$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/21f25df7-f320-448b-aa91-134cbc46dc74.roa File: 21f25df7-f320-448b-aa91-134cbc46dc74.roa (raw, json) Hash identifier: +DxDRcpFuveIdBY0NyJV69glNUEeFFe11ZfIRaoynQ0= Subject key identifier: 87:B6:CF:E4:FA:01:41:35:17:CA:35:42:DC:90:98:32:B5:E1:1F:4F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7AC8AF8E7A7EB61C50086013EBE2C6DE3FEF0E07 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/21f25df7-f320-448b-aa91-134cbc46dc74.roa Signing time: Mon 04 May 2026 13:31:45 +0000 ROA not before: Mon 04 May 2026 13:31:45 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3628::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:c8:af:8e:7a:7e:b6:1c:50:08:60:13:eb:e2:c6:de:3f:ef:0e:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 13:31:45 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=125d2d2120fabda07e9f0197bbf5a5d665d6c974584f871636809ebc75a8f20d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5a:79:1e:4b:08:63:fb:64:38:4c:66:69:71: c0:2c:4c:d0:42:ac:eb:d0:33:ff:3e:3f:ca:f3:8f: 6e:55:c6:82:ec:9b:c2:fe:e2:b2:24:39:3d:b1:48: 87:88:0d:8e:a1:41:1b:f3:2a:4b:a6:34:a6:b9:b5: 4e:1e:4b:64:cd:75:2e:2f:07:95:21:86:f1:67:29: d7:27:ed:04:52:fb:60:7c:08:fd:fe:e6:6f:a6:f2: ea:37:c1:88:65:5b:2c:ae:82:d8:d9:05:26:c1:18: 05:a1:c7:3e:69:97:e5:d2:0d:0c:2d:ce:d8:bb:02: a8:5b:ec:f5:3c:9e:86:c1:2a:94:24:be:f0:99:7e: a4:08:40:7b:0a:46:b2:93:b6:c6:32:62:cc:31:9a: 5d:9c:e4:f6:3a:18:f4:f9:21:f2:76:38:3f:0e:40: d1:86:dc:8c:53:56:a6:05:49:af:ad:19:92:97:8b: f1:24:e7:76:8e:a6:77:84:78:f5:1d:e0:5d:0c:0d: 07:d7:c3:bb:fb:d6:e8:43:c3:03:73:0e:87:7d:a1: 72:7f:eb:ce:39:c2:e6:56:9b:4f:a7:fd:56:54:b9: 26:60:a0:a6:1f:d4:97:ee:13:de:e0:39:c0:16:c0: 06:78:88:77:30:4b:29:a6:e7:df:6c:b6:bb:2b:42: ee:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B6:CF:E4:FA:01:41:35:17:CA:35:42:DC:90:98:32:B5:E1:1F:4F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/21f25df7-f320-448b-aa91-134cbc46dc74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3628::/45 Signature Algorithm: sha256WithRSAEncryption a5:ac:26:fb:5c:74:cb:b6:a2:be:50:24:d6:b0:73:a4:1c:c8: 0f:d7:69:6d:3f:07:99:f6:19:ec:a2:77:5a:43:20:4f:9d:da: 86:6e:dd:a7:aa:10:a5:8b:28:81:4b:3e:11:df:1f:15:2f:3c: 23:57:df:9d:51:a5:94:99:0b:e5:d9:f7:f7:9f:e5:e9:37:ea: 26:6e:7e:c3:00:1b:27:83:ea:af:55:a8:31:11:94:50:ed:f7: 1e:c8:06:cc:a0:4f:9a:2e:a5:ea:a6:ff:f3:62:e9:8f:da:d4: 9e:78:31:e7:22:83:a0:61:1d:25:46:fc:c0:71:6a:46:a5:7f: a0:cd:a3:92:09:50:83:54:5d:cf:d4:94:6a:14:ba:c3:6d:93: 94:b1:03:ab:62:d6:a7:0a:df:a7:a7:41:e2:f0:5d:0a:62:12: 90:35:39:ef:b2:c0:f2:71:95:45:37:48:6d:f3:c2:b7:fe:2a: db:c0:34:01:69:a2:76:d8:d4:61:7e:8b:2b:9f:13:81:77:b7: 8d:50:88:29:1a:f5:67:2a:ea:db:05:49:a1:b5:5d:e0:59:ac: 1b:43:f6:77:79:10:7a:d7:96:f6:d0:af:15:66:40:2e:1e:e5: 03:b9:93:33:9b:05:9d:71:6a:44:3e:f4:ec:a2:ef:b4:67:a7: c2:e1:24:8a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUesivjnp+thxQCGAT6+LG3j/vDgcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MTMzMTQ1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjVkMmQyMTIwZmFiZGEwN2U5ZjAxOTdiYmY1YTVkNjY1 ZDZjOTc0NTg0Zjg3MTYzNjgwOWViYzc1YThmMjBkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5WnkeSwhj+2Q4TGZpccAsTNBCrOvQM/8+P8rzj25VxoLs m8L+4rIkOT2xSIeIDY6hQRvzKkumNKa5tU4eS2TNdS4vB5UhhvFnKdcn7QRS+2B8 CP3+5m+m8uo3wYhlWyyugtjZBSbBGAWhxz5pl+XSDQwtzti7Aqhb7PU8nobBKpQk vvCZfqQIQHsKRrKTtsYyYswxml2c5PY6GPT5IfJ2OD8OQNGG3IxTVqYFSa+tGZKX i/Ek53aOpneEePUd4F0MDQfXw7v71uhDwwNzDod9oXJ/6845wuZWm0+n/VZUuSZg oKYf1JfuE97gOcAWwAZ4iHcwSymm599strsrQu7XAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUh7bP5PoBQTUXyjVC3JCYMrXhH08wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIxZjI1ZGY3LWYzMjAtNDQ4Yi1hYTkxLTEzNGNiYzQ2ZGM3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAANigwDQYJKoZIhvcNAQELBQADggEBAKWsJvtcdMu2or5QJNawc6Qc yA/XaW0/B5n2Geyid1pDIE+d2oZu3aeqEKWLKIFLPhHfHxUvPCNX351RpZSZC+XZ 9/ef5ek36iZufsMAGyeD6q9VqDERlFDt9x7IBsygT5oupeqm//Ni6Y/a1J54Meci g6BhHSVG/MBxakalf6DNo5IJUINUXc/UlGoUusNtk5SxA6ti1qcK36enQeLwXQpi EpA1Oe+ywPJxlUU3SG3zwrf+KtvANAFponbY1GF+iyufE4F3t41QiCka9Wcq6tsF SaG1XeBZrBtD9nd5EHrXlvbQrxVmQC4e5QO5kzObBZ1xakQ+9Oyi77Rnp8LhJIo= -----END CERTIFICATE-----Generated at Wed May 13 01:30:59 2026 by rpki-client