$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa File: 3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa (raw, json) Hash identifier: sMBtF+RjDceTuAAkgPimuYeE7/yryQnUZm9Y2LDvBeM= Subject key identifier: F3:8A:25:8E:57:93:E2:70:CE:0B:B7:12:43:6F:97:22:16:07:75:59 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 06DE36775AFA97A832391C75C7AD61C0B9FC3ABA Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa Signing time: Sat 28 Feb 2026 00:50:07 +0000 ROA not before: Sat 28 Feb 2026 00:50:07 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:de:36:77:5a:fa:97:a8:32:39:1c:75:c7:ad:61:c0:b9:fc:3a:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Feb 28 00:50:07 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=0504e941f49d225ec156165dea8422137a769a48515bf58b8dafd4184687b408, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:21:06:20:34:96:3c:68:51:ce:21:ee:8e:ba: 58:ca:cd:ca:4a:47:80:8c:f7:9a:51:09:82:04:f2: 4c:7a:e4:9c:3a:26:36:3c:a8:24:21:c0:0d:87:87: d8:84:2b:80:ee:4a:bb:74:22:f2:51:b6:0e:15:83: 5a:e9:21:5b:35:07:d2:3a:6b:2f:61:f7:9d:00:92: 38:02:7b:be:c9:10:23:cb:7e:e6:73:58:e5:eb:75: e9:40:cc:27:c9:0e:7c:f5:67:e0:34:38:27:51:9b: 30:29:67:f8:46:24:37:12:48:7f:54:e0:e0:ee:5d: c1:5c:1e:63:c8:74:89:72:01:a5:ac:1b:3c:b1:c6: 8e:6f:78:27:1b:44:34:0d:4f:9b:bc:1d:7b:3c:09: 42:b5:32:99:bc:f3:1b:ca:e7:32:98:6a:07:5d:97: 98:bc:58:81:e6:ce:57:47:10:dd:e5:f6:0d:13:e5: 6b:ec:84:a0:38:d3:49:cb:63:b5:5f:b3:d5:cd:b5: 99:81:df:2a:07:2e:ae:87:ff:38:15:b5:20:c7:b9: fb:6a:e2:31:67:87:e0:e2:90:c1:38:29:4a:a1:3b: 21:60:14:aa:9b:08:5a:8f:67:22:52:f7:0a:5e:52: 2f:df:4b:1a:67:22:48:b2:29:d1:a7:74:72:23:5c: c2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:8A:25:8E:57:93:E2:70:CE:0B:B7:12:43:6F:97:22:16:07:75:59 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.32.0/19 Signature Algorithm: sha256WithRSAEncryption 4b:ec:88:13:60:21:1a:77:0c:70:76:8a:ed:13:2c:00:9e:80: e7:bb:37:e1:19:31:0c:64:72:6c:57:01:f1:4d:7d:db:50:04: 7e:1e:3c:d9:95:15:34:aa:33:34:8e:c6:55:06:e5:40:26:e5: f4:59:9a:69:de:15:15:a9:e9:81:6e:25:95:68:48:16:65:d2: be:86:f7:34:1d:8e:8b:71:be:4d:b4:77:2e:93:58:ed:ac:c4: 4c:b0:e7:7b:15:46:ef:63:97:d4:58:5e:37:c2:a9:46:26:e0: 99:47:9c:6b:f0:54:73:30:1f:70:a4:cc:25:41:f3:91:55:35: 14:88:e4:cb:3d:54:a9:d4:a8:05:9f:85:fa:2d:75:d9:bc:37: a5:a4:f2:b0:e5:d5:d1:24:70:6c:5f:6a:75:c7:d0:00:31:df: 9f:08:9f:f7:a8:53:2f:13:4f:6c:3d:8b:4f:37:01:e6:80:5a: 09:d6:9e:65:dc:7d:52:8a:46:81:6b:47:32:29:ee:b5:f0:d9: 54:f7:e5:16:71:77:f3:dd:3c:f9:40:00:8c:7d:54:4b:36:05: 09:4d:51:91:4e:13:57:c4:4b:17:7d:da:59:9e:b6:7f:88:ae: b6:b0:8f:22:d2:51:3e:81:1e:a0:32:2e:d4:ca:ff:d9:2c:ea: c3:f5:17:f1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBt42d1r6l6gyORx1x61hwLn8OrowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjYwMjI4MDA1MDA3WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNTA0ZTk0MWY0OWQyMjVlYzE1NjE2NWRlYTg0MjIxMzdh NzY5YTQ4NTE1YmY1OGI4ZGFmZDQxODQ2ODdiNDA4MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAIQYgNJY8aFHOIe6OuljKzcpKR4CM95pRCYIE8kx65Jw6 JjY8qCQhwA2Hh9iEK4DuSrt0IvJRtg4Vg1rpIVs1B9I6ay9h950AkjgCe77JECPL fuZzWOXrdelAzCfJDnz1Z+A0OCdRmzApZ/hGJDcSSH9U4ODuXcFcHmPIdIlyAaWs Gzyxxo5veCcbRDQNT5u8HXs8CUK1Mpm88xvK5zKYagddl5i8WIHmzldHEN3l9g0T 5WvshKA400nLY7Vfs9XNtZmB3yoHLq6H/zgVtSDHuftq4jFnh+DikME4KUqhOyFg FKqbCFqPZyJS9wpeUi/fSxpnIkiyKdGndHIjXMITAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU84oljleT4nDOC7cSQ2+XIhYHdVkwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzNmZDYxMTdiLTVmNmItNDNmZS1iZjBhLWI2NmY4ZDM1ZTQ1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVgfyAwDQYJKoZIhvcNAQELBQADggEBAEvsiBNgIRp3DHB2iu0TLACegOe7 N+EZMQxkcmxXAfFNfdtQBH4ePNmVFTSqMzSOxlUG5UAm5fRZmmneFRWp6YFuJZVo SBZl0r6G9zQdjotxvk20dy6TWO2sxEyw53sVRu9jl9RYXjfCqUYm4JlHnGvwVHMw H3CkzCVB85FVNRSI5Ms9VKnUqAWfhfotddm8N6Wk8rDl1dEkcGxfanXH0AAx358I n/eoUy8TT2w9i083AeaAWgnWnmXcfVKKRoFrRzIp7rXw2VT35RZxd/PdPPlAAIx9 VEs2BQlNUZFOE1fESxd92lmetn+IrrawjyLSUT6BHqAyLtTK/9ks6sP1F/E= -----END CERTIFICATE-----Generated at Mon Mar 2 03:02:04 2026 by rpki-client