$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ac79ba69-a8d6-431d-81a7-79672a60c31c.roa File: ac79ba69-a8d6-431d-81a7-79672a60c31c.roa (raw, json) Hash identifier: fUnQuxaJ0jcyPgye2ES9AFdnoohUxxNhP+0/d/kbO4k= Subject key identifier: 14:0D:1C:52:88:D9:E5:29:D8:1B:B7:F4:1F:F9:DB:10:98:E1:13:7C Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2E47BCD9CC9B2D430D09E2C0A3B4A007B39741E5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ac79ba69-a8d6-431d-81a7-79672a60c31c.roa Signing time: Fri 13 Feb 2026 08:01:48 +0000 ROA not before: Fri 13 Feb 2026 08:01:48 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2d20::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:47:bc:d9:cc:9b:2d:43:0d:09:e2:c0:a3:b4:a0:07:b3:97:41:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 08:01:48 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=57f96143b3c06a4f4ffd40b98fc4e2ceff739babcc5a3eb81742ddb08faf68fb, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:81:e5:0d:ef:bf:1a:bd:e1:56:ea:30:bc:eb: 24:36:1e:70:1b:60:35:e2:43:bf:d6:3b:d6:51:d7: 3a:e7:39:52:02:de:6f:a3:9d:b5:05:07:58:93:70: b7:cf:5c:16:da:ab:b8:1d:22:6d:38:a4:a8:fe:cd: 53:e4:48:52:a6:3b:94:aa:aa:11:59:ab:33:f5:b2: 04:78:3a:d1:2a:92:4b:d9:1a:69:27:94:10:c0:4a: 7a:94:0c:68:ae:0e:56:f5:4c:f5:f7:69:84:f0:c8: ef:dc:be:79:28:00:86:ef:cb:a2:88:6a:0c:e5:13: 1b:79:1f:e1:93:db:3d:34:44:b8:c0:cc:c3:59:cb: e0:52:b5:12:34:51:76:8d:81:e0:57:c8:f8:84:da: 78:a7:0c:40:54:f0:12:5b:e5:87:e1:be:78:6e:de: a3:0e:af:54:ab:b4:a6:db:31:62:03:21:ca:3e:43: c6:85:79:87:68:8e:79:dc:3d:f9:2d:96:60:15:c2: 6f:4a:fd:d5:06:a6:03:77:45:96:9e:08:38:0e:c6: 88:65:67:05:0c:38:97:ca:be:c1:8a:63:ae:2e:fd: 53:08:fb:44:dc:dc:98:43:ea:f9:84:13:fc:77:e7: dc:25:46:04:e6:6f:e2:af:3c:d3:94:35:36:c9:99: 43:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:0D:1C:52:88:D9:E5:29:D8:1B:B7:F4:1F:F9:DB:10:98:E1:13:7C X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ac79ba69-a8d6-431d-81a7-79672a60c31c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2d20::/43 Signature Algorithm: sha256WithRSAEncryption 20:d0:e2:38:9a:7e:e4:2f:e5:5a:ad:09:55:73:18:2a:01:9c: b8:40:8b:6d:84:6d:40:0a:2f:07:4c:50:68:eb:c1:0b:08:e2: 77:24:2e:8d:0a:43:5b:d8:12:b3:02:7b:7a:b7:7d:6f:2c:fe: 21:ce:9d:9b:72:10:dd:4d:1c:5c:f1:ed:26:0c:9a:26:a6:df: 56:09:2d:60:be:cd:f2:be:4b:bd:fc:5d:e0:a1:6a:c3:80:3c: da:f3:69:0f:6d:3f:a8:b7:69:28:2d:f0:88:c4:92:24:66:6d: b1:ac:cc:93:9b:bf:43:f2:8f:be:bc:ec:8e:51:bb:4a:f0:ac: 77:fd:00:4b:97:51:1a:6b:38:1c:30:55:ab:a2:ac:a9:14:c1: 98:ab:09:b1:2c:14:4e:49:08:d8:dd:e6:5d:e6:5b:69:42:1b: bf:2c:90:6f:83:6f:52:3e:f1:36:b3:4c:f1:b8:78:24:ad:35: 55:11:74:78:ed:f2:bc:a3:fb:4a:8e:0f:76:7c:f7:4e:de:53: 03:ad:a9:f7:76:31:fb:a4:27:2d:08:5f:15:5d:6f:37:c5:0d: d5:94:ee:c4:db:dd:57:0f:7d:3b:00:f2:26:9a:4d:cc:4c:e1: a4:e2:65:84:f2:f9:85:aa:0a:b0:1b:49:40:cb:38:a5:f8:9b: 25:6e:60:23 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULke82cybLUMNCeLAo7SgB7OXQeUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDgwMTQ4WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1N2Y5NjE0M2IzYzA2YTRmNGZmZDQwYjk4ZmM0ZTJjZWZm NzM5YmFiY2M1YTNlYjgxNzQyZGRiMDhmYWY2OGZiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRgeUN778aveFW6jC86yQ2HnAbYDXiQ7/WO9ZR1zrnOVIC 3m+jnbUFB1iTcLfPXBbaq7gdIm04pKj+zVPkSFKmO5SqqhFZqzP1sgR4OtEqkkvZ GmknlBDASnqUDGiuDlb1TPX3aYTwyO/cvnkoAIbvy6KIagzlExt5H+GT2z00RLjA zMNZy+BStRI0UXaNgeBXyPiE2ninDEBU8BJb5Yfhvnhu3qMOr1SrtKbbMWIDIco+ Q8aFeYdojnncPfktlmAVwm9K/dUGpgN3RZaeCDgOxohlZwUMOJfKvsGKY64u/VMI +0Tc3JhD6vmEE/x359wlRgTmb+KvPNOUNTbJmUM1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFA0cUojZ5SnYG7f0H/nbEJjhE3wwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FjNzliYTY5LWE4ZDYtNDMxZC04MWE3LTc5NjcyYTYwYzMxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAALSAwDQYJKoZIhvcNAQELBQADggEBACDQ4jiafuQv5VqtCVVzGCoB nLhAi22EbUAKLwdMUGjrwQsI4nckLo0KQ1vYErMCe3q3fW8s/iHOnZtyEN1NHFzx 7SYMmiam31YJLWC+zfK+S738XeChasOAPNrzaQ9tP6i3aSgt8IjEkiRmbbGszJOb v0Pyj7687I5Ru0rwrHf9AEuXURprOBwwVauirKkUwZirCbEsFE5JCNjd5l3mW2lC G78skG+Db1I+8TazTPG4eCStNVURdHjt8ryj+0qOD3Z8907eUwOtqfd2MfukJy0I XxVdbzfFDdWU7sTb3VcPfTsA8iaaTcxM4aTiZYTy+YWqCrAbSUDLOKX4myVuYCM= -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:59 2026 by rpki-client