$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ba305e32-6888-4527-aefd-7ab542971786.roa File: ba305e32-6888-4527-aefd-7ab542971786.roa (raw, json) Hash identifier: 3lsNoJR2Ct9zT8UqxQzHabDEoIQ7Sl8RoU8eZgfYEgE= Subject key identifier: 71:ED:7B:60:C9:89:E8:1A:8E:03:D8:1A:9C:52:02:0E:0B:CA:07:04 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 676367458BE7056A7A6726EE45085A8F39BA1B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ba305e32-6888-4527-aefd-7ab542971786.roa Signing time: Fri 13 Feb 2026 10:01:05 +0000 ROA not before: Fri 13 Feb 2026 10:01:05 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:31f8::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:63:67:45:8b:e7:05:6a:7a:67:26:ee:45:08:5a:8f:39:ba:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 10:01:05 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=3828880ccda44bedb8da029a5b37ea31ae644dc0579c81bf35e8e76461d10cb6, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d5:e5:63:15:45:1c:8d:31:6f:7c:87:4a:b5: 7c:93:51:19:0e:4b:bd:c6:ed:b9:9e:af:e1:f4:ea: 0d:9a:80:80:d7:91:14:6e:5a:53:c6:e1:0f:ad:63: 4d:aa:a4:f3:b6:e7:cd:ca:5c:f7:05:f0:07:fa:87: 9b:ba:53:ca:60:f3:78:73:c2:f5:bc:e7:f8:e9:e4: ca:fe:cd:69:2f:f3:62:1a:e4:90:3f:8d:84:2a:98: 8f:58:ec:de:2e:1e:5f:18:ea:c9:c4:4e:bd:40:67: 63:89:7d:c2:1f:2d:fb:a4:18:4b:b9:bc:63:77:3e: b8:13:ae:4a:9f:de:64:e2:a7:05:5b:b5:44:b1:7a: 20:2e:c0:90:99:38:28:78:40:c5:62:26:8e:0d:2c: 4a:16:48:e3:9c:42:7d:af:08:44:6a:24:cb:64:0f: 35:18:e8:ee:ad:dc:42:30:21:64:fe:05:ef:3b:3a: 39:67:86:cd:7f:12:1c:e5:9a:eb:ea:66:83:6d:59: 1f:12:d2:f2:c1:dd:fb:0a:34:f2:e6:f9:b1:0f:5f: 0a:a0:77:68:2d:e8:4a:0e:96:0d:85:ee:a6:aa:e5: e3:fe:00:cc:fc:9e:40:62:1f:59:9f:da:6e:f2:41: 29:b0:d8:68:3f:b8:5a:12:ff:d7:80:32:61:7d:91: 0c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:ED:7B:60:C9:89:E8:1A:8E:03:D8:1A:9C:52:02:0E:0B:CA:07:04 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ba305e32-6888-4527-aefd-7ab542971786.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:31f8::/45 Signature Algorithm: sha256WithRSAEncryption 55:c2:7a:3b:a0:e8:ba:10:72:3e:aa:d9:d2:27:43:a0:fe:92: 44:a0:19:fb:2f:cd:6c:f6:1f:a9:40:01:c9:7e:59:5e:8e:fe: 87:2d:02:34:44:1c:98:e5:97:a0:39:b8:af:0d:a0:25:39:ef: ef:c4:51:84:c9:0d:10:90:66:6c:6a:b2:e4:6d:5c:a9:c2:e2: 08:64:ca:c1:e8:26:04:40:b0:f0:21:3e:00:5e:4e:0c:0f:da: 89:ca:c7:5d:4d:f9:eb:44:a5:9f:52:06:98:20:0c:e8:c1:45: