$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/df8717ea-0c56-497b-9ce5-9425be3f11f4.roa File: df8717ea-0c56-497b-9ce5-9425be3f11f4.roa (raw, json) Hash identifier: nmAE8HBb9EnK7Xb4IHNBHlmHgii0UpOSb2KKN7Mkw8E= Subject key identifier: 1E:59:41:34:52:42:05:B3:4B:F5:DF:DD:D2:41:B7:15:74:16:8F:50 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 748D4E322060FBD0A68FEFC3841E8E6D53828CA5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/df8717ea-0c56-497b-9ce5-9425be3f11f4.roa Signing time: Fri 13 Feb 2026 02:10:07 +0000 ROA not before: Fri 13 Feb 2026 02:10:07 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3fd0::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:8d:4e:32:20:60:fb:d0:a6:8f:ef:c3:84:1e:8e:6d:53:82:8c:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 02:10:07 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=d938086eea2ec82e58555f4aeb105a1ae56ad31161bdc21f492f7329b9176bf9, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a5:e5:fd:eb:a9:9b:c8:28:76:2a:ef:8b:b6: 5c:c8:e0:d4:ea:9e:6e:fc:94:0e:78:23:41:08:b0: 15:4c:c0:14:2f:89:60:63:10:84:c4:c4:f7:36:65: 28:1a:11:a5:e6:5a:ba:c6:19:e3:ff:be:39:fb:7e: c8:d6:b4:fa:9a:d2:b4:56:aa:6b:1f:91:df:10:7f: 37:b2:fa:cd:26:38:53:5a:12:ce:dc:eb:4a:15:21: b3:e6:ef:11:2f:ce:ab:83:ea:2f:25:0f:f2:97:2f: a7:e6:95:de:c6:5c:86:a2:05:ff:41:72:a7:46:a3: c0:e7:84:70:5a:ab:49:7e:11:7d:95:be:c2:c2:88: 8c:d5:db:fd:8e:80:31:31:fe:5e:37:55:99:76:9d: 2d:53:5c:ff:af:57:2f:4d:ff:1b:8d:9e:b7:44:f9: f8:a9:ac:20:7c:34:fd:e1:51:61:b3:24:99:1d:62: 7c:78:17:ef:02:70:a5:bb:a9:9b:8d:de:f4:4e:8a: 2e:24:f4:e7:14:76:6f:0c:e2:2d:50:7e:37:23:38: 54:97:0c:50:97:a2:23:c6:be:c4:a7:77:ab:a1:42: 31:81:0e:15:7d:90:04:4b:92:c3:32:f7:d3:0e:14: 67:1e:44:73:a2:71:76:9d:f5:9c:26:97:ab:fe:fd: 91:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:59:41:34:52:42:05:B3:4B:F5:DF:DD:D2:41:B7:15:74:16:8F:50 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/df8717ea-0c56-497b-9ce5-9425be3f11f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3fd0::/47 Signature Algorithm: sha256WithRSAEncryption 78:8b:7c:72:ba:9a:a7:32:cd:f1:05:a0:9f:07:16:62:89:bb: c7:67:bf:b0:be:65:54:81:21:22:58:4a:53:f0:c4:80:e5:ac: 72:e4:76:37:28:d1:b2:fa:ac:c1:cf:e1:e2:fb:19:69:12:be: 30:57:30:a1:45:38:72:b7:1a:a2:10:6b:e6:df:42:ee:09:a1: 2a:29:4b:fc:5d:7d:cc:b3:2f:f9:60:68:63:47:c9:85:fc:ce: 23:7d:52:81:a3:01:0a:64:3a:76:7f:b2:8a:22:34:40:67:eb: d9:4c:cb:31:5e:11:12:52:d3:08:71:54:41:81:86:ca:38:99: bf:78:58:7f:16:02:23:b8:49:17:a5:9a:d9:1f:24:d2:b7:b6: 78:f2:7a:03:91:6f:cd:74:c8:01:b0:64:62:1d:94:45:ba:f3: 07:76:c9:9d:f2:3f:cb:64:d7:66:2d:f6:f4:33:63:c5:a6:12: 82:72:dc:be:ae:27:b4:a2:17:35:6b:ba:53:25:b3:63:b2:49: 54:79:2f:30:14:7c:8d:e7:93:63:8f:cb:9d:d6:a2:2d:2c:75: de:09:85:bf:23:20:3a:c7:9d:4c:e7:95:bd:f0:c5:72:44:2d: 93:ec:1d:71:d7:c7:f2:2d:d2:0a:2b:2f:3c:97:b0:7c:78:a0: a5:bf:4d:c4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdI1OMiBg+9Cmj+/DhB6ObVOCjKUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDIxMDA3WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTM4MDg2ZWVhMmVjODJlNTg1NTVmNGFlYjEwNWExYWU1 NmFkMzExNjFiZGMyMWY0OTJmNzMyOWI5MTc2YmY5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwpeX966mbyCh2Ku+LtlzI4NTqnm78lA54I0EIsBVMwBQv iWBjEITExPc2ZSgaEaXmWrrGGeP/vjn7fsjWtPqa0rRWqmsfkd8Qfzey+s0mOFNa Es7c60oVIbPm7xEvzquD6i8lD/KXL6fmld7GXIaiBf9BcqdGo8DnhHBaq0l+EX2V vsLCiIzV2/2OgDEx/l43VZl2nS1TXP+vVy9N/xuNnrdE+fiprCB8NP3hUWGzJJkd Ynx4F+8CcKW7qZuN3vROii4k9OcUdm8M4i1QfjcjOFSXDFCXoiPGvsSnd6uhQjGB DhV9kARLksMy99MOFGceRHOicXad9Zwml6v+/ZGrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHllBNFJCBbNL9d/d0kG3FXQWj1AwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RmODcxN2VhLTBjNTYtNDk3Yi05Y2U1LTk0MjViZTNmMTFmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAP9AwDQYJKoZIhvcNAQELBQADggEBAHiLfHK6mqcyzfEFoJ8HFmKJ u8dnv7C+ZVSBISJYSlPwxIDlrHLkdjco0bL6rMHP4eL7GWkSvjBXMKFFOHK3GqIQ a+bfQu4JoSopS/xdfcyzL/lgaGNHyYX8ziN9UoGjAQpkOnZ/sooiNEBn69lMyzFe ERJS0whxVEGBhso4mb94WH8WAiO4SRelmtkfJNK3tnjyegORb810yAGwZGIdlEW6 8wd2yZ3yP8tk12Yt9vQzY8WmEoJy3L6uJ7SiFzVrulMls2OySVR5LzAUfI3nk2OP y53Woi0sdd4Jhb8jIDrHnUznlb3wxXJELZPsHXHXx/It0gorLzyXsHx4oKW/TcQ= -----END CERTIFICATE-----Generated at Sun Mar 1 22:20:00 2026 by rpki-client