$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa File: 9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa (raw, json) Hash identifier: xau89XtfT2Ms+sHsrMBgndQOrowZCnOEm6V8g/D2QxM= Subject key identifier: 01:E5:A1:D0:30:36:F8:1C:E3:6E:EB:D5:03:B6:85:F7:01:5F:07:6A Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 3BB0554AC89241C276EF6E80DAA3D3F604C3232F Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa Signing time: Sat 28 Feb 2026 00:50:41 +0000 ROA not before: Sat 28 Feb 2026 00:50:41 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b0:55:4a:c8:92:41:c2:76:ef:6e:80:da:a3:d3:f6:04:c3:23:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Feb 28 00:50:41 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=e33a7eecd5c11f94b9dfbac49ddff31917c5b4150cf2070b200f32a73f1678f3, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2d:e1:59:46:e9:91:79:0a:0d:c2:36:69:bb: 70:c9:9b:0f:b3:11:8b:dc:be:bd:24:62:f0:a8:98: e2:8b:7a:12:91:21:10:b6:7f:a6:dd:29:e3:61:b6: 7c:ea:8b:60:44:1d:c6:26:ce:73:8a:36:b3:17:eb: 01:55:44:16:06:27:82:43:57:dc:02:40:8c:43:d0: b3:bc:b9:ae:fb:23:12:41:88:4b:41:37:00:5d:32: 16:44:c1:c0:02:4c:ac:45:90:89:fc:7a:1e:ce:ca: 07:e2:58:2c:88:e0:2c:6c:85:79:54:3c:3d:56:01: f5:88:d3:91:38:6e:51:3e:62:82:d3:8d:09:ff:c9: 51:81:ca:b7:ac:1b:bd:94:ba:ea:7b:da:a5:ad:f1: 55:46:2f:d4:27:b2:70:1b:bb:41:f2:0e:cd:ce:c6: 30:20:90:84:45:2a:e9:7c:6d:1b:8a:62:63:76:b4: d4:71:17:c5:cb:15:17:7c:89:13:8f:ae:37:5c:4e: 40:b8:a3:0f:ef:8b:9a:11:7d:38:48:1c:35:8c:cb: 5c:42:20:f7:09:43:4b:f9:49:1c:4f:22:e4:37:30: 01:bf:ba:cd:d5:91:1c:af:db:b5:6b:ad:5c:95:45: 0c:3e:0e:56:6a:5a:fb:be:c2:92:7a:24:88:c2:7f: 75:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:E5:A1:D0:30:36:F8:1C:E3:6E:EB:D5:03:B6:85:F7:01:5F:07:6A X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.4.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:74:b1:e2:38:67:b0:8f:79:cd:95:0d:d8:2e:8c:36:5c:00: b3:be:b2:f6:00:52:9a:9c:dc:fe:b5:66:55:1f:a6:6f:89:60: f2:3e:a8:8e:90:62:25:4b:2b:89:87:d3:b7:3f:cf:f6:3c:79: bc:5b:89:95:e2:46:64:c5:77:53:21:bc:eb:fc:d5:4b:27:1e: e6:50:f3:33:9e:15:88:d6:c6:96:65:07:8d:b7:d7:9e:67:b0: 34:a4:5c:33:41:33:e3:b9:f3:4b:97:a5:cf:a7:2d:9a:63:6f: ec:ae:be:a9:35:20:63:e1:4b:77:ea:79:6f:c4:79:9b:da:5b: d6:30:61:fe:5f:b6:c8:67:8a:84:af:d5:c3:31:50:af:b9:bf: 54:c5:de:fd:05:d3:61:f7:f9:d7:31:ed:a8:df:bd:48:5a:be: fa:91:4b:31:28:1f:eb:f1:c3:89:e4:71:2b:e9:7b:64:08:72: 80:24:c3:96:47:da:68:f4:37:87:bc:e7:2b:d3:3b:77:58:a7: 00:0e:95:99:b2:f5:c3:8b:12:8d:55:b7:ce:7e:9b:e6:c9:1a: 09:71:d6:3d:d7:c8:76:29:0a:a1:06:ec:e9:1b:5b:fb:6b:f6: 67:21:cd:ce:55:85:ea:e0:0c:c9:42:6a:1b:11:d9:3d:16:fc: e9:34:ae:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO7BVSsiSQcJ2726A2qPT9gTDIy8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjYwMjI4MDA1MDQxWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzNhN2VlY2Q1YzExZjk0YjlkZmJhYzQ5ZGRmZjMxOTE3 YzViNDE1MGNmMjA3MGIyMDBmMzJhNzNmMTY3OGYzMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLLeFZRumReQoNwjZpu3DJmw+zEYvcvr0kYvComOKLehKR IRC2f6bdKeNhtnzqi2BEHcYmznOKNrMX6wFVRBYGJ4JDV9wCQIxD0LO8ua77IxJB iEtBNwBdMhZEwcACTKxFkIn8eh7OygfiWCyI4CxshXlUPD1WAfWI05E4blE+YoLT jQn/yVGByresG72Uuup72qWt8VVGL9QnsnAbu0HyDs3OxjAgkIRFKul8bRuKYmN2 tNRxF8XLFRd8iROPrjdcTkC4ow/vi5oRfThIHDWMy1xCIPcJQ0v5SRxPIuQ3MAG/ us3VkRyv27VrrVyVRQw+DlZqWvu+wpJ6JIjCf3UhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAeWh0DA2+BzjbuvVA7aF9wFfB2owHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzlhNmFjZTU0LWYyMzEtNGUyNS04YTM2LWM0NjFkNDlkZmE2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgfwQwDQYJKoZIhvcNAQELBQADggEBAFx0seI4Z7CPec2VDdgujDZcALO+ svYAUpqc3P61ZlUfpm+JYPI+qI6QYiVLK4mH07c/z/Y8ebxbiZXiRmTFd1MhvOv8 1UsnHuZQ8zOeFYjWxpZlB423155nsDSkXDNBM+O580uXpc+nLZpjb+yuvqk1IGPh S3fqeW/EeZvaW9YwYf5ftshnioSv1cMxUK+5v1TF3v0F02H3+dcx7ajfvUhavvqR SzEoH+vxw4nkcSvpe2QIcoAkw5ZH2mj0N4e85yvTO3dYpwAOlZmy9cOLEo1Vt85+ m+bJGglx1j3XyHYpCqEG7OkbW/tr9mchzc5VhergDMlCahsR2T0W/Ok0ruA= -----END CERTIFICATE-----Generated at Sun Mar 1 22:01:02 2026 by rpki-client