$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2021152-4735-48ff-94cb-00b8651a62f1.roa File: a2021152-4735-48ff-94cb-00b8651a62f1.roa (raw, json) Hash identifier: SQOX3PrF/vFq2l+5FHDjW5ZKA2gl9Pd8/0ZqrIZHqtI= Subject key identifier: DC:28:A0:EE:59:16:6E:F2:07:42:7E:66:E2:4D:20:A7:73:2D:AE:6A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 227493E90CF156FE99EE64FC4D4ED2988C20AFDE Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2021152-4735-48ff-94cb-00b8651a62f1.roa Signing time: Thu 12 Feb 2026 01:00:42 +0000 ROA not before: Thu 12 Feb 2026 01:00:42 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2156::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:74:93:e9:0c:f1:56:fe:99:ee:64:fc:4d:4e:d2:98:8c:20:af:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 01:00:42 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=2e6bc6d8e9f8c84b51fa5d7de086e186d060b6e51dbf616fa394adffc1dde3d1, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cd:fe:9f:cc:e2:03:0f:b5:81:b2:fd:cb:af: db:1f:50:e5:cc:1a:ca:7a:b8:fc:c7:9a:6c:61:97: 4b:83:ad:82:63:ed:2b:20:90:3f:01:44:f4:9b:44: df:d7:5e:fb:19:68:65:71:65:38:c0:26:18:65:3b: 80:ba:af:b1:ad:2a:8e:36:79:9d:c4:32:12:be:b5: 12:d8:64:7c:f8:43:0d:6f:f5:07:37:e8:bb:fd:87: d5:c7:15:11:1e:98:44:97:73:79:5b:05:46:36:5d: 65:c7:cf:5a:e2:31:3e:77:49:b4:97:5a:10:ae:ce: 90:36:f3:11:d3:ff:c4:3a:9a:f0:1d:7e:cf:2d:78: 8c:4e:90:a9:32:63:3a:8f:e0:44:1b:66:d1:26:dc: 71:76:8f:d7:b4:1d:c1:05:3c:ba:d9:c5:cc:8b:0a: 26:23:08:70:2c:6f:60:7b:33:45:cd:79:79:1a:fc: b3:5f:36:59:da:81:84:1b:b0:5f:ab:ce:c6:01:98: 7d:e2:96:4c:43:14:cf:e2:a9:81:41:7b:32:72:9b: 51:71:92:f9:32:fe:23:17:81:6d:31:25:f3:8f:81: 9c:76:c0:27:ae:b0:44:97:6a:b8:72:bd:34:87:5f: 55:df:f8:c6:88:bc:40:ca:d8:6b:75:8d:49:c8:78: 16:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:28:A0:EE:59:16:6E:F2:07:42:7E:66:E2:4D:20:A7:73:2D:AE:6A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2021152-4735-48ff-94cb-00b8651a62f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2156::/48 Signature Algorithm: sha256WithRSAEncryption 21:98:e6:37:dc:ac:ce:5a:7a:ee:2f:95:83:de:73:c9:be:1e: 99:01:be:aa:eb:20:e7:48:f3:22:f9:4e:ff:e8:38:8b:19:c0: e2:5c:79:ff:69:17:11:53:23:75:ed:af:57:d4:9d:6a:39:de: c9:ab:27:90:4f:cf:a3:db:23:f4:11:de:f2:60:1a:43:d4:df: 1b:ee:7b:09:c1:1d:4f:f1:c7:c0:64:3d:e4:01:71:fd:59:ad: 45:6c:a0:08:14:b3:58:47:e2:7a:e0:4a:62:a8:f1:c9:5b:bb: e9:54:e7:38:38:fa:57:ae:bd:d1:1a:e8:dd:2a:fe:08:65:d3: fb:19:0c:94:17:46:9f:0d:bd:cb:40:22:b6:d4:83:cf:26:aa: 1b:e4:fc:bc:09:60:1b:30:1d:63:cd:36:4f:15:a3:84:98:1b: e2:0f:b0:86:54:04:9a:95:1f:1c:01:71:b7:ac:b4:82:8f:23: b5:25:ea:72:e0:b3:69:c9:72:09:91:ed:b6:3c:6a:b6:3e:4a: eb:4f:e8:6c:2d:fd:fe:35:00:0d:6e:83:78:dd:e4:4f:03:8c: 9e:3c:cd:c2:94:c1:50:b6:75:e0:c3:84:3b:91:66:77:f2:2d: 7c:a6:a3:a9:0f:17:a2:e8:f3:8a:90:05:9c:92:a8:ed:67:0c: 50:d9:3e:1f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUInST6QzxVv6Z7mT8TU7SmIwgr94wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDEwMDQyWhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTZiYzZkOGU5ZjhjODRiNTFmYTVkN2RlMDg2ZTE4NmQw NjBiNmU1MWRiZjYxNmZhMzk0YWRmZmMxZGRlM2QxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvzf6fzOIDD7WBsv3Lr9sfUOXMGsp6uPzHmmxhl0uDrYJj 7SsgkD8BRPSbRN/XXvsZaGVxZTjAJhhlO4C6r7GtKo42eZ3EMhK+tRLYZHz4Qw1v 9Qc36Lv9h9XHFREemESXc3lbBUY2XWXHz1riMT53SbSXWhCuzpA28xHT/8Q6mvAd fs8teIxOkKkyYzqP4EQbZtEm3HF2j9e0HcEFPLrZxcyLCiYjCHAsb2B7M0XNeXka /LNfNlnagYQbsF+rzsYBmH3ilkxDFM/iqYFBezJym1Fxkvky/iMXgW0xJfOPgZx2 wCeusESXarhyvTSHX1Xf+MaIvEDK2Gt1jUnIeBbXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3Cig7lkWbvIHQn5m4k0gp3MtrmowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyMDIxMTUyLTQ3MzUtNDhmZi05NGNiLTAwYjg2NTFhNjJmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAIVYwDQYJKoZIhvcNAQELBQADggEBACGY5jfcrM5aeu4vlYPec8m+ HpkBvqrrIOdI8yL5Tv/oOIsZwOJcef9pFxFTI3Xtr1fUnWo53smrJ5BPz6PbI/QR 3vJgGkPU3xvuewnBHU/xx8BkPeQBcf1ZrUVsoAgUs1hH4nrgSmKo8clbu+lU5zg4 +leuvdEa6N0q/ghl0/sZDJQXRp8NvctAIrbUg88mqhvk/LwJYBswHWPNNk8Vo4SY G+IPsIZUBJqVHxwBcbestIKPI7Ul6nLgs2nJcgmR7bY8arY+SutP6Gwt/f41AA1u g3jd5E8DjJ48zcKUwVC2deDDhDuRZnfyLXymo6kPF6Lo84qQBZySqO1nDFDZPh8= -----END CERTIFICATE-----Generated at Mon Mar 2 01:03:36 2026 by rpki-client