$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/01f936e1-60a2-4d7f-a949-786fa3430156.roa File: 01f936e1-60a2-4d7f-a949-786fa3430156.roa (raw, json) Hash identifier: QWcglIC9r8wlVPHaVvmI43twuMstjK9Iwzm4Q7jhGgk= Subject key identifier: B7:6E:29:16:8D:42:C7:E8:0D:87:5B:25:9E:62:6D:3F:04:E6:B9:06 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 0F1934B1C26364C686E8D48C83839972B7F114AD Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/01f936e1-60a2-4d7f-a949-786fa3430156.roa Signing time: Sat 28 Feb 2026 00:50:42 +0000 ROA not before: Sat 28 Feb 2026 00:50:42 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.10.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:19:34:b1:c2:63:64:c6:86:e8:d4:8c:83:83:99:72:b7:f1:14:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Feb 28 00:50:42 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=ac6da68eef43ad4d8bdb01f3f2d7624348049eb58b0e6fedd92034c8f51d74af, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:62:d6:22:a9:dd:d3:ac:52:f7:c8:f7:fc:a5: 8b:bf:e5:78:e4:d5:8a:c7:da:07:28:8e:b3:94:dc: b1:23:9f:e6:d7:2d:0e:7e:96:cb:a9:21:81:ce:1c: 9d:74:73:8d:89:ac:04:13:10:94:c8:9d:e0:c6:f7: 73:a8:0b:54:a5:5e:ce:6b:ec:05:33:c0:fe:f4:7a: 2b:be:83:6e:6e:d0:60:bb:ed:45:9a:01:c1:ec:d6: 17:15:50:03:0f:48:fc:8b:c3:06:56:e0:d4:45:4c: e0:a3:31:80:8b:54:30:bb:2e:ec:8b:74:3a:cb:52: 70:9f:b8:0b:8b:be:e6:f5:75:91:71:a5:84:c3:9f: e5:6d:c8:b5:9a:dd:f6:8b:db:54:94:30:0a:aa:aa: 4c:2e:1e:4b:5c:ca:f6:8e:59:9b:e4:89:f6:bc:18: a5:d3:76:04:2f:2e:da:52:ed:2a:d7:2c:6a:98:a5: f0:7e:91:81:ef:d5:bf:26:0e:02:ce:67:16:dd:d4: 4c:f7:03:c0:64:6c:72:86:f2:d5:8b:49:57:6d:04: 55:5e:67:3e:d1:a3:61:3d:fc:a8:5e:0a:e6:a1:8c: 1f:0d:32:84:f9:ee:1b:7b:1f:b0:9e:6d:72:b3:87: c8:87:0d:46:1c:59:0f:7d:04:4d:3e:7b:37:b4:bd: ad:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:6E:29:16:8D:42:C7:E8:0D:87:5B:25:9E:62:6D:3F:04:E6:B9:06 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/01f936e1-60a2-4d7f-a949-786fa3430156.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.10.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:2d:f6:b9:5d:cb:cb:12:d7:5a:60:ba:57:eb:90:c2:ac:aa: 0b:9a:44:e0:82:43:95:8d:e9:ab:0e:87:96:be:d8:94:c3:04: c1:f8:e9:c7:f3:53:f0:f6:3a:eb:9d:21:2a:9f:c6:a8:f5:3e: 07:63:73:f0:cf:1c:2b:75:62:5d:18:ab:a6:54:16:1a:de:fe: 95:96:f0:dd:a5:4f:84:e5:0b:04:54:10:39:33:3f:e3:71:76: 45:76:bf:f6:d3:f2:53:c7:34:3a:54:03:19:22:ea:d2:f4:ef: 05:ed:45:85:bf:dc:6d:5e:e9:bd:07:f2:a0:0f:76:c0:31:47: 00:f2:9f:c7:b2:2d:d7:db:96:ef:ca:af:88:5a:af:de:ff:31: 7e:ad:e2:8e:65:18:5e:c9:bd:48:11:88:df:a9:e4:48:6f:eb: a3:16:62:80:e4:cd:5e:26:6d:f5:75:f8:0e:20:74:31:29:06: 55:b7:1e:27:00:4d:5e:a8:d5:b3:cb:dc:f3:4e:7f:d9:0a:bb: c8:d0:f8:ce:85:2d:08:d1:a0:fb:f3:9f:10:37:fa:79:41:8a: cc:90:d7:78:95:31:c5:02:b5:f6:e1:d2:c2:cd:9e:c8:2b:09: bf:53:4f:16:5e:75:5b:e2:16:ee:5b:fe:bc:6c:02:9a:f2:2a: 30:01:43:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDxk0scJjZMaG6NSMg4OZcrfxFK0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjYwMjI4MDA1MDQyWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzZkYTY4ZWVmNDNhZDRkOGJkYjAxZjNmMmQ3NjI0MzQ4 MDQ5ZWI1OGIwZTZmZWRkOTIwMzRjOGY1MWQ3NGFmMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjYtYiqd3TrFL3yPf8pYu/5Xjk1YrH2gcojrOU3LEjn+bX LQ5+lsupIYHOHJ10c42JrAQTEJTIneDG93OoC1SlXs5r7AUzwP70eiu+g25u0GC7 7UWaAcHs1hcVUAMPSPyLwwZW4NRFTOCjMYCLVDC7LuyLdDrLUnCfuAuLvub1dZFx pYTDn+VtyLWa3faL21SUMAqqqkwuHktcyvaOWZvkifa8GKXTdgQvLtpS7SrXLGqY pfB+kYHv1b8mDgLOZxbd1Ez3A8BkbHKG8tWLSVdtBFVeZz7Ro2E9/KheCuahjB8N MoT57ht7H7CebXKzh8iHDUYcWQ99BE0+eze0va0DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUt24pFo1Cx+gNh1slnmJtPwTmuQYwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzAxZjkzNmUxLTYwYTItNGQ3Zi1hOTQ5LTc4NmZhMzQzMDE1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFgfwowDQYJKoZIhvcNAQELBQADggEBAF0t9rldy8sS11pgulfrkMKsqgua ROCCQ5WN6asOh5a+2JTDBMH46cfzU/D2OuudISqfxqj1Pgdjc/DPHCt1Yl0Yq6ZU Fhre/pWW8N2lT4TlCwRUEDkzP+NxdkV2v/bT8lPHNDpUAxki6tL07wXtRYW/3G1e 6b0H8qAPdsAxRwDyn8eyLdfblu/Kr4har97/MX6t4o5lGF7JvUgRiN+p5Ehv66MW YoDkzV4mbfV1+A4gdDEpBlW3HicATV6o1bPL3PNOf9kKu8jQ+M6FLQjRoPvznxA3 +nlBisyQ13iVMcUCtfbh0sLNnsgrCb9TTxZedVviFu5b/rxsApryKjABQ5c= -----END CERTIFICATE-----Generated at Sun Mar 1 22:00:19 2026 by rpki-client