$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a7671049-11fa-4982-9f1d-836707f792e6.roa File: a7671049-11fa-4982-9f1d-836707f792e6.roa (raw, json) Hash identifier: OKCZJ7CQhlHMgvsUM2vwLCFLXnVQ1S54NdZK7SVcj2k= Subject key identifier: 42:D8:43:65:83:ED:0F:19:66:F7:16:77:27:5A:C3:E4:BC:9C:9E:D1 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2170B291CB57CB88BC02136599B8D8FC47A49135 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a7671049-11fa-4982-9f1d-836707f792e6.roa Signing time: Fri 13 Feb 2026 07:30:12 +0000 ROA not before: Fri 13 Feb 2026 07:30:12 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3de0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:70:b2:91:cb:57:cb:88:bc:02:13:65:99:b8:d8:fc:47:a4:91:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 07:30:12 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=2e99aaa2891640e41770602d92a3fae6cff0c5340d353ce62e0f0b3b019209e1, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fe:f5:a5:c5:be:62:e8:8d:da:b9:c2:0e:d4: 86:8e:74:b7:5b:d6:a2:67:20:fa:fd:93:63:b5:20: 83:a3:e5:63:dc:c9:1c:df:9c:56:a3:51:40:87:0a: c8:73:48:16:c6:78:f3:11:f2:ab:9a:3c:02:06:fc: c9:ba:07:44:1b:52:e0:b9:a2:2b:65:ea:c6:74:58: 7e:ec:c8:27:d9:41:4a:6d:a1:e6:db:91:6f:2d:c0: 2f:17:3d:96:50:bf:f3:bd:44:b9:dd:65:65:e8:9f: dc:82:d7:f1:d4:02:62:f9:0f:35:0a:b5:ae:af:0f: 2c:3a:af:41:ed:77:0e:c4:de:5f:24:c9:59:c8:4d: 9d:91:79:8b:a6:74:b7:c1:da:1e:84:f3:75:83:27: 14:32:fa:d2:2e:cb:3b:ba:f3:93:be:d5:6d:92:e1: 92:22:fb:a5:f2:98:5d:36:1f:c1:66:3b:c8:60:47: a0:81:24:d5:74:47:3d:4b:27:f9:02:ab:0e:77:62: 4b:63:d8:d0:74:d8:7d:63:aa:b9:a5:ce:a1:d4:5d: f9:5a:10:ec:87:e2:27:99:c3:78:c8:1c:03:29:0f: d1:70:ff:b9:4f:13:85:dc:db:53:30:cb:bb:fc:de: 7c:d1:1b:6b:69:ce:40:91:04:b2:a3:25:62:c2:94: d7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D8:43:65:83:ED:0F:19:66:F7:16:77:27:5A:C3:E4:BC:9C:9E:D1 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a7671049-11fa-4982-9f1d-836707f792e6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3de0::/44 Signature Algorithm: sha256WithRSAEncryption a6:07:53:07:46:9f:f3:e6:a6:dd:2e:a9:8b:28:c7:79:de:af: e2:9b:28:46:0f:93:0d:04:39:70:e5:55:b0:9d:60:93:ac:7f: 2a:f2:73:07:5e:aa:35:ab:68:39:61:a3:2c:58:93:5c:58:38: fe:0f:77:35:3b:c6:90:b9:b4:33:58:d2:0f:73:cf:ea:06:fb: 22:65:2f:bf:e0:1e:db:55:2e:66:0d:40:77:a8:2f:c6:45:31: 26:c6:bb:17:59:ae:d2:7a:ea:d0:2b:09:7c:98:14:78:db:13: b7:73:42:69:82:e2:f2:fc:2e:3d:60:6e:d4:a5:7a:f0:a5:2e: f9:cd:e1:d5:5f:8c:49:b1:0c:c6:6e:d0:1d:ba:98:72:d5:bb: 11:9a:91:96:f1:0d:ec:e4:ab:a6:00:f4:e5:d3:78:0e:4e:0b: c3:73:8c:bd:d0:90:67:46:03:2c:fa:29:1f:1c:dc:66:56:e1: cc:f5:05:e4:61:78:4d:25:6e:cd:a7:91:5e:c1:4d:e3:69:2d: 40:3b:e2:6d:cc:2c:fa:2e:bb:e8:61:83:d2:7e:8c:de:5f:7c: e5:eb:77:a5:91:88:ea:15:70:37:32:2c:97:40:7b:e6:9f:0f: 3b:06:ab:00:ae:e7:ee:c5:8f:a4:00:27:46:9b:67:2d:87:94: 9f:b8:ac:d9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIXCykctXy4i8AhNlmbjY/EekkTUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDczMDEyWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTk5YWFhMjg5MTY0MGU0MTc3MDYwMmQ5MmEzZmFlNmNm ZjBjNTM0MGQzNTNjZTYyZTBmMGIzYjAxOTIwOWUxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC//vWlxb5i6I3aucIO1IaOdLdb1qJnIPr9k2O1IIOj5WPc yRzfnFajUUCHCshzSBbGePMR8quaPAIG/Mm6B0QbUuC5oitl6sZ0WH7syCfZQUpt oebbkW8twC8XPZZQv/O9RLndZWXon9yC1/HUAmL5DzUKta6vDyw6r0Htdw7E3l8k yVnITZ2ReYumdLfB2h6E83WDJxQy+tIuyzu685O+1W2S4ZIi+6XymF02H8FmO8hg R6CBJNV0Rz1LJ/kCqw53Yktj2NB02H1jqrmlzqHUXflaEOyH4ieZw3jIHAMpD9Fw /7lPE4Xc21Mwy7v83nzRG2tpzkCRBLKjJWLClNeBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQthDZYPtDxlm9xZ3J1rD5LycntEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E3NjcxMDQ5LTExZmEtNDk4Mi05ZjFkLTgzNjcwN2Y3OTJlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAPeAwDQYJKoZIhvcNAQELBQADggEBAKYHUwdGn/Pmpt0uqYsox3ne r+KbKEYPkw0EOXDlVbCdYJOsfyrycwdeqjWraDlhoyxYk1xYOP4PdzU7xpC5tDNY 0g9zz+oG+yJlL7/gHttVLmYNQHeoL8ZFMSbGuxdZrtJ66tArCXyYFHjbE7dzQmmC 4vL8Lj1gbtSlevClLvnN4dVfjEmxDMZu0B26mHLVuxGakZbxDezkq6YA9OXTeA5O C8NzjL3QkGdGAyz6KR8c3GZW4cz1BeRheE0lbs2nkV7BTeNpLUA74m3MLPouu+hh g9J+jN5ffOXrd6WRiOoVcDcyLJdAe+afDzsGqwCu5+7Fj6QAJ0abZy2HlJ+4rNk= -----END CERTIFICATE-----Generated at Mon Mar 2 01:04:15 2026 by rpki-client