$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aa0d5709-985b-490a-9cc4-30830e9fb9bb.roa File: aa0d5709-985b-490a-9cc4-30830e9fb9bb.roa (raw, json) Hash identifier: CgxE+O6WarOguqklnOZdcmFGYRFn8fCVWpv3Wqn4crA= Subject key identifier: 16:4B:FE:AE:09:E9:E0:16:1C:60:50:D4:B2:E9:A8:C0:54:79:9B:18 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4CD65FF44C1A11FFA40206EFFE68AE772D95772C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aa0d5709-985b-490a-9cc4-30830e9fb9bb.roa Signing time: Thu 12 Feb 2026 01:40:03 +0000 ROA not before: Thu 12 Feb 2026 01:40:03 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2a32::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d6:5f:f4:4c:1a:11:ff:a4:02:06:ef:fe:68:ae:77:2d:95:77:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 01:40:03 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=8c2b061ebd106685eb072b7f021d2b701cb0d6d03d706137dcd09447ebe3210e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b5:a9:f2:15:b8:52:8b:77:fd:5b:8d:7c:56: 91:21:2f:98:ff:24:95:1d:05:80:15:eb:5f:2c:6b: cb:07:03:65:6d:12:da:39:d2:9f:70:09:fd:d0:5c: 73:70:e0:f1:85:26:a1:a1:4a:53:cf:a8:86:8a:49: 11:3f:e7:b2:19:b5:85:59:41:8d:df:ae:93:88:6c: 8e:ac:74:18:e7:e4:9f:23:ba:16:41:25:ab:37:82: 77:dc:52:53:4f:b7:5d:55:d5:ec:b6:81:19:a9:e9: 3a:8f:49:85:e5:66:97:c1:2e:34:32:29:cb:f1:1f: 80:06:c9:34:05:27:05:f9:44:7f:cc:27:be:5a:36: c0:94:51:3b:27:35:f2:f1:cf:40:12:75:37:ea:98: 2a:b2:49:de:f7:63:07:b7:c3:3d:e7:97:8f:77:50: 9f:ac:60:c1:a6:7b:50:81:e1:11:49:21:9e:8e:9a: 34:aa:d9:0c:60:b1:45:d5:0b:ed:cc:47:41:2f:5d: 15:f4:22:36:c3:0a:a5:2b:03:d9:16:fa:e1:00:b5: 9f:ab:1a:75:36:a1:16:29:b4:08:9e:ad:8a:8b:bf: 14:a5:a8:29:e1:98:04:30:9b:7f:47:43:0c:ba:27: 2b:20:b7:36:3f:b7:ce:00:62:a2:03:f2:03:da:1a: 48:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:4B:FE:AE:09:E9:E0:16:1C:60:50:D4:B2:E9:A8:C0:54:79:9B:18 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aa0d5709-985b-490a-9cc4-30830e9fb9bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2a32::/47 Signature Algorithm: sha256WithRSAEncryption a9:53:39:61:a2:f3:d9:ad:fc:5d:ac:dc:d8:b4:b6:eb:c3:e6: 7a:b9:b7:be:64:79:cf:3f:c6:9a:cb:36:78:12:8d:a6:8e:97: db:bd:68:fd:31:a6:75:95:86:5e:d5:69:61:f7:ba:ec:c7:d5: 08:c1:03:2d:aa:da:f7:27:e4:80:73:64:9f:d5:52:84:ac:42: d6:0a:b6:90:55:4f:7b:45:26:50:25:0b:ae:55:9a:bc:33:70: 34:c0:1f:2a:82:97:64:2c:8a:06:eb:b4:c1:71:4a:b5:05:d0: 7d:35:fe:58:13:b6:46:fc:9a:e8:8a:ad:cb:fd:d6:46:cf:97: a3:25:c0:ad:a7:52:ef:51:48:67:2e:fc:ef:00:67:2c:c0:a4: 4b:56:be:89:76:55:c5:12:7d:17:86:bc:1b:f2:7f:54:92:56: 5f:8c:f7:fd:8c:27:1d:2b:bc:4e:9a:df:45:e2:58:fc:0f:87: 20:d7:f4:fd:a8:1a:8c:65:5e:00:66:2b:20:46:b3:b3:ac:71: 3e:d2:b5:d9:f0:bb:cf:72:b1:77:bf:6a:7c:99:cd:c0:e5:97: 48:73:8e:eb:ce:8d:25:c4:92:7a:34:fe:e0:14:94:4b:0e:77: 9c:0a:5d:a9:f5:7d:10:8a:90:b5:3f:ac:b1:17:52:f5:59:ce: 99:23:de:bd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTNZf9EwaEf+kAgbv/miudy2VdywwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDE0MDAzWhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzJiMDYxZWJkMTA2Njg1ZWIwNzJiN2YwMjFkMmI3MDFj YjBkNmQwM2Q3MDYxMzdkY2QwOTQ0N2ViZTMyMTBlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDItanyFbhSi3f9W418VpEhL5j/JJUdBYAV618sa8sHA2Vt Eto50p9wCf3QXHNw4PGFJqGhSlPPqIaKSRE/57IZtYVZQY3frpOIbI6sdBjn5J8j uhZBJas3gnfcUlNPt11V1ey2gRmp6TqPSYXlZpfBLjQyKcvxH4AGyTQFJwX5RH/M J75aNsCUUTsnNfLxz0ASdTfqmCqySd73Ywe3wz3nl493UJ+sYMGme1CB4RFJIZ6O mjSq2QxgsUXVC+3MR0EvXRX0IjbDCqUrA9kW+uEAtZ+rGnU2oRYptAierYqLvxSl qCnhmAQwm39HQwy6JysgtzY/t84AYqID8gPaGkjBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFkv+rgnp4BYcYFDUsumowFR5mxgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FhMGQ1NzA5LTk4NWItNDkwYS05Y2M0LTMwODMwZTlmYjliYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKjIwDQYJKoZIhvcNAQELBQADggEBAKlTOWGi89mt/F2s3Ni0tuvD 5nq5t75kec8/xprLNngSjaaOl9u9aP0xpnWVhl7VaWH3uuzH1QjBAy2q2vcn5IBz ZJ/VUoSsQtYKtpBVT3tFJlAlC65VmrwzcDTAHyqCl2QsigbrtMFxSrUF0H01/lgT tkb8muiKrcv91kbPl6MlwK2nUu9RSGcu/O8AZyzApEtWvol2VcUSfReGvBvyf1SS Vl+M9/2MJx0rvE6a30XiWPwPhyDX9P2oGoxlXgBmKyBGs7OscT7Stdnwu89ysXe/ anyZzcDll0hzjuvOjSXEkno0/uAUlEsOd5wKXan1fRCKkLU/rLEXUvVZzpkj3r0= -----END CERTIFICATE-----Generated at Sun Mar 1 23:50:05 2026 by rpki-client