$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf510587-ccad-4d8c-9778-12a7447381d6.roa File: bf510587-ccad-4d8c-9778-12a7447381d6.roa (raw, json) Hash identifier: gtlU4aR+/8SuEyROdIQCH4Dry00PylgeuHbYH2+S0i8= Subject key identifier: BA:1E:96:4D:29:37:5F:86:61:73:D5:D1:A0:DD:41:11:02:45:F1:41 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 06738FB4812CA9B94772BFB78BFF2774B2708DB2 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf510587-ccad-4d8c-9778-12a7447381d6.roa Signing time: Fri 13 Feb 2026 02:00:05 +0000 ROA not before: Fri 13 Feb 2026 02:00:05 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3652::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:73:8f:b4:81:2c:a9:b9:47:72:bf:b7:8b:ff:27:74:b2:70:8d:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 02:00:05 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=52fb36aaced77308091c294e62981847c5d96218d85ae6d17db14adcbbbf543f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:38:3c:6e:3c:d5:f1:bd:83:3b:0d:96:9e:0e: 51:46:c1:f2:32:b3:d8:23:7f:dc:f2:67:78:17:2d: 84:fc:dc:5b:41:5e:85:a6:fc:89:f6:c3:69:74:74: 69:ee:28:a2:2f:2d:7e:47:cc:ca:86:e8:6a:77:bb: 3f:b6:ee:d0:b7:7d:11:2c:9a:52:68:49:df:e2:43: 37:89:23:05:20:95:a8:dc:5a:75:f0:40:7e:e2:3e: 39:16:2e:fc:dd:1f:45:75:cd:38:ef:0a:fd:76:32: c6:ca:3e:05:42:05:53:b4:f2:ca:2b:18:8d:16:7a: 8d:e7:61:1f:4d:e2:d7:6e:92:57:a2:27:b4:07:55: e9:5d:f0:5c:a2:d8:40:9d:75:67:d7:fb:5d:1f:7a: 46:c9:32:f2:db:4d:75:1e:03:c1:af:bb:d0:9d:23: e6:5b:83:f1:cf:43:b0:4b:e7:d0:fc:72:e7:06:e5: 6b:3e:bf:3c:21:99:bd:19:57:20:44:4b:c7:ea:b6: fa:d6:7c:23:58:36:a5:b5:14:68:6d:55:70:61:5a: db:6d:ee:e6:08:04:10:51:a9:75:3a:6a:fd:48:c1: 30:50:60:3b:e9:91:31:84:50:62:23:62:01:2d:f3: 0c:29:61:63:a4:4c:3c:7b:09:54:bb:37:f0:54:f5: 9c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:1E:96:4D:29:37:5F:86:61:73:D5:D1:A0:DD:41:11:02:45:F1:41 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf510587-ccad-4d8c-9778-12a7447381d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3652::/47 Signature Algorithm: sha256WithRSAEncryption 73:20:b9:ec:70:a6:08:96:b4:4d:38:77:e9:5a:12:5b:6b:b2: e8:d3:b8:58:16:d5:07:d3:ec:dd:d0:e8:e3:ab:90:36:4d:f5: 55:08:2b:4b:cc:6c:1b:4e:64:06:5b:ee:da:74:32:74:60:9b: ac:e4:22:18:85:35:4e:60:ba:4e:34:02:86:92:55:11:24:04: 57:30:6d:dd:5c:9d:f5:21:99:6f:1f:bb:7e:64:d8:7f:69:18: 11:6a:7b:f8:76:15:7d:1c:52:ee:85:88:06:33:81:9b:f5:12: 42:ff:e9:36:49:06:1b:fc:8f:53:83:f6:8f:39:70:b6:70:68: 3e:83:40:60:e6:38:67:11:8e:9d:38:8a:12:c8:25:30:34:5c: c2:82:5c:1b:fc:7c:cb:03:c2:68:d4:21:bd:c7:97:a8:75:32: 13:1d:68:fe:27:27:4d:67:6f:24:fb:c4:bb:2b:80:af:c4:c2: 52:0a:1f:5d:2a:9f:c6:6b:08:64:01:da:25:30:da:e2:8e:43: 53:79:c3:87:12:b3:9a:54:55:db:f9:94:43:05:69:9d:65:35: 1a:80:2b:e2:29:68:f0:79:4f:e6:4e:95:0d:14:b3:91:cc:9c: 5b:ef:48:ca:a0:e3:94:41:51:1a:a8:43:1a:6b:3b:7f:c9:36: 7a:ee:58:2b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBnOPtIEsqblHcr+3i/8ndLJwjbIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDIwMDA1WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmZiMzZhYWNlZDc3MzA4MDkxYzI5NGU2Mjk4MTg0N2M1 ZDk2MjE4ZDg1YWU2ZDE3ZGIxNGFkY2JiYmY1NDNmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPODxuPNXxvYM7DZaeDlFGwfIys9gjf9zyZ3gXLYT83FtB XoWm/In2w2l0dGnuKKIvLX5HzMqG6Gp3uz+27tC3fREsmlJoSd/iQzeJIwUglajc WnXwQH7iPjkWLvzdH0V1zTjvCv12MsbKPgVCBVO08sorGI0Weo3nYR9N4tduklei J7QHVeld8Fyi2ECddWfX+10fekbJMvLbTXUeA8Gvu9CdI+Zbg/HPQ7BL59D8cucG 5Ws+vzwhmb0ZVyBES8fqtvrWfCNYNqW1FGhtVXBhWttt7uYIBBBRqXU6av1IwTBQ YDvpkTGEUGIjYgEt8wwpYWOkTDx7CVS7N/BU9ZznAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuh6WTSk3X4Zhc9XRoN1BEQJF8UEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JmNTEwNTg3LWNjYWQtNGQ4Yy05Nzc4LTEyYTc0NDczODFkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANlIwDQYJKoZIhvcNAQELBQADggEBAHMguexwpgiWtE04d+laEltr sujTuFgW1QfT7N3Q6OOrkDZN9VUIK0vMbBtOZAZb7tp0MnRgm6zkIhiFNU5guk40 AoaSVREkBFcwbd1cnfUhmW8fu35k2H9pGBFqe/h2FX0cUu6FiAYzgZv1EkL/6TZJ Bhv8j1OD9o85cLZwaD6DQGDmOGcRjp04ihLIJTA0XMKCXBv8fMsDwmjUIb3Hl6h1 MhMdaP4nJ01nbyT7xLsrgK/EwlIKH10qn8ZrCGQB2iUw2uKOQ1N5w4cSs5pUVdv5 lEMFaZ1lNRqAK+IpaPB5T+ZOlQ0Us5HMnFvvSMqg45RBURqoQxprO3/JNnruWCs= -----END CERTIFICATE-----Generated at Mon Mar 2 00:10:40 2026 by rpki-client