$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0d1f2406-5c37-45eb-9d1e-669c9574ae51.roa File: 0d1f2406-5c37-45eb-9d1e-669c9574ae51.roa (raw, json) Hash identifier: eY4AwfPskdGiSyXSmvYL0BNdPrGqpA51whtDGrL+KRI= Subject key identifier: 8B:FA:4A:83:65:7A:12:62:41:99:A7:56:1B:D0:54:43:E7:01:6B:0F Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4AEDFE3ED10AEF3797548AB48AE5613E5C129F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0d1f2406-5c37-45eb-9d1e-669c9574ae51.roa Signing time: Fri 06 Feb 2026 00:30:14 +0000 ROA not before: Fri 06 Feb 2026 00:30:14 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2606:8140:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 24 Feb 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ed:fe:3e:d1:0a:ef:37:97:54:8a:b4:8a:e5:61:3e:5c:12:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 6 00:30:14 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=3e358d8f04b3cb86db3145c93e580b668be460a9c7790aa455cce4d558c6ffd7, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5f:b5:e4:d8:9a:25:40:64:88:ee:c9:0b:a4: 9a:04:47:94:66:2d:30:ba:12:3d:96:dc:b9:3e:48: 59:41:5d:ec:e0:16:29:ef:b7:0c:02:9b:0f:dc:9b: 9e:e1:c3:4f:cc:c5:0b:76:e1:65:86:6a:93:07:9f: bc:44:f9:f3:be:fc:79:9f:af:62:50:b7:a1:fd:48: c1:a6:cf:d3:0a:d0:3a:e5:d2:93:4d:4d:94:73:8d: af:c9:88:d1:31:5d:04:b6:bc:27:24:a7:bb:16:08: 54:a0:ba:bc:73:9a:bf:d7:93:25:f2:9e:3f:0a:b2: 0c:8a:95:ac:6e:45:13:79:37:b3:0c:6b:f2:21:46: 58:07:c0:28:07:6e:d5:c0:8f:82:c6:f6:64:a3:c2: 63:e9:b4:bc:5d:e8:2e:49:3b:b2:a8:81:9e:23:90: da:43:cd:c4:70:2d:91:af:c2:88:d6:83:13:5c:e8: 31:72:9f:84:89:64:f5:01:5b:91:a9:be:75:f4:83: 75:e0:9c:c7:35:f1:f0:f3:34:1f:b4:e7:e0:6a:38: 3d:f2:c0:b9:c9:cd:74:01:be:e1:f2:ca:e8:98:a5: b6:a0:e7:af:35:8b:b1:bd:e6:96:e6:0d:cd:9b:85: 00:62:ea:af:cf:2e:1d:45:a8:27:d7:02:74:bd:5a: 9f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:FA:4A:83:65:7A:12:62:41:99:A7:56:1B:D0:54:43:E7:01:6B:0F X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0d1f2406-5c37-45eb-9d1e-669c9574ae51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140:100::/40 Signature Algorithm: sha256WithRSAEncryption 63:c2:e3:91:5a:ca:52:c0:40:3b:f8:0e:a5:ae:5d:fa:df:d5: 69:de:a4:00:a4:b2:fc:10:a1:62:97:f6:83:df:47:1a:c2:b7: 28:b2:3e:fa:e7:ef:08:61:d4:c2:4c:7b:3a:2a:8b:e0:d4:ca: ac:17:ea:77:bd:74:ea:b8:ef:83:55:25:5d:d4:96:8e:a6:f2: ce:ea:4e:8f:b0:c4:61:c0:2f:4f:c6:3a:9b:19:e1:e0:b3:3c: 