$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70e31e74-a364-4233-80c1-f389fdee78b8.roa File: 70e31e74-a364-4233-80c1-f389fdee78b8.roa (raw, json) Hash identifier: ZxeRAl1ahHRtynxsYQih07+MA7/A/Q1yyVwQFQw+hFg= Subject key identifier: 6D:7C:58:F1:A9:3C:7A:65:F2:91:48:0F:5A:3D:1C:7D:3D:22:C7:0C Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4BCB87376032B2BD01F360FE312D5721F63A8620 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70e31e74-a364-4233-80c1-f389fdee78b8.roa Signing time: Fri 13 Feb 2026 02:01:20 +0000 ROA not before: Fri 13 Feb 2026 02:01:20 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2920::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:cb:87:37:60:32:b2:bd:01:f3:60:fe:31:2d:57:21:f6:3a:86:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 02:01:20 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=a2b249461e4a4585e626dcbab7f25e69c72a5a2d3aa2b023e7ea586f6b967e1e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:76:07:78:8c:48:50:c8:c1:53:ba:d3:04:d7: 07:ef:68:59:48:bc:a1:c8:fa:51:00:5e:21:bc:84: 4f:d9:3b:70:19:c3:34:12:17:21:b0:4c:5b:f5:38: dc:8a:22:84:f9:d1:2f:b5:bf:93:8e:55:b8:16:23: 44:c7:49:72:e7:8a:fd:e0:f6:cb:49:92:10:df:1d: 1f:d6:cd:e7:b2:9e:0c:f4:4c:d4:b2:8e:76:48:77: 29:a0:fe:a4:ba:66:43:b9:44:c3:42:91:6b:4b:62: b4:d7:ab:42:83:2b:14:11:ae:f1:47:af:c1:9c:ff: e2:2b:69:90:93:7a:74:44:82:4d:fb:1e:c8:5f:1b: 8d:aa:37:0e:f1:3b:f4:4a:33:02:f0:4e:17:09:03: 1b:04:5f:1a:6e:b0:ed:11:f0:c6:30:b0:b0:88:7e: dd:ba:ee:12:fc:f6:5a:66:c2:d9:67:cc:25:ea:0e: 38:2b:85:25:43:68:e6:3f:4c:51:1d:04:c5:4b:c4: 67:35:e6:01:50:ce:f1:19:05:6a:ed:63:d3:39:a4: 9b:75:bf:cc:3a:aa:39:47:93:28:35:0a:07:6d:cc: 41:b6:1f:75:04:37:66:79:a3:9d:d9:9c:18:c5:42: 6a:c6:13:46:ca:46:f8:86:62:d6:f9:a4:08:54:23: b0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:7C:58:F1:A9:3C:7A:65:F2:91:48:0F:5A:3D:1C:7D:3D:22:C7:0C X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70e31e74-a364-4233-80c1-f389fdee78b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2920::/43 Signature Algorithm: sha256WithRSAEncryption 8f:e9:29:de:4c:45:47:f4:e7:c9:af:80:08:8b:5f:cd:f4:81: 58:78:7c:78:fb:68:4b:cb:15:dd:28:ef:5b:2d:f0:18:b5:45: bb:a2:77:78:be:c5:c7:1a:db:35:72:11:86:ca:ce:cb:31:bd: a8:91:c4:4c:9b:25:be:7e:07:a2:9b:cc:40:06:92:87:19:44: e0:e5:1f:70:e2:26:47:ad:d4:36:bf:ce:18:27:aa:32:7f:ba: 63:cf:ee:6c:2b:47:a8:2d:f3:60:bc:42:50:1c:cc:39:27:6e: a2:92:ac:20:f1:00:9c:a0:8a:41:7e:90:5a:1a:05:9a:e3:4f: a4:9c:3a:72:73:0d:4a:57:d4:99:b4:01:c6:38:4f:ee:be:b3: 8f:ba:37:42:ec:d7:ff:91:5d:ef:53:5b:7a:c5:03:cc:89:49: 48:c1:d9:6e:f5:0d:01:a1:be:87:10:09:a0:39:2f:48:8d:79: 69:94:38:65:6e:22:7a:30:14:e4:aa:a0:b0:ce:1f:41:8b:36: ee:bd:76:8c:c0:fa:b4:e4:40:c2:56:55:d6:4e:91:c3:3b:da: cc:5a:a0:a3:2d:bc:8e:5f:37:d5:13:cd:2e:21:e1:3f:e7:30: 43:ce:3c:8a:29:18:35:f0:68:7d:56:b7:db:de:2d:0a:34:e0: 22:47:c9:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS8uHN2Aysr0B82D+MS1XIfY6hiAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDIwMTIwWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMmIyNDk0NjFlNGE0NTg1ZTYyNmRjYmFiN2YyNWU2OWM3 MmE1YTJkM2FhMmIwMjNlN2VhNTg2ZjZiOTY3ZTFlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCydgd4jEhQyMFTutME1wfvaFlIvKHI+lEAXiG8hE/ZO3AZ wzQSFyGwTFv1ONyKIoT50S+1v5OOVbgWI0THSXLniv3g9stJkhDfHR/Wzeeyngz0 TNSyjnZIdymg/qS6ZkO5RMNCkWtLYrTXq0KDKxQRrvFHr8Gc/+IraZCTenREgk37 HshfG42qNw7xO/RKMwLwThcJAxsEXxpusO0R8MYwsLCIft267hL89lpmwtlnzCXq DjgrhSVDaOY/TFEdBMVLxGc15gFQzvEZBWrtY9M5pJt1v8w6qjlHkyg1CgdtzEG2 H3UEN2Z5o53ZnBjFQmrGE0bKRviGYtb5pAhUI7BXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbXxY8ak8emXykUgPWj0cfT0ixwwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzcwZTMxZTc0LWEzNjQtNDIzMy04MGMxLWYzODlmZGVlNzhiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAAKSAwDQYJKoZIhvcNAQELBQADggEBAI/pKd5MRUf058mvgAiLX830 gVh4fHj7aEvLFd0o71st8Bi1Rbuid3i+xcca2zVyEYbKzssxvaiRxEybJb5+B6Kb zEAGkocZRODlH3DiJket1Da/zhgnqjJ/umPP7mwrR6gt82C8QlAczDknbqKSrCDx AJygikF+kFoaBZrjT6ScOnJzDUpX1Jm0AcY4T+6+s4+6N0Ls1/+RXe9TW3rFA8yJ SUjB2W71DQGhvocQCaA5L0iNeWmUOGVuInowFOSqoLDOH0GLNu69dozA+rTkQMJW VdZOkcM72sxaoKMtvI5fN9UTzS4h4T/nMEPOPIopGDXwaH1Wt9veLQo04CJHyXI= -----END CERTIFICATE-----Generated at Mon Mar 2 16:46:37 2026 by rpki-client