$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d728440a-cae6-4173-b8c0-35af9050e1e0.roa File: d728440a-cae6-4173-b8c0-35af9050e1e0.roa (raw, json) Hash identifier: 1TGFoRvfquz3ta24LZns9j643whBPkR8FqlRBl7KJ+s= Subject key identifier: 42:67:0C:F6:B6:5E:74:5C:54:0C:71:23:F1:15:59:C9:5B:38:1E:57 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 58E456C4C153BEC1BA40CADD0777BDC49340B25F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d728440a-cae6-4173-b8c0-35af9050e1e0.roa Signing time: Fri 13 Feb 2026 06:50:10 +0000 ROA not before: Fri 13 Feb 2026 06:50:10 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2040::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:e4:56:c4:c1:53:be:c1:ba:40:ca:dd:07:77:bd:c4:93:40:b2:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 06:50:10 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=f8b3632aeeee8fbc464e4c65a04ea4c058878c6b0496709dfaf10615c0fdf2ba, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:8e:05:a4:4e:72:8c:44:85:e4:7a:79:78:cb: 3e:41:5f:a3:4d:35:5d:2e:ee:8f:d5:ea:7e:4c:48: de:30:69:6d:e5:07:1e:0a:01:4e:bf:ea:20:09:9a: 52:6c:64:30:fb:8b:8f:9b:2e:61:2b:ed:88:6e:dd: b6:10:f0:b7:95:17:fe:ac:d5:f4:9b:da:93:ed:53: 49:3f:da:8e:9e:6c:7b:15:99:bf:b7:6e:62:e4:0b: 16:86:17:90:5a:0a:21:cf:7b:24:50:59:71:5e:62: de:32:a2:28:ba:80:29:49:7f:a4:20:23:a0:3f:88: f0:d9:b7:09:51:90:0e:ca:b2:0d:ec:58:bf:00:99: da:05:d3:2c:b5:7e:84:0f:78:b0:b5:7b:ca:94:69: 03:61:c7:e2:33:18:2f:f7:21:dd:96:4d:6a:b5:58: 70:67:1b:d9:4d:73:57:2b:00:27:98:09:93:f2:4f: a3:56:c7:1b:5f:9e:c6:95:25:cb:23:da:85:bf:74: 51:a2:72:39:71:9d:dd:24:8e:0e:c1:31:04:e0:4f: 0f:60:0f:fd:2c:f5:7d:73:eb:b5:23:5d:b1:7d:dc: cc:5c:2b:f3:56:f6:95:f0:29:15:ae:82:ae:e5:be: 6a:b8:41:c2:85:2b:1c:7d:af:85:b8:f6:a5:5d:ad: e4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:67:0C:F6:B6:5E:74:5C:54:0C:71:23:F1:15:59:C9:5B:38:1E:57 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d728440a-cae6-4173-b8c0-35af9050e1e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2040::/45 Signature Algorithm: sha256WithRSAEncryption 8d:9b:9b:3a:f6:6a:e6:09:ea:38:5f:1c:b2:9a:c0:ae:a9:11: 58:5b:e5:0c:43:df:c6:73:bc:15:98:1b:31:dd:db:43:d5:36: 2a:b7:63:cd:16:f6:aa:9f:21:46:80:d9:a9:dd:31:4a:e2:0b: 60:01:8f:6d:5c:f9:02:4f:fb:d5:67:e1:f4:5d:fd:59:bf:33: 2b:4b:39:56:9e:96:1b:70:4c:6e:70:77:78:71:a3:51:ba:c6: 82:c7:c3:e0:e9:9c:5f:ab:ad:ea:31:6b:b6:83:09:a3:0a:8d: ab:cf:cd:a2:22:ab:a9:7b:1f:44:5f:cb:49:1e:20:c4:62:ac: aa:e6:38:97:f2:8b:be:a2:02:46:62:6b:a1:c7:ed:62:8c:b8: b6:ac:af:a3:2c:17:b3:a3:1e:cc:54:d5:09:7b:3e:af:20:a3: af:27:72:6e:65:be:10:70:e9:c4:de:c4:41:25:8d:34:48:e4: 08:c9:f3:82:9c:dc:63:09:4f:b3:5a:8f:81:76:45:9f:1a:e8: 93:a0:17:d0:6c:c0:e9:a8:14:23:a1:94:dc:a3:b6:48:22:d5: 87:b1:ef:af:fd:e8:e1:4e:fa:c9:0c:56:42:0c:d9:97:b7:e7: 57:e8:35:17:45:13:f3:10:35:83:aa:7b:27:93:c8:6f:4e:3f: 3d:ae:af:41 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWORWxMFTvsG6QMrdB3e9xJNAsl8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDY1MDEwWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOGIzNjMyYWVlZWU4ZmJjNDY0ZTRjNjVhMDRlYTRjMDU4 ODc4YzZiMDQ5NjcwOWRmYWYxMDYxNWMwZmRmMmJhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDljgWkTnKMRIXkenl4yz5BX6NNNV0u7o/V6n5MSN4waW3l Bx4KAU6/6iAJmlJsZDD7i4+bLmEr7Yhu3bYQ8LeVF/6s1fSb2pPtU0k/2o6ebHsV mb+3bmLkCxaGF5BaCiHPeyRQWXFeYt4yoii6gClJf6QgI6A/iPDZtwlRkA7Ksg3s WL8AmdoF0yy1foQPeLC1e8qUaQNhx+IzGC/3Id2WTWq1WHBnG9lNc1crACeYCZPy T6NWxxtfnsaVJcsj2oW/dFGicjlxnd0kjg7BMQTgTw9gD/0s9X1z67UjXbF93Mxc K/NW9pXwKRWugq7lvmq4QcKFKxx9r4W49qVdreQ5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQmcM9rZedFxUDHEj8RVZyVs4HlcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Q3Mjg0NDBhLWNhZTYtNDE3My1iOGMwLTM1YWY5MDUwZTFlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAIEAwDQYJKoZIhvcNAQELBQADggEBAI2bmzr2auYJ6jhfHLKawK6p EVhb5QxD38ZzvBWYGzHd20PVNiq3Y80W9qqfIUaA2andMUriC2ABj21c+QJP+9Vn 4fRd/Vm/MytLOVaelhtwTG5wd3hxo1G6xoLHw+DpnF+rreoxa7aDCaMKjavPzaIi q6l7H0Rfy0keIMRirKrmOJfyi76iAkZia6HH7WKMuLasr6MsF7OjHsxU1Ql7Pq8g o68ncm5lvhBw6cTexEEljTRI5AjJ84Kc3GMJT7Naj4F2RZ8a6JOgF9BswOmoFCOh lNyjtkgi1Yex76/96OFO+skMVkIM2Ze351foNRdFE/MQNYOqeyeTyG9OPz2ur0E= -----END CERTIFICATE-----Generated at Mon Mar 2 06:16:53 2026 by rpki-client