bf:75:72:e9:42:b4:ff:15:df:2b:cf:71:ba:f8:51:24:3f:ee: ec:61:3d:a1:07:8c:d1:8c:53:33:78:78:82:44:6b:13:61:95: c6:39:66:bb:0a:92:ac:e8:08:f5:47:34:e8:5d:29:57:de:e7: 30:30:b8:6e:cb:91:ec:79:63:a6:70:7e:cb:b1:da:93:8e:86: c1:70:84:db:9d:de:d2:f8:60:96:ef:c8:77:27:28:e3:7a:a3: 52:9a:93:bf:56:9f:b1:f6:fd:5c:80:99:ff:32:fb:12:a0:e2: 2b:e2:7d:70:f9:6a:15:5d:f0:67:bb:0a:8d:87:69:c7:6a:ed: f0:4c:6a:a1:f2:11:02:1e:4b:0f:24:73:0a:68:97:6d:dc:e0: 0b:e1:c3:8f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITZ2NnRYvnBWp6ZybuRQhajzm6GzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1NTEyMDkwMjdmNWU3YWQ1NGUwNGYwNDJlNGFjMGU5ZTY1 YzU2ZTU1Yzc3NDc4ZDJjZTAeFw0yNjAyMTMxMDAxMDVaFw0yNjA1MTQyMzU5NTla MHoxSTBHBgNVBAUTQDM4Mjg4ODBjY2RhNDRiZWRiOGRhMDI5YTViMzdlYTMxYWU2 NDRkYzA1NzljODFiZjM1ZThlNzY0NjFkMTBjYjYxLTArBgNVBAMTJDlmMjMwZmE5 LWFhMmYtNDAyMC1hZTJhLTFhNjAzNzQwODRiODCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKrV5WMVRRyNMW98h0q1fJNRGQ5LvcbtuZ6v4fTqDZqAgNeR FG5aU8bhD61jTaqk87bnzcpc9wXwB/qHm7pTymDzeHPC9bzn+Onkyv7NaS/zYhrk kD+NhCqYj1js3i4eXxjqycROvUBnY4l9wh8t+6QYS7m8Y3c+uBOuSp/eZOKnBVu1 RLF6IC7AkJk4KHhAxWImjg0sShZI45xCfa8IRGoky2QPNRjo7q3cQjAhZP4F7zs6 OWeGzX8SHOWa6+pmg21ZHxLS8sHd+wo08ub5sQ9fCqB3aC3oSg6WDYXupqrl4/4A zPyeQGIfWZ/abvJBKbDYaD+4WhL/14AyYX2RDLUCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBRx7XtgyYnoGo4D2BqcUgIOC8oHBDAfBgNVHSMEGDAWgBTo88Ug4g7yXTq3 oha7FAQxajc48TAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv ZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEzYjAyZTI5Lzk5ZjhmZWQyLTI5 MmItNDcyMi1iOTI4LWZlZTdiZjBhNTkxMC81NTEyMDkwMjdmNWU3YWQ1NGUwNGYw NDJlNGFjMGU5ZTY1YzU2ZTU1Yzc3NDc4ZDJjZS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzUxOGFmNS1hMzQzLTQyOGQtYmY3OC1mOTgy YjZlNjA1MDUvYmEzMDVlMzItNjg4OC00NTI3LWFlZmQtN2FiNTQyOTcxNzg2LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgt Zjk4MmI2ZTYwNTA1L1huclZUZ1R3UXVTc0RwNWx4VzVWeDNSNDBzNC5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHAyYAkAAx+DANBgkqhkiG9w0BAQsFAAOCAQEAVcJ6O6DouhByPqrZ0idDoP6S RKAZ+y/NbPYfqUAByX5ZXo7+hy0CNEQcmOWXoDm4rw2gJTnv78RRhMkNEJBmbGqy 5G1cqcLiCGTKwegmBECw8CE+AF5ODA/aicrHXU3560Sln1IGmCAM6MFFv3Vy6UK0 /xXfK89xuvhRJD/u7GE9oQeM0YxTM3h4gkRrE2GVxjlmuwqSrOgI9Uc06F0pV97n MDC4bsuR7HljpnB+y7Hak46GwXCE253e0vhglu/Idyco43qjUpqTv1afsfb9XICZ /zL7EqDiK+J9cPlqFV3wZ7sKjYdpx2rt8ExqofIRAh5LDyRzCmiXbdzgC+HDjw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:16 2026 by rpki-client