$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7d168443-76ba-4cc1-b833-512739d4dbfe.roa File: 7d168443-76ba-4cc1-b833-512739d4dbfe.roa (raw, json) Hash identifier: pQTCy0TB36udYwioZO83OwsABtgZsGtkMt/vfsZSOck= Subject key identifier: B5:70:E0:F2:30:E3:00:C2:E9:AF:60:0C:79:88:FF:EA:97:5A:44:75 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5305E28B9A75BA6551C0812B33C654850613A028 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7d168443-76ba-4cc1-b833-512739d4dbfe.roa Signing time: Fri 13 Feb 2026 10:31:48 +0000 ROA not before: Fri 13 Feb 2026 10:31:48 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3280::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:05:e2:8b:9a:75:ba:65:51:c0:81:2b:33:c6:54:85:06:13:a0:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 10:31:48 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=4ab36a5ef6d03a94f366d66038ce5b535468a5541a161c3a6a4e4b649c21a94a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7e:f9:4a:43:16:48:84:99:74:15:ef:f3:f9: 77:5d:7f:ba:79:55:f3:c7:01:8b:10:5c:db:17:7c: 37:fb:d2:4b:c5:95:82:b5:f9:b0:72:cd:9c:14:9c: d7:25:0f:74:e0:2c:b3:d9:a4:15:75:ee:cd:df:ce: cc:d5:d2:70:55:7d:dc:0a:b2:63:1f:25:29:9e:2f: 96:42:e4:de:6d:92:a4:42:87:fa:aa:73:33:0b:77: 2b:13:25:da:85:ff:b6:50:29:ca:12:cb:92:bd:43: aa:08:0d:ba:e9:17:4c:7e:10:11:e2:89:91:d6:9b: e0:44:40:cd:42:3d:00:78:d0:40:94:62:66:03:12: f5:ae:ae:3c:30:ff:24:33:06:97:e7:99:32:56:89: f4:9c:92:55:97:b4:6b:b1:c7:3b:98:c7:b1:a2:e3: 09:9f:15:fa:25:b2:76:74:13:0f:41:f4:d2:66:c7: ef:67:d9:e4:d9:23:fc:30:94:12:f3:fb:87:fe:6c: 90:7b:2b:ab:3a:7a:9e:e2:bb:e4:20:03:74:de:9e: c4:61:44:28:12:96:b9:6c:64:35:08:51:1b:b1:96: d0:de:d2:17:73:f4:85:3c:7e:f7:e2:34:08:34:d2: 45:b8:b8:0d:13:1a:1b:e0:cf:7b:07:89:2d:9f:23: 58:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:70:E0:F2:30:E3:00:C2:E9:AF:60:0C:79:88:FF:EA:97:5A:44:75 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7d168443-76ba-4cc1-b833-512739d4dbfe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3280::/42 Signature Algorithm: sha256WithRSAEncryption 7e:82:ab:29:91:a9:ae:6f:d5:ac:73:ea:cf:f0:8d:12:e1:c6: c1:a4:72:48:56:97:57:cb:37:59:30:83:31:bb:f2:95:d8:1e: 0e:4b:c2:d9:a5:08:03:d7:83:8c:84:5a:49:96:b4:12:2e:e4: 67:8b:36:58:59:40:e3:22:65:41:33:23:18:b7:fb:d4:2b:5d: 19:bf:f6:40:c9:e4:38:54:9c:c1:c2:fd:f5:c1:b2:c3:97:11: 74:89:03:ec:47:5f:24:9b:4d:e2:6e:d3:aa:6b:76:a2:23:7c: 4c:d2:a4:be:a1:03:49:01:93:05:d6:18:40:48:68:2a:10:a7: 4a:bb:93:0b:dc:04:02:a3:5c:11:ff:f5:98:06:60:6d:69:42: b5:f4:fe:c1:02:9e:0b:f3:85:2f:55:b6:29:0e:f1:b8:1b:b1: d8:dc:72:0b:0d:8d:8c:11:e2:08:47:49:7a:39:31:1f:eb:c0: d4:a3:99:54:18:a5:7a:af:9a:0b:d2:73:1f:3d:54:86:7f:13: ab:c6:93:e3:5f:e7:70:5e:ec:78:2a:ca:b1:14:7e:4c:70:42: 73:a6:44:6f:3c:ac:a0:8f:30:e3:3b:46:64:3f:97:bc:6e:f6: 25:98:28:4d:d2:1b:40:a7:e5:9e:fa:77:d6:ed:be:ca:c7:30: 2c:20:6b:97 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUwXii5p1umVRwIErM8ZUhQYToCgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTAzMTQ4WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YWIzNmE1ZWY2ZDAzYTk0ZjM2NmQ2NjAzOGNlNWI1MzU0 NjhhNTU0MWExNjFjM2E2YTRlNGI2NDljMjFhOTRhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/fvlKQxZIhJl0Fe/z+Xddf7p5VfPHAYsQXNsXfDf70kvF lYK1+bByzZwUnNclD3TgLLPZpBV17s3fzszV0nBVfdwKsmMfJSmeL5ZC5N5tkqRC h/qqczMLdysTJdqF/7ZQKcoSy5K9Q6oIDbrpF0x+EBHiiZHWm+BEQM1CPQB40ECU YmYDEvWurjww/yQzBpfnmTJWifScklWXtGuxxzuYx7Gi4wmfFfolsnZ0Ew9B9NJm x+9n2eTZI/wwlBLz+4f+bJB7K6s6ep7iu+QgA3TensRhRCgSlrlsZDUIURuxltDe 0hdz9IU8fvfiNAg00kW4uA0TGhvgz3sHiS2fI1gZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtXDg8jDjAMLpr2AMeYj/6pdaRHUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzdkMTY4NDQzLTc2YmEtNGNjMS1iODMzLTUxMjczOWQ0ZGJmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAJAAMoAwDQYJKoZIhvcNAQELBQADggEBAH6CqymRqa5v1axz6s/wjRLh xsGkckhWl1fLN1kwgzG78pXYHg5LwtmlCAPXg4yEWkmWtBIu5GeLNlhZQOMiZUEz Ixi3+9QrXRm/9kDJ5DhUnMHC/fXBssOXEXSJA+xHXySbTeJu06prdqIjfEzSpL6h A0kBkwXWGEBIaCoQp0q7kwvcBAKjXBH/9ZgGYG1pQrX0/sECngvzhS9VtikO8bgb sdjccgsNjYwR4ghHSXo5MR/rwNSjmVQYpXqvmgvScx89VIZ/E6vGk+Nf53Be7Hgq yrEUfkxwQnOmRG88rKCPMOM7RmQ/l7xu9iWYKE3SG0Cn5Z76d9btvsrHMCwga5c= -----END CERTIFICATE-----Generated at Sun Mar 1 22:21:49 2026 by rpki-client