$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e970b978-473a-45f0-8b24-13f79ddd8695.roa File: e970b978-473a-45f0-8b24-13f79ddd8695.roa (raw, json) Hash identifier: TQ1O2HMIcQDvzB7f+Skz39ZcxOxW2ZGZKLHqoDorLZs= Subject key identifier: 04:EB:FF:0C:25:47:68:32:EC:48:7E:B3:C9:AF:3F:0A:0E:F7:DF:2F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3ACCB0230822382037DE9B530BED2AD7D7D1A14A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e970b978-473a-45f0-8b24-13f79ddd8695.roa Signing time: Thu 12 Feb 2026 00:20:07 +0000 ROA not before: Thu 12 Feb 2026 00:20:07 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2c8a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:cc:b0:23:08:22:38:20:37:de:9b:53:0b:ed:2a:d7:d7:d1:a1:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 00:20:07 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=e3ace33d0bb9a1b2cac4c0d6fb23ab3b34deccc31447bbb33880951cf7a107b9, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0f:5f:10:5d:5b:d6:f3:9d:cd:71:a6:58:a6: a4:16:14:dc:5e:5c:b6:53:9b:b3:d6:b4:25:d5:59: fd:a7:11:a5:ee:3e:87:8d:9c:cd:d5:5c:61:40:1e: a4:03:e5:ca:ea:1f:7f:18:a1:36:c5:73:0b:7f:82: 2d:33:8f:5e:dd:ed:b9:c0:b3:14:43:2a:a6:ee:ff: 4a:93:36:71:66:7a:a3:e2:fd:ab:df:56:71:9a:e0: 51:68:c0:15:2f:a7:dd:92:6d:cb:48:2f:65:7f:91: 7e:e7:3c:55:66:fe:03:ca:35:d4:67:b2:15:8c:9a: ca:a0:35:07:dc:a9:0f:89:aa:de:07:08:74:23:90: 4e:fa:e0:c4:9c:71:e7:0f:dc:c7:4d:2f:d2:64:22: 31:52:f8:03:20:ca:56:c8:a3:f7:d7:d5:fd:92:d5: 40:05:b0:24:1e:d6:51:07:81:1e:53:9b:a1:46:c7: 95:62:62:db:22:65:0a:61:f3:39:80:76:e5:4a:76: f4:ea:65:ab:16:eb:6f:9a:62:a6:d8:d9:e0:62:0a: fe:ec:07:98:79:f8:a4:71:46:39:4c:aa:e3:4c:e1: 5f:ab:39:53:3d:e8:8f:e9:2e:cc:a0:d6:cc:8a:ad: 14:38:93:b7:7c:17:1b:19:6f:09:be:c8:ce:46:24: 48:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:EB:FF:0C:25:47:68:32:EC:48:7E:B3:C9:AF:3F:0A:0E:F7:DF:2F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e970b978-473a-45f0-8b24-13f79ddd8695.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2c8a::/47 Signature Algorithm: sha256WithRSAEncryption a3:29:96:50:1e:1d:6c:25:25:7a:4f:06:97:79:b9:95:8e:c2: e4:83:38:94:28:66:cd:4e:85:9f:ce:aa:b4:d9:ec:29:f2:2f: 88:dd:f2:4c:e8:3f:04:c6:81:6a:85:70:b9:b2:80:c6:ab:0d: 7e:90:11:03:55:3b:18:35:3c:ec:b9:6b:c1:7d:3d:db:3e:b4: 4a:d2:e6:20:d2:9a:cd:81:42:87:34:bc:2d:b8:2a:6b:55:21: cf:61:ee:f5:c4:d4:2a:65:6c:00:ea:ff:6e:48:ee:b9:94:f8: de:71:6b:05:da:bd:8c:88:86:f5:e0:16:80:85:8b:a9:7f:5a: 5f:c2:b8:47:11:2b:15:cd:c9:71:7e:23:8c:26:f3:91:22:e6: 77:3c:f9:71:44:68:01:b1:5e:56:87:48:db:07:1e:27:cd:c2: 97:24:75:60:ff:2b:52:cf:a9:b0:2f:01:07:3c:6a:a5:c1:94: bb:2e:1e:3e:af:50:3f:56:6e:c6:f2:50:25:12:16:3f:28:74: 7d:13:f1:1d:ff:69:9c:44:af:1e:23:08:f9:e6:02:74:1c:80: 7f:1f:17:53:33:59:26:91:e7:71:31:69:2f:fc:18:eb:75:e7: 4b:b4:ba:ff:92:c1:33:53:f7:5e:d1:90:38:c7:eb:67:df:30: 02:23:bf:f7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOsywIwgiOCA33ptTC+0q19fRoUowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDAyMDA3WhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlM2FjZTMzZDBiYjlhMWIyY2FjNGMwZDZmYjIzYWIzYjM0 ZGVjY2MzMTQ0N2JiYjMzODgwOTUxY2Y3YTEwN2I5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7D18QXVvW853NcaZYpqQWFNxeXLZTm7PWtCXVWf2nEaXu PoeNnM3VXGFAHqQD5crqH38YoTbFcwt/gi0zj17d7bnAsxRDKqbu/0qTNnFmeqPi /avfVnGa4FFowBUvp92SbctIL2V/kX7nPFVm/gPKNdRnshWMmsqgNQfcqQ+Jqt4H CHQjkE764MSccecP3MdNL9JkIjFS+AMgylbIo/fX1f2S1UAFsCQe1lEHgR5Tm6FG x5ViYtsiZQph8zmAduVKdvTqZasW62+aYqbY2eBiCv7sB5h5+KRxRjlMquNM4V+r OVM96I/pLsyg1syKrRQ4k7d8FxsZbwm+yM5GJEgdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBOv/DCVHaDLsSH6zya8/Cg733y8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2U5NzBiOTc4LTQ3M2EtNDVmMC04YjI0LTEzZjc5ZGRkODY5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALIowDQYJKoZIhvcNAQELBQADggEBAKMpllAeHWwlJXpPBpd5uZWO wuSDOJQoZs1OhZ/OqrTZ7CnyL4jd8kzoPwTGgWqFcLmygMarDX6QEQNVOxg1POy5 a8F9Pds+tErS5iDSms2BQoc0vC24KmtVIc9h7vXE1CplbADq/25I7rmU+N5xawXa vYyIhvXgFoCFi6l/Wl/CuEcRKxXNyXF+I4wm85Ei5nc8+XFEaAGxXlaHSNsHHifN wpckdWD/K1LPqbAvAQc8aqXBlLsuHj6vUD9WbsbyUCUSFj8odH0T8R3/aZxErx4j CPnmAnQcgH8fF1MzWSaR53ExaS/8GOt150u0uv+SwTNT917RkDjH62ffMAIjv/c= -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:31 2026 by rpki-client