$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa File: 3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa (raw, json) Hash identifier: qnRKccbk7hk+OhhH8TXxm+JiAZAqzD13kclotimfCJs= Subject key identifier: B4:A0:E2:15:DB:DD:6D:9A:2A:7E:2D:79:F5:DB:79:DD:63:D5:D2:1F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 70F04990A670FF41E0A8A4EFF73771472438FE9F Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa Signing time: Sat 28 Feb 2026 04:20:08 +0000 ROA not before: Sat 28 Feb 2026 04:20:08 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:611::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:f0:49:90:a6:70:ff:41:e0:a8:a4:ef:f7:37:71:47:24:38:fe:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 28 04:20:08 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=2c0cdd71a583f38a37f69622d08f370f8a433682c09ac8f246df56eb47510697, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:03:ed:52:34:af:35:23:62:05:3a:55:8b:1d: ae:e4:db:c6:7e:bf:fe:55:5d:f5:c1:14:b5:b6:d1: a5:ac:07:e2:b7:70:47:27:83:a2:d1:e0:c8:40:99: ba:c9:9e:61:32:32:8c:51:e8:7e:cf:37:d6:f7:a2: 78:98:bc:6b:b8:de:05:3e:23:ce:30:fe:f0:42:3e: 90:02:3e:89:7f:32:0f:bf:16:0e:3e:49:f6:bd:0c: 17:b0:ab:14:29:59:7a:72:31:39:5b:0f:cc:d1:d6: c0:74:27:01:a5:13:e0:ea:0f:89:9e:3f:2d:01:ac: 34:a0:d2:bd:42:74:d5:94:93:3f:b2:2f:3a:c8:fc: 2b:81:d5:17:14:43:cb:9b:a0:ee:74:ba:19:6d:7a: 12:d1:82:7b:14:8f:3e:e7:ac:5e:ab:d0:c7:8d:65: ec:d7:84:81:22:f1:c7:2a:c3:e1:62:30:e3:95:9a: 48:52:6c:31:21:7d:86:ba:ed:8d:aa:8e:58:a5:d2: 2f:64:0c:33:a2:d4:82:7b:dc:a0:16:46:ed:7b:d8: 2c:6c:29:7f:89:3e:34:52:1b:d8:fe:42:7c:33:8a: bf:27:a0:30:eb:ec:2e:b9:68:8f:cf:45:e5:6d:6d: e0:07:5b:36:45:30:75:bf:ba:f0:bd:0a:9a:79:00: 69:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A0:E2:15:DB:DD:6D:9A:2A:7E:2D:79:F5:DB:79:DD:63:D5:D2:1F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fef9d3e-2ad2-4e38-92fc-5eab76a53959.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:611::/48 Signature Algorithm: sha256WithRSAEncryption 58:62:04:82:6f:47:bd:e0:19:d4:22:fd:6d:31:5f:90:18:38: 6a:96:ee:e9:ad:54:a0:78:1a:e3:02:9b:9e:30:7a:52:a0:56: 1f:e9:75:c9:2f:c7:96:1a:b4:2e:dc:55:7e:e0:09:eb:33:c9: 7d:f2:ed:71:dc:fd:85:ea:ee:88:cb:34:a8:a1:1a:0c:6d:76: b8:9c:20:7f:4d:74:f5:3c:f2:72:78:c2:02:fe:2b:bd:32:45: 4e:93:60:5c:cc:ae:aa:e4:50:fb:e6:96:d8:cd:84:9b:d7:77: b5:71:27:88:30:79:d5:df:f9:cc:43:e9:25:3c:e7:95:01:7f: 0e:15:64:88:01:73:b2:67:32:fd:6a:92:66:4e:22:25:0f:fd: 93:d5:f5:ca:8b:f2:41:3b:d6:92:a3:53:0b:61:4f:9c:43:8c: c7:f5:ff:7f:9b:16:cf:04:56:9c:90:27:c4:89:1a:db:bb:d7: b6:e5:41:5a:de:3e:39:fe:0c:bf:2f:f9:2d:ca:6d:af:2f:91: 9f:86:37:e6:7c:87:e9:5f:32:b7:e0:77:63:8c:02:ed:3d:90: 59:98:c5:52:c2:8d:8c:e3:ab:4a:7b:c7:34:f8:91:e1:c5:1e: 83:73:f6:df:e1:d0:db:3c:f1:11:f7:18:d9:d1:c9:36:07:a0: e0:da:cb:c6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcPBJkKZw/0HgqKTv9zdxRyQ4/p8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjI4MDQyMDA4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzBjZGQ3MWE1ODNmMzhhMzdmNjk2MjJkMDhmMzcwZjhh NDMzNjgyYzA5YWM4ZjI0NmRmNTZlYjQ3NTEwNjk3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRA+1SNK81I2IFOlWLHa7k28Z+v/5VXfXBFLW20aWsB+K3 cEcng6LR4MhAmbrJnmEyMoxR6H7PN9b3oniYvGu43gU+I84w/vBCPpACPol/Mg+/ Fg4+Sfa9DBewqxQpWXpyMTlbD8zR1sB0JwGlE+DqD4mePy0BrDSg0r1CdNWUkz+y LzrI/CuB1RcUQ8uboO50uhltehLRgnsUjz7nrF6r0MeNZezXhIEi8ccqw+FiMOOV mkhSbDEhfYa67Y2qjlil0i9kDDOi1IJ73KAWRu172CxsKX+JPjRSG9j+Qnwzir8n oDDr7C65aI/PReVtbeAHWzZFMHW/uvC9Cpp5AGkRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtKDiFdvdbZoqfi159dt53WPV0h8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmZWY5ZDNlLTJhZDItNGUzOC05MmZjLTVlYWI3NmE1Mzk1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhEwDQYJKoZIhvcNAQELBQADggEBAFhiBIJvR73gGdQi/W0xX5AY OGqW7umtVKB4GuMCm54welKgVh/pdckvx5YatC7cVX7gCeszyX3y7XHc/YXq7ojL NKihGgxtdricIH9NdPU88nJ4wgL+K70yRU6TYFzMrqrkUPvmltjNhJvXd7VxJ4gw edXf+cxD6SU855UBfw4VZIgBc7JnMv1qkmZOIiUP/ZPV9cqL8kE71pKjUwthT5xD jMf1/3+bFs8EVpyQJ8SJGtu717blQVrePjn+DL8v+S3Kba8vkZ+GN+Z8h+lfMrfg d2OMAu09kFmYxVLCjYzjq0p7xzT4keHFHoNz9t/h0Ns88RH3GNnRyTYHoODay8Y= -----END CERTIFICATE-----Generated at Sun Mar 1 23:19:58 2026 by rpki-client