$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fb63a04c-aa70-41aa-a23b-07a172f420ec.roa File: fb63a04c-aa70-41aa-a23b-07a172f420ec.roa (raw, json) Hash identifier: dVTS/mKf7MTiqQjlspGfXiyFx4RT9lrXTkzVy6496kw= Subject key identifier: 3E:F7:1E:DF:0B:88:9C:BA:90:CD:11:B9:AF:39:F8:A0:B4:A9:3C:86 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0D05C5CA6E0A48E70C8C8339B2952F712D75E3BF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fb63a04c-aa70-41aa-a23b-07a172f420ec.roa Signing time: Fri 03 Apr 2026 00:30:15 +0000 ROA not before: Fri 03 Apr 2026 00:30:15 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:11cf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:05:c5:ca:6e:0a:48:e7:0c:8c:83:39:b2:95:2f:71:2d:75:e3:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 00:30:15 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=581d316841399e8ed5cb285cfe858c222ae11ae98c74b5132953296fd80941d7, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:00:d5:d8:27:39:78:ab:40:e6:5e:8f:f3:95: 19:c1:62:14:96:19:d2:0e:ee:b9:31:c6:50:dc:67: 68:e9:d7:7c:4e:ab:1c:b5:8d:d9:b7:7e:68:7b:5a: 1e:6a:4e:ed:9a:08:86:b6:1e:9b:33:17:b2:38:c1: f7:3b:c0:4a:d1:aa:23:cd:94:d6:dc:2d:c6:a9:95: e6:99:a0:08:0e:75:c5:28:53:96:cb:e0:6c:d8:d7: 83:37:19:2b:ef:20:c7:d9:40:eb:2c:12:94:79:65: 29:f7:67:b7:9b:52:87:bd:3b:82:53:86:c8:ab:9c: 9f:75:1c:2d:b8:76:cf:d3:0e:5f:a2:51:95:e8:0c: 91:78:ae:45:8d:1f:96:ee:7b:35:20:ee:e7:53:3f: bd:33:d2:6f:23:6a:55:bd:9c:75:87:6b:30:55:6c: 5f:4b:93:60:df:28:de:e0:60:ee:77:fb:90:8d:2f: 67:fb:a8:50:50:aa:03:9b:8c:28:c5:ea:4c:71:30: e7:ad:6e:d0:37:1d:b0:27:1a:0c:35:4c:37:96:e3: 14:18:d9:00:00:dd:7a:5a:46:10:f7:31:24:4f:b9: c2:a4:3b:8f:18:36:5c:ba:12:5a:27:57:d8:51:e1: 16:5a:b0:a7:e5:91:9c:62:44:ed:58:e8:4e:13:17: 8b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:F7:1E:DF:0B:88:9C:BA:90:CD:11:B9:AF:39:F8:A0:B4:A9:3C:86 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fb63a04c-aa70-41aa-a23b-07a172f420ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:11cf::/48 Signature Algorithm: sha256WithRSAEncryption 77:4b:4e:0a:8e:19:6f:c3:e2:6a:0a:76:bf:b1:ae:ff:a3:6e: 51:c3:cb:04:48:e8:43:e8:18:44:7d:31:a3:0e:c8:df:ce:2d: 2a:17:52:cf:a6:aa:4a:94:85:0a:a4:80:3a:97:3f:7a:ad:83: c1:41:92:20:61:f1:e7:ae:9b:a8:d9:8b:bc:60:79:2c:83:60: f0:b7:e2:06:31:d9:9b:80:34:41:1f:ae:fb:e5:3b:33:f1:8e: 19:6d:e0:ce:50:84:56:06:f5:bf:97:0e:86:37:20:30:8d:24: ab:b1:df:b8:b2:97:f8:a5:7c:eb:b5:a4:95:21:5e:f6:0f:a5: 06:ca:8d:de:74:41:27:bb:ba:9b:07:55:b5:00:41:89:e1:ce: e2:cf:1c:d0:93:f8:e5:dc:25:54:b8:ef:9d:a1:77:7a:94:0c: bd:1c:45:b6:a5:d8:0b:db:65:5b:da:e7:f0:d6:1c:f4:fe:61: 52:0f:b8:a1:57:a6:88:c9:fa:df:b5:6e:b4:ff:84:0d:de:8a: 5a:fb:a8:f5:a3:f7:24:ef:75:28:82:12:77:39:d5:88:ad:33: f0:d0:4c:4a:aa:f3:2d:0a:e8:de:60:db:8f:92:43:d9:23:e7: f0:04:1f:6a:73:9d:5f:30:af:9c:1c:ac:c4:61:02:b6:76:71: 6d:03:e7:47 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDQXFym4KSOcMjIM5spUvcS11478wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDAzMDE1WhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODFkMzE2ODQxMzk5ZThlZDVjYjI4NWNmZTg1OGMyMjJh ZTExYWU5OGM3NGI1MTMyOTUzMjk2ZmQ4MDk0MWQ3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRANXYJzl4q0DmXo/zlRnBYhSWGdIO7rkxxlDcZ2jp13xO qxy1jdm3fmh7Wh5qTu2aCIa2HpszF7I4wfc7wErRqiPNlNbcLcapleaZoAgOdcUo U5bL4GzY14M3GSvvIMfZQOssEpR5ZSn3Z7ebUoe9O4JThsirnJ91HC24ds/TDl+i UZXoDJF4rkWNH5buezUg7udTP70z0m8jalW9nHWHazBVbF9Lk2DfKN7gYO53+5CN L2f7qFBQqgObjCjF6kxxMOetbtA3HbAnGgw1TDeW4xQY2QAA3XpaRhD3MSRPucKk O48YNly6ElonV9hR4RZasKflkZxiRO1Y6E4TF4uBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPvce3wuInLqQzRG5rzn4oLSpPIYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ZiNjNhMDRjLWFhNzAtNDFhYS1hMjNiLTA3YTE3MmY0MjBlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAEc8wDQYJKoZIhvcNAQELBQADggEBAHdLTgqOGW/D4moKdr+xrv+j blHDywRI6EPoGER9MaMOyN/OLSoXUs+mqkqUhQqkgDqXP3qtg8FBkiBh8eeum6jZ i7xgeSyDYPC34gYx2ZuANEEfrvvlOzPxjhlt4M5QhFYG9b+XDoY3IDCNJKux37iy l/ilfOu1pJUhXvYPpQbKjd50QSe7upsHVbUAQYnhzuLPHNCT+OXcJVS4752hd3qU DL0cRbal2AvbZVva5/DWHPT+YVIPuKFXpojJ+t+1brT/hA3eilr7qPWj9yTvdSiC Enc51YitM/DQTEqq8y0K6N5g24+SQ9kj5/AEH2pznV8wr5wcrMRhArZ2cW0D50c= -----END CERTIFICATE-----Generated at Fri Apr 17 04:44:39 2026 by rpki-client