$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/900ea25a-910d-4f58-92ca-6327e668f70a.roa File: 900ea25a-910d-4f58-92ca-6327e668f70a.roa (raw, json) Hash identifier: FcgnV3OY3tmBxYoMC7qDNE/dYjnFZJVtgA15mTpeZ6c= Subject key identifier: 0D:34:91:6E:EA:FB:AC:B3:58:5C:57:8E:5E:A7:95:93:06:87:57:5B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 327CC7380E6737B93F98E64B3BB9AB048CC3F69B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/900ea25a-910d-4f58-92ca-6327e668f70a.roa Signing time: Fri 13 Feb 2026 09:40:07 +0000 ROA not before: Fri 13 Feb 2026 09:40:07 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3708::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:7c:c7:38:0e:67:37:b9:3f:98:e6:4b:3b:b9:ab:04:8c:c3:f6:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 09:40:07 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=b1de3a783304a5b1b447427a45e79f488f5354323646898ce304481b6932a93d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0d:ca:e3:c6:ab:4a:bf:52:f8:ca:05:6b:84: d1:4d:8b:55:af:71:e9:67:86:cf:e7:ce:74:0b:47: 7f:35:0e:e1:55:a1:6d:3e:c5:c1:83:4b:c0:18:6c: 42:f9:a6:64:28:17:b3:93:1f:42:05:02:d9:77:02: 90:53:93:d4:b7:b2:f6:3d:aa:de:6b:db:48:53:a3: 49:76:97:a5:50:67:ed:9c:f4:58:c1:37:d0:9c:6c: 7a:74:df:17:b0:ba:68:d4:0e:6d:91:0b:b1:e4:de: 67:60:d0:6c:80:ca:60:23:dc:95:61:a7:ce:5b:bd: b1:f1:e8:ff:6d:c6:51:a2:f8:96:c4:bb:da:83:2c: 68:44:6e:a8:e9:51:e4:9e:46:73:89:8e:a8:bc:a7: 2e:65:0a:82:54:a6:28:c0:db:0e:39:22:9d:ce:5f: 51:b6:bf:8e:40:a0:50:c0:7d:da:08:28:de:03:37: 35:56:d9:a0:f2:54:a5:7e:cf:18:15:88:7d:24:76: 50:0c:aa:6e:ba:32:90:ee:f1:9e:75:6f:93:a1:bd: 17:2b:06:e6:10:77:ee:32:9b:6e:5a:e8:79:76:8a: e5:33:1f:05:aa:ce:8f:91:b6:8d:8f:66:aa:cc:d6: 24:a8:7e:1f:21:00:5d:e5:43:38:ef:40:28:ea:8e: 6c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:34:91:6E:EA:FB:AC:B3:58:5C:57:8E:5E:A7:95:93:06:87:57:5B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/900ea25a-910d-4f58-92ca-6327e668f70a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3708::/45 Signature Algorithm: sha256WithRSAEncryption 33:3d:c3:d2:27:b5:a0:af:48:6f:23:16:99:9b:94:2b:e1:d2: 86:2c:cc:25:dc:38:22:13:09:0e:80:4c:fa:f8:b0:42:15:9f: 6a:a5:ff:20:a6:73:65:e9:70:13:09:80:6e:88:68:f7:b1:d1: dd:9b:93:05:ba:ed:98:3b:fd:a9:63:02:46:12:06:85:4f:64: 13:44:76:df:c1:be:b2:ea:59:bb:05:43:6e:4b:a0:b7:45:12: 20:d7:f0:c4:57:76:9c:cd:96:3a:94:5a:71:a3:a6:8d:db:3c: b3:b4:7d:d3:dc:df:91:5f:8e:4a:33:57:01:ba:1f:cb:a6:71: 8c:c0:14:e8:c2:86:65:f6:5c:0d:2a:dd:07:23:d9:f2:c8:3b: ef:e8:05:4a:b4:9f:48:7b:9d:5e:a2:39:bf:2c:bc:81:8a:13: 75:4c:43:38:d1:08:67:f8:bc:23:3e:74:78:37:da:db:b9:1c: 28:b9:7d:e6:ec:c8:86:65:aa:ba:43:db:bd:ac:d3:b8:9b:ef: 8b:9b:cc:a5:61:4b:12:4b:07:c8:1e:25:09:ea:cd:00:ed:70: 8e:b3:91:63:9b:02:ff:0a:3f:0b:a8:ae:ce:4f:ce:3c:c9:e7: 75:cf:b2:de:53:bd:ad:d7:f7:68:86:fa:75:96:9f:e5:5e:8e: ca:e5:2c:6b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMnzHOA5nN7k/mOZLO7mrBIzD9pswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDk0MDA3WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWRlM2E3ODMzMDRhNWIxYjQ0NzQyN2E0NWU3OWY0ODhm NTM1NDMyMzY0Njg5OGNlMzA0NDgxYjY5MzJhOTNkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7DcrjxqtKv1L4ygVrhNFNi1Wvcelnhs/nznQLR381DuFV oW0+xcGDS8AYbEL5pmQoF7OTH0IFAtl3ApBTk9S3svY9qt5r20hTo0l2l6VQZ+2c 9FjBN9CcbHp03xewumjUDm2RC7Hk3mdg0GyAymAj3JVhp85bvbHx6P9txlGi+JbE u9qDLGhEbqjpUeSeRnOJjqi8py5lCoJUpijA2w45Ip3OX1G2v45AoFDAfdoIKN4D NzVW2aDyVKV+zxgViH0kdlAMqm66MpDu8Z51b5OhvRcrBuYQd+4ym25a6Hl2iuUz HwWqzo+Rto2PZqrM1iSofh8hAF3lQzjvQCjqjmxxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDTSRbur7rLNYXFeOXqeVkwaHV1swHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzkwMGVhMjVhLTkxMGQtNGY1OC05MmNhLTYzMjdlNjY4ZjcwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAANwgwDQYJKoZIhvcNAQELBQADggEBADM9w9IntaCvSG8jFpmblCvh 0oYszCXcOCITCQ6ATPr4sEIVn2ql/yCmc2XpcBMJgG6IaPex0d2bkwW67Zg7/alj AkYSBoVPZBNEdt/BvrLqWbsFQ25LoLdFEiDX8MRXdpzNljqUWnGjpo3bPLO0fdPc 35FfjkozVwG6H8umcYzAFOjChmX2XA0q3Qcj2fLIO+/oBUq0n0h7nV6iOb8svIGK E3VMQzjRCGf4vCM+dHg32tu5HCi5febsyIZlqrpD272s07ib74ubzKVhSxJLB8ge JQnqzQDtcI6zkWObAv8KPwuors5PzjzJ53XPst5Tva3X92iG+nWWn+VejsrlLGs= -----END CERTIFICATE-----Generated at Sun Mar 1 22:11:12 2026 by rpki-client