$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cf6af67a-46e9-473f-8455-e2137ec7b41d.roa File: cf6af67a-46e9-473f-8455-e2137ec7b41d.roa (raw, json) Hash identifier: J0aiPCy8x1bOforG/LQmjJOALLT4okAwgnnsUYJu148= Subject key identifier: B5:27:46:15:3A:48:EB:D0:4E:60:8A:94:17:70:C9:E3:14:CB:FD:91 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 249AFCD20FA79A4DB4D543D864C09E59DEE7C2D5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cf6af67a-46e9-473f-8455-e2137ec7b41d.roa Signing time: Fri 13 Feb 2026 10:50:05 +0000 ROA not before: Fri 13 Feb 2026 10:50:05 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:32da::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:9a:fc:d2:0f:a7:9a:4d:b4:d5:43:d8:64:c0:9e:59:de:e7:c2:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 10:50:05 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=d46c00b1dd0c8e8767fe391de71ab3a85dacb1003bfdbcea11548a6efd804c34, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e0:52:56:06:25:9c:c6:28:46:6f:6e:c4:3e: 51:d4:5a:fe:53:6b:f5:cd:56:8f:86:fb:b3:93:7e: 50:d8:27:07:ab:e4:1c:8e:e5:6b:1c:e2:a2:ac:e6: 97:89:19:d3:b2:64:bc:f4:a1:e3:bb:4b:10:de:c6: 55:a2:08:62:a3:be:48:c4:fc:20:5a:5c:ea:78:ae: 76:f2:22:33:35:04:4d:83:6c:34:9b:e3:6d:c9:d8: 2b:9d:de:a0:c1:a0:39:6a:41:b7:41:f8:85:d7:07: 92:db:3c:36:0d:33:6c:6d:83:17:ce:db:ee:5d:ae: d2:8a:ba:51:97:50:62:18:50:1f:d4:31:f8:21:3d: d0:46:6a:03:e2:41:fd:43:22:cd:de:35:7f:6e:f3: b3:a4:3f:76:a7:26:6e:b6:c0:93:d6:34:b3:99:5c: d8:18:c6:14:9c:c0:59:0a:8c:29:f1:9b:69:0c:ae: a8:03:ce:7b:07:5a:f8:fc:f4:de:bf:7f:5d:13:1d: 61:c5:32:d7:9b:fb:a2:0e:df:7d:2b:48:29:ff:b3: 10:1f:3c:d7:6d:16:9b:d1:62:eb:e1:31:d5:7b:c8: ec:45:40:e3:15:e7:c0:a6:9e:5b:8c:08:39:6f:f7: 06:74:12:b4:5f:ef:ad:56:32:c4:fd:8a:97:5e:c5: 4f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:27:46:15:3A:48:EB:D0:4E:60:8A:94:17:70:C9:E3:14:CB:FD:91 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cf6af67a-46e9-473f-8455-e2137ec7b41d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:32da::/47 Signature Algorithm: sha256WithRSAEncryption 8e:09:65:f2:48:b7:7c:cb:d7:a0:f0:c0:d1:ce:41:00:4d:60: d4:ac:dc:09:94:55:ab:ee:fd:4c:c5:86:7a:3b:f5:42:05:bd: 29:b1:0b:9f:7b:bf:ec:0e:d1:7e:7f:38:c0:e4:5e:14:5d:7b: 7f:62:83:97:2c:7a:07:1d:b1:c0:60:ce:32:8f:e0:9c:ae:9d: bf:e1:30:2d:3f:de:00:1b:72:2a:69:ee:cf:d1:8f:eb:78:69: 7b:24:20:25:0c:91:43:87:f3:4a:63:6b:86:b2:4a:79:f8:fc: d3:62:c2:ec:a0:86:9b:77:7b:25:d7:33:b6:15:b8:bb:13:ca: 2a:19:5b:9f:f9:28:a4:dc:ce:90:47:0b:5e:36:cd:6d:c6:6e: e0:31:11:62:24:70:2f:19:38:f9:ca:b7:11:2d:88:99:82:b6: 5e:ea:be:d8:1b:c3:6a:68:35:30:41:7c:37:65:29:30:b9:bd: 64:41:2a:8b:7b:02:3c:d9:43:08:02:b7:e3:a7:05:ac:7a:05: 69:c2:93:4b:1a:14:cd:26:e4:e9:1d:58:d2:ee:2e:9a:85:da: e1:72:18:dd:67:cc:35:34:53:6c:43:27:9b:9f:0a:c6:52:e9: ba:9f:f2:ee:09:31:42:b9:a1:c9:a7:e2:0c:dd:f2:88:f1:04: 7e:d7:dd:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJJr80g+nmk201UPYZMCeWd7nwtUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTA1MDA1WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDZjMDBiMWRkMGM4ZTg3NjdmZTM5MWRlNzFhYjNhODVk YWNiMTAwM2JmZGJjZWExMTU0OGE2ZWZkODA0YzM0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC74FJWBiWcxihGb27EPlHUWv5Ta/XNVo+G+7OTflDYJwer 5ByO5Wsc4qKs5peJGdOyZLz0oeO7SxDexlWiCGKjvkjE/CBaXOp4rnbyIjM1BE2D bDSb423J2Cud3qDBoDlqQbdB+IXXB5LbPDYNM2xtgxfO2+5drtKKulGXUGIYUB/U MfghPdBGagPiQf1DIs3eNX9u87OkP3anJm62wJPWNLOZXNgYxhScwFkKjCnxm2kM rqgDznsHWvj89N6/f10THWHFMteb+6IO330rSCn/sxAfPNdtFpvRYuvhMdV7yOxF QOMV58CmnluMCDlv9wZ0ErRf761WMsT9ipdexU8JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtSdGFTpI69BOYIqUF3DJ4xTL/ZEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2NmNmFmNjdhLTQ2ZTktNDczZi04NDU1LWUyMTM3ZWM3YjQxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAMtowDQYJKoZIhvcNAQELBQADggEBAI4JZfJIt3zL16DwwNHOQQBN YNSs3AmUVavu/UzFhno79UIFvSmxC597v+wO0X5/OMDkXhRde39ig5csegcdscBg zjKP4Jyunb/hMC0/3gAbcipp7s/Rj+t4aXskICUMkUOH80pja4aySnn4/NNiwuyg hpt3eyXXM7YVuLsTyioZW5/5KKTczpBHC142zW3GbuAxEWIkcC8ZOPnKtxEtiJmC tl7qvtgbw2poNTBBfDdlKTC5vWRBKot7AjzZQwgCt+OnBax6BWnCk0saFM0m5Okd WNLuLpqF2uFyGN1nzDU0U2xDJ5ufCsZS6bqf8u4JMUK5ocmn4gzd8ojxBH7X3Rg= -----END CERTIFICATE-----Generated at Mon Mar 2 04:29:18 2026 by rpki-client