$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/87353b10-ceec-4c1b-8800-88350ac5e4c7.roa File: 87353b10-ceec-4c1b-8800-88350ac5e4c7.roa (raw, json) Hash identifier: HMpW1XGufa17G5h8c/ap5KeohI4YtAcDyhvxXrIUXQc= Subject key identifier: 5A:FE:08:46:34:1C:DC:03:AD:85:F7:BB:0B:2D:83:76:8C:01:BA:69 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2A70726C3F508D14DE9E84CB27B2365C3CC88C4A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/87353b10-ceec-4c1b-8800-88350ac5e4c7.roa Signing time: Fri 03 Apr 2026 02:02:07 +0000 ROA not before: Fri 03 Apr 2026 02:02:07 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:10d3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:70:72:6c:3f:50:8d:14:de:9e:84:cb:27:b2:36:5c:3c:c8:8c:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 02:02:07 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=d016fe155c3a78d105a9f257c8cb033ab9faf2771b67c596b3690eed71a9866f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:2d:35:91:11:d0:61:08:0a:c2:fa:54:fe:52: 45:ff:9d:cd:46:08:74:37:34:c5:44:40:90:63:a6: f6:82:f1:22:ff:5b:73:de:19:4a:03:a6:1d:eb:9f: cc:7c:be:fb:60:69:86:da:c9:b1:f1:ae:74:f4:27: d9:26:61:66:7b:21:de:4d:15:dc:e8:09:d3:e1:39: c3:67:31:2c:01:bc:cc:92:36:7e:0e:e7:33:15:59: 94:95:d2:c1:06:28:e9:ce:d2:90:2e:07:bb:61:55: 11:6d:d1:4d:30:6a:d6:9c:aa:a8:e7:c1:c3:d0:0d: 45:f4:f2:0d:fd:c9:3e:07:9a:89:b2:43:6b:5e:91: 6e:87:63:6e:24:30:3b:fe:e5:bd:a1:f8:5b:a4:cf: e3:3a:7c:89:25:b0:df:ff:c4:e9:0c:87:49:28:d1: 12:19:ca:e4:35:61:0c:1e:31:82:a5:e0:3e:d9:93: 01:e1:5d:fa:a6:1a:02:f9:68:fa:13:4c:d6:eb:20: e7:aa:fb:c2:e9:57:01:98:13:c4:65:2b:18:25:91: d0:62:d9:ae:9d:7c:10:3d:1d:ad:f3:94:ec:46:96: c5:bf:78:93:19:17:f4:71:42:d9:1f:07:f0:75:c9: 8b:0f:d1:05:a1:8b:f4:8e:76:77:93:44:eb:b7:4c: da:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:FE:08:46:34:1C:DC:03:AD:85:F7:BB:0B:2D:83:76:8C:01:BA:69 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/87353b10-ceec-4c1b-8800-88350ac5e4c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:10d3::/48 Signature Algorithm: sha256WithRSAEncryption b5:72:e7:89:29:f8:a0:47:2d:bc:32:03:5a:83:29:51:e2:00: 3e:77:aa:c2:2a:41:bc:8d:b7:84:ca:7c:05:85:7e:13:0d:97: e1:e4:a3:30:7a:d8:c8:50:b6:2d:08:00:80:c6:cc:9d:16:b7: 2d:09:47:a7:44:1d:aa:d5:18:a4:61:eb:12:a5:64:12:f1:68: 10:c3:08:36:06:5e:c4:c9:86:86:77:45:72:5d:4f:50:d8:bd: 65:f4:ac:0a:d1:3a:49:4b:45:15:98:8e:fb:f5:fd:90:39:5b: de:38:33:c3:ba:1b:91:87:00:fb:c3:22:e1:1c:bd:63:bd:e5: 00:b4:4d:b8:59:a6:a9:23:4d:eb:7f:0f:50:fc:ed:d3:bb:62: cf:7a:16:cc:4a:df:53:c9:19:68:ce:e6:28:9a:09:4e:ec:55: 59:89:c9:2e:77:bf:89:9e:68:31:5a:20:d7:ef:81:b5:3e:e1: 69:b1:8b:6e:2a:d2:18:13:c1:47:df:fd:66:76:15:ab:fd:c8: 99:b0:b3:fc:65:62:3f:63:e1:61:a6:61:47:a2:d1:c8:d2:98: ad:dc:57:88:b8:e7:32:a5:39:76:32:34:75:7d:d5:1a:5a:d3: 2e:d1:f3:b8:65:3a:57:37:a2:91:c5:f7:a4:b9:21:6e:15:fe: c8:3f:75:ac -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKnBybD9QjRTenoTLJ7I2XDzIjEowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDIwMjA3WhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDE2ZmUxNTVjM2E3OGQxMDVhOWYyNTdjOGNiMDMzYWI5 ZmFmMjc3MWI2N2M1OTZiMzY5MGVlZDcxYTk4NjZmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCFLTWREdBhCArC+lT+UkX/nc1GCHQ3NMVEQJBjpvaC8SL/ W3PeGUoDph3rn8x8vvtgaYbaybHxrnT0J9kmYWZ7Id5NFdzoCdPhOcNnMSwBvMyS Nn4O5zMVWZSV0sEGKOnO0pAuB7thVRFt0U0watacqqjnwcPQDUX08g39yT4Hmomy Q2tekW6HY24kMDv+5b2h+Fukz+M6fIklsN//xOkMh0ko0RIZyuQ1YQweMYKl4D7Z kwHhXfqmGgL5aPoTTNbrIOeq+8LpVwGYE8RlKxglkdBi2a6dfBA9Ha3zlOxGlsW/ eJMZF/RxQtkfB/B1yYsP0QWhi/SOdneTROu3TNrhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWv4IRjQc3AOthfe7Cy2DdowBumkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg3MzUzYjEwLWNlZWMtNGMxYi04ODAwLTg4MzUwYWM1ZTRjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAENMwDQYJKoZIhvcNAQELBQADggEBALVy54kp+KBHLbwyA1qDKVHi AD53qsIqQbyNt4TKfAWFfhMNl+HkozB62MhQti0IAIDGzJ0Wty0JR6dEHarVGKRh 6xKlZBLxaBDDCDYGXsTJhoZ3RXJdT1DYvWX0rArROklLRRWYjvv1/ZA5W944M8O6 G5GHAPvDIuEcvWO95QC0TbhZpqkjTet/D1D87dO7Ys96FsxK31PJGWjO5iiaCU7s VVmJyS53v4meaDFaINfvgbU+4Wmxi24q0hgTwUff/WZ2Fav9yJmws/xlYj9j4WGm YUei0cjSmK3cV4i45zKlOXYyNHV91Rpa0y7R87hlOlc3opHF96S5IW4V/sg/daw= -----END CERTIFICATE-----Generated at Fri Apr 17 18:16:23 2026 by rpki-client