$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf78ba01-9a21-44c2-ad49-811d7ac34bdb.roa File: bf78ba01-9a21-44c2-ad49-811d7ac34bdb.roa (raw, json) Hash identifier: u+Db5+WWCTRS6TJiekbBW2+GrmDtEo5QsSAxfW5guko= Subject key identifier: FF:4C:2D:70:3E:A2:13:32:7E:7F:56:A0:1C:18:CE:9C:14:D4:32:39 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 76BE799561146D395E8010034CB8A2A9F5B29815 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf78ba01-9a21-44c2-ad49-811d7ac34bdb.roa Signing time: Thu 12 Feb 2026 00:11:20 +0000 ROA not before: Thu 12 Feb 2026 00:11:20 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2e6c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:be:79:95:61:14:6d:39:5e:80:10:03:4c:b8:a2:a9:f5:b2:98:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 00:11:20 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=e461526ce639a2522ff2e74de7ac9c915f46411fff4d9a0bd2c5be4f04f447db, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ae:d4:0b:cd:59:b4:a0:b0:5a:57:76:52:02: 7a:b8:f5:c3:47:a4:cf:3e:ea:41:2f:7e:df:81:65: 99:43:1e:a1:54:f6:64:10:b3:97:a3:2a:f8:d1:35: 33:cb:67:ef:ff:87:59:7c:2b:35:d0:93:84:2a:85: 35:f3:62:50:a5:1c:74:87:4e:85:13:d8:5b:6e:b9: 17:df:80:20:4d:22:0d:c4:35:41:ea:c5:14:a4:31: 89:39:85:34:07:fe:53:b2:b9:f7:30:2f:5b:ea:0b: b4:4e:ea:05:68:70:53:da:0d:96:9d:fc:a8:75:37: 8e:b4:76:d3:7b:78:1f:f9:d5:7a:5c:79:29:1b:ce: 93:b9:76:2d:b1:f1:b5:52:11:61:46:40:cc:0a:de: d6:4f:96:61:97:12:22:8b:89:5e:4c:f7:cc:6c:0e: 3b:c0:89:81:19:7e:46:71:b1:4b:14:d3:e1:95:a1: 24:b6:2a:73:ce:ea:f9:14:ee:5c:a8:1c:7c:08:82: 90:dc:ad:48:80:2f:3c:f3:f7:36:03:51:7e:4f:4e: 88:f4:01:83:77:eb:cf:b0:5e:9a:97:1c:61:5f:9a: de:06:d1:af:50:f9:bc:f0:2a:de:be:d9:d1:ea:82: 47:89:18:f6:77:43:78:fe:14:34:02:86:e8:0a:35: 49:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:4C:2D:70:3E:A2:13:32:7E:7F:56:A0:1C:18:CE:9C:14:D4:32:39 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf78ba01-9a21-44c2-ad49-811d7ac34bdb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2e6c::/47 Signature Algorithm: sha256WithRSAEncryption 83:1e:9c:db:1f:08:a5:bf:8d:c9:4a:c3:87:36:da:c6:b9:a6: 7a:a3:12:71:4b:9d:ad:d4:f5:88:9f:ae:82:f9:14:b2:ef:c8: 32:38:20:cd:f4:f6:e0:73:41:92:d1:c7:db:bb:fb:1e:0a:28: d1:e8:71:79:12:c3:55:11:39:79:05:6b:4e:4c:92:dd:fe:99: 33:5a:e7:49:39:52:16:a5:81:fb:8b:a6:2f:3b:6f:94:16:30: b8:d2:cf:83:05:48:b5:a8:40:7a:43:f1:32:14:83:5b:ef:9c: ab:12:c7:a9:e0:19:57:56:db:3d:ea:dc:03:28:9b:01:71:85: b5:8f:e0:b2:01:b8:77:f4:38:73:86:3e:0f:3e:ea:1c:ff:92: 61:91:1f:fc:59:02:bf:bd:d9:dc:ad:fa:f7:1a:64:5e:27:b1: ff:a9:08:df:e0:86:fa:2d:7c:7a:a2:cd:42:cd:ae:1d:c8:87: 88:97:f1:0d:89:96:ba:e0:86:bd:bb:12:0f:1d:1e:0b:bf:47: bb:54:19:6f:0e:7f:78:76:f4:f3:6b:d1:e9:30:51:b3:c3:16: e6:43:b5:c6:ae:69:56:6b:09:ca:6c:fb:fc:bd:75:a5:79:c2: 18:72:3c:06:8c:21:62:cd:6a:66:68:a7:33:5a:d1:53:37:d8: 4a:ee:11:ed -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdr55lWEUbTlegBADTLiiqfWymBUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDAxMTIwWhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNDYxNTI2Y2U2MzlhMjUyMmZmMmU3NGRlN2FjOWM5MTVm NDY0MTFmZmY0ZDlhMGJkMmM1YmU0ZjA0ZjQ0N2RiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZrtQLzVm0oLBaV3ZSAnq49cNHpM8+6kEvft+BZZlDHqFU 9mQQs5ejKvjRNTPLZ+//h1l8KzXQk4QqhTXzYlClHHSHToUT2FtuuRffgCBNIg3E NUHqxRSkMYk5hTQH/lOyufcwL1vqC7RO6gVocFPaDZad/Kh1N460dtN7eB/51Xpc eSkbzpO5di2x8bVSEWFGQMwK3tZPlmGXEiKLiV5M98xsDjvAiYEZfkZxsUsU0+GV oSS2KnPO6vkU7lyoHHwIgpDcrUiALzzz9zYDUX5PToj0AYN368+wXpqXHGFfmt4G 0a9Q+bzwKt6+2dHqgkeJGPZ3Q3j+FDQChugKNUmFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/0wtcD6iEzJ+f1agHBjOnBTUMjkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JmNzhiYTAxLTlhMjEtNDRjMi1hZDQ5LTgxMWQ3YWMzNGJkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALmwwDQYJKoZIhvcNAQELBQADggEBAIMenNsfCKW/jclKw4c22sa5 pnqjEnFLna3U9YifroL5FLLvyDI4IM309uBzQZLRx9u7+x4KKNHocXkSw1UROXkF a05Mkt3+mTNa50k5UhalgfuLpi87b5QWMLjSz4MFSLWoQHpD8TIUg1vvnKsSx6ng GVdW2z3q3AMomwFxhbWP4LIBuHf0OHOGPg8+6hz/kmGRH/xZAr+92dyt+vcaZF4n sf+pCN/ghvotfHqizULNrh3Ih4iX8Q2Jlrrghr27Eg8dHgu/R7tUGW8Of3h29PNr 0ekwUbPDFuZDtcauaVZrCcps+/y9daV5whhyPAaMIWLNamZopzNa0VM32EruEe0= -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:20 2026 by rpki-client