$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cdd25054-12ea-482a-9efc-fa478ada649f.roa File: cdd25054-12ea-482a-9efc-fa478ada649f.roa (raw, json) Hash identifier: 11mAdholiQIke7ZzdtQSAkDlqE1tT/cwFEj2iEShi2w= Subject key identifier: 86:42:CF:3A:24:AC:C1:8F:DC:C5:06:E2:99:8F:94:D7:62:A3:9F:30 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 15443C21D3EF0B386D46AEC3693B92F6C95BB63D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cdd25054-12ea-482a-9efc-fa478ada649f.roa Signing time: Fri 13 Feb 2026 09:20:13 +0000 ROA not before: Fri 13 Feb 2026 09:20:13 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3fc0::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:44:3c:21:d3:ef:0b:38:6d:46:ae:c3:69:3b:92:f6:c9:5b:b6:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 09:20:13 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=a1667aa250296ab4685b9f9f12b11af6303ecc31171270941333971991a380d2, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:24:72:ad:43:ca:1d:df:cd:ea:e0:77:6c:5c: bb:33:be:26:88:0c:02:04:0b:58:7d:23:c1:77:84: fc:cb:c7:06:70:af:12:ad:24:68:d3:bb:bf:c4:11: b7:3f:c2:20:6c:2d:44:2d:64:fb:82:59:3e:83:6e: df:bc:74:3b:f3:50:6b:f8:69:2b:03:be:0a:cc:b7: 97:53:2b:3b:8c:09:63:a5:e4:95:5b:53:68:6a:0f: 1a:6e:fb:79:4b:7d:55:08:51:d2:72:4c:62:aa:00: 0a:f7:a2:8e:29:70:5f:97:96:c5:6a:83:15:65:03: 26:1f:ab:0e:bc:5e:e6:e4:25:a1:c5:22:c3:e9:24: d6:fd:e6:99:bf:7a:4f:f9:e5:de:2f:7e:dd:2f:80: ae:00:5e:45:b0:ba:0e:2e:27:6d:9d:0e:5b:00:6f: 68:c8:a0:cd:24:59:91:e8:f6:d4:7d:53:9d:76:f0: be:b3:b5:6d:4e:9e:ab:e5:12:46:1f:56:9e:af:26: 4b:cb:77:76:6f:f0:b5:59:8c:65:b5:2a:41:f2:36: 59:62:3e:52:c8:70:92:06:b6:2c:5b:c9:13:02:4f: 6f:ef:4f:64:ca:47:18:4f:28:ee:f2:bd:c6:76:fc: 98:ca:04:7d:1b:e3:e9:bd:85:45:94:c0:38:9f:96: 48:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:42:CF:3A:24:AC:C1:8F:DC:C5:06:E2:99:8F:94:D7:62:A3:9F:30 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cdd25054-12ea-482a-9efc-fa478ada649f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3fc0::/42 Signature Algorithm: sha256WithRSAEncryption 86:ab:b5:06:ad:84:f7:ec:6b:ee:3a:84:cc:91:f4:c2:ae:b9: 76:5b:86:5f:e8:71:bb:7c:a7:2c:d1:ea:33:15:ed:1d:29:0b: 74:37:7e:8e:50:6a:cd:b1:a2:a6:b7:80:d1:61:2d:70:f3:94: 1e:4e:a9:80:71:bc:03:20:b1:9b:36:99:80:4c:f8:81:50:03: b6:b7:64:eb:2c:74:0b:44:36:49:eb:30:94:ea:ae:a9:20:16: a2:a7:0c:50:70:b8:1e:d5:bb:d7:16:65:d8:83:ae:98:b6:ba: 27:17:05:b9:a7:1e:9d:60:c9:bc:c7:ed:ef:36:08:9d:fd:e3: d6:a3:56:2c:32:6c:76:d7:fa:fa:99:34:76:aa:a2:00:a2:52: ca:72:6f:73:ca:3e:67:1a:34:73:79:35:86:7d:ff:20:b0:e2: 31:d5:15:76:55:5d:53:9f:86:2a:9d:92:83:99:c0:6c:e8:1c: 32:ff:f7:1e:14:08:5a:11:b7:73:95:79:4a:e5:cc:c0:f0:b9: 00:89:eb:f4:86:b4:37:c4:52:63:84:57:d1:08:5c:af:44:ca: d1:78:a7:a4:e7:11:9c:3b:b8:b6:8f:bf:a5:86:12:51:45:56: fd:82:dc:29:bb:a4:69:d3:64:ca:0e:d1:da:2c:c5:31:3b:a7: 05:5d:b4:f4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFUQ8IdPvCzhtRq7DaTuS9slbtj0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDkyMDEzWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTY2N2FhMjUwMjk2YWI0Njg1YjlmOWYxMmIxMWFmNjMw M2VjYzMxMTcxMjcwOTQxMzMzOTcxOTkxYTM4MGQyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAJHKtQ8od383q4HdsXLszviaIDAIEC1h9I8F3hPzLxwZw rxKtJGjTu7/EEbc/wiBsLUQtZPuCWT6Dbt+8dDvzUGv4aSsDvgrMt5dTKzuMCWOl 5JVbU2hqDxpu+3lLfVUIUdJyTGKqAAr3oo4pcF+XlsVqgxVlAyYfqw68XubkJaHF IsPpJNb95pm/ek/55d4vft0vgK4AXkWwug4uJ22dDlsAb2jIoM0kWZHo9tR9U512 8L6ztW1OnqvlEkYfVp6vJkvLd3Zv8LVZjGW1KkHyNlliPlLIcJIGtixbyRMCT2/v T2TKRxhPKO7yvcZ2/JjKBH0b4+m9hUWUwDiflkirAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhkLPOiSswY/cxQbimY+U12KjnzAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2NkZDI1MDU0LTEyZWEtNDgyYS05ZWZjLWZhNDc4YWRhNjQ5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAJAAP8AwDQYJKoZIhvcNAQELBQADggEBAIartQathPfsa+46hMyR9MKu uXZbhl/ocbt8pyzR6jMV7R0pC3Q3fo5Qas2xoqa3gNFhLXDzlB5OqYBxvAMgsZs2 mYBM+IFQA7a3ZOssdAtENknrMJTqrqkgFqKnDFBwuB7Vu9cWZdiDrpi2uicXBbmn Hp1gybzH7e82CJ3949ajViwybHbX+vqZNHaqogCiUspyb3PKPmcaNHN5NYZ9/yCw 4jHVFXZVXVOfhiqdkoOZwGzoHDL/9x4UCFoRt3OVeUrlzMDwuQCJ6/SGtDfEUmOE V9EIXK9EytF4p6TnEZw7uLaPv6WGElFFVv2C3Cm7pGnTZMoO0dosxTE7pwVdtPQ= -----END CERTIFICATE-----Generated at Mon Mar 2 10:37:19 2026 by rpki-client