$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa File: ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa (raw, json) Hash identifier: nQwN1LV84XKUT1DfBwFMPihN2MteBTzu2SK9Tu+zCSo= Subject key identifier: 49:21:C1:0C:58:E3:17:D1:96:E1:F7:66:E8:D3:4F:FC:AE:DC:F2:18 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 5F876ED6F014F569FB40AD0E4FA0F4BE8784E1DD Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa Signing time: Sat 28 Feb 2026 00:50:38 +0000 ROA not before: Sat 28 Feb 2026 00:50:38 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:87:6e:d6:f0:14:f5:69:fb:40:ad:0e:4f:a0:f4:be:87:84:e1:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Feb 28 00:50:38 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=33b108a037e8a6a83f3cc13f96ad8c2848d2d75e21e14457e385198f19fb7bf3, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f3:e9:a6:7f:d3:1e:41:c4:88:9e:78:ed:47: c7:4d:79:13:db:ed:a3:4f:da:ef:fd:bc:81:e7:ff: 60:2e:ba:42:f2:d7:5a:f6:c4:73:20:02:82:9e:86: 6b:4a:cc:95:f2:07:64:b2:55:07:4d:37:16:96:e1: 44:79:8d:07:cd:f5:1f:e4:94:b4:7d:df:5d:76:0d: de:19:e4:45:40:9c:0b:64:49:d7:bc:1b:b2:c0:7e: 31:5a:a9:0a:47:b5:96:73:30:76:98:4a:5d:21:55: 48:a4:9e:21:82:a2:b1:be:8c:30:46:da:09:14:26: 1b:bb:19:69:7a:e8:82:1d:d3:40:27:1c:6a:48:82: 94:a5:81:96:fc:3c:69:f9:4e:3d:13:76:c8:29:44: 34:da:0f:85:a6:fe:4f:b1:c3:c4:c5:f1:2a:f5:d0: 94:ab:69:a9:2e:e6:27:2a:16:dc:3b:1c:a0:be:25: b0:c1:64:2f:12:3e:e9:ff:17:f7:a0:35:ee:51:5d: 91:d8:1d:0b:e6:52:e3:e7:9f:00:93:4c:ab:e4:6c: d5:27:95:ff:c5:84:b8:aa:ac:eb:35:c8:ab:bb:42: cc:93:9e:75:c6:eb:4d:9a:f0:19:98:f8:ec:74:2b: c6:15:a3:56:8d:ca:02:a3:23:6f:0b:41:e7:a2:bb: 74:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:21:C1:0C:58:E3:17:D1:96:E1:F7:66:E8:D3:4F:FC:AE:DC:F2:18 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.64.0/18 Signature Algorithm: sha256WithRSAEncryption 61:7c:7f:c2:60:6b:21:1a:9c:08:b5:2d:e3:87:d6:7a:ee:5b: c6:b6:91:00:8e:e9:47:92:19:82:7a:6f:cc:3c:3f:8b:a1:36: f1:15:ad:df:89:49:8d:bd:84:8a:a4:79:e7:e6:d6:1d:71:67: dd:1e:0a:d1:bd:59:0c:95:ac:e1:b5:9c:60:de:c6:f8:7c:26: 36:c1:2e:08:b9:d6:d1:0c:76:d6:00:aa:9a:ab:68:7b:2d:2a: 18:ca:10:93:84:b5:85:05:4e:49:1c:3a:eb:b4:58:42:cb:6c: 60:30:be:38:99:74:b5:7c:08:8e:b3:23:a8:f7:cb:60:6b:3a: 91:26:3c:ae:2d:fd:65:29:14:6a:5a:ee:10:bd:72:6d:56:bb: 5b:8a:a3:a8:cc:3a:cc:db:ad:80:ce:b4:ec:a0:24:3e:f6:19: 57:71:a8:6b:bf:bf:53:4f:6b:ed:58:82:44:13:2a:01:ab:10: 59:05:08:92:e1:2c:d2:8b:5f:78:ae:39:ab:43:62:35:7d:74: e3:83:a0:b4:0b:94:5e:12:f5:d8:a5:b8:1e:2d:69:a3:e6:95: ee:bc:33:0d:41:f5:47:f9:ad:2b:cc:18:8d:2d:f8:68:4d:8a: f7:5d:b2:ec:1a:58:88:5f:1f:63:f9:7c:81:73:13:1a:54:d5: 3b:21:a7:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX4du1vAU9Wn7QK0OT6D0voeE4d0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjYwMjI4MDA1MDM4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzM2IxMDhhMDM3ZThhNmE4M2YzY2MxM2Y5NmFkOGMyODQ4 ZDJkNzVlMjFlMTQ0NTdlMzg1MTk4ZjE5ZmI3YmYzMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDb8+mmf9MeQcSInnjtR8dNeRPb7aNP2u/9vIHn/2AuukLy 11r2xHMgAoKehmtKzJXyB2SyVQdNNxaW4UR5jQfN9R/klLR93112Dd4Z5EVAnAtk Sde8G7LAfjFaqQpHtZZzMHaYSl0hVUikniGCorG+jDBG2gkUJhu7GWl66IId00An HGpIgpSlgZb8PGn5Tj0TdsgpRDTaD4Wm/k+xw8TF8Sr10JSraaku5icqFtw7HKC+ JbDBZC8SPun/F/egNe5RXZHYHQvmUuPnnwCTTKvkbNUnlf/FhLiqrOs1yKu7QsyT nnXG602a8BmY+Ox0K8YVo1aNygKjI28LQeeiu3SxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSSHBDFjjF9GW4fdm6NNP/K7c8hgwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2NjYWE4OGM3LTA1NGItNGNlMS05MmU4LTYyZGQ5NDE3MThlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZgf0AwDQYJKoZIhvcNAQELBQADggEBAGF8f8JgayEanAi1LeOH1nruW8a2 kQCO6UeSGYJ6b8w8P4uhNvEVrd+JSY29hIqkeefm1h1xZ90eCtG9WQyVrOG1nGDe xvh8JjbBLgi51tEMdtYAqpqraHstKhjKEJOEtYUFTkkcOuu0WELLbGAwvjiZdLV8 CI6zI6j3y2BrOpEmPK4t/WUpFGpa7hC9cm1Wu1uKo6jMOszbrYDOtOygJD72GVdx qGu/v1NPa+1YgkQTKgGrEFkFCJLhLNKLX3iuOatDYjV9dOODoLQLlF4S9diluB4t aaPmle68Mw1B9Uf5rSvMGI0t+GhNivddsuwaWIhfH2P5fIFzExpU1Tshp6E= -----END CERTIFICATE-----Generated at Sun Mar 1 21:44:38 2026 by rpki-client