$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf45ca66-aede-4d9b-b87e-a247db447316.roa File: bf45ca66-aede-4d9b-b87e-a247db447316.roa (raw, json) Hash identifier: zMC0D6S03WP75U/2Nua8KHaTPuRXtK1Yhs8icaMEQCY= Subject key identifier: 14:A6:4E:9C:77:1C:CD:D5:DF:34:1B:48:42:F8:FD:D7:78:D2:A2:6F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 131BCFE10C39806D765F92B69B9A96D1546DF7F1 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf45ca66-aede-4d9b-b87e-a247db447316.roa Signing time: Fri 13 Feb 2026 08:00:04 +0000 ROA not before: Fri 13 Feb 2026 08:00:04 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3fce::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:1b:cf:e1:0c:39:80:6d:76:5f:92:b6:9b:9a:96:d1:54:6d:f7:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 08:00:04 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=4b71461fc5c65000cdd6c6bdced891f61193c53b8d331cbb5349a1782cc520b0, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9d:f1:0b:5e:e9:48:51:d8:ae:57:9b:c0:08: 3e:4c:e0:c5:b8:73:cf:84:de:1d:f3:6f:6f:92:c9: 29:ec:0d:a7:84:b9:47:f6:d5:3f:b1:9b:a5:78:3a: 01:99:70:fd:ae:b0:dc:41:30:83:ae:f6:9a:6b:6a: 13:50:1b:61:c9:06:e2:f7:f8:73:a8:13:4f:cd:a7: b7:16:da:16:da:ac:c9:26:dd:b6:db:20:ac:b7:d9: 47:8f:a1:74:67:38:75:7f:62:44:86:74:d2:5d:58: 38:24:94:a9:2b:46:ea:a7:0c:10:66:2b:a6:4f:fb: ef:36:f8:2a:0b:d0:26:e7:2d:cf:b0:1d:d5:28:2c: 66:a0:30:8c:60:b4:f0:e6:c7:5d:9f:4b:55:60:bf: 32:05:e7:90:2f:b6:c8:e1:92:19:29:e3:5d:b9:d8: 30:45:80:25:ac:fd:2d:5a:95:23:0b:2b:7b:68:32: 31:9a:1b:b5:a5:1a:01:ca:67:84:e8:c5:30:c8:b7: 79:2b:8e:03:66:cf:6e:14:8e:fa:6b:43:9a:21:cc: b0:26:78:fd:f2:98:c8:8d:9c:ea:2c:05:86:05:2d: d5:68:5e:b4:34:de:4b:b9:31:95:ca:18:71:49:ed: 8e:d6:dc:6e:de:40:f9:ce:24:f5:56:28:23:ba:61: 7e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A6:4E:9C:77:1C:CD:D5:DF:34:1B:48:42:F8:FD:D7:78:D2:A2:6F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf45ca66-aede-4d9b-b87e-a247db447316.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3fce::/47 Signature Algorithm: sha256WithRSAEncryption 88:55:cd:34:82:94:3e:ce:ac:76:76:53:73:2e:11:8d:11:64: a9:7a:59:81:bd:3b:85:48:ef:5d:8d:10:0f:43:2f:19:3b:03: 0b:59:06:6b:a5:9f:19:2f:fc:e1:2d:d4:60:0d:26:15:75:40: ea:4f:ba:06:67:bb:30:d7:bc:8b:d8:8e:fe:82:20:47:0a:ab: ce:77:5f:b4:87:d2:5d:91:22:58:1e:a3:11:07:ad:e4:1b:a0: 3c:27:46:64:4f:d4:1f:24:bc:a9:36:43:49:bb:75:2b:5b:0a: 7a:2c:6a:78:ce:59:5e:d3:68:30:ef:31:39:57:c6:b1:d0:01: 48:6b:cd:87:f9:47:33:ee:72:42:85:ae:76:a5:9c:e4:39:22: 97:37:44:dc:f3:15:d3:38:fd:b2:c3:16:be:bf:4e:df:2f:f3: c4:11:de:9d:fb:ba:09:19:d8:47:3c:f6:7d:4c:c9:47:ab:8f: 40:25:9b:6e:63:e0:70:e0:05:1f:79:1e:d1:e3:0f:98:f8:bc: 95:fd:14:96:71:51:f3:ca:9e:27:46:6a:dc:d2:36:5b:65:8c: 28:b1:d0:1c:30:a0:50:2e:ba:c3:8a:c5:33:5b:93:c6:66:74: 7d:b3:28:3a:20:24:e1:1c:7b:88:fc:09:fd:bf:4d:88:8a:23: 36:b6:b9:82 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUExvP4Qw5gG12X5K2m5qW0VRt9/EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDgwMDA0WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjcxNDYxZmM1YzY1MDAwY2RkNmM2YmRjZWQ4OTFmNjEx OTNjNTNiOGQzMzFjYmI1MzQ5YTE3ODJjYzUyMGIwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJnfELXulIUdiuV5vACD5M4MW4c8+E3h3zb2+SySnsDaeE uUf21T+xm6V4OgGZcP2usNxBMIOu9pprahNQG2HJBuL3+HOoE0/Np7cW2hbarMkm 3bbbIKy32UePoXRnOHV/YkSGdNJdWDgklKkrRuqnDBBmK6ZP++82+CoL0CbnLc+w HdUoLGagMIxgtPDmx12fS1VgvzIF55Avtsjhkhkp41252DBFgCWs/S1alSMLK3to MjGaG7WlGgHKZ4ToxTDIt3krjgNmz24UjvprQ5ohzLAmeP3ymMiNnOosBYYFLdVo XrQ03ku5MZXKGHFJ7Y7W3G7eQPnOJPVWKCO6YX41AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFKZOnHcczdXfNBtIQvj913jSom8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JmNDVjYTY2LWFlZGUtNGQ5Yi1iODdlLWEyNDdkYjQ0NzMxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAP84wDQYJKoZIhvcNAQELBQADggEBAIhVzTSClD7OrHZ2U3MuEY0R ZKl6WYG9O4VI712NEA9DLxk7AwtZBmulnxkv/OEt1GANJhV1QOpPugZnuzDXvIvY jv6CIEcKq853X7SH0l2RIlgeoxEHreQboDwnRmRP1B8kvKk2Q0m7dStbCnosanjO WV7TaDDvMTlXxrHQAUhrzYf5RzPuckKFrnalnOQ5Ipc3RNzzFdM4/bLDFr6/Tt8v 88QR3p37ugkZ2Ec89n1MyUerj0Alm25j4HDgBR95HtHjD5j4vJX9FJZxUfPKnidG atzSNltljCix0BwwoFAuusOKxTNbk8ZmdH2zKDogJOEce4j8Cf2/TYiKIza2uYI= -----END CERTIFICATE-----Generated at Sun Mar 1 23:49:12 2026 by rpki-client