$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ba81f5ef-5624-43ad-a7af-0ed757974f30.roa File: ba81f5ef-5624-43ad-a7af-0ed757974f30.roa (raw, json) Hash identifier: tXO3/YZwDTa0RYgIM29TTO5JXUtsfubNsK/W9YHvG8M= Subject key identifier: 16:7F:6B:83:FF:1F:71:58:4D:F0:2A:84:D0:A8:6B:0D:48:72:20:9F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 719ACAB590A8FB0F3372AC1E576F3692BA725E17 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ba81f5ef-5624-43ad-a7af-0ed757974f30.roa Signing time: Fri 13 Feb 2026 07:50:48 +0000 ROA not before: Fri 13 Feb 2026 07:50:48 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3c00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:9a:ca:b5:90:a8:fb:0f:33:72:ac:1e:57:6f:36:92:ba:72:5e:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 07:50:48 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=b59b487b3215f8b5b5f7c8250eb77b9fd26783f5654fafd8ac0535c1b0b3ec10, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e7:e6:52:d2:af:54:07:b4:f8:99:41:e9:0f: dc:6b:d2:ea:b6:56:ab:b1:76:65:c3:f7:1c:b8:9d: 5f:54:e4:2c:cf:58:82:f2:09:54:2a:2d:4b:99:a9: 69:9e:a2:1a:08:63:02:db:ad:53:07:9e:97:47:3c: 4a:d1:1a:f2:bb:ae:f5:03:18:8f:ee:e0:2f:3a:16: a6:f0:97:40:57:2c:46:be:8d:45:b9:1b:ae:7d:60: 49:a0:19:40:b1:65:be:de:f0:28:cb:39:ad:9c:6b: 0b:df:34:eb:87:97:a3:8c:a9:59:28:7c:5c:11:18: f8:38:5d:40:3b:88:0e:cf:2d:17:58:f4:5e:87:70: 51:da:57:b4:b8:37:a3:b3:b0:bb:f1:ec:b1:86:ee: 33:f8:9e:07:35:e8:e9:97:74:a2:9b:ff:9d:c2:05: 22:e2:83:ac:36:cf:53:7e:44:fa:29:7a:35:67:d2: 04:59:df:d8:39:70:5c:58:1c:66:cf:f1:d0:e1:ac: 2f:eb:10:79:19:6d:9e:3e:6a:22:f1:bd:87:24:77: 75:41:7b:4b:b6:d9:88:28:91:cb:24:a1:40:56:5d: 69:f0:31:53:b6:4a:d9:d9:04:b2:5e:47:74:0c:82: a5:65:8f:44:ec:c9:e1:a3:82:98:4c:52:93:9f:19: 18:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:7F:6B:83:FF:1F:71:58:4D:F0:2A:84:D0:A8:6B:0D:48:72:20:9F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ba81f5ef-5624-43ad-a7af-0ed757974f30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3c00::/42 Signature Algorithm: sha256WithRSAEncryption 73:12:0c:64:51:97:82:75:92:91:54:75:a0:5a:ba:79:7e:c6: 2f:7b:cc:3a:d5:cf:dc:8d:63:a0:31:a9:3d:27:7b:62:3d:f5: 16:59:db:4a:c7:c5:4c:c1:d8:83:e4:ce:86:b3:9b:40:a6:40: 87:40:3f:6c:4a:d4:bf:68:77:e8:22:4a:74:1b:37:c5:fa:62: dd:84:dc:d5:45:e3:5c:ad:70:a2:4e:23:1d:78:dd:c7:df:13: 15:82:cc:4e:7f:1e:3c:35:c1:41:ea:45:cc:43:bf:0a:9a:6d: f4:d8:ff:97:76:26:48:b1:08:7b:1b:ed:8b:f3:96:93:a2:22: 82:bc:73:c3:02:90:a9:fe:f8:9b:49:2e:5b:c6:ea:57:b3:47: aa:53:4e:d0:d8:85:dc:2c:09:a8:f7:e1:f4:04:c2:5e:9f:2a: e1:6c:1e:73:c1:8f:c2:60:13:a9:41:06:1e:ef:d3:44:8c:fa: a7:8d:00:8d:6e:3d:c7:1a:71:d4:bd:0b:34:ca:51:79:76:70: 65:bf:d6:2f:4c:2b:21:64:93:1a:e4:1f:67:2e:62:0b:2a:36: 53:83:d9:77:fa:88:b8:cf:9c:88:4f:bd:69:8e:88:60:a6:88: d4:dc:41:52:4f:02:c0:43:9b:e3:19:33:a3:8b:a9:24:b7:6c: 81:ea:cb:76 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcZrKtZCo+w8zcqweV282krpyXhcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDc1MDQ4WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNTliNDg3YjMyMTVmOGI1YjVmN2M4MjUwZWI3N2I5ZmQy Njc4M2Y1NjU0ZmFmZDhhYzA1MzVjMWIwYjNlYzEwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC25+ZS0q9UB7T4mUHpD9xr0uq2VquxdmXD9xy4nV9U5CzP WILyCVQqLUuZqWmeohoIYwLbrVMHnpdHPErRGvK7rvUDGI/u4C86Fqbwl0BXLEa+ jUW5G659YEmgGUCxZb7e8CjLOa2cawvfNOuHl6OMqVkofFwRGPg4XUA7iA7PLRdY 9F6HcFHaV7S4N6OzsLvx7LGG7jP4ngc16OmXdKKb/53CBSLig6w2z1N+RPopejVn 0gRZ39g5cFxYHGbP8dDhrC/rEHkZbZ4+aiLxvYckd3VBe0u22YgokcskoUBWXWnw MVO2StnZBLJeR3QMgqVlj0TsyeGjgphMUpOfGRh3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFn9rg/8fcVhN8CqE0KhrDUhyIJ8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JhODFmNWVmLTU2MjQtNDNhZC1hN2FmLTBlZDc1Nzk3NGYzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAJAAPAAwDQYJKoZIhvcNAQELBQADggEBAHMSDGRRl4J1kpFUdaBaunl+ xi97zDrVz9yNY6AxqT0ne2I99RZZ20rHxUzB2IPkzoazm0CmQIdAP2xK1L9od+gi SnQbN8X6Yt2E3NVF41ytcKJOIx143cffExWCzE5/Hjw1wUHqRcxDvwqabfTY/5d2 JkixCHsb7YvzlpOiIoK8c8MCkKn++JtJLlvG6lezR6pTTtDYhdwsCaj34fQEwl6f KuFsHnPBj8JgE6lBBh7v00SM+qeNAI1uPccacdS9CzTKUXl2cGW/1i9MKyFkkxrk H2cuYgsqNlOD2Xf6iLjPnIhPvWmOiGCmiNTcQVJPAsBDm+MZM6OLqSS3bIHqy3Y= -----END CERTIFICATE-----Generated at Mon Mar 2 03:45:07 2026 by rpki-client