$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a9a491ae-152d-4300-b3a6-53b86183deb0.roa File: a9a491ae-152d-4300-b3a6-53b86183deb0.roa (raw, json) Hash identifier: /NB2z1c4ndO602TL5ovGp3vH4OeEvTdjVnAy2zLecA8= Subject key identifier: 89:85:21:14:70:C2:37:FB:2F:8F:91:10:E0:2B:E4:02:95:3A:16:B0 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 608EAF184C9E5BD5F2BFF95EEB5E3771F1FD3DE8 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a9a491ae-152d-4300-b3a6-53b86183deb0.roa Signing time: Thu 12 Feb 2026 03:20:06 +0000 ROA not before: Thu 12 Feb 2026 03:20:06 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2698::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:8e:af:18:4c:9e:5b:d5:f2:bf:f9:5e:eb:5e:37:71:f1:fd:3d:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 03:20:06 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=cb322f3f7a17275d0523c37df68a7f0e8ccc4a9db2ad8206ae257f36d33484fe, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:21:81:1b:db:96:2a:3d:82:27:5f:25:a8:dc: d4:d5:12:64:80:9e:92:a2:09:8f:73:ff:76:5b:6d: f3:37:11:56:bf:8e:06:75:0f:9a:cf:4f:b9:93:a4: 96:d2:8f:47:42:49:17:ec:29:b6:54:41:41:01:09: 3e:4e:93:cd:df:8c:95:f2:ac:41:23:99:f5:2a:ef: bc:d4:d4:8c:62:ac:a6:37:15:62:9b:2e:09:cc:c2: 23:57:5d:44:52:75:28:a6:35:76:ab:be:bc:a6:a2: 24:27:80:73:f0:d9:d2:a4:fd:ad:81:55:d3:10:72: be:64:f7:41:4a:53:ef:fc:a2:fd:f9:9c:b8:8f:38: 06:98:c0:be:1a:57:50:9c:bf:85:ff:97:15:8e:5e: b2:55:93:75:d5:47:41:a0:98:78:97:91:70:b5:7d: f0:4e:25:5e:12:7c:eb:3b:51:46:e4:28:6e:f5:b4: 03:5d:72:b3:a5:4c:71:e9:2c:d6:b4:c6:6f:01:99: 87:e8:3b:e5:b1:a9:d1:7c:40:8f:80:1e:54:99:84: 96:37:23:98:bb:67:0f:cf:7e:7f:a4:03:8a:61:f6: fd:0f:24:3c:2d:7e:df:7d:61:5e:45:0c:a0:38:a7: 81:ee:5a:8c:49:36:f8:c6:07:7f:2b:1f:da:ab:c7: 86:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:85:21:14:70:C2:37:FB:2F:8F:91:10:E0:2B:E4:02:95:3A:16:B0 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a9a491ae-152d-4300-b3a6-53b86183deb0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2698::/45 Signature Algorithm: sha256WithRSAEncryption 49:ef:12:c4:7b:fb:65:ec:b8:c8:19:0a:26:7a:7c:c1:bf:20: ec:95:2d:33:6b:2f:dd:fa:40:13:fb:cc:d1:fc:03:17:9e:3c: 33:af:c5:94:5e:26:e9:72:cd:3e:2b:9f:81:85:c0:e5:03:09: 8d:ac:5b:57:f8:7a:61:5f:95:1e:4f:37:c7:df:df:23:29:c5: 4e:ae:bf:74:c1:87:ea:63:0c:1d:9f:bf:4f:e9:3f:c6:c5:84: b0:75:64:a4:05:4a:ca:2e:46:30:6e:f2:89:1c:6b:b9:eb:7a: c9:d7:1c:9d:44:93:d3:49:d7:0b:fd:87:c4:5a:e7:e9:b1:54: 79:4c:de:73:4c:73:85:9c:b6:ca:80:0b:aa:f1:1c:f9:32:ba: b5:44:50:77:4e:88:dc:4b:27:35:59:0a:16:11:f9:6e:a2:34: 6f:f3:8e:8d:fe:b3:1a:7b:e3:a4:79:24:7b:d4:ef:52:76:08: 72:b0:77:21:d0:e0:a5:ef:51:3e:7a:16:2b:00:94:22:0f:ee: 51:7e:36:6a:38:40:3c:cf:9d:dd:fb:ac:a4:f6:ec:66:95:da: da:56:24:ab:da:43:77:42:f9:35:6d:70:c2:64:42:f6:74:a5: 75:fc:6e:3e:f2:9c:df:db:c0:59:45:ce:62:85:30:55:57:92: 69:1b:99:21 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYI6vGEyeW9Xyv/le6143cfH9PegwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDMyMDA2WhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYjMyMmYzZjdhMTcyNzVkMDUyM2MzN2RmNjhhN2YwZThj Y2M0YTlkYjJhZDgyMDZhZTI1N2YzNmQzMzQ4NGZlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrIYEb25YqPYInXyWo3NTVEmSAnpKiCY9z/3ZbbfM3EVa/ jgZ1D5rPT7mTpJbSj0dCSRfsKbZUQUEBCT5Ok83fjJXyrEEjmfUq77zU1IxirKY3 FWKbLgnMwiNXXURSdSimNXarvrymoiQngHPw2dKk/a2BVdMQcr5k90FKU+/8ov35 nLiPOAaYwL4aV1Ccv4X/lxWOXrJVk3XVR0GgmHiXkXC1ffBOJV4SfOs7UUbkKG71 tANdcrOlTHHpLNa0xm8BmYfoO+WxqdF8QI+AHlSZhJY3I5i7Zw/Pfn+kA4ph9v0P JDwtft99YV5FDKA4p4HuWoxJNvjGB38rH9qrx4bFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUiYUhFHDCN/svj5EQ4CvkApU6FrAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E5YTQ5MWFlLTE1MmQtNDMwMC1iM2E2LTUzYjg2MTgzZGViMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAJpgwDQYJKoZIhvcNAQELBQADggEBAEnvEsR7+2XsuMgZCiZ6fMG/ IOyVLTNrL936QBP7zNH8AxeePDOvxZReJulyzT4rn4GFwOUDCY2sW1f4emFflR5P N8ff3yMpxU6uv3TBh+pjDB2fv0/pP8bFhLB1ZKQFSsouRjBu8okca7nresnXHJ1E k9NJ1wv9h8Ra5+mxVHlM3nNMc4WctsqAC6rxHPkyurVEUHdOiNxLJzVZChYR+W6i NG/zjo3+sxp746R5JHvU71J2CHKwdyHQ4KXvUT56FisAlCIP7lF+Nmo4QDzPnd37 rKT27GaV2tpWJKvaQ3dC+TVtcMJkQvZ0pXX8bj7ynN/bwFlFzmKFMFVXkmkbmSE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:15:55 2026 by rpki-client