$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0290dfd4-d635-41df-a146-3afba4f4dc86.roa File: 0290dfd4-d635-41df-a146-3afba4f4dc86.roa (raw, json) Hash identifier: WDdiRtaFmfVfRLB3h5i1m6TGEd9O71IfNT91mGe9YbM= Subject key identifier: 01:09:F4:23:93:F7:61:24:AA:4D:1B:9B:DA:7A:90:1A:F6:AE:35:03 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 65D5834F9ABC9ADE36F55BE86FCFB41FC4753FCA Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0290dfd4-d635-41df-a146-3afba4f4dc86.roa Signing time: Fri 06 Feb 2026 00:30:14 +0000 ROA not before: Fri 06 Feb 2026 00:30:14 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 40045 IP address blocks: 2605:9cc0:3b4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d5:83:4f:9a:bc:9a:de:36:f5:5b:e8:6f:cf:b4:1f:c4:75:3f:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 6 00:30:14 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=ae06fea51c3543f20d5e81d8e96d89f6f624bd2a61c23ae05c487cde14a240fa, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:72:ba:4a:fa:31:7a:ea:78:88:a6:b9:53:37: ac:5a:60:fd:9e:42:ad:ed:9c:91:b2:5c:34:2a:80: dc:37:c8:5d:40:65:da:e1:eb:a6:44:ed:0e:bd:31: 22:1e:cc:45:46:94:00:a4:31:df:35:5b:ed:6d:68: 46:7e:75:39:bf:8c:a8:82:70:86:77:17:1d:68:db: eb:2a:78:ec:36:17:dc:07:9f:f7:64:d2:8d:52:2b: 38:2e:41:e4:82:af:5a:ca:50:b9:b9:54:38:98:12: c9:b2:43:6b:8b:bc:6f:63:e3:6b:9f:11:2a:ae:82: f3:64:06:21:23:a8:ef:da:e7:75:42:19:92:d9:49: 49:50:b3:69:26:59:e1:23:f4:17:57:0b:19:0d:a3: 9c:53:2a:b6:b7:86:71:3e:8f:1d:22:ae:05:c3:10: 5a:25:52:1f:69:34:7f:76:f9:30:bb:5a:06:d9:a4: a1:19:7d:16:96:30:67:7e:1c:ae:69:f0:58:92:63: 90:65:0b:5e:b0:e2:66:81:88:89:7d:3e:84:7f:05: 6a:ca:42:43:ec:4e:ec:23:3c:f7:05:47:8a:ba:b6: 73:35:d3:0e:81:b9:70:78:4b:33:69:e8:0f:66:b6: 50:85:05:de:e6:de:43:c5:8e:48:2e:61:a6:78:cc: e3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:09:F4:23:93:F7:61:24:AA:4D:1B:9B:DA:7A:90:1A:F6:AE:35:03 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0290dfd4-d635-41df-a146-3afba4f4dc86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3b4::/48 Signature Algorithm: sha256WithRSAEncryption 31:37:08:9f:30:56:ea:bf:ff:e1:f2:ba:ed:7a:ba:bd:29:76: 91:1d:5a:bc:37:44:ca:2c:a5:56:28:fc:43:39:ef:69:12:35: 97:49:45:fe:c5:17:0a:a5:4c:bf:ee:be:6a:f3:3f:67:c0:80: 0a:41:0d:56:ee:cf:85:7d:e9:73:4c:14:ec:21:35:c7:e1:ab: 20:b4:de:a8:ba:f9:47:0f:78:73:0f:fb:7d:02:3f:40:46:3e: 0e:e2:07:cb:33:16:16:9f:6c:30:46:60:39:a6:c1:52:ff:ad: fb:90:a1:2d:a1:18:8b:9a:d0:a2:df:51:5f:3b:21:e7:ec:51: 26:5b:79:a1:89:72:d4:7a:1e:3f:38:74:92:01:e6:d9:f0:7c: c4:18:b4:ac:71:1f:90:e3:73:10:0b:91:dc:e7:8a:9d:f5:de: 11:ca:c9:52:4a:34:df:a5:4d:4f:8d:08:17:84:f3:5b:4e:45: 2e:4b:c1:0a:89:21:d7:9d:e0:0b:cb:37:24:c9:f8:aa:2a:f7: c3:f1:38:ac:01:b6:27:68:2c:31:63:0c:12:64:29:33:25:56: e3:bf:29:19:66:57:35:ec:c1:34:f0:b6:b7:44:59:e4:85:4b: fd:cd:67:01:72:02:b8:43:a4:82:42:50:3b:c7:60:65:7d:40: ec:7c:cb:d7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZdWDT5q8mt429Vvob8+0H8R1P8owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjA2MDAzMDE0WhcNMjYwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTA2ZmVhNTFjMzU0M2YyMGQ1ZTgxZDhlOTZkODlmNmY2 MjRiZDJhNjFjMjNhZTA1YzQ4N2NkZTE0YTI0MGZhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCEcrpK+jF66niIprlTN6xaYP2eQq3tnJGyXDQqgNw3yF1A Zdrh66ZE7Q69MSIezEVGlACkMd81W+1taEZ+dTm/jKiCcIZ3Fx1o2+sqeOw2F9wH n/dk0o1SKzguQeSCr1rKULm5VDiYEsmyQ2uLvG9j42ufESqugvNkBiEjqO/a53VC GZLZSUlQs2kmWeEj9BdXCxkNo5xTKra3hnE+jx0irgXDEFolUh9pNH92+TC7WgbZ pKEZfRaWMGd+HK5p8FiSY5BlC16w4maBiIl9PoR/BWrKQkPsTuwjPPcFR4q6tnM1 0w6BuXB4SzNp6A9mtlCFBd7m3kPFjkguYaZ4zOMZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAQn0I5P3YSSqTRub2nqQGvauNQMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzAyOTBkZmQ0LWQ2MzUtNDFkZi1hMTQ2LTNhZmJhNGY0ZGM4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA7QwDQYJKoZIhvcNAQELBQADggEBADE3CJ8wVuq//+Hyuu16ur0p dpEdWrw3RMospVYo/EM572kSNZdJRf7FFwqlTL/uvmrzP2fAgApBDVbuz4V96XNM FOwhNcfhqyC03qi6+UcPeHMP+30CP0BGPg7iB8szFhafbDBGYDmmwVL/rfuQoS2h GIua0KLfUV87IefsUSZbeaGJctR6Hj84dJIB5tnwfMQYtKxxH5DjcxALkdznip31 3hHKyVJKNN+lTU+NCBeE81tORS5LwQqJIded4AvLNyTJ+Koq98PxOKwBtidoLDFj DBJkKTMlVuO/KRlmVzXswTTwtrdEWeSFS/3NZwFyArhDpIJCUDvHYGV9QOx8y9c= -----END CERTIFICATE-----Generated at Mon Mar 2 02:10:14 2026 by rpki-client