$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3191e88d-746d-41d2-84db-9fc65334e5a8.roa File: 3191e88d-746d-41d2-84db-9fc65334e5a8.roa (raw, json) Hash identifier: TPg5Tc8dmpEnhh40qavIAKBAhvpKjGa30G0gXqtGJQk= Subject key identifier: D2:5B:E9:3D:4E:FC:81:2E:8F:11:F5:AC:AE:98:9E:7E:88:B7:B9:F0 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 07FF8C83994113C75E371BD1FFAB8FD6D04B1513 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3191e88d-746d-41d2-84db-9fc65334e5a8.roa Signing time: Sat 28 Feb 2026 04:20:11 +0000 ROA not before: Sat 28 Feb 2026 04:20:11 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:100::/42 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ff:8c:83:99:41:13:c7:5e:37:1b:d1:ff:ab:8f:d6:d0:4b:15:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 28 04:20:11 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=35aba479d9bb44c9356d38dac96175d4460debf73074de6e52a1438eb7994848, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:f0:cc:bf:a6:6b:b7:a7:66:cb:0a:17:38: 28:be:14:88:1d:5e:01:11:5c:f1:47:1a:6e:66:26: 8b:17:6d:66:75:60:48:1f:16:68:ef:f6:97:05:c2: 65:4e:61:6f:86:6d:c8:8e:20:05:8b:39:c3:79:ef: 30:f4:44:cf:29:b8:d5:b7:c0:45:ae:c4:44:76:9a: 79:f4:73:4a:42:46:be:8b:e6:ec:e3:31:14:f1:49: 89:d2:b8:be:4f:ca:67:b3:6b:7b:a4:61:20:11:50: c2:bd:66:75:ac:0f:cc:f4:5c:e1:e1:78:4f:f6:c4: c0:60:e6:ef:94:e7:f6:45:14:44:1e:53:39:c9:0f: 76:49:97:56:ed:e8:65:10:5c:8d:49:b3:9e:87:03: 3a:03:89:12:63:6a:0f:89:52:4d:c9:50:df:b5:49: 86:2a:e6:6f:fd:c2:45:32:aa:21:e6:ec:87:8b:44: b8:04:8a:3b:b7:a1:a1:f4:e6:9e:c6:75:c9:62:ff: 55:93:a9:24:85:90:e9:7d:18:a3:36:39:73:15:7f: da:fd:0f:ba:fe:9b:56:f1:7c:42:47:99:a5:c6:b2: 3c:2b:04:db:61:70:2a:6c:63:f3:45:38:d9:ff:f0: eb:3b:c7:38:0a:36:f7:fc:0e:95:40:b4:ab:76:09: 88:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:5B:E9:3D:4E:FC:81:2E:8F:11:F5:AC:AE:98:9E:7E:88:B7:B9:F0 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3191e88d-746d-41d2-84db-9fc65334e5a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:100::/42 Signature Algorithm: sha256WithRSAEncryption 1c:2e:ed:7d:df:e3:9b:f6:d5:1f:20:dc:21:86:ce:d5:24:bf: 08:f8:fa:36:71:e1:f1:05:f9:08:bc:fe:ee:ac:26:76:5c:e1: 58:13:f5:77:e1:03:a4:88:1a:56:24:eb:15:2d:03:7a:82:5f: da:11:d4:bf:e0:9c:7e:a8:d6:0e:22:0d:3e:73:da:e2:2a:7c: 0c:c4:30:2d:bd:76:9c:77:d2:e7:ae:53:70:ae:b3:d4:17:75: 9f:03:3b:ea:28:3f:9c:9f:88:62:b0:87:09:33:80:88:19:c1: 50:01:35:e0:08:a9:c6:fa:cd:92:0b:35:66:3c:fb:49:d0:62: 25:78:f6:64:04:6f:53:d7:0c:93:9e:e9:77:c1:96:10:df:dd: 21:86:7e:0f:ca:27:fc:4a:1f:1b:19:ea:80:ed:84:69:4e:2d: b2:bf:b0:b2:4b:70:3c:04:8f:09:32:46:60:df:8b:71:da:72: 81:28:d5:01:da:7f:9f:5c:d7:1b:de:4b:8a:7a:3e:a0:0f:6e: 12:0e:dd:95:6a:f5:91:ea:6c:20:7a:12:d4:c2:b0:39:db:74: a0:8a:95:ba:1d:d2:a4:cc:40:29:6d:57:d9:13:01:05:04:78: a4:0b:51:08:b9:c1:a2:3b:c4:41:69:94:18:3d:22:a0:1f:3b: a1:f4:a3:d9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUB/+Mg5lBE8deNxvR/6uP1tBLFRMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjI4MDQyMDExWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWFiYTQ3OWQ5YmI0NGM5MzU2ZDM4ZGFjOTYxNzVkNDQ2 MGRlYmY3MzA3NGRlNmU1MmExNDM4ZWI3OTk0ODQ4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9zvDMv6Zrt6dmywoXOCi+FIgdXgERXPFHGm5mJosXbWZ1 YEgfFmjv9pcFwmVOYW+GbciOIAWLOcN57zD0RM8puNW3wEWuxER2mnn0c0pCRr6L 5uzjMRTxSYnSuL5Pymeza3ukYSARUMK9ZnWsD8z0XOHheE/2xMBg5u+U5/ZFFEQe UznJD3ZJl1bt6GUQXI1Js56HAzoDiRJjag+JUk3JUN+1SYYq5m/9wkUyqiHm7IeL RLgEiju3oaH05p7Gdcli/1WTqSSFkOl9GKM2OXMVf9r9D7r+m1bxfEJHmaXGsjwr BNthcCpsY/NFONn/8Os7xzgKNvf8DpVAtKt2CYh1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0lvpPU78gS6PEfWsrpiefoi3ufAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzMxOTFlODhkLTc0NmQtNDFkMi04NGRiLTlmYzY1MzM0ZTVhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmBZzAAQAwDQYJKoZIhvcNAQELBQADggEBABwu7X3f45v21R8g3CGGztUk vwj4+jZx4fEF+Qi8/u6sJnZc4VgT9XfhA6SIGlYk6xUtA3qCX9oR1L/gnH6o1g4i DT5z2uIqfAzEMC29dpx30ueuU3Cus9QXdZ8DO+ooP5yfiGKwhwkzgIgZwVABNeAI qcb6zZILNWY8+0nQYiV49mQEb1PXDJOe6XfBlhDf3SGGfg/KJ/xKHxsZ6oDthGlO LbK/sLJLcDwEjwkyRmDfi3HacoEo1QHaf59c1xveS4p6PqAPbhIO3ZVq9ZHqbCB6 EtTCsDnbdKCKlbod0qTMQCltV9kTAQUEeKQLUQi5waI7xEFplBg9IqAfO6H0o9k= -----END CERTIFICATE-----Generated at Mon Mar 2 02:10:09 2026 by rpki-client