$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa File: 35efcf72-708d-4456-b1d1-8419a2636e00.roa (raw, json) Hash identifier: LJiHONnjhqPg7st5glDG5SxDA49Ehwb+KhDhgq6/nWI= Subject key identifier: 3F:B1:2E:64:D2:F5:3A:73:BA:A6:25:89:14:23:79:40:DA:D3:00:42 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7DE6FDE88B24267A6FAC5F3D1031F4FF66561DAC Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa Signing time: Sat 28 Feb 2026 04:30:57 +0000 ROA not before: Sat 28 Feb 2026 04:30:57 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:f03d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e6:fd:e8:8b:24:26:7a:6f:ac:5f:3d:10:31:f4:ff:66:56:1d:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 28 04:30:57 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=8e0995c0d328b61c2c2d6795a951a39aba8a9338a7c6460dea08a38443b8365f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a3:20:1a:5a:42:29:8c:db:f0:6c:00:07:37: 9e:2c:ce:69:a7:1f:b6:d6:95:b3:f5:14:4d:a4:5b: 95:97:47:b3:2b:15:32:17:23:d1:be:05:6b:b5:f0: 2a:72:7b:db:61:81:69:58:73:c0:1e:53:5b:bc:3b: 59:d7:6f:bb:4b:4b:d6:af:eb:ca:cd:a6:44:7c:ae: 2b:9b:80:07:09:35:a6:c1:7f:c2:7a:f7:92:49:70: e3:5a:bd:87:1c:85:ec:b5:c9:a2:ff:a4:3e:13:e3: d5:3b:36:a7:9a:47:f3:92:59:05:04:00:73:a3:9d: a9:36:74:da:75:26:8a:1b:b1:a6:df:c9:71:ec:a8: fe:93:ed:c0:de:20:21:31:a4:e9:55:2e:04:ca:9a: d4:b3:43:74:20:38:57:c0:c0:b0:7d:64:a5:ba:62: 1e:14:59:cd:e0:df:7f:f8:e2:40:e3:64:b6:96:c5: 28:de:aa:2c:e8:ec:9c:a2:71:47:a5:77:06:5e:e7: 47:7c:86:83:e1:fc:b3:df:db:e0:66:54:5e:64:19: 99:ac:a5:24:97:74:68:e6:16:fb:36:87:ac:43:45: 5a:89:87:71:71:08:93:91:fc:c8:16:3a:d3:85:77: 30:60:7d:12:75:13:35:eb:d7:66:9d:c9:8b:93:ae: 7f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:B1:2E:64:D2:F5:3A:73:BA:A6:25:89:14:23:79:40:DA:D3:00:42 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/35efcf72-708d-4456-b1d1-8419a2636e00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:f03d::/48 Signature Algorithm: sha256WithRSAEncryption 44:d5:54:7c:81:65:83:81:54:1b:26:5c:a3:52:f0:ec:a2:b1: 29:92:0a:bc:f9:de:5b:1d:a7:31:67:77:58:84:72:04:5c:f6: 7f:7c:e8:b3:26:36:ee:27:cd:d7:97:ee:7e:16:c6:9e:e9:a6: ed:86:fc:c2:87:61:ea:4e:f8:fb:52:9a:c6:25:87:e3:9a:96: 09:04:e4:25:30:24:b4:ff:cb:d2:c0:11:b4:ea:5d:65:12:6c: b1:6f:ee:89:22:2c:d3:13:bd:02:a7:36:71:74:03:02:23:b6: 86:6a:cc:f1:32:d5:cf:3b:e8:f5:36:a7:72:de:02:97:6b:19: 9d:1b:88:38:56:ce:86:39:2c:5f:be:4b:e1:70:84:57:13:50: 70:13:9f:22:1a:75:f2:66:b3:a0:b8:79:c9:54:c7:a3:27:af: 68:84:bd:b1:8e:b8:5c:ce:ce:c2:9e:93:13:ea:67:56:01:20: 30:ed:4f:b3:27:29:37:c1:c7:a8:ab:02:ef:ae:e1:cc:44:bf: 54:fb:dc:5d:5a:d5:30:bd:84:f2:3f:55:de:e4:04:a7:91:e8: ef:9d:d0:f9:c9:38:6d:eb:ba:66:59:6d:25:3a:73:b0:16:33: 33:37:cb:30:9e:8a:67:0d:d0:81:56:3a:a8:de:9f:51:e5:81: 2d:8a:4f:e9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfeb96IskJnpvrF89EDH0/2ZWHawwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjI4MDQzMDU3WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTA5OTVjMGQzMjhiNjFjMmMyZDY3OTVhOTUxYTM5YWJh OGE5MzM4YTdjNjQ2MGRlYTA4YTM4NDQzYjgzNjVmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmoyAaWkIpjNvwbAAHN54szmmnH7bWlbP1FE2kW5WXR7Mr FTIXI9G+BWu18Cpye9thgWlYc8AeU1u8O1nXb7tLS9av68rNpkR8riubgAcJNabB f8J695JJcONavYcchey1yaL/pD4T49U7NqeaR/OSWQUEAHOjnak2dNp1Joobsabf yXHsqP6T7cDeICExpOlVLgTKmtSzQ3QgOFfAwLB9ZKW6Yh4UWc3g33/44kDjZLaW xSjeqizo7JyicUeldwZe50d8hoPh/LPf2+BmVF5kGZmspSSXdGjmFvs2h6xDRVqJ h3FxCJOR/MgWOtOFdzBgfRJ1EzXr12adyYuTrn+5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUP7EuZNL1OnO6piWJFCN5QNrTAEIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM1ZWZjZjcyLTcwOGQtNDQ1Ni1iMWQxLTg0MTlhMjYzNmUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzA8D0wDQYJKoZIhvcNAQELBQADggEBAETVVHyBZYOBVBsmXKNS8Oyi sSmSCrz53lsdpzFnd1iEcgRc9n986LMmNu4nzdeX7n4Wxp7ppu2G/MKHYepO+PtS msYlh+OalgkE5CUwJLT/y9LAEbTqXWUSbLFv7okiLNMTvQKnNnF0AwIjtoZqzPEy 1c876PU2p3LeApdrGZ0biDhWzoY5LF++S+FwhFcTUHATnyIadfJms6C4eclUx6Mn r2iEvbGOuFzOzsKekxPqZ1YBIDDtT7MnKTfBx6irAu+u4cxEv1T73F1a1TC9hPI/ Vd7kBKeR6O+d0PnJOG3rumZZbSU6c7AWMzM3yzCeimcN0IFWOqjen1HlgS2KT+k= -----END CERTIFICATE-----Generated at Sun Mar 1 23:39:31 2026 by rpki-client