$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/78d5a521-50f8-4f10-bd45-daf34933719d.roa File: 78d5a521-50f8-4f10-bd45-daf34933719d.roa (raw, json) Hash identifier: E0DnqfplHzz7i/5h+3NZuBI1/MJhu3xY+mJiYdOnE2o= Subject key identifier: DE:38:72:3B:F6:B6:D6:AE:22:89:15:CD:22:77:EF:CC:A2:1C:9A:EC Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 34545CABED83BAD07A43E17586D9FEBBFC8A5302 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/78d5a521-50f8-4f10-bd45-daf34933719d.roa Signing time: Fri 03 Apr 2026 01:31:59 +0000 ROA not before: Fri 03 Apr 2026 01:31:59 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:10bb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:54:5c:ab:ed:83:ba:d0:7a:43:e1:75:86:d9:fe:bb:fc:8a:53:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 01:31:59 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=6edbe521e1a6b025833f48ddd1a371eae0c90008d9b519632cfb55ef3930c03b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:67:3f:19:db:ca:e3:d2:39:76:9f:3b:9f:18: f3:c9:d8:d0:92:f3:42:88:90:de:27:2e:e6:97:98: a3:55:e5:f4:94:c8:d3:60:32:79:72:da:7f:ac:38: ab:69:f2:4c:49:29:21:1f:32:30:d9:ff:15:14:7a: dd:d2:8a:9f:92:f9:c4:2b:17:5b:18:4d:ec:f6:8c: 33:3f:53:15:29:ce:54:74:13:14:ba:5a:af:d0:2e: 14:f3:18:fd:0d:61:c9:d8:1c:99:52:2c:bc:8d:50: 98:ca:ee:c2:17:5c:5f:a3:f8:fa:1a:e9:76:c5:49: 1b:29:f7:c7:44:b2:60:e4:4f:94:3f:0d:32:97:2c: b7:f7:5a:5d:cc:70:46:e7:38:3b:a9:2e:5b:84:5d: 91:dc:08:50:07:27:43:5b:31:f4:75:b7:7e:5f:a0: 16:78:cf:8f:b2:04:4a:38:be:09:30:8f:59:1c:58: f2:af:82:ad:67:ae:34:b8:2d:9f:53:4e:65:1e:61: 63:60:34:21:05:0b:a0:5e:32:7e:33:5c:77:aa:b3: 09:30:0c:68:30:a3:24:f6:69:8e:eb:82:0d:41:08: 13:76:50:2c:47:2e:75:a3:9b:4f:c2:df:4a:e6:bc: e5:9f:69:04:b2:c8:4a:64:8b:e8:c1:c3:1d:fa:41: 60:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:38:72:3B:F6:B6:D6:AE:22:89:15:CD:22:77:EF:CC:A2:1C:9A:EC X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/78d5a521-50f8-4f10-bd45-daf34933719d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:10bb::/48 Signature Algorithm: sha256WithRSAEncryption 00:4a:87:5a:1d:a7:05:4f:cb:ca:78:23:c0:79:61:16:dd:11: 78:88:43:bd:35:fb:70:12:99:e1:37:6a:24:c2:1e:57:48:90: 89:c3:9b:03:2d:a0:41:07:66:90:5b:3f:a7:fa:90:d3:2b:fe: 25:92:c4:fb:3c:ab:1c:1a:a1:f7:a0:33:0b:19:e4:74:b4:93: 34:ca:57:4f:a7:4c:80:fd:60:14:c5:8d:bf:ad:f1:1c:05:37: ab:60:75:91:cb:8d:41:8b:4b:78:a4:5a:40:61:97:a1:29:68: 03:35:79:50:f8:2f:4d:2d:33:29:84:4e:56:38:dd:ca:5d:1c: 23:fa:e2:6a:47:d8:e7:8f:dc:59:2e:94:7f:ed:ae:34:7a:99: 8e:02:27:59:4f:53:32:1c:64:e9:55:76:e0:66:ca:cb:0b:04: 0f:91:f8:c0:e1:06:14:90:6f:3d:6f:f5:ad:fe:ab:b9:ad:3c: 73:5f:f3:5d:ed:a4:ee:ea:9a:8a:00:8e:8a:18:54:15:95:1d: a6:3f:8d:09:a3:77:7c:8e:a7:65:19:1f:37:67:b6:81:9d:04: 2a:17:83:1e:13:5d:bf:93:07:5d:6a:b6:69:ad:92:47:93:bd: a9:14:ae:d2:2c:74:66:b3:53:24:ba:32:03:e9:0c:e2:2f:97: 36:4c:29:d7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNFRcq+2DutB6Q+F1htn+u/yKUwIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDEzMTU5WhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZWRiZTUyMWUxYTZiMDI1ODMzZjQ4ZGRkMWEzNzFlYWUw YzkwMDA4ZDliNTE5NjMyY2ZiNTVlZjM5MzBjMDNiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcZz8Z28rj0jl2nzufGPPJ2NCS80KIkN4nLuaXmKNV5fSU yNNgMnly2n+sOKtp8kxJKSEfMjDZ/xUUet3Sip+S+cQrF1sYTez2jDM/UxUpzlR0 ExS6Wq/QLhTzGP0NYcnYHJlSLLyNUJjK7sIXXF+j+Poa6XbFSRsp98dEsmDkT5Q/ DTKXLLf3Wl3McEbnODupLluEXZHcCFAHJ0NbMfR1t35foBZ4z4+yBEo4vgkwj1kc WPKvgq1nrjS4LZ9TTmUeYWNgNCEFC6BeMn4zXHeqswkwDGgwoyT2aY7rgg1BCBN2 UCxHLnWjm0/C30rmvOWfaQSyyEpki+jBwx36QWBtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3jhyO/a21q4iiRXNInfvzKIcmuwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzc4ZDVhNTIxLTUwZjgtNGYxMC1iZDQ1LWRhZjM0OTMzNzE5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAELswDQYJKoZIhvcNAQELBQADggEBAABKh1odpwVPy8p4I8B5YRbd EXiIQ701+3ASmeE3aiTCHldIkInDmwMtoEEHZpBbP6f6kNMr/iWSxPs8qxwaofeg MwsZ5HS0kzTKV0+nTID9YBTFjb+t8RwFN6tgdZHLjUGLS3ikWkBhl6EpaAM1eVD4 L00tMymETlY43cpdHCP64mpH2OeP3FkulH/trjR6mY4CJ1lPUzIcZOlVduBmyssL BA+R+MDhBhSQbz1v9a3+q7mtPHNf813tpO7qmooAjooYVBWVHaY/jQmjd3yOp2UZ HzdntoGdBCoXgx4TXb+TB11qtmmtkkeTvakUrtIsdGazUyS6MgPpDOIvlzZMKdc= -----END CERTIFICATE-----Generated at Fri Apr 17 09:36:07 2026 by rpki-client