$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f3d38170-222e-408d-8641-acc6a51acb98.roa File: f3d38170-222e-408d-8641-acc6a51acb98.roa (raw, json) Hash identifier: +lGwGzmxFcl2XV8bQwy9ymiMMiswIIa3Rm0DHXbR3No= Subject key identifier: DA:19:E8:B6:DF:BF:A0:80:21:DA:EB:9B:A2:0A:76:C6:E3:D5:07:5A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3AFF7324EAFAEAB27788D075943D8BB3FCAE4146 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f3d38170-222e-408d-8641-acc6a51acb98.roa Signing time: Fri 13 Feb 2026 02:30:15 +0000 ROA not before: Fri 13 Feb 2026 02:30:15 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:369e::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:ff:73:24:ea:fa:ea:b2:77:88:d0:75:94:3d:8b:b3:fc:ae:41:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 13 02:30:15 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=88f974b01afae9f72e533b772bcc088887dcdd3bf4817189bab72fd608429b12, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:cd:42:35:09:49:16:03:d4:da:50:b5:22:7e: ff:5e:b1:18:5e:49:05:da:64:b3:ba:90:cf:b9:9b: e1:0a:2e:10:13:84:b8:1d:86:df:95:b4:13:0c:2d: 1d:b9:99:2e:aa:d6:3d:7a:8c:52:14:bc:8b:da:e6: b0:b9:b9:18:a2:fd:b6:c7:da:cd:a4:53:f1:60:08: f7:65:b0:ea:ab:86:5a:6f:7c:e4:93:e3:40:5a:d7: 90:c2:be:85:97:6a:f6:12:41:da:45:c1:34:cc:07: 5f:44:8a:91:41:83:de:84:90:9d:42:97:c8:13:50: ae:b9:19:b9:0b:18:64:02:5d:8f:8d:b5:66:2a:d5: ba:0e:56:19:1f:a9:84:92:cb:44:00:0a:5e:cf:c7: 38:66:b4:38:af:39:cd:63:65:3a:66:3c:d2:03:e6: d1:57:06:d2:fb:0e:54:59:2d:3b:4a:df:80:5c:b4: 3a:af:66:11:a2:42:fe:4f:d1:94:27:7d:aa:6b:d5: 55:5e:c7:f4:6e:b4:8e:89:60:51:91:da:bc:87:86: e6:f7:79:8a:8b:53:72:b4:2a:cd:07:fd:fb:62:30: cf:27:f6:91:aa:8f:c9:d8:43:a6:16:77:08:e0:b3: b2:17:dc:c1:12:6f:ca:6c:13:a7:70:17:2b:7d:6f: fa:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:19:E8:B6:DF:BF:A0:80:21:DA:EB:9B:A2:0A:76:C6:E3:D5:07:5A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f3d38170-222e-408d-8641-acc6a51acb98.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:369e::/47 Signature Algorithm: sha256WithRSAEncryption be:ee:e5:cd:d4:f9:e4:24:96:0b:9c:a7:10:81:18:21:b4:32: 37:dc:50:29:12:e3:83:9d:2d:24:d6:56:62:47:33:e8:28:75: c6:d7:a5:2c:50:47:a9:cb:43:13:a1:75:14:82:1d:10:3f:d7: 41:ff:a8:b1:2d:7c:06:b0:3a:3d:73:6a:c8:b4:fd:78:fe:5a: f4:5b:8c:31:3e:5d:15:9c:3b:51:6f:47:20:b4:62:d4:42:86: e6:e3:81:b7:e9:58:03:ba:9e:92:48:94:2a:81:12:11:be:af: da:52:1a:12:07:ee:c1:a1:e9:a1:c0:2f:68:c2:ec:03:7d:c7: 67:4c:d0:66:42:e4:f2:3e:7b:36:4d:eb:8f:7b:4e:ef:e7:dc: f7:41:2b:7d:cc:9f:8e:64:2a:2c:22:47:52:f2:56:5b:1a:d7: 54:f1:05:c0:80:94:f5:84:0d:82:cc:95:b6:ac:45:1e:b0:db: 51:8f:08:04:cc:26:f7:7e:0c:7b:69:fc:87:ab:57:cd:59:d2: 8d:9e:7a:96:df:7c:65:24:56:74:ea:91:f8:5c:aa:c9:97:bf: b5:cf:08:c3:6a:97:d6:04:48:89:7d:20:49:b0:9f:34:98:24: 28:7f:49:0d:bd:73:72:d1:19:f4:09:d9:83:10:d7:e6:58:ea: 94:09:36:b2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOv9zJOr66rJ3iNB1lD2Ls/yuQUYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEzMDIzMDE1WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OGY5NzRiMDFhZmFlOWY3MmU1MzNiNzcyYmNjMDg4ODg3 ZGNkZDNiZjQ4MTcxODliYWI3MmZkNjA4NDI5YjEyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTzUI1CUkWA9TaULUifv9esRheSQXaZLO6kM+5m+EKLhAT hLgdht+VtBMMLR25mS6q1j16jFIUvIva5rC5uRii/bbH2s2kU/FgCPdlsOqrhlpv fOST40Ba15DCvoWXavYSQdpFwTTMB19EipFBg96EkJ1Cl8gTUK65GbkLGGQCXY+N tWYq1boOVhkfqYSSy0QACl7PxzhmtDivOc1jZTpmPNID5tFXBtL7DlRZLTtK34Bc tDqvZhGiQv5P0ZQnfapr1VVex/RutI6JYFGR2ryHhub3eYqLU3K0Ks0H/ftiMM8n 9pGqj8nYQ6YWdwjgs7IX3MESb8psE6dwFyt9b/r1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2hnott+/oIAh2uubogp2xuPVB1owHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2YzZDM4MTcwLTIyMmUtNDA4ZC04NjQxLWFjYzZhNTFhY2I5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANp4wDQYJKoZIhvcNAQELBQADggEBAL7u5c3U+eQklgucpxCBGCG0 MjfcUCkS44OdLSTWVmJHM+godcbXpSxQR6nLQxOhdRSCHRA/10H/qLEtfAawOj1z asi0/Xj+WvRbjDE+XRWcO1FvRyC0YtRChubjgbfpWAO6npJIlCqBEhG+r9pSGhIH 7sGh6aHAL2jC7AN9x2dM0GZC5PI+ezZN6497Tu/n3PdBK33Mn45kKiwiR1LyVlsa 11TxBcCAlPWEDYLMlbasRR6w21GPCATMJvd+DHtp/IerV81Z0o2eepbffGUkVnTq kfhcqsmXv7XPCMNql9YESIl9IEmwnzSYJCh/SQ29c3LRGfQJ2YMQ1+ZY6pQJNrI= -----END CERTIFICATE-----Generated at Mon Mar 2 09:05:09 2026 by rpki-client