$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/661f32c0-f8f7-4621-8aaf-7a270e451918.roa File: 661f32c0-f8f7-4621-8aaf-7a270e451918.roa (raw, json) Hash identifier: eSXLntK97VTMmPIIQtOrlcWyFWwGQX+sdzNKqM2Z8E4= Subject key identifier: 0B:C9:3A:8A:F5:A0:93:75:1C:E5:B9:62:73:22:35:54:D8:5B:74:9E Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 3591118955E185FCCD08B387CD82753FEFFE825E Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/661f32c0-f8f7-4621-8aaf-7a270e451918.roa Signing time: Sat 28 Feb 2026 00:50:39 +0000 ROA not before: Sat 28 Feb 2026 00:50:39 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:91:11:89:55:e1:85:fc:cd:08:b3:87:cd:82:75:3f:ef:fe:82:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Feb 28 00:50:39 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=683ef8e98c85000f55f1c70da97d9b68b613e94fe3bbf89ce6d5e05122c39de3, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5b:ca:17:d3:a2:bc:c9:02:59:03:3d:3f:2c: 28:34:7f:70:8b:9c:1c:d8:c9:a9:95:5c:09:a7:9a: 7e:ed:94:1b:a9:8f:f3:be:7d:68:1b:29:b7:35:ab: 47:4d:6d:9e:2b:eb:6b:43:f2:91:66:48:ea:6d:d3: 65:80:3d:5c:79:7f:50:3b:a1:41:cd:7f:9a:9f:ea: 8b:1b:ff:70:df:46:e3:29:90:9d:30:e6:64:b5:c8: e5:e2:29:1b:de:3e:42:75:14:2f:ce:fa:72:78:c3: 23:31:3c:5d:fe:d0:fb:d9:92:6b:a0:cd:10:f9:d6: f5:32:12:27:60:27:39:ba:0b:d5:7c:32:b3:20:a4: 77:b1:9a:60:4b:56:be:20:a7:da:23:68:da:5c:0c: 53:b2:ce:63:48:da:c4:73:39:18:1e:06:0b:b0:e5: bb:62:88:eb:6f:ad:1d:b3:ac:f4:8d:a7:f5:f1:c6: 8b:f0:1a:f9:a6:97:61:c2:5b:fd:cb:fa:36:34:ef: 78:d1:b2:e0:c7:1c:c6:ba:3a:6e:79:a0:03:0d:7b: 38:09:46:97:de:f9:66:c7:50:43:30:24:4d:da:77: ce:0c:9f:c7:23:67:04:bd:03:61:0e:75:6a:4f:a0: c6:e8:52:6e:63:ca:be:0c:88:02:8e:d1:e8:8b:af: fb:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:C9:3A:8A:F5:A0:93:75:1C:E5:B9:62:73:22:35:54:D8:5B:74:9E X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/661f32c0-f8f7-4621-8aaf-7a270e451918.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.9.0/24 Signature Algorithm: sha256WithRSAEncryption 72:7b:ba:36:dc:ec:68:fb:bc:a8:ef:8a:a7:f4:44:44:09:2d: ee:69:98:74:9a:19:30:94:33:15:bb:62:09:0c:15:6f:52:4c: 67:d5:ca:47:a8:ee:56:b0:1b:a6:c9:87:5b:fa:2c:dc:a3:78: 55:b3:7d:ae:de:5c:3d:f6:d4:26:6d:a0:b2:85:f4:d3:f1:af: 13:c2:21:e2:f4:f7:85:01:a0:9c:50:bb:a4:11:bc:84:e8:29: 97:91:d1:e1:12:52:5f:65:ff:94:a7:a6:90:5f:9f:90:15:33: d6:b3:8d:c6:5a:84:3e:a0:1d:94:e5:53:78:15:fd:a6:75:14: 72:d9:ea:9e:11:7d:db:22:5d:40:ac:63:8a:12:d6:d7:27:b0: 0b:d4:cf:5a:16:68:6d:da:74:61:af:71:aa:66:dd:c9:9a:a8: 8e:ed:3c:dd:54:02:51:b8:bb:df:e5:a7:1b:07:61:4c:2d:b0: 97:cc:ff:d6:a3:27:4b:13:80:15:61:c4:03:60:2b:f0:cb:66: e0:fc:65:fc:a5:9a:45:08:5f:7e:ad:ad:7a:85:40:d7:a0:cb: 15:49:b3:85:c9:3c:42:3a:ba:6f:1c:e7:39:c3:f1:1c:19:f3: d2:2a:43:5f:13:b4:77:ab:a1:56:58:a7:a1:db:c7:d5:72:60: 30:fd:53:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNZERiVXhhfzNCLOHzYJ1P+/+gl4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjYwMjI4MDA1MDM5WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODNlZjhlOThjODUwMDBmNTVmMWM3MGRhOTdkOWI2OGI2 MTNlOTRmZTNiYmY4OWNlNmQ1ZTA1MTIyYzM5ZGUzMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRW8oX06K8yQJZAz0/LCg0f3CLnBzYyamVXAmnmn7tlBup j/O+fWgbKbc1q0dNbZ4r62tD8pFmSOpt02WAPVx5f1A7oUHNf5qf6osb/3DfRuMp kJ0w5mS1yOXiKRvePkJ1FC/O+nJ4wyMxPF3+0PvZkmugzRD51vUyEidgJzm6C9V8 MrMgpHexmmBLVr4gp9ojaNpcDFOyzmNI2sRzORgeBguw5btiiOtvrR2zrPSNp/Xx xovwGvmml2HCW/3L+jY073jRsuDHHMa6Om55oAMNezgJRpfe+WbHUEMwJE3ad84M n8cjZwS9A2EOdWpPoMboUm5jyr4MiAKO0eiLr/vlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUC8k6ivWgk3Uc5blicyI1VNhbdJ4wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzY2MWYzMmMwLWY4ZjctNDYyMS04YWFmLTdhMjcwZTQ1MTkxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABgfwkwDQYJKoZIhvcNAQELBQADggEBAHJ7ujbc7Gj7vKjviqf0REQJLe5p mHSaGTCUMxW7YgkMFW9STGfVykeo7lawG6bJh1v6LNyjeFWzfa7eXD321CZtoLKF 9NPxrxPCIeL094UBoJxQu6QRvIToKZeR0eESUl9l/5SnppBfn5AVM9azjcZahD6g HZTlU3gV/aZ1FHLZ6p4RfdsiXUCsY4oS1tcnsAvUz1oWaG3adGGvcapm3cmaqI7t PN1UAlG4u9/lpxsHYUwtsJfM/9ajJ0sTgBVhxANgK/DLZuD8ZfylmkUIX36trXqF QNegyxVJs4XJPEI6um8c5znD8RwZ89IqQ18TtHeroVZYp6Hbx9VyYDD9U9s= -----END CERTIFICATE-----Generated at Mon Mar 2 04:29:17 2026 by rpki-client