$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/821f7e18-0d25-47b0-ba3e-3a93520489fe.roa File: 821f7e18-0d25-47b0-ba3e-3a93520489fe.roa (raw, json) Hash identifier: c3HKC9j3L3HehBDZPg5HJ42Fpts42I4ViNp6ktydoZo= Subject key identifier: B3:E3:90:2F:47:D7:59:5B:F0:6B:06:72:6A:CA:1B:B1:B5:56:38:26 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 538E700120EEA41DFD7B31E65C03FC042BAF1DD4 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/821f7e18-0d25-47b0-ba3e-3a93520489fe.roa Signing time: Fri 13 Feb 2026 03:51:54 +0000 ROA not before: Fri 13 Feb 2026 03:51:54 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2aa0::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:8e:70:01:20:ee:a4:1d:fd:7b:31:e6:5c:03:fc:04:2b:af:1d:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 03:51:54 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=2529fbdb57ec5ffaef1e0fe0b5c605a8179f4b38765d650a83b6796b018d4818, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:45:a3:ce:d5:17:f9:40:28:c9:f6:86:76:06: 26:92:36:a1:2b:6c:e5:08:67:05:1e:89:59:33:85: 3f:a8:42:cf:ec:6d:a0:e1:e8:8a:69:1f:ba:ea:a6: fb:0f:d9:df:36:11:e1:ee:d6:c7:47:14:69:9d:08: 84:92:9e:23:1a:23:65:26:a5:bb:12:42:54:2e:f9: 30:60:b0:09:8f:7f:ff:17:cd:5e:66:c3:00:db:73: bb:e8:39:71:33:0e:d9:14:2f:ed:a0:ad:8e:df:8f: 03:7d:3c:3f:9a:4c:44:45:97:3c:17:35:48:a8:82: d0:19:5e:66:db:6f:fa:ae:ef:c0:b5:c2:77:fb:74: 17:6d:62:5e:da:c1:ca:5e:7f:72:7c:c5:78:7e:0d: 8a:6c:ab:91:be:97:1a:73:67:a2:11:1b:0e:90:b4: e7:ac:bf:d2:5b:3b:05:f8:4f:b9:83:92:31:c7:a2: f4:85:5e:fb:3a:95:ad:22:ca:4d:17:a3:f6:e7:73: 5d:e1:ca:f6:65:b6:6d:33:0c:2b:e6:0a:14:4d:9a: 47:0d:7a:20:33:81:4c:c5:3f:bc:57:d6:e7:68:89: 06:2c:68:a6:4e:c0:86:be:35:a0:35:23:15:dd:d6: 3d:f2:25:b9:6e:ce:dc:aa:ea:bf:b2:c4:44:0c:f7: 86:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:E3:90:2F:47:D7:59:5B:F0:6B:06:72:6A:CA:1B:B1:B5:56:38:26 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/821f7e18-0d25-47b0-ba3e-3a93520489fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2aa0::/43 Signature Algorithm: sha256WithRSAEncryption 89:bc:7d:e7:55:a5:a3:90:7c:ba:b0:61:01:68:fd:93:3a:48: ff:61:c4:f8:fd:5c:18:f6:88:27:8c:89:27:58:08:4d:c7:56: 3a:fa:5c:c6:2b:38:6d:38:0a:11:19:17:e7:f3:6b:77:39:d9: 0b:72:23:01:a2:63:76:8a:6e:c6:9a:b5:92:d5:05:2e:46:0a: d5:f0:7a:bb:52:ad:cd:79:e5:ab:56:7c:c3:a7:e3:29:c6:65: 0e:40:17:37:f5:c7:a6:56:b9:80:10:47:75:23:5f:8e:9e:09: 00:9a:98:19:19:8b:ab:d3:aa:5d:e5:e3:2a:94:35:81:64:1a: 44:3b:9e:27:1e:d6:1b:c9:06:aa:0e:54:8d:f5:9c:08:83:bf: 9d:9d:87:ba:93:27:87:93:67:77:4b:79:b4:1f:fe:db:18:8b: c7:89:65:cb:f7:35:7d:3c:08:0a:ea:85:73:b0:4f:b1:de:33: 50:de:ca:99:7c:28:42:bc:4d:65:32:0e:74:b8:19:b1:56:3e: af:81:3b:97:a3:e0:24:82:e7:b4:81:fe:5d:42:58:c7:cb:48: d1:4c:c2:ce:0a:cd:13:8b:20:47:61:27:4b:26:64:82:0a:df: 61:73:02:de:5b:a7:56:94:7f:62:28:96:7e:b7:59:a6:cc:e5: 5a:1f:96:7a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUU45wASDupB39ezHmXAP8BCuvHdQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDM1MTU0WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTI5ZmJkYjU3ZWM1ZmZhZWYxZTBmZTBiNWM2MDVhODE3 OWY0YjM4NzY1ZDY1MGE4M2I2Nzk2YjAxOGQ0ODE4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbRaPO1Rf5QCjJ9oZ2BiaSNqErbOUIZwUeiVkzhT+oQs/s baDh6IppH7rqpvsP2d82EeHu1sdHFGmdCISSniMaI2UmpbsSQlQu+TBgsAmPf/8X zV5mwwDbc7voOXEzDtkUL+2grY7fjwN9PD+aTERFlzwXNUiogtAZXmbbb/qu78C1 wnf7dBdtYl7awcpef3J8xXh+DYpsq5G+lxpzZ6IRGw6QtOesv9JbOwX4T7mDkjHH ovSFXvs6la0iyk0Xo/bnc13hyvZltm0zDCvmChRNmkcNeiAzgUzFP7xX1udoiQYs aKZOwIa+NaA1IxXd1j3yJbluztyq6r+yxEQM94bTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUs+OQL0fXWVvwawZyasobsbVWOCYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzgyMWY3ZTE4LTBkMjUtNDdiMC1iYTNlLTNhOTM1MjA0ODlmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAAKqAwDQYJKoZIhvcNAQELBQADggEBAIm8fedVpaOQfLqwYQFo/ZM6 SP9hxPj9XBj2iCeMiSdYCE3HVjr6XMYrOG04ChEZF+fza3c52QtyIwGiY3aKbsaa tZLVBS5GCtXwertSrc155atWfMOn4ynGZQ5AFzf1x6ZWuYAQR3UjX46eCQCamBkZ i6vTql3l4yqUNYFkGkQ7nice1hvJBqoOVI31nAiDv52dh7qTJ4eTZ3dLebQf/tsY i8eJZcv3NX08CArqhXOwT7HeM1Deypl8KEK8TWUyDnS4GbFWPq+BO5ej4CSC57SB /l1CWMfLSNFMws4KzROLIEdhJ0smZIIK32FzAt5bp1aUf2Ioln63WabM5Voflno= -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:32 2026 by rpki-client