10:f4:62:9f:cd:f4:39:b9:6a:15:55:86:ca:19:a1:26:15:77: fe:33:9d:71:d3:73:bd:86:a4:22:60:57:1d:90:ea:cb:e7:87: 42:8e:2a:4e:1f:ab:cd:c8:9d:f5:61:1e:71:50:9e:4d:21:7f: 9b:40:06:9f:61:82:1f:05:09:74:bb:66:42:5c:ce:44:96:72: 84:bb:04:45:a5:94:c5:7c:c1:19:61:ad:6b:a2:69:1e:67:5f: db:25:ce:db:d6:83:27:8f:b5:2b:90:1d:cc:ce:90:c2:b7:5a: ce:1c:ce:b2:9b:93:48:c2:47:91:f8:4a:86:22:aa:04:73:40: ab:44:d9:b1:91:79:66:3f:24:ef:de:7f:4d:93:7c:07:ab:98: 10:6c:8b:e5:5f:07:d8:0e:39:8d:06:25:b1:da:c8:2c:97:0a: a2:60:82:b3 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITSu3+PtEK7zeXVIq0iuVhPlwSnzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI5YWIwMTVmMzgyNmUwMTM1MTJhNDUyOThhNDJmMmJhYmEx ZmE3MmY4ZDI3OTM4ODc4YzAeFw0yNjAyMDYwMDMwMTRaFw0yNjA1MDcyMzU5NTla MHoxSTBHBgNVBAUTQDNlMzU4ZDhmMDRiM2NiODZkYjMxNDVjOTNlNTgwYjY2OGJl NDYwYTljNzc5MGFhNDU1Y2NlNGQ1NThjNmZmZDcxLTArBgNVBAMTJDhjZDg0NDJm LTIzNWYtNDE3MS04NGU2LThlMTAwN2E2NGM2MDCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKdfteTYmiVAZIjuyQukmgRHlGYtMLoSPZbcuT5IWUFd7OAW Ke+3DAKbD9ybnuHDT8zFC3bhZYZqkwefvET58778eZ+vYlC3of1IwabP0wrQOuXS k01NlHONr8mI0TFdBLa8JySnuxYIVKC6vHOav9eTJfKePwqyDIqVrG5FE3k3swxr 8iFGWAfAKAdu1cCPgsb2ZKPCY+m0vF3oLkk7sqiBniOQ2kPNxHAtka/CiNaDE1zo MXKfhIlk9QFbkam+dfSDdeCcxzXx8PM0H7Tn4Go4PfLAucnNdAG+4fLK6JiltqDn rzWLsb3mluYNzZuFAGLqr88uHUWoJ9cCdL1an4cCAwEAAaOCArMwggKvMB0GA1Ud DgQWBBSL+kqDZXoSYkGZp1Yb0FRD5wFrDzAfBgNVHSMEGDAWgBRqzD59oudtmREP 1jnEE35CQplw2DAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzY3NTU5NzBjLTQ3 NDctNDk5ZC05Nzc0LTVlMTMwOGM1MDFhNy85YWIwMTVmMzgyNmUwMTM1MTJhNDUy OThhNDJmMmJhYmExZmE3MmY4ZDI3OTM4ODc4Yy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzJkOGRiMC00NzI4LTRmYzEtYmRkOC00NzEx Mjk4NjYzNjIvMGQxZjI0MDYtNWMzNy00NWViLTlkMWUtNjY5Yzk1NzRhZTUxLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgt NDcxMTI5ODY2MzYyL2JnRTFFcVJTbUtRdks2dWgtbkw0MG5rNGg0dy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGACYGgUABMA0GCSqGSIb3DQEBCwUAA4IBAQBjwuORWspSwEA7+A6lrl3639Vp 3qQApLL8EKFil/aD30cawrcosj765+8IYdTCTHs6Kovg1MqsF+p3vXTquO+DVSVd 1JaOpvLO6k6PsMRhwC9PxjqbGeHgszwQ9GKfzfQ5uWoVVYbKGaEmFXf+M51x03O9 hqQiYFcdkOrL54dCjipOH6vNyJ31YR5xUJ5NIX+bQAafYYIfBQl0u2ZCXM5ElnKE uwRFpZTFfMEZYa1romkeZ1/bJc7b1oMnj7UrkB3MzpDCt1rOHM6ym5NIwkeR+EqG IqoEc0CrRNmxkXlmPyTv3n9Nk3wHq5gQbIvlXwfYDjmNBiWx2sgslwqiYIKz -----END CERTIFICATE-----Generated at Mon Feb 23 05:15:28 2026 by rpki-client