$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fa86767a-33a5-418e-9773-6d207816cd77.roa File: fa86767a-33a5-418e-9773-6d207816cd77.roa (raw, json) Hash identifier: QDHMTMBgiWRHBFyv2j8PulIhR7epkaydsl2B5mTGzcw= Subject key identifier: 0B:4C:7B:22:97:23:39:51:7E:0A:94:16:C4:27:96:A7:E5:57:43:F1 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3FB323008A77BDAD0667C454F5FA21C50F54197D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fa86767a-33a5-418e-9773-6d207816cd77.roa Signing time: Sun 01 Mar 2026 00:40:44 +0000 ROA not before: Sun 01 Mar 2026 00:40:44 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:b3:23:00:8a:77:bd:ad:06:67:c4:54:f5:fa:21:c5:0f:54:19:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Mar 1 00:40:44 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=d23ed00d98f35a137596f9877d338a2b5dbb99e39ae2e6dbc586d2745c57b7b1, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a8:26:53:d0:d0:de:d8:ed:b3:13:7c:0a:27: 4a:31:0d:98:8e:39:0e:de:16:65:bf:e2:97:ce:a8: 18:6a:94:31:df:f6:fb:b7:b5:99:4a:ea:2f:36:7e: 6a:27:17:a1:3a:e9:73:bd:c9:ec:24:1f:5d:33:ea: 88:a7:af:63:f4:b6:27:7f:75:83:db:94:6c:bf:1b: 26:00:23:1c:a0:f6:64:3e:1a:3f:b7:6f:32:47:e9: a2:e3:20:f1:12:e7:c5:f0:01:6b:52:28:cb:84:04: da:86:8e:29:58:ae:ca:e3:9a:3d:27:e5:30:ed:d5: 3f:6f:b6:fe:34:09:18:65:20:a7:91:c5:a4:92:5f: c2:1e:25:9a:45:ef:f2:1d:a9:03:81:9c:ba:33:80: bf:28:b4:ba:50:c7:f4:a9:88:b9:17:86:0d:56:38: ed:b2:3f:07:04:e2:a5:32:64:41:93:5a:97:33:eb: 3b:80:37:3b:0c:3f:bd:f9:02:4c:3e:e4:45:52:b6: 5e:1b:7c:f0:82:88:20:bf:4e:78:e3:58:0e:81:65: 32:4c:29:87:fa:33:ab:d2:71:26:1f:cb:0b:da:94: 85:86:f6:47:be:49:d7:e0:dd:13:99:38:7b:81:f4: 42:1b:e7:e2:88:b6:a5:21:f0:ce:68:5a:7a:7c:0e: 0b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:4C:7B:22:97:23:39:51:7E:0A:94:16:C4:27:96:A7:E5:57:43:F1 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fa86767a-33a5-418e-9773-6d207816cd77.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.206.0/23 Signature Algorithm: sha256WithRSAEncryption bb:75:d7:68:5c:bc:51:ae:6c:3f:a5:ef:fc:1b:1a:89:25:19: 59:73:93:b9:0c:64:34:e4:57:75:45:35:5f:ab:c2:f1:2a:4d: 51:7b:36:7a:65:31:23:5c:d6:f6:7c:0f:81:57:29:03:5e:a4: 21:c4:4b:22:57:5f:87:c8:9a:b9:16:fc:53:ff:8a:85:ba:bc: a9:93:02:a2:36:84:cf:07:69:7f:5f:09:ff:87:88:eb:7c:af: 9a:e0:f6:02:fc:fd:a3:97:d8:72:e6:7d:94:13:26:1d:97:c7: 3e:4f:21:09:bd:0c:ab:ac:25:f6:cb:4b:3a:32:2e:79:9f:6f: 93:2e:07:07:02:9b:c3:3f:29:c5:32:60:69:25:ac:4d:fb:e1: dc:2d:c3:00:f0:d1:f8:3b:e6:27:91:8b:c3:8c:4b:46:27:a1: ba:1b:c9:4d:7a:91:79:c3:b7:2f:1f:33:eb:58:76:30:75:a0: fc:a4:7a:92:9e:d3:64:81:0c:ce:fa:c6:a7:41:38:cd:15:47: 63:46:50:34:7e:9e:77:89:ce:12:e2:5b:82:3d:aa:26:99:bf: 64:ac:6f:63:0b:a6:a3:af:7d:08:0b:01:6f:f4:a2:ff:22:6e: 00:a4:2d:63:5e:70:12:df:fa:73:eb:ba:f2:89:fa:8e:eb:27: ce:b5:14:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP7MjAIp3va0GZ8RU9fohxQ9UGX0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMzAxMDA0MDQ0WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjNlZDAwZDk4ZjM1YTEzNzU5NmY5ODc3ZDMzOGEyYjVk YmI5OWUzOWFlMmU2ZGJjNTg2ZDI3NDVjNTdiN2IxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7qCZT0NDe2O2zE3wKJ0oxDZiOOQ7eFmW/4pfOqBhqlDHf 9vu3tZlK6i82fmonF6E66XO9yewkH10z6oinr2P0tid/dYPblGy/GyYAIxyg9mQ+ Gj+3bzJH6aLjIPES58XwAWtSKMuEBNqGjilYrsrjmj0n5TDt1T9vtv40CRhlIKeR xaSSX8IeJZpF7/IdqQOBnLozgL8otLpQx/SpiLkXhg1WOO2yPwcE4qUyZEGTWpcz 6zuANzsMP735Akw+5EVStl4bfPCCiCC/TnjjWA6BZTJMKYf6M6vScSYfywvalIWG 9ke+Sdfg3ROZOHuB9EIb5+KItqUh8M5oWnp8DgujAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUC0x7IpcjOVF+CpQWxCeWp+VXQ/EwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ZhODY3NjdhLTMzYTUtNDE4ZS05NzczLTZkMjA3ODE2Y2Q3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHN+84wDQYJKoZIhvcNAQELBQADggEBALt112hcvFGubD+l7/wbGoklGVlz k7kMZDTkV3VFNV+rwvEqTVF7NnplMSNc1vZ8D4FXKQNepCHESyJXX4fImrkW/FP/ ioW6vKmTAqI2hM8HaX9fCf+HiOt8r5rg9gL8/aOX2HLmfZQTJh2Xxz5PIQm9DKus JfbLSzoyLnmfb5MuBwcCm8M/KcUyYGklrE374dwtwwDw0fg75ieRi8OMS0Ynobob yU16kXnDty8fM+tYdjB1oPykepKe02SBDM76xqdBOM0VR2NGUDR+nneJzhLiW4I9 qiaZv2Ssb2MLpqOvfQgLAW/0ov8ibgCkLWNecBLf+nPruvKJ+o7rJ861FLk= -----END CERTIFICATE-----Generated at Sun Mar 1 22:24:34 2026 by rpki-client