$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bff9d830-c858-4181-bd37-e60cabdef88b.roa File: bff9d830-c858-4181-bd37-e60cabdef88b.roa (raw, json) Hash identifier: CUdZ8RcaWYs3QcqVQwcFTbedvqq+rigkG9yNl9QeJmM= Subject key identifier: 6F:57:78:DA:8F:19:9B:E1:66:72:29:42:88:3F:E8:37:C6:6C:49:3D Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3FE5FC099CB8F937B54363EB0BDE6D5E7FA05F1D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bff9d830-c858-4181-bd37-e60cabdef88b.roa Signing time: Fri 03 Apr 2026 02:00:52 +0000 ROA not before: Fri 03 Apr 2026 02:00:52 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1022::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:e5:fc:09:9c:b8:f9:37:b5:43:63:eb:0b:de:6d:5e:7f:a0:5f:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 02:00:52 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=5d033fc505a1ba6ec0546be881e595f861cc2beffd164459a0f7ff8b5855d402, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:82:14:cb:a5:19:5d:f3:0b:e5:d3:ae:ad:ce: dc:3b:15:5c:7c:77:77:07:e2:4f:43:af:3d:71:a5: 7c:b9:60:91:31:f7:84:4a:4a:af:c6:a9:8c:43:2e: bf:fa:1a:f8:6e:c5:7a:d7:23:17:3f:bf:3d:d3:c3: 52:b6:4e:79:84:1f:93:47:47:28:b1:84:3d:53:04: 59:ed:09:3c:28:76:97:13:26:a8:a8:87:0a:b4:7b: aa:ed:f8:aa:8f:3e:23:3a:d2:42:92:f1:e3:b0:46: 66:ae:2d:94:f7:36:8d:ed:70:9b:08:bd:eb:5b:12: 2e:72:97:70:ad:01:ea:9e:b7:28:41:84:7c:e1:5b: d3:d1:02:d3:48:2c:0a:54:fa:b9:87:ab:3c:4e:c5: 9d:8c:f8:40:7e:6e:a8:8f:76:64:ba:d0:e3:d5:13: 06:cc:5f:f2:73:1e:3f:86:13:15:91:72:79:87:82: 13:ed:37:0c:13:fd:fc:bf:11:21:31:0f:be:af:ae: 8a:33:e5:87:2f:0a:9f:08:70:c5:62:35:cb:0c:ce: 45:99:1e:c2:99:31:1f:a7:09:0b:73:6a:51:a6:18: 48:cb:12:6a:fe:3b:3a:fc:ed:f4:b6:57:37:de:65: 40:cb:6a:7b:8a:23:86:22:01:9b:ce:55:3e:d3:e2: 48:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:57:78:DA:8F:19:9B:E1:66:72:29:42:88:3F:E8:37:C6:6C:49:3D X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bff9d830-c858-4181-bd37-e60cabdef88b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1022::/48 Signature Algorithm: sha256WithRSAEncryption 43:78:90:7c:14:5f:e3:1c:ba:04:92:0e:0c:39:9e:3a:33:94: cc:68:f8:11:cd:c7:fe:ea:0f:b6:ef:fd:74:3b:1b:2b:15:22: 1c:f6:0d:92:5e:48:8b:9b:39:20:d6:7e:6f:d3:d8:f0:a4:09: 25:ac:21:67:2b:a9:17:1c:dc:8a:b8:a4:ba:2b:1b:95:a1:23: 6e:89:15:d3:e6:55:f4:01:88:b6:bb:2a:69:5e:ef:04:bc:6a: f8:5f:5c:9b:fa:b6:5b:73:d0:0b:26:44:85:81:3f:37:2c:d3: be:2a:1b:70:cd:c3:14:b4:3e:24:4c:a0:71:ed:8f:da:40:ba: 4b:9d:c3:d0:09:02:fd:30:af:c7:5e:02:65:9a:97:83:99:98: e4:a1:dc:87:14:5b:cf:b9:f9:85:3b:f9:2e:85:f2:df:f4:56: bc:22:84:2f:73:c3:3f:79:0d:a4:88:0e:92:37:3c:e7:3d:a3: 96:22:f6:96:48:e9:67:78:bf:2e:f7:28:88:06:25:6d:8c:53: 41:47:03:47:bf:8e:0e:3e:fe:b2:a6:82:8e:e5:ea:fe:32:b1: f0:27:88:94:e4:10:90:9e:54:5f:18:60:4b:4f:30:90:64:57: a9:c4:a5:fd:0f:6b:a7:1f:07:c3:32:e2:86:fc:cc:f2:84:a7: a3:05:bb:63 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUP+X8CZy4+Te1Q2PrC95tXn+gXx0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDIwMDUyWhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDAzM2ZjNTA1YTFiYTZlYzA1NDZiZTg4MWU1OTVmODYx Y2MyYmVmZmQxNjQ0NTlhMGY3ZmY4YjU4NTVkNDAyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCighTLpRld8wvl066tztw7FVx8d3cH4k9Drz1xpXy5YJEx 94RKSq/GqYxDLr/6GvhuxXrXIxc/vz3Tw1K2TnmEH5NHRyixhD1TBFntCTwodpcT Jqiohwq0e6rt+KqPPiM60kKS8eOwRmauLZT3No3tcJsIvetbEi5yl3CtAeqetyhB hHzhW9PRAtNILApU+rmHqzxOxZ2M+EB+bqiPdmS60OPVEwbMX/JzHj+GExWRcnmH ghPtNwwT/fy/ESExD76vrooz5YcvCp8IcMViNcsMzkWZHsKZMR+nCQtzalGmGEjL Emr+Ozr87fS2VzfeZUDLanuKI4YiAZvOVT7T4kgNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUb1d42o8Zm+FmcilCiD/oN8ZsST0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JmZjlkODMwLWM4NTgtNDE4MS1iZDM3LWU2MGNhYmRlZjg4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAECIwDQYJKoZIhvcNAQELBQADggEBAEN4kHwUX+McugSSDgw5njoz lMxo+BHNx/7qD7bv/XQ7GysVIhz2DZJeSIubOSDWfm/T2PCkCSWsIWcrqRcc3Iq4 pLorG5WhI26JFdPmVfQBiLa7Kmle7wS8avhfXJv6tltz0AsmRIWBPzcs074qG3DN wxS0PiRMoHHtj9pAukudw9AJAv0wr8deAmWal4OZmOSh3IcUW8+5+YU7+S6F8t/0 VrwihC9zwz95DaSIDpI3POc9o5Yi9pZI6Wd4vy73KIgGJW2MU0FHA0e/jg4+/rKm go7l6v4ysfAniJTkEJCeVF8YYEtPMJBkV6nEpf0Pa6cfB8My4ob8zPKEp6MFu2M= -----END CERTIFICATE-----Generated at Fri Apr 17 06:01:14 2026 by rpki-client