$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dc886129-8248-465d-9350-2e4c45b15d80.roa File: dc886129-8248-465d-9350-2e4c45b15d80.roa (raw, json) Hash identifier: wzZHaRtsrut8n5Xwt7q84c7Te9uv4bzfwHy2NuYR8Xw= Subject key identifier: 85:B4:39:AC:F0:F1:A1:9E:A2:B9:A2:22:9F:86:36:11:5B:10:46:93 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 56C2357B8C802048A6A3A0A06727FB16923E0F97 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dc886129-8248-465d-9350-2e4c45b15d80.roa Signing time: Fri 13 Feb 2026 09:40:09 +0000 ROA not before: Fri 13 Feb 2026 09:40:09 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2ad8::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:c2:35:7b:8c:80:20:48:a6:a3:a0:a0:67:27:fb:16:92:3e:0f:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 09:40:09 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=c6b57a7938dc17f1aee3e08d5766ee38184aa6db032624e9a724e14fba51747e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0a:2d:7f:c3:63:ea:c4:53:a4:d4:d1:36:22: 3c:8f:cc:d5:af:17:77:d7:20:d8:ae:a4:dd:6f:5d: 66:3c:a5:31:69:79:e4:1d:b3:cc:e0:02:e8:5b:d2: 37:64:c0:31:4e:33:34:7d:f3:0f:f9:d6:bf:d2:35: b0:7c:6f:39:f3:92:de:f1:fd:23:73:27:e1:62:5a: 61:b5:3c:6a:0d:8e:a1:0b:ff:f5:9c:9e:54:c7:5c: 02:50:25:91:30:68:9f:d2:38:a1:51:96:d3:c6:f7: 93:27:c9:1c:3d:fd:97:48:98:1d:e8:49:65:9f:1f: 88:cd:2c:e7:46:38:08:ab:f1:2e:37:60:f8:2a:37: 19:cf:f7:e5:f4:d5:27:dc:93:d7:60:39:3a:29:61: 0f:c0:a9:cd:05:6b:b6:70:e1:ac:d8:95:d3:e1:4b: 9c:eb:86:81:a0:e3:29:99:ab:57:5f:a7:fa:a2:1d: d3:c9:29:5d:56:de:ab:f8:2d:81:1d:db:5c:60:32: d0:4a:7a:ed:ee:d7:76:d4:21:49:76:84:ea:9f:e8: dc:10:ea:ae:33:6c:15:49:8a:aa:d9:66:7f:2e:dc: ab:78:fe:92:e8:dc:11:8e:f8:7b:24:43:ee:1f:2b: 41:24:03:db:a5:4c:1a:5e:63:91:0e:0f:b7:2e:97: 1c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B4:39:AC:F0:F1:A1:9E:A2:B9:A2:22:9F:86:36:11:5B:10:46:93 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dc886129-8248-465d-9350-2e4c45b15d80.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2ad8::/46 Signature Algorithm: sha256WithRSAEncryption a3:20:bd:45:25:b1:3f:ef:de:eb:a0:c6:37:e7:95:37:00:22: 49:2d:e3:87:99:27:9b:1d:a5:52:b9:70:17:58:24:40:7f:06: 21:0d:f1:5d:64:39:91:99:d1:1a:c6:4b:02:35:5a:8d:28:c1: 28:3a:ee:42:6b:48:c2:2a:db:4b:03:60:60:dc:aa:b0:62:c7: 54:12:ab:7a:bc:e3:3e:d9:61:1d:b7:7a:fd:79:69:d1:4a:a2: a0:88:4c:a7:2e:e8:14:a1:a7:d7:85:6c:2f:23:ca:d7:f6:73: 17:40:64:9d:fa:73:20:6f:4a:6e:64:53:d3:a8:0c:10:d5:83: 8f:58:98:f9:75:55:87:b6:6d:24:c2:da:f6:80:5a:2f:63:3b: a9:e9:91:9b:bd:aa:f7:96:99:d1:7e:e2:9d:dd:65:ab:db:15: e7:e5:2b:0b:c1:52:e9:46:27:74:0d:2b:e5:77:47:e5:6f:45: 54:5c:c4:36:3a:c9:75:aa:41:dc:56:45:88:0e:e4:1a:81:87: d0:c8:62:dc:9e:ef:3f:b6:11:57:5f:1b:cd:3f:5e:1a:f7:15: 6b:80:c1:09:7d:c6:d7:13:7f:c6:9b:1a:cb:9c:05:af:8b:bc: e8:97:7a:83:25:e2:71:9a:fc:b1:6b:6c:fc:4a:4c:5f:06:4b: 91:fd:21:88 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVsI1e4yAIEimo6CgZyf7FpI+D5cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDk0MDA5WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNmI1N2E3OTM4ZGMxN2YxYWVlM2UwOGQ1NzY2ZWUzODE4 NGFhNmRiMDMyNjI0ZTlhNzI0ZTE0ZmJhNTE3NDdlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbCi1/w2PqxFOk1NE2IjyPzNWvF3fXINiupN1vXWY8pTFp eeQds8zgAuhb0jdkwDFOMzR98w/51r/SNbB8bznzkt7x/SNzJ+FiWmG1PGoNjqEL //WcnlTHXAJQJZEwaJ/SOKFRltPG95MnyRw9/ZdImB3oSWWfH4jNLOdGOAir8S43 YPgqNxnP9+X01Sfck9dgOTopYQ/Aqc0Fa7Zw4azYldPhS5zrhoGg4ymZq1dfp/qi HdPJKV1W3qv4LYEd21xgMtBKeu3u13bUIUl2hOqf6NwQ6q4zbBVJiqrZZn8u3Kt4 /pLo3BGO+HskQ+4fK0EkA9ulTBpeY5EOD7culxyTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhbQ5rPDxoZ6iuaIin4Y2EVsQRpMwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RjODg2MTI5LTgyNDgtNDY1ZC05MzUwLTJlNGM0NWIxNWQ4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAKtgwDQYJKoZIhvcNAQELBQADggEBAKMgvUUlsT/v3uugxjfnlTcA Ikkt44eZJ5sdpVK5cBdYJEB/BiEN8V1kOZGZ0RrGSwI1Wo0owSg67kJrSMIq20sD YGDcqrBix1QSq3q84z7ZYR23ev15adFKoqCITKcu6BShp9eFbC8jytf2cxdAZJ36 cyBvSm5kU9OoDBDVg49YmPl1VYe2bSTC2vaAWi9jO6npkZu9qveWmdF+4p3dZavb FeflKwvBUulGJ3QNK+V3R+VvRVRcxDY6yXWqQdxWRYgO5BqBh9DIYtye7z+2EVdf G80/Xhr3FWuAwQl9xtcTf8abGsucBa+LvOiXeoMl4nGa/LFrbPxKTF8GS5H9IYg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:24:00 2026 by rpki-client