$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bee09d7f-dd01-4e89-ae26-f506592c86dc.roa File: bee09d7f-dd01-4e89-ae26-f506592c86dc.roa (raw, json) Hash identifier: wKMtXE2JFJuwZfrasd7EtfvYQYtfNcCNxc43FRIzIwc= Subject key identifier: 13:3A:1A:32:57:B9:38:EA:3D:7A:15:55:58:01:F0:DD:6B:CC:FA:22 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4A24A547E81191F210FA21F954D37409BE50084C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bee09d7f-dd01-4e89-ae26-f506592c86dc.roa Signing time: Fri 03 Apr 2026 00:41:23 +0000 ROA not before: Fri 03 Apr 2026 00:41:23 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1237::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:24:a5:47:e8:11:91:f2:10:fa:21:f9:54:d3:74:09:be:50:08:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 00:41:23 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=ca8bd3f9e36defcfc8e15d877902bef174a2fee3038dc9569136890e91ee8f98, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3f:5e:7e:a3:7f:dc:c6:20:26:66:db:c0:5f: 9c:43:06:7a:c8:d9:fc:be:32:6f:1b:03:f2:ef:1c: 20:d5:c7:22:68:57:91:ca:9e:a3:82:83:ad:b6:b6: dd:9f:f6:3d:6b:2d:73:16:67:93:d0:e1:25:f2:36: 75:b8:82:72:0f:d4:af:84:98:06:43:da:ce:48:04: 53:a5:d0:44:3c:33:8e:92:1e:03:4e:49:54:73:89: 46:53:d3:94:d5:ad:3f:51:8a:e6:b8:83:f4:9c:09: 27:e2:48:d6:a5:91:17:a2:ec:07:55:16:e1:69:b2: 15:57:42:e8:aa:fc:ae:7e:81:7e:ad:ba:47:c8:b5: 6a:9d:b4:d0:af:08:38:b8:95:77:f8:7a:54:3b:38: c4:e5:f8:23:aa:e0:bf:ee:57:d3:aa:7d:cf:52:ac: 13:10:e9:7d:27:67:76:9f:21:c4:e6:21:93:b8:69: 56:56:9d:11:de:77:01:f8:ee:8c:02:60:c6:4b:ca: 3c:a1:be:43:e8:70:b5:af:e3:2e:ab:47:78:da:17: 49:74:08:c7:c4:99:bc:e8:01:33:46:4b:75:d2:5a: dc:e7:d9:5a:bb:2a:21:16:a3:c1:d9:2f:ee:ad:38: 00:b7:d8:74:f5:be:5c:56:78:a8:fc:f7:a9:be:40: c7:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:3A:1A:32:57:B9:38:EA:3D:7A:15:55:58:01:F0:DD:6B:CC:FA:22 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bee09d7f-dd01-4e89-ae26-f506592c86dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1237::/48 Signature Algorithm: sha256WithRSAEncryption bb:ec:58:24:00:6b:39:a5:ea:b8:7a:6c:78:56:2b:ec:38:33: e5:6d:6e:ca:1d:26:35:97:f2:b4:93:2a:7b:f7:18:15:2d:79: 9c:0f:06:4e:53:a4:34:e6:18:51:e8:ee:38:f2:bd:62:a1:5d: 1f:6d:c4:61:48:b3:2c:8a:f4:1a:b3:c9:3b:2a:47:5e:e3:75: a3:c9:ad:36:c4:59:42:bd:01:cf:45:13:c8:81:6a:91:d6:b8: ad:ed:ad:17:66:10:1f:91:16:b9:60:0a:6b:98:75:e4:aa:08: 93:2d:20:35:c3:62:6a:77:ec:4e:5a:34:8c:5d:07:81:a0:a5: 0b:96:57:70:4a:ac:46:29:55:fd:17:a1:35:18:a3:00:0a:0c: aa:14:15:22:a7:cd:05:6a:31:08:a7:e6:8a:7a:ea:0c:36:6f: d1:f6:c7:b7:d6:30:32:20:46:d4:8f:51:7f:64:5f:87:3a:2f: 61:58:cf:6c:ec:ba:d3:ff:f9:e3:ee:64:5c:86:be:08:ca:0a: 2d:73:48:eb:b2:c8:69:f1:cb:45:18:88:2d:64:b7:4f:f3:72: ff:0c:be:6b:b6:ef:16:6b:3e:78:c9:c6:db:96:ec:63:77:e8: 9f:d2:1e:ca:fb:c3:c2:c7:56:d9:98:c1:1f:06:d2:cd:8c:c5: 29:ea:41:6e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSiSlR+gRkfIQ+iH5VNN0Cb5QCEwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDA0MTIzWhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYThiZDNmOWUzNmRlZmNmYzhlMTVkODc3OTAyYmVmMTc0 YTJmZWUzMDM4ZGM5NTY5MTM2ODkwZTkxZWU4Zjk4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLP15+o3/cxiAmZtvAX5xDBnrI2fy+Mm8bA/LvHCDVxyJo V5HKnqOCg622tt2f9j1rLXMWZ5PQ4SXyNnW4gnIP1K+EmAZD2s5IBFOl0EQ8M46S HgNOSVRziUZT05TVrT9Riua4g/ScCSfiSNalkRei7AdVFuFpshVXQuiq/K5+gX6t ukfItWqdtNCvCDi4lXf4elQ7OMTl+COq4L/uV9Oqfc9SrBMQ6X0nZ3afIcTmIZO4 aVZWnRHedwH47owCYMZLyjyhvkPocLWv4y6rR3jaF0l0CMfEmbzoATNGS3XSWtzn 2Vq7KiEWo8HZL+6tOAC32HT1vlxWeKj896m+QMdZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEzoaMle5OOo9ehVVWAHw3WvM+iIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JlZTA5ZDdmLWRkMDEtNGU4OS1hZTI2LWY1MDY1OTJjODZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAEjcwDQYJKoZIhvcNAQELBQADggEBALvsWCQAazml6rh6bHhWK+w4 M+VtbsodJjWX8rSTKnv3GBUteZwPBk5TpDTmGFHo7jjyvWKhXR9txGFIsyyK9Bqz yTsqR17jdaPJrTbEWUK9Ac9FE8iBapHWuK3trRdmEB+RFrlgCmuYdeSqCJMtIDXD Ymp37E5aNIxdB4GgpQuWV3BKrEYpVf0XoTUYowAKDKoUFSKnzQVqMQin5op66gw2 b9H2x7fWMDIgRtSPUX9kX4c6L2FYz2zsutP/+ePuZFyGvgjKCi1zSOuyyGnxy0UY iC1kt0/zcv8Mvmu27xZrPnjJxtuW7GN36J/SHsr7w8LHVtmYwR8G0s2MxSnqQW4= -----END CERTIFICATE-----Generated at Fri Apr 17 06:29:24 2026 by rpki-client