$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fa6baf9a-228b-4866-88a4-89090958a97c.roa File: fa6baf9a-228b-4866-88a4-89090958a97c.roa (raw, json) Hash identifier: feSguBfsIZDOCngbLB8IpHn7stpR7kQvKPQk2AIpr1E= Subject key identifier: 75:7A:25:14:68:07:B5:A5:D1:01:87:52:72:A9:48:23:AB:2D:7B:42 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 36F240D6096F1C288CA2774F5D498C06DE1C0EB8 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fa6baf9a-228b-4866-88a4-89090958a97c.roa Signing time: Thu 12 Feb 2026 00:40:45 +0000 ROA not before: Thu 12 Feb 2026 00:40:45 +0000 ROA not after: Wed 13 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2f70::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:f2:40:d6:09:6f:1c:28:8c:a2:77:4f:5d:49:8c:06:de:1c:0e:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 12 00:40:45 2026 GMT Not After : May 13 23:59:59 2026 GMT Subject: serialNumber=211c732ea5480b909d37403ef7e40bb526935182ca9582de30e5bcb2629fd94d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d0:b7:db:c7:ec:4f:f0:3e:d8:bb:d7:c8:0f: 22:38:ff:2c:b9:26:dc:d2:dc:e6:d0:e8:01:cc:05: 24:7a:11:06:ca:03:ab:54:86:f8:fd:be:0a:11:8d: b4:c7:ad:ab:5f:8c:d7:5e:47:ac:4c:97:29:a7:a0: 60:46:81:8d:b3:bf:f7:34:8c:55:dc:44:1a:01:d3: 22:e5:8c:13:a9:23:4c:71:0c:36:4d:0a:72:d0:af: 82:70:ff:78:84:1c:50:bd:8b:d1:2f:dc:8e:22:0f: 7a:22:83:4d:99:f0:2c:b3:28:6a:8a:8b:ee:33:99: 4b:06:66:a9:ee:dc:18:5a:3c:d8:37:7e:a5:e9:29: a6:17:02:50:13:00:9e:3e:cb:73:38:a7:81:51:d2: 9d:02:dd:77:e5:5e:13:6b:bc:5c:d8:37:a5:5e:2b: fc:69:a7:ee:96:98:50:ad:33:e2:75:c4:7e:80:1a: 47:1e:f8:e5:b7:4d:d2:ed:9c:ae:fc:bf:01:8b:bb: 36:fd:d0:69:bd:8e:d3:72:da:d6:87:e6:8a:6d:f5: bd:1f:29:49:db:a5:76:59:51:97:af:a3:d4:b8:c1: 77:5d:fb:1b:8e:fc:74:9b:30:6a:3c:48:2a:6f:93: 9c:16:a6:5a:df:21:c7:a9:c1:1f:b8:f0:92:69:d3: e0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:7A:25:14:68:07:B5:A5:D1:01:87:52:72:A9:48:23:AB:2D:7B:42 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fa6baf9a-228b-4866-88a4-89090958a97c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2f70::/47 Signature Algorithm: sha256WithRSAEncryption 4a:f7:45:4a:7b:4e:37:18:a9:a3:da:91:28:04:86:1e:d1:1f: e2:fc:fb:41:06:10:fe:eb:c3:15:21:d5:ab:fa:d2:aa:2b:14: 7a:5c:b0:1d:af:07:22:f3:19:ae:3a:88:85:db:66:3a:cf:80: 55:6d:33:64:11:b5:30:c5:63:b3:0d:ee:d3:4c:09:8d:f0:80: f7:f8:5a:c9:41:1f:67:60:7d:9a:d4:22:0d:4f:f8:73:8c:f2: b6:d1:6b:83:05:ed:11:77:38:36:e6:8a:b1:3f:71:09:1c:3f: 5d:43:d0:c5:0a:ef:f6:04:12:51:5e:c1:20:87:ba:30:91:b2: 66:e9:fd:87:5d:c9:c3:86:57:19:f1:72:aa:e6:ab:e3:be:22: 19:9c:78:51:97:9c:60:ce:3e:4f:3c:39:83:98:d3:74:00:45: a5:8b:09:63:bb:bf:a6:5f:6b:61:85:7a:33:a2:83:4b:5e:2f: 32:4f:38:9b:e3:b6:6d:c0:45:49:c9:2d:ac:14:0c:7d:ea:6d: 15:21:f0:aa:bc:79:85:21:c9:17:f5:08:48:9b:2c:74:f6:d7: 98:17:95:6a:78:2f:cb:e6:af:1a:04:9a:a6:dc:74:a7:e6:89: 71:9c:9f:a1:7a:59:47:86:f7:44:4b:86:fd:02:8f:eb:d0:74: 58:cd:a4:71 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNvJA1glvHCiMondPXUmMBt4cDrgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjEyMDA0MDQ1WhcNMjYwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTFjNzMyZWE1NDgwYjkwOWQzNzQwM2VmN2U0MGJiNTI2 OTM1MTgyY2E5NTgyZGUzMGU1YmNiMjYyOWZkOTRkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK0Lfbx+xP8D7Yu9fIDyI4/yy5JtzS3ObQ6AHMBSR6EQbK A6tUhvj9vgoRjbTHratfjNdeR6xMlymnoGBGgY2zv/c0jFXcRBoB0yLljBOpI0xx DDZNCnLQr4Jw/3iEHFC9i9Ev3I4iD3oig02Z8CyzKGqKi+4zmUsGZqnu3BhaPNg3 fqXpKaYXAlATAJ4+y3M4p4FR0p0C3XflXhNrvFzYN6VeK/xpp+6WmFCtM+J1xH6A Gkce+OW3TdLtnK78vwGLuzb90Gm9jtNy2taH5opt9b0fKUnbpXZZUZevo9S4wXdd +xuO/HSbMGo8SCpvk5wWplrfIcepwR+48JJp0+AFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdXolFGgHtaXRAYdScqlII6ste0IwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ZhNmJhZjlhLTIyOGItNDg2Ni04OGE0LTg5MDkwOTU4YTk3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAL3AwDQYJKoZIhvcNAQELBQADggEBAEr3RUp7TjcYqaPakSgEhh7R H+L8+0EGEP7rwxUh1av60qorFHpcsB2vByLzGa46iIXbZjrPgFVtM2QRtTDFY7MN 7tNMCY3wgPf4WslBH2dgfZrUIg1P+HOM8rbRa4MF7RF3ODbmirE/cQkcP11D0MUK 7/YEElFewSCHujCRsmbp/YddycOGVxnxcqrmq+O+IhmceFGXnGDOPk88OYOY03QA RaWLCWO7v6Zfa2GFejOig0teLzJPOJvjtm3ARUnJLawUDH3qbRUh8Kq8eYUhyRf1 CEibLHT215gXlWp4L8vmrxoEmqbcdKfmiXGcn6F6WUeG90RLhv0Cj+vQdFjNpHE= -----END CERTIFICATE-----Generated at Mon Mar 2 02:50:14 2026 by rpki-client