$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa File: 9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa (raw, json) Hash identifier: B69mS+On5IS/Kcvjp4/GGybWl5GAQXgXUnEACF0DQLk= Subject key identifier: E2:1E:C9:0F:60:D7:FA:10:50:4E:3A:0B:F2:FE:E8:AC:6A:85:A4:1C Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 40D86A0ABB42B8DF51C3C8F1A9BE3D782E0EF127 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa Signing time: Sat 28 Feb 2026 00:50:43 +0000 ROA not before: Sat 28 Feb 2026 00:50:43 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:d8:6a:0a:bb:42:b8:df:51:c3:c8:f1:a9:be:3d:78:2e:0e:f1:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Feb 28 00:50:43 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=05ca56821654d21fb4e00ad95e529d812e4c25c8f33baf265ffc321b5d57f19b, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:df:e9:08:e4:92:c8:96:23:66:65:4f:cd:9e: 5d:af:3b:11:4d:71:45:b0:6b:68:1f:0c:16:00:e7: bf:e7:52:3f:32:c3:fd:89:b2:e9:99:d4:99:57:b7: 55:a7:93:ee:e3:92:46:93:78:0d:b4:83:56:0a:77: 64:53:1d:6a:58:51:cf:4c:b3:71:78:a2:9c:33:a8: 99:48:94:a3:00:9b:ae:e9:86:48:58:3b:16:32:ad: f0:da:1b:c1:f8:fb:96:2f:95:2b:cd:e1:b6:37:aa: b6:c4:16:45:3a:3e:2c:e2:4e:07:4d:3b:7f:d7:9e: af:02:d7:39:91:db:ed:28:aa:d9:65:d3:5d:fd:f3: c7:be:ca:a9:04:93:e1:72:42:76:a0:14:96:b5:36: e0:d7:84:c7:48:2f:01:05:7b:b1:c6:4e:d9:9f:0b: 51:ee:9b:af:61:a0:c5:e4:84:90:ba:b2:f8:74:fd: 0a:99:0d:9f:ea:bc:cb:7e:db:57:36:11:fa:d4:65: 1d:85:4a:f4:e9:f6:27:30:41:44:c2:98:f0:b8:46: 36:ef:7e:1a:64:76:18:55:09:e8:da:10:db:17:d7: 80:05:12:e5:4d:da:b2:3b:61:fd:99:c9:a6:f0:f0: fb:14:ce:88:bf:7b:85:fa:3e:88:2e:61:d9:d5:41: a0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:1E:C9:0F:60:D7:FA:10:50:4E:3A:0B:F2:FE:E8:AC:6A:85:A4:1C X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.8.0/21 Signature Algorithm: sha256WithRSAEncryption 8c:17:8c:40:c2:64:c5:da:9c:e5:bd:7a:70:32:bf:e3:c0:6b: a9:84:d1:7e:25:1d:fb:36:60:8f:99:bc:7d:97:d8:63:38:49: be:76:ea:aa:dc:10:be:ba:fb:96:0b:3f:17:18:a2:b8:fa:23: a5:2e:f4:9d:06:e0:e3:7c:93:91:4d:ef:8c:d0:1e:df:50:a4: bf:61:61:1a:b1:a2:2b:bd:ea:c2:d5:98:df:5d:b0:89:39:76: 06:78:3b:85:34:e9:56:d9:b4:53:76:56:82:ba:e2:95:4d:eb: fa:b0:5a:75:ed:3b:f3:2f:c8:eb:05:72:dc:bc:7b:98:b8:ff: 7d:e4:04:a2:62:62:18:30:83:ac:16:f9:ee:bb:d0:20:fb:8b: 9f:c2:4d:30:c7:eb:0a:40:6f:82:c7:5e:62:15:96:49:fd:3f: 75:e8:d2:3b:8b:42:55:81:dd:25:29:ed:07:fe:85:13:da:23: d3:27:66:4e:a9:e0:6b:e0:71:42:b8:43:e4:39:c6:3f:56:87: 66:11:eb:99:d1:8e:29:21:3b:35:83:91:ac:62:c5:ba:f7:ad: 61:0c:02:16:f5:ba:7a:e2:d2:30:83:09:ca:5c:c9:42:76:9d: 2a:dd:6a:27:b4:ff:49:61:98:44:13:1e:b5:6c:ff:e3:11:04: 1a:04:5d:75 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQNhqCrtCuN9Rw8jxqb49eC4O8ScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjYwMjI4MDA1MDQzWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNWNhNTY4MjE2NTRkMjFmYjRlMDBhZDk1ZTUyOWQ4MTJl NGMyNWM4ZjMzYmFmMjY1ZmZjMzIxYjVkNTdmMTliMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq3+kI5JLIliNmZU/Nnl2vOxFNcUWwa2gfDBYA57/nUj8y w/2JsumZ1JlXt1Wnk+7jkkaTeA20g1YKd2RTHWpYUc9Ms3F4opwzqJlIlKMAm67p hkhYOxYyrfDaG8H4+5YvlSvN4bY3qrbEFkU6PiziTgdNO3/Xnq8C1zmR2+0oqtll 013988e+yqkEk+FyQnagFJa1NuDXhMdILwEFe7HGTtmfC1Hum69hoMXkhJC6svh0 /QqZDZ/qvMt+21c2EfrUZR2FSvTp9icwQUTCmPC4RjbvfhpkdhhVCejaENsX14AF EuVN2rI7Yf2Zyabw8PsUzoi/e4X6PoguYdnVQaBzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4h7JD2DX+hBQTjoL8v7orGqFpBwwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzliZmRlOTRhLTFkOTUtNGRjZS1iMGIyLTcyNzE3MmY1ZTQ5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwgwDQYJKoZIhvcNAQELBQADggEBAIwXjEDCZMXanOW9enAyv+PAa6mE 0X4lHfs2YI+ZvH2X2GM4Sb526qrcEL66+5YLPxcYorj6I6Uu9J0G4ON8k5FN74zQ Ht9QpL9hYRqxoiu96sLVmN9dsIk5dgZ4O4U06VbZtFN2VoK64pVN6/qwWnXtO/Mv yOsFcty8e5i4/33kBKJiYhgwg6wW+e670CD7i5/CTTDH6wpAb4LHXmIVlkn9P3Xo 0juLQlWB3SUp7Qf+hRPaI9MnZk6p4GvgcUK4Q+Q5xj9Wh2YR65nRjikhOzWDkaxi xbr3rWEMAhb1unri0jCDCcpcyUJ2nSrdaie0/0lhmEQTHrVs/+MRBBoEXXU= -----END CERTIFICATE-----Generated at Sun Mar 1 23:35:30 2026 by rpki-client