$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70cd11f2-0949-4fb6-9409-aafc189683e3.roa File: 70cd11f2-0949-4fb6-9409-aafc189683e3.roa (raw, json) Hash identifier: EqD7ziqag5xJ//WZo8KQwbKx6iq26aZ5IADP2yfuKd8= Subject key identifier: 90:37:1A:CE:31:54:E6:41:58:49:5D:F7:75:50:4C:2E:BB:47:C4:DB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1EAE07E7874CEE1DD2BCF74AB35207861D9DC420 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70cd11f2-0949-4fb6-9409-aafc189683e3.roa Signing time: Thu 12 Feb 2026 00:30:16 +0000 ROA not before: Thu 12 Feb 2026 00:30:16 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2d9c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ae:07:e7:87:4c:ee:1d:d2:bc:f7:4a:b3:52:07:86:1d:9d:c4:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 00:30:16 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=f4a99fef55e99d1f4a601227ad80a52c747fe0146641f88e81395de6b5058738, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:85:9e:7b:f2:8e:ef:51:28:a5:f6:69:33:8f: ca:11:23:b0:7d:23:ff:7c:49:55:9d:14:53:99:3e: 23:a5:4c:fc:c3:fe:f6:8a:3f:80:2e:ba:84:09:05: 87:16:2e:73:20:62:f3:bc:7e:4a:cb:89:7d:c6:2d: ef:0b:04:c0:e9:f0:b1:7f:6e:5a:d6:be:0f:96:fe: 65:b1:50:e5:f0:19:28:22:9c:6d:38:dd:d5:9c:64: 04:e4:66:03:5e:7e:c8:dd:e5:57:17:f7:e2:73:6b: e7:3e:ea:6f:83:da:98:b4:99:26:1d:fb:3f:4a:4a: c9:ac:44:5a:65:08:5c:6f:85:ec:54:a7:ce:e5:14: 0e:94:8c:dc:aa:2b:bc:93:81:e5:42:d6:fb:94:9c: 28:89:39:4b:8e:b5:a5:cc:91:c1:e5:dc:bc:2c:11: 4f:c3:ff:dd:b8:f3:40:c0:27:8e:c5:cc:da:2a:71: 3e:0e:53:1c:74:27:24:e9:bf:eb:54:0d:18:76:54: f5:66:2d:1c:18:70:92:cf:8b:f6:1e:11:36:d5:45: bc:7f:cf:8b:06:14:8e:35:64:f9:1f:12:55:41:ce: f3:d5:a9:fc:0d:45:5d:d7:bf:66:6a:12:ad:f2:bb: 11:7f:85:ef:7b:14:50:78:bd:81:33:cc:1f:84:3a: 6e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:37:1A:CE:31:54:E6:41:58:49:5D:F7:75:50:4C:2E:BB:47:C4:DB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70cd11f2-0949-4fb6-9409-aafc189683e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2d9c::/47 Signature Algorithm: sha256WithRSAEncryption 0e:e2:87:e2:3b:d3:8b:db:b0:69:6f:f6:46:6f:80:8d:eb:aa: 51:5d:7f:3a:33:87:07:a5:72:6e:9f:3c:86:48:43:ff:0e:52: 09:42:12:94:8e:b4:81:03:80:e6:06:10:3e:73:ff:71:ed:3c: 9b:01:d3:a8:ec:95:48:40:58:07:08:7c:b0:62:3c:e7:0b:28: aa:73:d2:10:d7:8c:e4:68:a2:f9:48:e5:01:dd:8f:26:d9:b2: 9c:35:29:73:57:9b:f0:bb:70:9f:83:a4:35:ba:a4:a8:ff:fa: 12:90:cc:f0:08:88:19:9a:75:bf:c9:33:51:72:d0:36:e3:fa: 53:92:f2:72:5b:36:28:32:ad:f1:db:5a:83:52:5a:bd:32:37: 2e:62:a8:98:0e:b2:ee:f8:02:1f:78:4b:96:af:fa:40:3d:b1: e8:8b:b2:97:fe:31:13:3d:9b:6b:92:4f:90:49:42:9e:e1:5f: 02:1c:44:69:e9:34:be:6d:7f:f8:fe:d3:30:8d:8a:14:9b:d0: 1e:e3:fc:2d:bc:e7:04:81:ab:fa:ca:22:4c:9a:7a:f8:4a:b2: 1f:b7:6a:cb:21:45:55:02:12:44:99:35:f5:10:d9:b8:f5:1d: f8:0b:45:5d:84:7f:25:dd:ab:07:18:15:cb:36:ca:f9:8e:33: 1f:45:e6:c9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHq4H54dM7h3SvPdKs1IHhh2dxCAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDAzMDE2WhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNGE5OWZlZjU1ZTk5ZDFmNGE2MDEyMjdhZDgwYTUyYzc0 N2ZlMDE0NjY0MWY4OGU4MTM5NWRlNmI1MDU4NzM4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDShZ578o7vUSil9mkzj8oRI7B9I/98SVWdFFOZPiOlTPzD /vaKP4AuuoQJBYcWLnMgYvO8fkrLiX3GLe8LBMDp8LF/blrWvg+W/mWxUOXwGSgi nG043dWcZATkZgNefsjd5VcX9+Jza+c+6m+D2pi0mSYd+z9KSsmsRFplCFxvhexU p87lFA6UjNyqK7yTgeVC1vuUnCiJOUuOtaXMkcHl3LwsEU/D/92480DAJ47FzNoq cT4OUxx0JyTpv+tUDRh2VPVmLRwYcJLPi/YeETbVRbx/z4sGFI41ZPkfElVBzvPV qfwNRV3Xv2ZqEq3yuxF/he97FFB4vYEzzB+EOm4zAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkDcazjFU5kFYSV33dVBMLrtHxNswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzcwY2QxMWYyLTA5NDktNGZiNi05NDA5LWFhZmMxODk2ODNlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALZwwDQYJKoZIhvcNAQELBQADggEBAA7ih+I704vbsGlv9kZvgI3r qlFdfzozhwelcm6fPIZIQ/8OUglCEpSOtIEDgOYGED5z/3HtPJsB06jslUhAWAcI fLBiPOcLKKpz0hDXjORoovlI5QHdjybZspw1KXNXm/C7cJ+DpDW6pKj/+hKQzPAI iBmadb/JM1Fy0Dbj+lOS8nJbNigyrfHbWoNSWr0yNy5iqJgOsu74Ah94S5av+kA9 seiLspf+MRM9m2uST5BJQp7hXwIcRGnpNL5tf/j+0zCNihSb0B7j/C285wSBq/rK IkyaevhKsh+3asshRVUCEkSZNfUQ2bj1HfgLRV2EfyXdqwcYFcs2yvmOMx9F5sk= -----END CERTIFICATE-----Generated at Sun Mar 1 22:20:26 2026 by rpki-client