$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8a5ff071-2589-4b8f-bab2-ab661880d472.roa File: 8a5ff071-2589-4b8f-bab2-ab661880d472.roa (raw, json) Hash identifier: zd4sx9v7PDliIAfcGtIh8vrJuNlHyq0YVcWB/6NRUcg= Subject key identifier: 12:1D:E1:FB:B8:DF:71:C5:30:FD:0A:8B:65:1D:08:0D:F8:80:64:24 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 40C98EC4F632A1038B00F053592AE0913B732256 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8a5ff071-2589-4b8f-bab2-ab661880d472.roa Signing time: Mon 23 Feb 2026 00:40:07 +0000 ROA not before: Mon 23 Feb 2026 00:40:07 +0000 ROA not after: Sun 24 May 2026 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:3c2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:c9:8e:c4:f6:32:a1:03:8b:00:f0:53:59:2a:e0:91:3b:73:22:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 23 00:40:07 2026 GMT Not After : May 24 23:59:59 2026 GMT Subject: serialNumber=d24b888ca7e1ba1b8fd3cf049a86414ed348d3c945232e773825698f5a926e3d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2b:a2:22:b7:29:37:a1:cf:bb:0b:31:a5:0e: 8a:49:74:0f:69:7d:14:f7:7f:e6:69:5c:dd:d9:41: f3:97:4f:54:01:8a:df:f9:80:62:8f:48:20:ac:04: 67:28:3f:ac:7e:60:68:ef:fd:66:4d:dc:70:3f:af: 87:fb:d0:19:f9:fb:42:06:86:26:b4:da:e4:52:f4: 52:d8:1e:31:3d:bc:eb:2c:f1:b1:39:4a:39:83:6e: 74:41:b3:82:9b:31:86:56:88:a8:b9:8b:26:6c:15: 31:cb:3e:93:50:62:70:b9:58:de:d0:b6:82:f7:d5: 3b:b9:bf:d1:59:21:ba:0e:4c:d0:d3:4f:b4:73:21: 91:f7:b9:a2:b3:4b:08:f6:75:e1:27:0a:32:6f:6a: d9:93:41:bf:77:6d:41:aa:04:a5:49:db:98:7a:55: a9:6a:08:87:2c:40:f6:1c:da:be:33:31:4c:2e:95: 91:eb:9c:d6:db:bd:1c:17:c7:2d:95:c4:e3:5f:27: 3f:3a:17:ac:d1:08:28:43:3a:3b:48:52:e3:b1:35: d2:fb:0e:62:fb:b0:ec:c1:6b:a2:53:b6:84:89:ff: cf:0c:b1:95:97:ea:5d:81:1b:0a:2e:b7:da:6b:8f: 66:4b:88:bf:93:f6:ac:a7:79:94:29:d9:4d:c6:7c: a8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:1D:E1:FB:B8:DF:71:C5:30:FD:0A:8B:65:1D:08:0D:F8:80:64:24 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8a5ff071-2589-4b8f-bab2-ab661880d472.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3c2::/48 Signature Algorithm: sha256WithRSAEncryption 8b:a0:58:fe:78:bb:05:de:07:5e:70:c5:d2:f5:3c:ea:2c:b5: e3:5e:33:aa:a0:5c:f8:73:d5:6c:d3:20:c1:58:d4:2e:7e:64: 1c:f0:8b:df:cc:a0:70:b2:be:d6:e7:b9:87:bd:eb:77:1e:be: 81:cf:aa:0e:1f:07:84:63:10:f7:6b:94:6a:54:82:70:37:cc: 15:c4:3f:be:81:f2:76:30:55:17:89:79:04:41:1e:15:af:1d: 0e:d0:93:af:06:81:4d:7f:c6:24:9d:a7:12:15:f6:34:53:5b: e9:27:09:b6:24:ff:00:25:37:77:f1:5c:fc:43:cb:55:7f:c4: 03:68:ea:24:ba:3d:20:cb:03:66:20:98:02:2d:9e:f5:e4:36: 49:a3:e0:af:26:d2:b4:5b:a2:4c:e1:89:99:f4:a5:89:7c:24: 8d:76:85:e0:c6:83:c5:78:c2:e2:58:c6:96:f3:3a:22:45:8a: 4c:93:52:9a:47:95:1e:b7:cc:26:9c:94:81:2c:28:98:e9:ea: d2:1f:4b:3f:ff:94:2f:a9:72:b9:8c:e7:1f:73:e9:01:4a:46: df:ae:58:14:53:f1:91:5c:ff:d3:10:84:fe:9c:3a:3a:7c:e7: 9e:b9:45:da:17:9c:98:d9:b0:12:07:1c:f4:c1:f3:6c:07:4d: 29:d1:8e:e2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQMmOxPYyoQOLAPBTWSrgkTtzIlYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjIzMDA0MDA3WhcNMjYwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjRiODg4Y2E3ZTFiYTFiOGZkM2NmMDQ5YTg2NDE0ZWQz NDhkM2M5NDUyMzJlNzczODI1Njk4ZjVhOTI2ZTNkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxK6Iityk3oc+7CzGlDopJdA9pfRT3f+ZpXN3ZQfOXT1QB it/5gGKPSCCsBGcoP6x+YGjv/WZN3HA/r4f70Bn5+0IGhia02uRS9FLYHjE9vOss 8bE5SjmDbnRBs4KbMYZWiKi5iyZsFTHLPpNQYnC5WN7QtoL31Tu5v9FZIboOTNDT T7RzIZH3uaKzSwj2deEnCjJvatmTQb93bUGqBKVJ25h6ValqCIcsQPYc2r4zMUwu lZHrnNbbvRwXxy2VxONfJz86F6zRCChDOjtIUuOxNdL7DmL7sOzBa6JTtoSJ/88M sZWX6l2BGwout9prj2ZLiL+T9qyneZQp2U3GfKgRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEh3h+7jfccUw/QqLZR0IDfiAZCQwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzhhNWZmMDcxLTI1ODktNGI4Zi1iYWIyLWFiNjYxODgwZDQ3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA8IwDQYJKoZIhvcNAQELBQADggEBAIugWP54uwXeB15wxdL1POos teNeM6qgXPhz1WzTIMFY1C5+ZBzwi9/MoHCyvtbnuYe963cevoHPqg4fB4RjEPdr lGpUgnA3zBXEP76B8nYwVReJeQRBHhWvHQ7Qk68GgU1/xiSdpxIV9jRTW+knCbYk /wAlN3fxXPxDy1V/xANo6iS6PSDLA2YgmAItnvXkNkmj4K8m0rRbokzhiZn0pYl8 JI12heDGg8V4wuJYxpbzOiJFikyTUppHlR63zCaclIEsKJjp6tIfSz//lC+pcrmM 5x9z6QFKRt+uWBRT8ZFc/9MQhP6cOjp85565RdoXnJjZsBIHHPTB82wHTSnRjuI= -----END CERTIFICATE-----Generated at Mon Mar 2 02:09:57 2026 by rpki-client