$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aff02b71-6734-47d6-b496-c804efa72a0b.roa File: aff02b71-6734-47d6-b496-c804efa72a0b.roa (raw, json) Hash identifier: gRZlDq4lO4HSUwqcrRVSp/sfaz5GskrQSzwvNLUX7ZA= Subject key identifier: 46:24:3D:86:CE:5B:C5:53:07:13:79:EB:58:00:F0:83:00:F7:07:0A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 32B58D0424ABE725C4582FE8D17156C7A54D70D3 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aff02b71-6734-47d6-b496-c804efa72a0b.roa Signing time: Thu 12 Feb 2026 01:20:09 +0000 ROA not before: Thu 12 Feb 2026 01:20:09 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2192::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:b5:8d:04:24:ab:e7:25:c4:58:2f:e8:d1:71:56:c7:a5:4d:70:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 01:20:09 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=da1403cbe3279c09630ba8b4f4d331fef7390ea9a3623360f3ed566a71e1b8ae, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:32:51:6e:ed:75:d4:e0:15:5d:d8:0d:04:02: 2f:9a:bb:e4:b6:4d:53:86:27:8b:f9:6b:1a:53:84: ca:ee:13:4b:04:3d:60:c4:15:71:1f:31:45:48:3c: ca:80:04:1d:c7:df:61:69:e9:88:23:b4:34:85:b0: f8:c7:4b:11:38:a2:34:c8:ad:54:2f:b8:2a:91:9a: 8f:50:64:8e:be:c5:0e:0d:7d:22:b5:c2:60:8d:e5: 1c:97:e3:2d:bc:8f:20:b0:a1:3b:cf:ac:9d:e8:0a: ab:66:26:16:54:29:f5:00:3f:43:7f:df:1b:18:02: 19:6a:7a:3e:ee:58:6c:b8:94:09:39:3a:08:f0:9d: de:e4:cb:c0:44:5b:22:9a:cd:17:cd:ee:70:f7:13: 98:cb:05:da:01:34:30:e9:03:74:f0:31:97:e5:52: c1:2d:ec:4e:b5:a2:7c:55:f7:8b:cb:46:51:0a:43: 22:04:de:4b:52:7b:c5:ab:7f:88:2b:89:4e:26:e2: 78:b9:92:d2:fc:04:0f:18:56:6f:8a:8f:58:9e:a6: c1:55:84:d0:68:46:44:44:11:ac:fb:08:d8:e1:fa: e6:c7:74:0d:6a:61:2e:9e:0d:fc:4b:41:23:32:75: ff:2a:09:ee:1c:43:80:f6:1f:1e:33:08:33:33:55: 5a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:24:3D:86:CE:5B:C5:53:07:13:79:EB:58:00:F0:83:00:F7:07:0A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aff02b71-6734-47d6-b496-c804efa72a0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2192::/48 Signature Algorithm: sha256WithRSAEncryption 4a:dc:58:56:9c:fc:d3:37:97:7b:b0:e9:8d:65:c6:10:c6:d8: 2b:21:11:fd:a5:40:5b:c2:19:04:ba:67:9d:df:09:da:87:f1: fb:18:a9:95:02:b5:76:36:5a:62:c1:a4:ad:d0:a4:ba:cc:61: e1:ed:66:55:df:c7:f3:66:a2:13:2f:3c:5c:c8:f5:66:cb:c9: 27:6b:18:b3:8b:28:d1:59:06:e0:48:32:5b:a9:cd:08:f0:dd: 2f:de:ec:94:af:d9:f9:3f:3a:45:2a:d5:f8:6b:f7:0d:f7:99: d3:a4:b3:ee:67:f0:8d:8d:f5:61:eb:08:93:6a:f0:e5:9f:a6: f1:d3:74:4a:82:a9:d7:47:49:65:0d:f1:e8:3b:dd:20:04:df: f5:fb:d1:c2:ce:5b:63:e8:65:cf:18:c2:a0:5e:e3:43:46:d6: 4c:ea:d4:62:fb:21:a2:f1:8c:6c:df:39:bb:af:46:8f:7d:f1: f5:3a:98:0c:53:6f:20:e9:9f:4c:05:0c:5e:ca:b5:14:d8:af: d1:d1:21:73:ae:14:b9:a2:3a:f3:3e:0a:9e:36:c7:fe:6a:9f: eb:7c:e4:78:fa:af:49:a6:d7:41:af:02:69:a4:7e:14:1d:2a: bb:10:19:f4:f7:f6:1c:97:11:1b:6e:6a:4e:1b:e7:08:90:a2: 79:c0:96:83 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMrWNBCSr5yXEWC/o0XFWx6VNcNMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDEyMDA5WhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTE0MDNjYmUzMjc5YzA5NjMwYmE4YjRmNGQzMzFmZWY3 MzkwZWE5YTM2MjMzNjBmM2VkNTY2YTcxZTFiOGFlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWMlFu7XXU4BVd2A0EAi+au+S2TVOGJ4v5axpThMruE0sE PWDEFXEfMUVIPMqABB3H32Fp6YgjtDSFsPjHSxE4ojTIrVQvuCqRmo9QZI6+xQ4N fSK1wmCN5RyX4y28jyCwoTvPrJ3oCqtmJhZUKfUAP0N/3xsYAhlqej7uWGy4lAk5 Ogjwnd7ky8BEWyKazRfN7nD3E5jLBdoBNDDpA3TwMZflUsEt7E61onxV94vLRlEK QyIE3ktSe8Wrf4griU4m4ni5ktL8BA8YVm+Kj1iepsFVhNBoRkREEaz7CNjh+ubH dA1qYS6eDfxLQSMydf8qCe4cQ4D2Hx4zCDMzVVo1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURiQ9hs5bxVMHE3nrWADwgwD3BwowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FmZjAyYjcxLTY3MzQtNDdkNi1iNDk2LWM4MDRlZmE3MmEwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAIZIwDQYJKoZIhvcNAQELBQADggEBAErcWFac/NM3l3uw6Y1lxhDG 2CshEf2lQFvCGQS6Z53fCdqH8fsYqZUCtXY2WmLBpK3QpLrMYeHtZlXfx/NmohMv PFzI9WbLySdrGLOLKNFZBuBIMlupzQjw3S/e7JSv2fk/OkUq1fhr9w33mdOks+5n 8I2N9WHrCJNq8OWfpvHTdEqCqddHSWUN8eg73SAE3/X70cLOW2PoZc8YwqBe40NG 1kzq1GL7IaLxjGzfObuvRo998fU6mAxTbyDpn0wFDF7KtRTYr9HRIXOuFLmiOvM+ Cp42x/5qn+t85Hj6r0mm10GvAmmkfhQdKrsQGfT39hyXERtuak4b5wiQonnAloM= -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:05 2026 by rpki-client