$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/85ecd0ef-6924-4522-bd48-1e263001901c.roa File: 85ecd0ef-6924-4522-bd48-1e263001901c.roa (raw, json) Hash identifier: Dcl/RLXMCTGgp4PFjsJhThSTWTB1rstyRZfniYLyKwQ= Subject key identifier: 46:0A:44:B0:68:C3:02:0D:D8:73:E4:96:EA:60:FC:31:24:12:0B:3F Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 71103259FDCAB79AF48F8695085F13460E01A7B1 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/85ecd0ef-6924-4522-bd48-1e263001901c.roa Signing time: Sat 28 Feb 2026 00:50:42 +0000 ROA not before: Sat 28 Feb 2026 00:50:42 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:10:32:59:fd:ca:b7:9a:f4:8f:86:95:08:5f:13:46:0e:01:a7:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Feb 28 00:50:42 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=5fa8ced6c398a3cf7af25c591c92bc3f72cca575637112d60c9b89c72372fd80, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f0:45:7d:d4:b6:fd:fe:4f:5f:9c:d7:60:62: dd:db:b0:b9:be:74:fc:0d:5a:3b:71:ac:39:ea:a4: c3:ba:f9:0f:51:e7:a4:e3:6e:23:84:3c:f5:26:ed: a5:93:c1:4d:46:b4:bc:62:c1:29:e3:89:67:fe:bd: ce:2a:96:94:ea:43:1c:fe:d1:b6:f4:39:c9:7d:1f: 12:fb:76:36:87:de:81:43:71:6d:a0:9c:a9:de:bb: b3:5b:88:09:a6:44:52:93:95:9e:2f:3b:e2:aa:77: 76:3a:b6:41:86:b5:73:22:2b:2a:68:64:bd:13:11: ca:07:c1:b7:c7:38:88:05:0f:26:00:a2:7a:5d:32: 1d:ec:d4:10:17:c7:66:57:c0:a3:35:7f:8a:fb:c3: a1:a7:69:c8:28:4f:35:82:96:70:e4:5f:61:fa:3e: 81:5c:36:5f:78:9f:41:62:f8:6c:a0:5f:ca:26:52: c1:48:44:0a:91:2b:37:9f:ae:17:72:b4:ed:d7:59: e9:fb:6a:0b:01:6d:c5:a4:51:fb:81:ca:1d:07:50: e6:03:dd:d6:16:bf:86:69:97:ba:d3:67:75:ee:ee: ba:89:9c:e4:ea:a0:dd:d8:96:84:54:6c:c8:c9:48: a6:b9:de:c7:4c:ba:fa:fa:54:7e:58:bf:c0:47:99: 95:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:0A:44:B0:68:C3:02:0D:D8:73:E4:96:EA:60:FC:31:24:12:0B:3F X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/85ecd0ef-6924-4522-bd48-1e263001901c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.1.0/24 Signature Algorithm: sha256WithRSAEncryption 50:55:8a:79:96:c9:41:c7:6c:c6:07:de:79:21:71:38:47:b8: ee:f0:7a:01:f6:8b:d1:c3:b6:e1:d5:34:cf:43:ba:d5:c0:16: 99:dd:5a:e7:62:73:9e:9d:ff:68:6c:9a:b2:11:29:ce:1c:eb: 90:dc:e0:1b:9d:7e:73:d7:a6:c6:a8:a6:6a:98:e6:82:8b:06: ec:d7:ed:b5:c7:74:24:35:c7:fe:fb:eb:ad:8f:59:b5:92:08: 5c:a5:2f:ba:bd:44:3f:7c:04:27:a5:1e:35:d3:c7:8f:ca:e7: f5:73:9e:71:b2:af:d7:25:ce:0b:24:10:b6:13:7d:b4:ac:c8: 36:5d:29:a9:db:39:cd:2a:89:00:96:86:cb:2a:c1:24:7f:c0: a7:9c:4a:7a:dc:61:4b:0d:e8:63:94:42:92:ba:37:82:54:5e: 06:b7:fb:80:02:4a:66:00:6a:c2:9d:1b:14:42:dd:09:db:ba: f5:29:e9:75:ec:73:65:6c:96:34:36:f6:dc:46:f1:d4:f3:e9: 26:96:4e:3d:fd:ad:f4:86:1a:ae:c3:9f:1b:01:37:39:52:e8: cf:0a:39:a8:8d:1a:3b:f6:9d:d7:52:ea:2c:b0:37:66:6f:e1: 15:8c:41:d9:3f:76:fe:fb:e5:ed:9a:5e:4a:0c:32:9b:0c:f2: 1e:76:7f:1b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcRAyWf3Kt5r0j4aVCF8TRg4Bp7EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjYwMjI4MDA1MDQyWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZmE4Y2VkNmMzOThhM2NmN2FmMjVjNTkxYzkyYmMzZjcy Y2NhNTc1NjM3MTEyZDYwYzliODljNzIzNzJmZDgwMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCg8EV91Lb9/k9fnNdgYt3bsLm+dPwNWjtxrDnqpMO6+Q9R 56TjbiOEPPUm7aWTwU1GtLxiwSnjiWf+vc4qlpTqQxz+0bb0Ocl9HxL7djaH3oFD cW2gnKneu7NbiAmmRFKTlZ4vO+Kqd3Y6tkGGtXMiKypoZL0TEcoHwbfHOIgFDyYA onpdMh3s1BAXx2ZXwKM1f4r7w6GnacgoTzWClnDkX2H6PoFcNl94n0Fi+GygX8om UsFIRAqRKzefrhdytO3XWen7agsBbcWkUfuByh0HUOYD3dYWv4Zpl7rTZ3Xu7rqJ nOTqoN3YloRUbMjJSKa53sdMuvr6VH5Yv8BHmZVJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURgpEsGjDAg3Yc+SW6mD8MSQSCz8wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1Lzg1ZWNkMGVmLTY5MjQtNDUyMi1iZDQ4LTFlMjYzMDAxOTAxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABgfwEwDQYJKoZIhvcNAQELBQADggEBAFBVinmWyUHHbMYH3nkhcThHuO7w egH2i9HDtuHVNM9DutXAFpndWudic56d/2hsmrIRKc4c65Dc4BudfnPXpsaopmqY 5oKLBuzX7bXHdCQ1x/77662PWbWSCFylL7q9RD98BCelHjXTx4/K5/VznnGyr9cl zgskELYTfbSsyDZdKanbOc0qiQCWhssqwSR/wKecSnrcYUsN6GOUQpK6N4JUXga3 +4ACSmYAasKdGxRC3QnbuvUp6XXsc2VsljQ29txG8dTz6SaWTj39rfSGGq7DnxsB NzlS6M8KOaiNGjv2nddS6iywN2Zv4RWMQdk/dv775e2aXkoMMpsM8h52fxs= -----END CERTIFICATE-----Generated at Sun Mar 1 23:39:37 2026 by rpki-client