$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aa18ab4a-e775-468f-9bd0-ac398c7608b2.roa File: aa18ab4a-e775-468f-9bd0-ac398c7608b2.roa (raw, json) Hash identifier: foKWgrlUYkXGgV5CREcVy/I3hF0u25Y/bbOjyQHjLC8= Subject key identifier: 6D:EC:0D:A0:01:9C:9A:CB:CE:2D:0E:FF:07:4B:3B:95:D0:32:4E:7A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5909C194755D007D097A4EE5074F36177AA8634F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aa18ab4a-e775-468f-9bd0-ac398c7608b2.roa Signing time: Fri 03 Apr 2026 02:21:18 +0000 ROA not before: Fri 03 Apr 2026 02:21:18 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1032::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:09:c1:94:75:5d:00:7d:09:7a:4e:e5:07:4f:36:17:7a:a8:63:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 02:21:18 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=499110be29a8a7bd245b3639620804462da7f287b0799b22ec449e0822fcce0e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:d6:40:3c:60:d1:d7:13:15:e7:f1:cb:72:6c: 38:91:cd:28:24:82:ea:13:ba:b2:37:1d:14:31:8c: 37:12:86:8b:65:84:cc:aa:35:eb:0f:38:31:75:cc: f8:22:a4:a3:8c:95:7f:1a:fe:c2:67:da:ef:d9:e2: ec:f2:af:3a:e7:b8:a2:1c:74:22:4e:23:31:17:3d: bd:64:7e:79:22:65:04:bf:28:ab:5f:40:bc:d2:c6: d9:1f:fa:0e:36:99:2d:dd:7b:73:b8:d8:5b:5c:ca: 63:bd:9e:1d:80:ff:3e:ea:8a:49:65:44:a5:39:0c: c0:be:6f:49:9e:36:02:11:de:17:23:f6:b0:6c:38: 92:2c:b3:ee:1c:1a:fd:70:a0:39:3c:a3:8a:b8:d8: a8:7c:a7:ac:13:8c:2e:da:5e:69:b4:0b:d1:85:80: 34:c3:1f:a0:3d:dd:84:ab:48:47:1a:43:54:4f:ed: 9a:30:58:b2:9d:50:34:d2:84:1d:59:e5:91:e5:36: c8:24:41:06:1f:4b:77:d8:02:ca:6d:4e:ac:04:80: da:ee:f2:7a:4b:9a:41:32:c8:f3:ff:fc:a8:81:f5: 23:44:48:bf:d7:ba:51:fb:88:89:45:6c:2e:d9:ab: 6a:20:8f:17:2e:3b:26:25:af:e3:c1:86:59:cf:45: 92:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:EC:0D:A0:01:9C:9A:CB:CE:2D:0E:FF:07:4B:3B:95:D0:32:4E:7A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aa18ab4a-e775-468f-9bd0-ac398c7608b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1032::/48 Signature Algorithm: sha256WithRSAEncryption 59:4f:1f:08:9a:d3:82:86:9b:65:22:fe:a4:55:62:84:c8:73: 65:fb:ec:ff:1e:b4:ae:17:7c:4c:ee:4a:2d:4c:bd:88:66:a1: 51:ca:41:4f:2f:b5:d3:7b:d6:cb:a7:4e:44:d2:92:de:03:8e: 35:2c:6d:03:fa:54:01:bf:06:9a:76:97:0d:1b:12:d0:0f:91: 21:12:41:76:f1:f8:02:55:f2:7f:27:9a:a5:7b:c6:fc:c9:2c: 50:f3:74:5e:57:bc:8c:e0:7d:78:42:16:af:27:23:01:60:59: 2c:8b:be:e0:1d:0f:07:cb:cd:cf:74:60:12:3c:f0:94:80:76: d1:03:23:c7:31:3f:86:84:0e:a8:fa:ef:0d:0d:02:f5:88:5a: 8f:84:6c:40:af:aa:15:a7:6a:44:9e:71:28:6d:b5:1f:0d:a1: ab:48:73:55:f6:f3:f1:c0:68:7e:cd:da:ed:e9:53:73:74:85: 5e:4d:71:00:41:88:12:9b:aa:63:f5:9a:12:95:19:38:b4:3d: 8d:d7:56:1a:2d:88:b0:ad:00:60:2e:06:b3:f7:2c:95:cf:9b: 0d:6d:25:75:27:b4:d7:50:ac:70:72:1d:07:b4:a2:21:6b:ee: a5:4f:ec:3a:eb:9e:6f:8c:06:65:02:2c:e6:ee:e5:e8:a0:e6: b3:c6:eb:eb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWQnBlHVdAH0Jek7lB082F3qoY08wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDIyMTE4WhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTkxMTBiZTI5YThhN2JkMjQ1YjM2Mzk2MjA4MDQ0NjJk YTdmMjg3YjA3OTliMjJlYzQ0OWUwODIyZmNjZTBlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCE1kA8YNHXExXn8ctybDiRzSgkguoTurI3HRQxjDcShotl hMyqNesPODF1zPgipKOMlX8a/sJn2u/Z4uzyrzrnuKIcdCJOIzEXPb1kfnkiZQS/ KKtfQLzSxtkf+g42mS3de3O42FtcymO9nh2A/z7qikllRKU5DMC+b0meNgIR3hcj 9rBsOJIss+4cGv1woDk8o4q42Kh8p6wTjC7aXmm0C9GFgDTDH6A93YSrSEcaQ1RP 7ZowWLKdUDTShB1Z5ZHlNsgkQQYfS3fYAsptTqwEgNru8npLmkEyyPP//KiB9SNE SL/XulH7iIlFbC7Zq2ogjxcuOyYlr+PBhlnPRZJPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbewNoAGcmsvOLQ7/B0s7ldAyTnowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FhMThhYjRhLWU3NzUtNDY4Zi05YmQwLWFjMzk4Yzc2MDhiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAEDIwDQYJKoZIhvcNAQELBQADggEBAFlPHwia04KGm2Ui/qRVYoTI c2X77P8etK4XfEzuSi1MvYhmoVHKQU8vtdN71sunTkTSkt4DjjUsbQP6VAG/Bpp2 lw0bEtAPkSESQXbx+AJV8n8nmqV7xvzJLFDzdF5XvIzgfXhCFq8nIwFgWSyLvuAd DwfLzc90YBI88JSAdtEDI8cxP4aEDqj67w0NAvWIWo+EbECvqhWnakSecShttR8N oatIc1X28/HAaH7N2u3pU3N0hV5NcQBBiBKbqmP1mhKVGTi0PY3XVhotiLCtAGAu BrP3LJXPmw1tJXUntNdQrHByHQe0oiFr7qVP7Drrnm+MBmUCLObu5eig5rPG6+s= -----END CERTIFICATE-----Generated at Fri Apr 17 12:14:14 2026 by rpki-client