$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf0cd320-9336-422a-a574-f0a11560488c.roa File: bf0cd320-9336-422a-a574-f0a11560488c.roa (raw, json) Hash identifier: oLzwHXGCGdBYIzKrk5l6ED9Q50IskAAMPywipWWxadw= Subject key identifier: 40:26:22:C7:64:3B:E7:AB:69:B3:FF:1F:4B:B1:4B:33:D7:13:B6:A8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 42F673E1B38169844674714A39AABE5106CDE289 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf0cd320-9336-422a-a574-f0a11560488c.roa Signing time: Fri 13 Feb 2026 07:30:11 +0000 ROA not before: Fri 13 Feb 2026 07:30:11 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3d8c::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:f6:73:e1:b3:81:69:84:46:74:71:4a:39:aa:be:51:06:cd:e2:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 07:30:11 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=dedfa7cecb8144278fb8beb5cb1ca4c3132040c43461ebc4d515fa01776c729c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cd:7a:37:c6:fd:c0:4e:16:ec:77:b2:ea:11: 6c:5d:ef:df:fb:7f:a8:12:b9:df:12:8b:8c:a3:05: 34:e6:1b:fb:3f:99:05:51:15:59:fd:36:33:3c:ec: bc:9c:32:50:be:ee:89:47:e0:b7:b7:2a:b8:39:69: 5d:11:c2:a3:55:d7:2f:54:80:47:2a:23:45:be:aa: cf:83:c0:f4:5d:f2:10:42:44:dd:f2:31:25:68:53: 7c:ff:86:b9:ed:df:b7:53:d0:ba:40:ab:1f:10:f8: e2:88:4e:46:45:02:06:78:59:c1:4a:95:4a:b7:43: 35:dc:44:75:52:9a:c6:a3:31:9c:fc:50:c0:8e:64: 26:af:7d:38:be:d7:1c:4a:33:65:00:fd:78:69:9b: 64:15:8a:69:d6:70:3e:d9:15:c0:b1:21:c6:5a:a0: 38:b0:8b:b8:bb:ee:be:d2:da:ee:ca:5f:bb:cf:4a: 39:e4:11:d5:e2:86:b2:5f:73:6d:21:d7:23:f6:90: 8a:16:0e:9f:b7:a1:e1:34:06:ed:f2:7e:d0:87:88: 25:8f:c7:e8:22:74:7a:ba:7d:38:6b:0e:ef:a9:aa: a5:f6:72:ef:3e:6f:c0:5a:ad:4b:a8:ca:a7:b9:15: 54:86:35:01:49:b8:99:6c:e0:6d:74:fe:1a:2d:03: a8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:26:22:C7:64:3B:E7:AB:69:B3:FF:1F:4B:B1:4B:33:D7:13:B6:A8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf0cd320-9336-422a-a574-f0a11560488c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3d8c::/46 Signature Algorithm: sha256WithRSAEncryption 86:29:62:cd:7d:d7:76:23:9a:25:5b:a3:7c:4d:62:fe:6f:56: c3:39:8d:a8:0e:9c:34:ab:67:aa:46:bb:9e:01:46:5b:93:38: b1:08:97:51:81:17:69:85:81:b4:cd:55:90:ab:12:1d:73:67: 0f:6a:79:99:81:3f:c3:a7:f0:f2:ca:5c:ef:1e:3f:24:ea:13: fe:3e:a2:2d:87:f9:04:15:7e:b0:ec:4f:3d:00:46:4e:16:30: 46:e8:fa:00:e9:73:03:d0:a2:58:08:2f:89:46:07:92:d6:7c: df:c7:d4:33:3e:f0:8b:0f:fe:f1:55:09:c1:13:5a:c6:5f:93: c6:1b:17:10:0f:f2:29:0a:b0:94:22:e3:df:55:40:28:17:3c: db:82:ec:64:a0:1e:6c:a8:5b:bd:f5:a1:18:a4:99:51:2e:6b: 01:2e:4a:df:30:03:50:b5:9b:4c:36:6e:a4:98:a2:e4:df:81: 20:aa:21:de:5e:bd:7e:90:39:6b:fe:3d:e9:50:6d:16:cb:b8: dd:40:d3:53:d0:af:da:9c:39:1e:36:9f:cc:f8:3a:32:90:a8: 05:2a:d9:46:50:15:cf:28:91:a3:1b:84:6b:e9:49:65:3c:d1: 8b:ac:37:46:f7:b0:9e:da:cc:73:46:5a:8c:cb:4c:1c:82:15: 47:e8:c7:d3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQvZz4bOBaYRGdHFKOaq+UQbN4okwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDczMDExWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWRmYTdjZWNiODE0NDI3OGZiOGJlYjVjYjFjYTRjMzEz MjA0MGM0MzQ2MWViYzRkNTE1ZmEwMTc3NmM3MjljMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrzXo3xv3AThbsd7LqEWxd79/7f6gSud8Si4yjBTTmG/s/ mQVRFVn9NjM87LycMlC+7olH4Le3Krg5aV0RwqNV1y9UgEcqI0W+qs+DwPRd8hBC RN3yMSVoU3z/hrnt37dT0LpAqx8Q+OKITkZFAgZ4WcFKlUq3QzXcRHVSmsajMZz8 UMCOZCavfTi+1xxKM2UA/Xhpm2QVimnWcD7ZFcCxIcZaoDiwi7i77r7S2u7KX7vP SjnkEdXihrJfc20h1yP2kIoWDp+3oeE0Bu3yftCHiCWPx+gidHq6fThrDu+pqqX2 cu8+b8BarUuoyqe5FVSGNQFJuJls4G10/hotA6jjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQCYix2Q756tps/8fS7FLM9cTtqgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JmMGNkMzIwLTkzMzYtNDIyYS1hNTc0LWYwYTExNTYwNDg4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAPYwwDQYJKoZIhvcNAQELBQADggEBAIYpYs1913YjmiVbo3xNYv5v VsM5jagOnDSrZ6pGu54BRluTOLEIl1GBF2mFgbTNVZCrEh1zZw9qeZmBP8On8PLK XO8ePyTqE/4+oi2H+QQVfrDsTz0ARk4WMEbo+gDpcwPQolgIL4lGB5LWfN/H1DM+ 8IsP/vFVCcETWsZfk8YbFxAP8ikKsJQi499VQCgXPNuC7GSgHmyoW731oRikmVEu awEuSt8wA1C1m0w2bqSYouTfgSCqId5evX6QOWv+PelQbRbLuN1A01PQr9qcOR42 n8z4OjKQqAUq2UZQFc8okaMbhGvpSWU80YusN0b3sJ7azHNGWozLTByCFUfox9M= -----END CERTIFICATE-----Generated at Sun Mar 1 22:34:05 2026 by rpki-client