$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dc57987a-beb9-478b-b21a-d171336ef08a.roa File: dc57987a-beb9-478b-b21a-d171336ef08a.roa (raw, json) Hash identifier: +T50rgp6O+Bf3e2BL/4AN5+JfKiNN+ZDmKYsLm66F8o= Subject key identifier: 33:0A:77:F2:88:99:7D:6B:98:70:D0:BB:B3:5C:AC:B3:35:71:BD:17 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6FFBDC2A9F9C1DC07357C5C3A1896DCD315382AE Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dc57987a-beb9-478b-b21a-d171336ef08a.roa Signing time: Fri 13 Feb 2026 10:01:03 +0000 ROA not before: Fri 13 Feb 2026 10:01:03 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2c80::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:fb:dc:2a:9f:9c:1d:c0:73:57:c5:c3:a1:89:6d:cd:31:53:82:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 10:01:03 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=519b6dfa01af64f136f5e9ad22f3f3bd5de226390406276b40ffb0111b79be33, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6d:36:9d:dc:51:51:fc:34:26:42:ca:b3:0d: 8b:5f:91:b7:5b:b4:4d:c3:20:df:50:b7:86:58:55: 96:67:df:01:f1:6f:0d:4f:b0:7f:93:f5:36:f1:fd: 75:db:db:cd:0f:0a:a4:12:64:ee:59:27:69:71:ea: 1d:f0:71:88:2f:df:52:38:7e:f0:45:14:f7:41:58: 29:f0:2e:83:a9:34:8c:16:44:5d:93:0e:8f:73:19: b5:02:34:8a:96:b8:90:24:4c:51:83:d6:1c:09:af: c2:65:20:42:6f:a8:1b:a3:bc:54:13:b3:dd:81:ef: 29:4e:a8:13:88:de:b3:f1:ef:74:1b:f0:74:9f:f0: 28:2d:84:04:0b:43:21:e3:ea:4f:34:c8:15:f1:ba: d5:7c:3d:12:5e:74:69:6f:ba:63:de:11:b5:e4:f1: 40:f0:b7:10:05:ac:be:5b:a8:cb:c0:82:9f:3a:85: 2a:1f:e0:41:77:5c:d6:85:09:a1:15:1d:1e:1c:22: 83:d4:22:fe:39:b9:0d:e7:22:9d:e0:11:e9:de:bd: 19:53:d0:b7:99:c0:bd:e3:44:08:4c:db:b0:db:06: 33:b6:54:55:13:1d:de:6f:1d:40:0e:a0:cf:75:3d: 7e:bf:22:a6:9f:fe:cb:26:ba:91:a1:69:48:ad:12: 81:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:0A:77:F2:88:99:7D:6B:98:70:D0:BB:B3:5C:AC:B3:35:71:BD:17 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dc57987a-beb9-478b-b21a-d171336ef08a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2c80::/43 Signature Algorithm: sha256WithRSAEncryption 82:a1:dc:80:88:ea:fe:ac:62:a4:96:61:70:2e:0a:c3:61:ae: 0d:54:6d:e3:f2:1f:fd:be:15:fc:98:0d:b6:2c:75:83:79:cc: c1:a5:71:41:dd:c8:b2:7d:a2:e3:6f:9a:dd:55:53:8d:ff:e2: 3e:3e:59:ce:7f:90:ca:f9:38:ba:dc:c6:cd:48:5e:8a:36:1b: df:ea:80:73:b1:4e:78:ba:04:ed:da:69:23:31:75:b5:36:4d: b6:9f:4a:30:23:a0:5d:ed:87:c4:4a:cb:8d:c4:b0:64:2a:c1: 0a:d0:4c:b9:ee:92:1d:7b:00:c1:ac:f2:e1:a3:0a:4e:39:28: ff:71:ac:1a:94:bc:fa:c0:c0:90:8c:4f:b1:cd:d2:52:7f:53: 56:5e:72:c9:08:b4:de:b8:6d:d2:a4:b2:82:7b:f4:21:5c:49: 63:8a:08:13:04:bb:f1:6f:31:d8:94:fb:11:5e:a1:44:4b:a6: 07:04:94:31:2a:2d:87:1b:42:e1:b2:af:2d:49:e8:b3:eb:08: 78:b5:57:39:19:6b:df:75:44:5b:52:03:ef:d6:34:d1:2c:2f: df:14:22:c6:c0:02:c2:23:c8:8e:24:88:10:27:51:73:d3:9f: 72:d0:d3:14:eb:52:d6:14:c4:41:8f:13:89:cc:3c:17:6b:d9: 3f:e6:54:c0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUb/vcKp+cHcBzV8XDoYltzTFTgq4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMTAwMTAzWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTliNmRmYTAxYWY2NGYxMzZmNWU5YWQyMmYzZjNiZDVk ZTIyNjM5MDQwNjI3NmI0MGZmYjAxMTFiNzliZTMzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZbTad3FFR/DQmQsqzDYtfkbdbtE3DIN9Qt4ZYVZZn3wHx bw1PsH+T9Tbx/XXb280PCqQSZO5ZJ2lx6h3wcYgv31I4fvBFFPdBWCnwLoOpNIwW RF2TDo9zGbUCNIqWuJAkTFGD1hwJr8JlIEJvqBujvFQTs92B7ylOqBOI3rPx73Qb 8HSf8CgthAQLQyHj6k80yBXxutV8PRJedGlvumPeEbXk8UDwtxAFrL5bqMvAgp86 hSof4EF3XNaFCaEVHR4cIoPUIv45uQ3nIp3gEenevRlT0LeZwL3jRAhM27DbBjO2 VFUTHd5vHUAOoM91PX6/Iqaf/ssmupGhaUitEoGjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMwp38oiZfWuYcNC7s1ysszVxvRcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RjNTc5ODdhLWJlYjktNDc4Yi1iMjFhLWQxNzEzMzZlZjA4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAALIAwDQYJKoZIhvcNAQELBQADggEBAIKh3ICI6v6sYqSWYXAuCsNh rg1UbePyH/2+FfyYDbYsdYN5zMGlcUHdyLJ9ouNvmt1VU43/4j4+Wc5/kMr5OLrc xs1IXoo2G9/qgHOxTni6BO3aaSMxdbU2TbafSjAjoF3th8RKy43EsGQqwQrQTLnu kh17AMGs8uGjCk45KP9xrBqUvPrAwJCMT7HN0lJ/U1ZecskItN64bdKksoJ79CFc SWOKCBMEu/FvMdiU+xFeoURLpgcElDEqLYcbQuGyry1J6LPrCHi1VzkZa991RFtS A+/WNNEsL98UIsbAAsIjyI4kiBAnUXPTn3LQ0xTrUtYUxEGPE4nMPBdr2T/mVMA= -----END CERTIFICATE-----Generated at Mon Mar 2 18:26:24 2026 by rpki-client