$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7519012d-0453-4570-bf92-5f7037c563c5.roa File: 7519012d-0453-4570-bf92-5f7037c563c5.roa (raw, json) Hash identifier: JNQmNyOFkq62occ9xmffujuOL4vJJCCTuA+dz0VvgGk= Subject key identifier: F7:02:34:BC:20:6E:AC:6C:BD:23:83:BE:3F:6D:D3:93:3A:81:1C:C5 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5567750134B808CF2B9DA7997B5E14AE403F2C3E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7519012d-0453-4570-bf92-5f7037c563c5.roa Signing time: Fri 03 Apr 2026 02:31:26 +0000 ROA not before: Fri 03 Apr 2026 02:31:26 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:10a8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:67:75:01:34:b8:08:cf:2b:9d:a7:99:7b:5e:14:ae:40:3f:2c:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 02:31:26 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=c50c8a99bc69e24cbae18ca56d82745ba46f6e7cd55173c0c12e88e5078c9d1d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b2:b4:67:79:b3:31:55:04:13:9d:69:8e:ba: d4:10:aa:3f:3e:0e:c9:e0:62:a9:59:96:24:17:76: ea:3b:8d:f5:c7:00:b5:76:17:e3:df:19:56:2b:f8: 12:8b:be:06:56:d3:e2:7a:c6:66:63:e1:eb:86:b4: f6:ef:c0:ae:33:6c:17:95:5c:5e:2e:51:c7:cd:9d: 52:e1:41:8e:b4:8f:7f:f1:68:6d:d2:9f:c3:4d:de: 96:74:31:b3:69:6a:2d:9d:46:cf:65:48:68:93:3e: 73:ab:7e:68:73:87:69:15:0f:e1:12:d8:ec:5b:35: dc:f3:b9:e5:f1:d3:93:0a:9b:92:93:d6:10:da:e9: ed:f8:9b:3c:18:e9:46:ec:e8:7f:2b:85:3f:87:66: 93:b9:1e:77:a1:b5:9e:a4:95:0a:0d:a9:e2:a4:1a: f1:5d:75:3d:14:ae:41:52:5b:f9:17:be:2d:4e:01: 0c:18:b4:c9:c4:35:ba:db:37:2f:43:38:48:4f:50: 0f:0b:75:98:f8:2e:9a:14:37:6c:e0:aa:c7:db:17: 15:ce:55:a1:b1:eb:0b:99:76:19:a7:d7:72:69:65: 23:8b:42:46:6b:36:7b:6c:df:19:6f:fa:24:88:81: 4d:29:9d:79:27:7c:e2:40:9b:51:08:67:35:3b:06: bd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:02:34:BC:20:6E:AC:6C:BD:23:83:BE:3F:6D:D3:93:3A:81:1C:C5 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7519012d-0453-4570-bf92-5f7037c563c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:10a8::/48 Signature Algorithm: sha256WithRSAEncryption 89:06:82:24:87:76:00:e1:c3:c3:d7:1a:24:45:33:32:45:1f: 87:54:3d:9e:5d:67:60:19:5d:ab:99:0f:ec:2c:f1:21:8c:d6: e8:02:b3:64:d1:ba:94:b7:27:56:7f:96:82:61:c0:a7:f2:18: 1b:c1:b5:bb:fa:01:f9:b6:9f:79:ff:1e:01:05:7a:67:55:4d: 94:d3:42:e3:d7:b9:cb:eb:d2:49:bb:23:6d:81:6d:3b:a1:ef: 04:c6:60:2b:49:6d:50:2b:d3:0d:b9:e9:66:2f:2f:dd:50:f8: b7:7e:e1:db:01:70:ee:b7:5b:cc:fd:60:a2:a9:77:4a:a9:1b: 7c:7d:bc:d5:6c:d1:ae:6d:ec:e9:26:be:46:e7:5c:bf:90:cf: 9b:79:3e:57:32:77:17:ef:97:ab:cf:1e:e7:c3:e8:dd:78:24: e7:2c:69:73:2c:08:4c:35:a4:d1:33:03:0c:b9:82:dd:96:37: f9:86:29:ff:fc:c4:54:80:f7:d4:96:ba:67:1e:81:04:42:3b: de:c5:98:67:c5:cf:4c:e7:1c:59:cf:74:76:85:35:fe:ea:b4: 54:fc:3d:4b:11:3e:39:55:68:c8:ed:0c:83:9a:c8:13:42:63: c4:5a:39:5d:ce:6d:da:03:f4:fd:8b:36:03:b7:29:50:d9:24: 3c:f0:53:79 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVWd1ATS4CM8rnaeZe14UrkA/LD4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDIzMTI2WhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTBjOGE5OWJjNjllMjRjYmFlMThjYTU2ZDgyNzQ1YmE0 NmY2ZTdjZDU1MTczYzBjMTJlODhlNTA3OGM5ZDFkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAsrRnebMxVQQTnWmOutQQqj8+DsngYqlZliQXduo7jfXH ALV2F+PfGVYr+BKLvgZW0+J6xmZj4euGtPbvwK4zbBeVXF4uUcfNnVLhQY60j3/x aG3Sn8NN3pZ0MbNpai2dRs9lSGiTPnOrfmhzh2kVD+ES2OxbNdzzueXx05MKm5KT 1hDa6e34mzwY6Ubs6H8rhT+HZpO5HnehtZ6klQoNqeKkGvFddT0UrkFSW/kXvi1O AQwYtMnENbrbNy9DOEhPUA8LdZj4LpoUN2zgqsfbFxXOVaGx6wuZdhmn13JpZSOL QkZrNnts3xlv+iSIgU0pnXknfOJAm1EIZzU7Br13AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9wI0vCBurGy9I4O+P23TkzqBHMUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzc1MTkwMTJkLTA0NTMtNDU3MC1iZjkyLTVmNzAzN2M1NjNjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAEKgwDQYJKoZIhvcNAQELBQADggEBAIkGgiSHdgDhw8PXGiRFMzJF H4dUPZ5dZ2AZXauZD+ws8SGM1ugCs2TRupS3J1Z/loJhwKfyGBvBtbv6Afm2n3n/ HgEFemdVTZTTQuPXucvr0km7I22BbTuh7wTGYCtJbVAr0w256WYvL91Q+Ld+4dsB cO63W8z9YKKpd0qpG3x9vNVs0a5t7OkmvkbnXL+Qz5t5Plcydxfvl6vPHufD6N14 JOcsaXMsCEw1pNEzAwy5gt2WN/mGKf/8xFSA99SWumcegQRCO97FmGfFz0znHFnP dHaFNf7qtFT8PUsRPjlVaMjtDIOayBNCY8RaOV3ObdoD9P2LNgO3KVDZJDzwU3k= -----END CERTIFICATE-----Generated at Fri Apr 17 11:00:30 2026 by rpki-client