$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/72575f06-1d8a-41e0-8160-d85455133a8d.roa File: 72575f06-1d8a-41e0-8160-d85455133a8d.roa (raw, json) Hash identifier: bhomD6ulcxr6GidwjBoo5D6Du5LH8xNBnZ7gG0B3sTc= Subject key identifier: 50:93:40:C2:75:7C:50:2B:9F:B4:0B:54:DD:2E:DB:00:E3:54:CA:59 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 38ACDEED10EF5F3E7E3345D87058E1233128E1E7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/72575f06-1d8a-41e0-8160-d85455133a8d.roa Signing time: Fri 13 Feb 2026 09:11:51 +0000 ROA not before: Fri 13 Feb 2026 09:11:51 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3830::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:ac:de:ed:10:ef:5f:3e:7e:33:45:d8:70:58:e1:23:31:28:e1:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 09:11:51 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=2706fc52c249c3c09dec7e79960e63a9a492fd970f099a831251070b70dc96aa, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7f:01:f6:68:58:51:b7:a9:96:c0:16:7d:23: 55:4c:c0:af:e4:6a:c6:7f:f8:1c:e1:85:b8:0a:b1: 34:31:74:e9:db:32:6d:8d:b7:89:df:b5:f6:85:e2: ad:59:e4:08:99:ac:ca:d8:d4:08:bf:4f:00:71:33: 70:23:66:49:20:d9:63:eb:6a:a1:19:37:84:24:ab: 62:1c:1a:ca:f2:ea:eb:70:1d:d0:01:83:1f:e9:ef: 5f:96:02:f7:a6:af:2a:a6:11:e6:86:38:3a:64:7f: 08:bd:31:89:75:f9:32:36:3d:f5:63:4f:82:86:ff: 68:1a:fe:d5:08:62:54:61:e6:64:f1:a7:6f:fc:3d: da:b3:77:af:ea:9c:4d:ff:26:89:df:63:2b:cd:df: 98:51:13:93:ce:7b:67:47:18:09:cf:50:9a:48:b7: 1e:42:8c:4a:48:d5:51:32:c6:35:cf:23:d9:30:59: 42:d5:7a:bb:ac:89:1d:74:10:19:82:c4:9a:fe:6e: b4:f6:c2:27:11:53:2e:a7:b5:a0:5a:e1:b4:c4:88: 95:70:d7:66:2e:3d:fe:91:95:7b:cd:51:cd:3b:52: bf:bd:aa:9b:c8:16:43:b4:11:53:0b:d4:59:cb:9c: 12:c3:75:11:c5:49:80:4f:53:d7:77:be:63:6e:8c: e6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:93:40:C2:75:7C:50:2B:9F:B4:0B:54:DD:2E:DB:00:E3:54:CA:59 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/72575f06-1d8a-41e0-8160-d85455133a8d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3830::/46 Signature Algorithm: sha256WithRSAEncryption 13:a6:7b:ba:77:65:7d:e6:43:ab:66:66:9f:81:97:65:4b:b4: 09:9e:f9:4e:10:92:d4:48:d9:f3:cc:85:a7:64:9e:86:a3:b4: a8:ec:de:61:0c:3b:33:89:4f:c6:91:8d:99:f0:b9:8f:f8:bc: f6:63:c6:e8:ad:fa:aa:b3:ca:04:08:cd:d7:d6:bc:de:62:fd: 14:8c:0b:3f:f9:4a:72:82:c0:f9:79:b9:c6:91:c7:27:7b:29: 16:76:91:8a:8c:63:5b:c8:69:87:39:2d:7b:ed:50:7e:b0:82: 1a:e9:21:61:94:16:5e:48:59:bf:d1:a3:2e:fd:f4:4d:fd:45: cb:9f:3e:29:a4:03:cf:37:a5:38:3d:54:da:df:49:de:41:98: 11:9b:04:bb:19:ec:11:05:ab:eb:56:00:31:52:4e:9b:9d:47: 11:34:aa:8e:9c:2f:a1:d2:b2:11:c9:d1:79:3b:e2:4b:9f:83: 25:cc:2f:17:fa:f1:03:44:ec:35:73:7e:18:53:25:f3:8e:9c: 33:fa:c9:21:cf:af:57:28:87:d2:97:99:2f:ed:dd:a4:5d:4d: a9:b7:a6:4b:3c:46:7b:30:c5:38:44:47:04:f3:83:2d:cc:fa: 92:cc:fd:cb:20:2c:11:be:ee:d2:0e:bf:42:32:8f:81:38:56: 73:30:f9:d7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOKze7RDvXz5+M0XYcFjhIzEo4ecwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDkxMTUxWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzA2ZmM1MmMyNDljM2MwOWRlYzdlNzk5NjBlNjNhOWE0 OTJmZDk3MGYwOTlhODMxMjUxMDcwYjcwZGM5NmFhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJfwH2aFhRt6mWwBZ9I1VMwK/kasZ/+BzhhbgKsTQxdOnb Mm2Nt4nftfaF4q1Z5AiZrMrY1Ai/TwBxM3AjZkkg2WPraqEZN4Qkq2IcGsry6utw HdABgx/p71+WAvemryqmEeaGODpkfwi9MYl1+TI2PfVjT4KG/2ga/tUIYlRh5mTx p2/8Pdqzd6/qnE3/JonfYyvN35hRE5POe2dHGAnPUJpItx5CjEpI1VEyxjXPI9kw WULVerusiR10EBmCxJr+brT2wicRUy6ntaBa4bTEiJVw12YuPf6RlXvNUc07Ur+9 qpvIFkO0EVML1FnLnBLDdRHFSYBPU9d3vmNujOb/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUJNAwnV8UCuftAtU3S7bAONUylkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzcyNTc1ZjA2LTFkOGEtNDFlMC04MTYwLWQ4NTQ1NTEzM2E4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAODAwDQYJKoZIhvcNAQELBQADggEBABOme7p3ZX3mQ6tmZp+Bl2VL tAme+U4QktRI2fPMhadknoajtKjs3mEMOzOJT8aRjZnwuY/4vPZjxuit+qqzygQI zdfWvN5i/RSMCz/5SnKCwPl5ucaRxyd7KRZ2kYqMY1vIaYc5LXvtUH6wghrpIWGU Fl5IWb/Roy799E39RcufPimkA883pTg9VNrfSd5BmBGbBLsZ7BEFq+tWADFSTpud RxE0qo6cL6HSshHJ0Xk74kufgyXMLxf68QNE7DVzfhhTJfOOnDP6ySHPr1coh9KX mS/t3aRdTam3pks8RnswxThERwTzgy3M+pLM/csgLBG+7tIOv0Iyj4E4VnMw+dc= -----END CERTIFICATE-----Generated at Sun Mar 1 22:21:56 2026 by rpki-client