d7:dc:e0:9d: 3d:ea:3d:18:3d:8a:a4:19:8e:63:e7:25:1a:a2:c2: c5:46:e4:f6:e5:d5:b4:4f:8b:95:4f:bc:d6:79:af: d2:00:cf:02:3c:03:58:98:e4:c0:ce:50:8b:46:47: 51:8b:8d:1e:ac:85:07:09:10:ca:d2:1f:6b:04:7f: ea:2f:1e:3d:69:6a:c3:bb:a0:69:04:6a:03:47:20: c3:d4:2a:85:f2:ab:c1:2b:a3:3e:19:1c:e1:4e:89: 10:65:44:c4:fc:11:8a:e4:e3:9f:72:20:a7:f6:6f: e0:35:64:8b:5a:7b:80:36:66:e8:87:5c:ea:49:50: 7b:d9:d6:e8:67:e5:67:20:f7:cd:09:49:c5:98:6c: d2:39:fe:8c:f4:b9:9b:2e:9f:6d:4e:6b:1b:db:18: d1:cd:a3:d6:5b:4c:81:42:fd:d7:cb:da:4d:8f:9a: a1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:3D:A9:C3:E7:F0:56:33:0C:95:8B:04:C9:68:3C:37:44:52:12:83 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7086fa19-1a9e-4a4d-beed-388d52bb28ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3868::/47 Signature Algorithm: sha256WithRSAEncryption 3f:42:8f:94:54:de:e9:88:5f:6f:a9:74:97:21:dd:0a:14:72: 81:f0:86:4c:0e:28:8e:a8:0a:ce:b9:f6:1f:09:55:5d:52:ff: 72:72:79:26:80:8b:b0:ab:44:a4:73:8f:89:d0:2a:cb:f4:42: f7:b0:43:88:06:1d:95:3a:86:c2:60:53:98:39:2a:2a:79:3f: a2:f0:0d:8c:b3:3e:61:c5:46:a4:fb:c7:5c:ff:f3:0f:8d:ec: eb:1a:02:97:bc:6a:26:36:bb:6f:b9:f5:0a:00:a8:1a:23:3c: b3:01:16:01:62:82:76:30:72:4e:e7:d5:0b:26:48:a0:cd:1b: 7a:d6:d8:00:74:58:90:50:1c:ed:cf:86:c7:20:28:e3:67:2c: bb:fd:a4:91:c0:c7:db:ff:0b:fe:30:7c:d4:76:0c:f1:d4:22: e7:06:84:73:3f:a8:39:32:f6:f1:f5:8a:fd:61:0e:b7:7c:5d: 5d:c0:22:86:87:06:24:57:1d:75:0a:9d:fd:3c:69:13:48:2f: be:13:0a:98:d0:c5:55:d4:7b:a5:6c:dc:9e:d7:f8:75:4d:6e: e9:e8:98:df:8b:0d:3a:db:f4:52:0d:c6:3d:21:22:52:20:05: ba:cb:50:cb:ac:e1:26:eb:02:b7:f2:1e:74:1d:2d:61:a5:86: b5:21:32:2e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIyaSxgz1OaMX07C1/yK1xzlYWs0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTMyMDQ2WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjJlYjM2NDk4Y2M0MmI2ODIzZjg4MzI0MTRmY2JkM2Fj NDVkNjdmZjBlMDMwODZmMmU0MGRlYTY1NTJlMmNiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMQmElIao5gWeyPnckROO6PAJtBHUFmNxlrOYLy/VwjoJh Q7oTEUThXGGAeP1ZkOyzIGGBD+MUqHAvcp09G6fm3fQJ0SdGzglzBsG7eECuNqOq cZi519zgnT3qPRg9iqQZjmPnJRqiwsVG5Pbl1bRPi5VPvNZ5r9IAzwI8A1iY5MDO UItGR1GLjR6shQcJEMrSH2sEf+ovHj1pasO7oGkEagNHIMPUKoXyq8Eroz4ZHOFO iRBlRMT8EYrk459yIKf2b+A1ZItae4A2ZuiHXOpJUHvZ1uhn5Wcg980JScWYbNI5 /oz0uZsun21OaxvbGNHNo9ZbTIFC/dfL2k2PmqENAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsj2pw+fwVjMMlYsEyWg8N0RSEoMwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzcwODZmYTE5LTFhOWUtNGE0ZC1iZWVkLTM4OGQ1MmJiMjhhYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOGgwDQYJKoZIhvcNAQELBQADggEBAD9Cj5RU3umIX2+pdJch3QoU coHwhkwOKI6oCs659h8JVV1S/3JyeSaAi7CrRKRzj4nQKsv0QvewQ4gGHZU6hsJg U5g5Kip5P6LwDYyzPmHFRqT7x1z/8w+N7OsaApe8aiY2u2+59QoAqBojPLMBFgFi gnYwck7n1QsmSKDNG3rW2AB0WJBQHO3PhscgKONnLLv9pJHAx9v/C/4wfNR2DPHU IucGhHM/qDky9vH1iv1hDrd8XV3AIoaHBiRXHXUKnf08aRNIL74TCpjQxVXUe6Vs 3J7X+HVNbunomN+LDTrb9FINxj0hIlIgBbrLUMus4SbrArfyHnQdLWGlhrUhMi4= -----END CERTIFICATE-----Generated at Sun Mar 1 22:12:53 2026 by rpki-client