$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bcb9513f-1e47-4370-b762-49be596c8417.roa File: bcb9513f-1e47-4370-b762-49be596c8417.roa (raw, json) Hash identifier: SZPNdWV231J7s+AHgDZIw3C73SnvnKsBLlm/xQLPBQc= Subject key identifier: A7:87:AA:B1:24:50:59:53:14:DC:F6:7B:5F:0A:67:EB:24:18:B2:1D Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2A3543658CB0321ABC4B6912735F1485B25FF760 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bcb9513f-1e47-4370-b762-49be596c8417.roa Signing time: Fri 03 Apr 2026 00:30:16 +0000 ROA not before: Fri 03 Apr 2026 00:30:16 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:116b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:35:43:65:8c:b0:32:1a:bc:4b:69:12:73:5f:14:85:b2:5f:f7:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 00:30:16 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=1da72ba1a45a054c688f7ac0aeccae22edf086a92d4a3152124511114f8e7bd3, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d3:24:04:0d:12:5d:98:59:91:2e:6e:b8:5a: 68:76:73:38:0e:df:f8:d9:4d:14:33:b7:4c:0a:b7: 7d:32:6a:5f:3f:ce:09:45:9f:9b:b8:1d:43:03:e7: ad:66:9c:c1:43:dd:84:b8:32:a8:3a:32:5f:9c:0c: 1e:83:8c:65:2d:aa:c1:ba:47:ec:45:20:88:b2:a9: 34:ae:3a:6a:fa:04:ce:41:10:36:48:0a:21:b4:17: dc:3e:73:8b:74:24:52:03:7e:df:c4:c0:6e:d3:a9: 46:4e:dc:85:d2:d7:e3:7e:25:85:84:2d:ff:63:de: 73:9b:47:15:fd:44:21:bd:0d:fe:23:d9:51:da:10: 71:6f:d1:35:e1:8a:34:73:c9:3a:5d:e4:26:34:2a: 5c:2e:57:ef:40:a2:b6:ab:a0:d5:20:ef:a6:92:f2: 39:9b:39:39:92:b4:92:5b:f3:8a:ec:66:78:59:70: e2:9e:0a:e7:e7:53:a8:bb:d1:59:f8:cd:c9:4c:44: 00:83:b4:a2:33:ff:13:ac:a1:a8:de:ef:f9:5e:28: 6f:34:37:00:97:cb:e5:bb:71:10:ab:52:c1:e5:ed: 83:de:c6:f9:57:34:bf:15:80:84:e9:38:b0:17:6c: 84:b3:65:13:25:80:77:8b:ad:f1:a5:79:80:b5:3b: a4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:87:AA:B1:24:50:59:53:14:DC:F6:7B:5F:0A:67:EB:24:18:B2:1D X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bcb9513f-1e47-4370-b762-49be596c8417.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:116b::/48 Signature Algorithm: sha256WithRSAEncryption 97:31:d2:fd:0e:dd:76:d2:9c:6b:1b:cf:80:f8:a7:52:4b:3e: 85:28:a5:37:4e:bf:bd:de:91:e2:cb:da:83:aa:7d:4a:ec:63: 15:95:53:92:ec:c3:b5:4f:1d:db:08:b1:c2:2c:e8:2a:8d:54: 9b:9e:39:30:c8:3c:57:d6:8a:eb:92:d1:05:2d:87:f6:03:2b: bc:83:2e:e1:ab:64:74:62:ac:7e:44:3f:d7:5a:6c:de:e0:f2: 8c:c6:c4:97:5d:1a:ac:ae:48:c5:f3:ba:ef:5f:13:6c:1a:c5: 43:35:a5:03:5e:b3:26:d2:02:21:87:99:79:c4:f8:6c:12:d0: 59:2b:fa:e6:7c:d3:7e:3c:fc:bd:2c:29:32:6f:4a:74:8a:46: b8:e8:2f:4b:87:3d:e5:8e:d9:5a:ea:6d:35:e4:61:52:ce:9b: 8c:8a:ed:3d:eb:73:96:d3:b3:c8:2a:8a:ae:7c:73:01:56:08: 70:92:99:c5:66:cd:c8:95:b3:92:e6:28:54:64:7f:de:1e:5b: 0a:dc:63:d5:be:fd:5b:65:06:fe:cb:3c:72:c2:52:6e:a2:df: a5:0d:83:cb:39:64:2b:3b:b4:c2:26:38:27:48:c8:04:f9:10: 21:71:e4:df:bb:b1:5c:db:af:a1:01:19:ef:37:f9:05:b9:56: 29:4d:ec:d9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKjVDZYywMhq8S2kSc18UhbJf92AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDAzMDE2WhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZGE3MmJhMWE0NWEwNTRjNjg4ZjdhYzBhZWNjYWUyMmVk ZjA4NmE5MmQ0YTMxNTIxMjQ1MTExMTRmOGU3YmQzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC00yQEDRJdmFmRLm64Wmh2czgO3/jZTRQzt0wKt30yal8/ zglFn5u4HUMD561mnMFD3YS4Mqg6Ml+cDB6DjGUtqsG6R+xFIIiyqTSuOmr6BM5B EDZICiG0F9w+c4t0JFIDft/EwG7TqUZO3IXS1+N+JYWELf9j3nObRxX9RCG9Df4j 2VHaEHFv0TXhijRzyTpd5CY0KlwuV+9AoraroNUg76aS8jmbOTmStJJb84rsZnhZ cOKeCufnU6i70Vn4zclMRACDtKIz/xOsoaje7/leKG80NwCXy+W7cRCrUsHl7YPe xvlXNL8VgITpOLAXbISzZRMlgHeLrfGleYC1O6TvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUp4eqsSRQWVMU3PZ7Xwpn6yQYsh0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JjYjk1MTNmLTFlNDctNDM3MC1iNzYyLTQ5YmU1OTZjODQxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAEWswDQYJKoZIhvcNAQELBQADggEBAJcx0v0O3XbSnGsbz4D4p1JL PoUopTdOv73ekeLL2oOqfUrsYxWVU5Lsw7VPHdsIscIs6CqNVJueOTDIPFfWiuuS 0QUth/YDK7yDLuGrZHRirH5EP9dabN7g8ozGxJddGqyuSMXzuu9fE2waxUM1pQNe sybSAiGHmXnE+GwS0Fkr+uZ80348/L0sKTJvSnSKRrjoL0uHPeWO2VrqbTXkYVLO m4yK7T3rc5bTs8gqiq58cwFWCHCSmcVmzciVs5LmKFRkf94eWwrcY9W+/VtlBv7L PHLCUm6i36UNg8s5ZCs7tMImOCdIyAT5ECFx5N+7sVzbr6EBGe83+QW5VilN7Nk= -----END CERTIFICATE-----Generated at Sun Apr 19 10:12:19 2026 by rpki-client