$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cee4174d-4172-43cc-a512-29404e9416d3.roa File: cee4174d-4172-43cc-a512-29404e9416d3.roa (raw, json) Hash identifier: u8IUezkq89/bcZULZAQnsF3Tg7Q211v+iP9zoC+N2Gw= Subject key identifier: A3:0B:6A:00:47:FA:90:51:37:9F:D6:9A:AA:22:D7:86:D7:7F:40:17 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0DEF77742BC5EB545D2BDC7441EA0038EC327BFD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cee4174d-4172-43cc-a512-29404e9416d3.roa Signing time: Fri 13 Feb 2026 12:21:32 +0000 ROA not before: Fri 13 Feb 2026 12:21:32 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3900::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:ef:77:74:2b:c5:eb:54:5d:2b:dc:74:41:ea:00:38:ec:32:7b:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 12:21:32 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=aac58fc65f91926f172064a1138b2b70f1a480c7d1ee72029ea0f1dff2805c41, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:30:15:38:79:44:3e:cc:46:12:e5:32:20:57: 2c:10:e4:80:1d:bd:61:19:79:a2:56:62:69:a8:54: 4a:2b:2e:9a:3c:d5:ef:90:3c:0c:71:c5:93:98:ac: be:aa:c5:ea:63:ab:aa:d0:f7:99:2b:84:79:6c:3e: 75:1a:4a:dc:b0:e1:c9:30:8b:1a:4a:51:5e:ca:f6: 86:bd:cb:73:65:d4:4d:87:e0:54:bd:92:2a:34:19: db:75:79:7a:59:7c:4b:83:81:1b:7d:6a:a4:70:ba: 57:e9:97:48:38:ba:5f:ca:04:6b:14:09:b6:04:7d: 50:36:e9:db:64:90:ad:eb:09:e7:0d:7a:f6:53:3a: b6:b0:70:02:b1:0e:aa:f7:95:b7:c5:e0:7d:67:1b: 7d:06:b0:13:c0:86:f5:5a:8b:fc:fe:34:88:92:b5: a7:c6:f4:f3:14:de:4f:8e:5f:38:e0:69:f1:23:5a: 1f:2a:11:d1:a9:34:e2:a1:11:97:29:8c:bb:30:52: 61:85:ff:85:7b:9a:98:fb:71:51:21:fd:08:72:c0: 58:36:95:44:b4:2b:6e:6e:60:1d:d8:ee:2a:9c:20: 2a:49:48:2c:c8:da:a9:37:f4:b7:c2:8d:56:28:4a: 68:ef:99:68:08:d0:e2:a5:57:f3:3d:1d:81:ad:da: 70:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:0B:6A:00:47:FA:90:51:37:9F:D6:9A:AA:22:D7:86:D7:7F:40:17 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cee4174d-4172-43cc-a512-29404e9416d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3900::/46 Signature Algorithm: sha256WithRSAEncryption 2a:b9:78:3a:76:cf:dc:8f:7a:28:49:39:aa:86:f4:c0:51:64: 9a:fc:95:a4:44:bb:ba:fa:57:02:25:0b:5a:03:21:09:30:03: 4b:c7:36:81:52:75:54:61:14:00:0b:81:55:57:22:a9:ae:11: 03:5f:9f:5d:35:f7:8c:44:57:81:0c:e8:03:58:63:a0:99:03: 0f:55:fa:b2:4e:1b:b1:01:7c:4e:f3:19:a2:7a:f2:95:2f:e4: 90:19:b1:86:d5:6b:d3:1d:40:9f:10:85:48:6c:2c:4c:a3:35: 57:60:70:fa:01:a9:54:c1:80:b1:9f:dd:9b:c2:5a:f4:ed:79: df:5d:91:dd:38:0f:38:69:85:0f:78:12:47:b9:35:79:9c:33: c6:6a:59:99:1b:3b:92:41:93:95:38:22:bb:c3:c6:9d:7a:bb: 43:32:5c:c1:2e:17:c6:01:77:62:c4:02:2e:e8:cc:12:7b:a3: f1:75:44:ac:5d:c6:57:80:1d:e3:fa:6e:9d:62:2b:3a:78:98: 43:68:c6:90:11:0a:10:43:8c:e4:97:55:4e:12:39:e0:71:31: ef:28:37:4f:f4:34:6c:1b:97:ea:8c:75:bd:bc:3d:3a:92:30: 01:59:a6:4d:ae:3f:a7:26:38:a2:86:b9:c4:59:02:ec:b1:93: bc:5e:c3:75 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDe93dCvF61RdK9x0QeoAOOwye/0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTIyMTMyWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWM1OGZjNjVmOTE5MjZmMTcyMDY0YTExMzhiMmI3MGYx YTQ4MGM3ZDFlZTcyMDI5ZWEwZjFkZmYyODA1YzQxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdMBU4eUQ+zEYS5TIgVywQ5IAdvWEZeaJWYmmoVEorLpo8 1e+QPAxxxZOYrL6qxepjq6rQ95krhHlsPnUaStyw4ckwixpKUV7K9oa9y3Nl1E2H 4FS9kio0Gdt1eXpZfEuDgRt9aqRwulfpl0g4ul/KBGsUCbYEfVA26dtkkK3rCecN evZTOrawcAKxDqr3lbfF4H1nG30GsBPAhvVai/z+NIiStafG9PMU3k+OXzjgafEj Wh8qEdGpNOKhEZcpjLswUmGF/4V7mpj7cVEh/QhywFg2lUS0K25uYB3Y7iqcICpJ SCzI2qk39LfCjVYoSmjvmWgI0OKlV/M9HYGt2nDZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUowtqAEf6kFE3n9aaqiLXhtd/QBcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2NlZTQxNzRkLTQxNzItNDNjYy1hNTEyLTI5NDA0ZTk0MTZkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAOQAwDQYJKoZIhvcNAQELBQADggEBACq5eDp2z9yPeihJOaqG9MBR ZJr8laREu7r6VwIlC1oDIQkwA0vHNoFSdVRhFAALgVVXIqmuEQNfn10194xEV4EM 6ANYY6CZAw9V+rJOG7EBfE7zGaJ68pUv5JAZsYbVa9MdQJ8QhUhsLEyjNVdgcPoB qVTBgLGf3ZvCWvTted9dkd04DzhphQ94Eke5NXmcM8ZqWZkbO5JBk5U4IrvDxp16 u0MyXMEuF8YBd2LEAi7ozBJ7o/F1RKxdxleAHeP6bp1iKzp4mENoxpARChBDjOSX VU4SOeBxMe8oN0/0NGwbl+qMdb28PTqSMAFZpk2uP6cmOKKGucRZAuyxk7xew3U= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:53 2026 by rpki-client