$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dc25c613-6622-40f1-b815-b3a697c75c45.roa File: dc25c613-6622-40f1-b815-b3a697c75c45.roa (raw, json) Hash identifier: F7W4F2zdvUbHQCnLCxw/xfl3+ULQT7ukppLVypIlJzg= Subject key identifier: 34:EA:AC:8F:3A:4B:E8:01:34:A3:9B:50:34:58:BF:0B:24:79:60:CD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3A802919A73BBC4248EEBE62668616A33790BF9E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dc25c613-6622-40f1-b815-b3a697c75c45.roa Signing time: Fri 03 Apr 2026 01:21:36 +0000 ROA not before: Fri 03 Apr 2026 01:21:36 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1156::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:80:29:19:a7:3b:bc:42:48:ee:be:62:66:86:16:a3:37:90:bf:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 01:21:36 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=548fdd07b49773bb294009bd1a294146bc1441b1d0340cf5c3d68fb2c7a82ae5, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5c:74:89:a5:e3:4e:4c:92:1e:0e:5b:cd:2c: bb:e9:85:ea:66:1d:c5:99:de:53:62:db:30:02:73: 35:04:2b:d6:03:ad:89:bf:0b:e0:9c:46:32:d2:80: aa:4d:9e:b9:6f:72:13:3d:45:92:98:2e:c4:24:4b: dc:4f:d1:c2:7b:fe:ab:67:1c:0e:4c:3e:b5:69:09: f9:ff:29:93:52:93:6c:6d:b9:3a:b5:7d:b7:f0:b3: f6:ab:a7:e6:dc:06:f5:6f:d7:3f:14:e2:97:25:20: e0:fb:ad:de:16:89:1a:a2:7a:bb:db:ae:6f:d0:06: b5:30:f0:21:0e:18:c8:3e:7e:d7:6d:16:cd:71:fd: 5e:07:a9:e1:a7:02:90:41:5d:61:08:d2:80:3c:99: c9:c6:a5:1c:af:a7:44:63:46:4b:cf:2e:73:2a:c9: 75:00:02:d2:8e:4d:4f:c4:a1:93:0a:da:4f:32:c3: 02:74:ed:73:ec:8a:46:db:19:87:78:90:27:df:35: 5a:78:85:09:ea:d0:42:7a:07:33:b5:9c:d6:a4:3c: e4:6a:74:2e:c3:1f:79:7f:9b:ef:98:25:02:d5:fe: 16:60:d6:dc:ee:0d:d5:7c:f6:38:2b:7b:a1:19:4a: ba:fb:33:23:cb:eb:31:8b:5d:c6:89:6d:fb:c6:1f: 38:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:EA:AC:8F:3A:4B:E8:01:34:A3:9B:50:34:58:BF:0B:24:79:60:CD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dc25c613-6622-40f1-b815-b3a697c75c45.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1156::/48 Signature Algorithm: sha256WithRSAEncryption b1:0e:40:ec:53:67:aa:f4:e1:22:dc:20:d4:ae:66:35:cc:39: 97:38:7c:59:db:66:5f:f6:99:d8:ec:37:60:93:b1:87:da:38: bf:f3:60:d1:cd:40:c9:26:aa:a2:18:43:eb:25:20:15:52:4a: 7e:c5:93:24:3c:b9:e4:e9:d9:0d:23:d7:0d:13:f0:3d:4d:ab: fe:9e:02:83:17:49:3a:50:54:e2:a4:ff:c4:bc:5c:9e:2c:ed: 5a:ba:24:38:ec:51:8f:97:57:3a:6d:d6:1f:50:da:fe:63:02: 1a:3c:ac:db:e4:dc:1b:ed:25:af:4e:18:4a:b0:87:ec:09:56: 6b:52:6b:a8:b2:c0:01:59:a7:33:72:a0:df:37:23:09:3f:b5: 9f:cf:aa:31:c0:ea:1a:83:26:fd:b1:ec:b4:b1:3a:ce:aa:df: 12:56:e6:a0:ae:0a:3d:11:a7:ba:e9:65:e5:42:1f:3f:16:80: 39:79:fa:ac:63:e5:25:9e:c0:5a:64:2b:77:4e:a3:b8:a9:ba: d2:01:8a:10:1e:9e:e2:19:e1:1b:e4:49:77:8a:ed:aa:a9:4a: ae:4e:09:c5:69:f8:ae:4b:c6:ba:24:1c:a6:9f:22:64:ba:62: 06:86:62:34:f8:32:e5:59:8d:55:49:55:c4:6a:02:0c:b1:8f: 08:b8:7e:38 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOoApGac7vEJI7r5iZoYWozeQv54wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDEyMTM2WhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDhmZGQwN2I0OTc3M2JiMjk0MDA5YmQxYTI5NDE0NmJj MTQ0MWIxZDAzNDBjZjVjM2Q2OGZiMmM3YTgyYWU1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5XHSJpeNOTJIeDlvNLLvphepmHcWZ3lNi2zACczUEK9YD rYm/C+CcRjLSgKpNnrlvchM9RZKYLsQkS9xP0cJ7/qtnHA5MPrVpCfn/KZNSk2xt uTq1fbfws/arp+bcBvVv1z8U4pclIOD7rd4WiRqiervbrm/QBrUw8CEOGMg+ftdt Fs1x/V4HqeGnApBBXWEI0oA8mcnGpRyvp0RjRkvPLnMqyXUAAtKOTU/EoZMK2k8y wwJ07XPsikbbGYd4kCffNVp4hQnq0EJ6BzO1nNakPORqdC7DH3l/m++YJQLV/hZg 1tzuDdV89jgre6EZSrr7MyPL6zGLXcaJbfvGHzhTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNOqsjzpL6AE0o5tQNFi/CyR5YM0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RjMjVjNjEzLTY2MjItNDBmMS1iODE1LWIzYTY5N2M3NWM0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAEVYwDQYJKoZIhvcNAQELBQADggEBALEOQOxTZ6r04SLcINSuZjXM OZc4fFnbZl/2mdjsN2CTsYfaOL/zYNHNQMkmqqIYQ+slIBVSSn7FkyQ8ueTp2Q0j 1w0T8D1Nq/6eAoMXSTpQVOKk/8S8XJ4s7Vq6JDjsUY+XVzpt1h9Q2v5jAho8rNvk 3BvtJa9OGEqwh+wJVmtSa6iywAFZpzNyoN83Iwk/tZ/PqjHA6hqDJv2x7LSxOs6q 3xJW5qCuCj0Rp7rpZeVCHz8WgDl5+qxj5SWewFpkK3dOo7iputIBihAenuIZ4Rvk SXeK7aqpSq5OCcVp+K5LxrokHKafImS6YgaGYjT4MuVZjVVJVcRqAgyxjwi4fjg= -----END CERTIFICATE-----Generated at Sun Apr 19 09:42:33 2026 by rpki-client