$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8baee1a9-210e-46e7-b79f-0fa1e32c70c9.roa File: 8baee1a9-210e-46e7-b79f-0fa1e32c70c9.roa (raw, json) Hash identifier: s/a5SwxI7YE2g7JuOGbGXlAfKP1SHSh3cFpPXGU3Ob0= Subject key identifier: 14:49:58:27:B3:D5:01:65:DC:CF:49:CE:F1:93:C6:E2:B2:21:A8:30 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2652A8A85E3E18A79C582EA57D18209C121DA22D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8baee1a9-210e-46e7-b79f-0fa1e32c70c9.roa Signing time: Tue 10 Feb 2026 00:00:35 +0000 ROA not before: Tue 10 Feb 2026 00:00:35 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 19047 IP address blocks: 2605:b940:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:52:a8:a8:5e:3e:18:a7:9c:58:2e:a5:7d:18:20:9c:12:1d:a2:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 10 00:00:35 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=6087307487dd1b3cb436af0493d53215b32f9601853e5119ca104f160287f445, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bb:a6:ec:9c:92:74:91:7b:10:6e:1d:03:99: 75:7e:90:24:6b:34:65:f0:c7:80:bb:e3:7b:37:11: 49:7a:40:71:a5:11:4a:63:8b:61:44:c6:41:2b:fb: 3a:f8:d2:f2:74:2f:14:c3:af:ba:32:38:93:e8:e4: 70:ef:85:8f:78:a2:48:57:35:cb:13:13:d5:17:85: 26:05:80:24:f2:5a:b3:39:d7:ce:64:1c:ac:c9:15: 47:3f:7d:4e:24:31:f3:cc:d5:dd:03:ec:61:3b:55: 0c:b7:9b:f5:40:7b:3b:23:e5:84:84:94:f0:f0:1e: 17:98:86:08:19:cf:29:6d:54:d5:2e:22:49:56:71: 81:a6:e2:ea:d3:0f:c1:57:5e:a9:79:00:f0:69:32: 34:ef:27:bc:64:e3:a7:73:72:70:c5:92:07:e3:df: 77:86:e3:97:71:7d:46:59:a0:ef:5b:1c:d7:23:a5: 06:9e:52:d2:3e:16:bd:45:94:0b:5a:ff:e5:0b:e5: f4:a5:cb:11:2f:ac:04:77:4b:88:6f:5c:ec:3e:65: 99:b8:ec:37:5d:ad:49:c1:91:9b:c9:35:1b:a7:01: 5b:0b:a9:9d:3e:14:f7:bd:8b:bc:f0:82:f8:c0:cf: 80:96:ff:e9:5b:11:63:79:bb:b5:73:77:a2:2c:be: 81:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:49:58:27:B3:D5:01:65:DC:CF:49:CE:F1:93:C6:E2:B2:21:A8:30 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8baee1a9-210e-46e7-b79f-0fa1e32c70c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:b940:3::/48 Signature Algorithm: sha256WithRSAEncryption b5:1f:49:47:35:b4:fe:fb:33:65:e9:72:73:79:07:5a:8a:0c: 53:65:c8:b2:c1:ee:e9:2c:b7:a5:6f:8f:9b:9f:89:e8:e0:00: a7:7a:fd:b8:92:63:53:3d:72:2a:4f:70:50:3a:b3:b4:d5:8b: 51:fd:e4:79:fd:c0:4d:92:95:3c:3d:fb:ee:1f:55:df:9e:b0: d5:7f:8f:e9:13:9f:c2:52:bd:47:f1:24:93:3b:e4:84:b3:40: 24:07:aa:81:1b:e1:97:8a:72:41:e5:7b:51:6e:53:17:da:42: 37:74:64:84:ed:07:b7:24:4e:89:29:66:c3:0d:7d:df:99:8b: 2f:86:e0:69:34:6b:50:02:8b:05:2d:8f:11:1c:58:b1:01:65: d1:62:9e:e2:2a:95:aa:7c:fb:d8:71:81:6a:4d:eb:8a:38:ce: 70:0e:58:a2:72:dc:4f:bf:ba:69:c3:ac:fa:ef:23:a3:1a:5b: d7:46:48:91:66:26:9d:11:fd:b9:55:ec:b7:a6:6c:3e:49:19: db:6b:d1:ab:a2:e5:ea:67:4d:ed:58:07:bc:94:69:c1:17:91: 4c:97:d8:f6:e5:a3:e8:e2:7e:7f:eb:0e:1e:4f:fd:a9:42:ab: 06:8b:7c:e8:18:7a:8a:5a:bf:b8:23:0f:bb:fb:8b:8e:f4:99: b3:6a:9b:d1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJlKoqF4+GKecWC6lfRggnBIdoi0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEwMDAwMDM1WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDg3MzA3NDg3ZGQxYjNjYjQzNmFmMDQ5M2Q1MzIxNWIz MmY5NjAxODUzZTUxMTljYTEwNGYxNjAyODdmNDQ1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAu6bsnJJ0kXsQbh0DmXV+kCRrNGXwx4C743s3EUl6QHGl EUpji2FExkEr+zr40vJ0LxTDr7oyOJPo5HDvhY94okhXNcsTE9UXhSYFgCTyWrM5 185kHKzJFUc/fU4kMfPM1d0D7GE7VQy3m/VAezsj5YSElPDwHheYhggZzyltVNUu IklWcYGm4urTD8FXXql5APBpMjTvJ7xk46dzcnDFkgfj33eG45dxfUZZoO9bHNcj pQaeUtI+Fr1FlAta/+UL5fSlyxEvrAR3S4hvXOw+ZZm47DddrUnBkZvJNRunAVsL qZ0+FPe9i7zwgvjAz4CW/+lbEWN5u7Vzd6IsvoFRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFElYJ7PVAWXcz0nO8ZPG4rIhqDAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzhiYWVlMWE5LTIxMGUtNDZlNy1iNzlmLTBmYTFlMzJjNzBjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBblAAAMwDQYJKoZIhvcNAQELBQADggEBALUfSUc1tP77M2XpcnN5B1qK DFNlyLLB7ukst6Vvj5ufiejgAKd6/biSY1M9cipPcFA6s7TVi1H95Hn9wE2SlTw9 ++4fVd+esNV/j+kTn8JSvUfxJJM75ISzQCQHqoEb4ZeKckHle1FuUxfaQjd0ZITt B7ckTokpZsMNfd+Ziy+G4Gk0a1ACiwUtjxEcWLEBZdFinuIqlap8+9hxgWpN64o4 znAOWKJy3E+/umnDrPrvI6MaW9dGSJFmJp0R/blV7LembD5JGdtr0aui5epnTe1Y B7yUacEXkUyX2Pblo+jifn/rDh5P/alCqwaLfOgYeopav7gjD7v7i470mbNqm9E= -----END CERTIFICATE-----Generated at Sun Mar 1 23:41:52 2026 by rpki-client