$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa File: 8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa (raw, json) Hash identifier: VLcQLjMQg9qJJScnQhJF/NdXprYRh8TEloLWBb/jKeI= Subject key identifier: 1F:30:E1:B6:E4:9B:F7:F6:7F:5A:FC:B1:FA:08:74:FE:23:39:5E:08 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 68D613B4A82120986F65697CDD8F3A95DFD8D5BE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa Signing time: Sat 28 Feb 2026 04:31:00 +0000 ROA not before: Sat 28 Feb 2026 04:31:00 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:396::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d6:13:b4:a8:21:20:98:6f:65:69:7c:dd:8f:3a:95:df:d8:d5:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 28 04:31:00 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=7b5db180f7fed9c441a8517f5f5bad8fd105229df9275dd4dfa0fa138041880c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:52:76:e6:62:fe:c2:f3:56:47:6e:12:20:48: 25:10:bc:e5:57:6f:49:19:2f:42:e1:f6:ba:1f:ae: b2:ab:b6:e9:13:95:6a:90:38:2e:bf:27:90:5c:42: 35:81:27:74:79:81:40:cb:2a:0a:1d:a7:5a:07:66: 26:ba:ca:d7:51:28:ad:c2:64:85:68:70:da:6e:d9: f9:82:35:a1:c2:46:24:e4:72:fc:50:e4:0d:7f:1c: 22:f9:1c:4f:58:28:e5:1e:14:5a:19:8f:70:82:d3: 07:ba:b4:fe:b5:a1:8f:4c:e0:5d:6f:63:19:d3:9c: 03:bf:68:e5:f5:e5:63:91:df:60:2f:5d:05:cb:0f: 57:03:c7:91:3e:e2:cd:b8:ae:9f:e4:39:eb:14:14: 98:af:13:61:83:88:b5:3b:36:2c:2b:91:a5:ab:cb: 24:66:ef:7b:51:d8:74:13:da:d4:1e:dd:f4:ba:1b: 2f:80:c2:1e:06:35:38:a9:1e:5e:20:de:da:c9:68: 03:6a:53:44:a9:7c:b8:6e:dd:a3:8c:32:24:ad:b5: 59:57:cf:f0:e7:f3:9c:55:3d:d7:4e:e2:09:d0:9b: 38:e2:57:93:32:b2:eb:19:00:82:4d:fd:e5:5a:2d: 5d:f2:5a:a5:18:ac:5a:3b:de:23:24:3f:9f:e4:a8: e0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:30:E1:B6:E4:9B:F7:F6:7F:5A:FC:B1:FA:08:74:FE:23:39:5E:08 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8e5cac31-33d2-454d-a2b7-6ef85a8d494d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:396::/48 Signature Algorithm: sha256WithRSAEncryption 98:af:9e:12:67:c5:05:a0:87:7c:dc:cc:07:12:9d:6f:41:f2: 23:ca:15:25:af:4b:52:0f:44:47:bc:30:f4:2a:84:79:2b:7a: 64:93:56:27:b4:49:df:48:78:17:9b:20:3c:3b:f6:ac:5b:15: 4f:02:8e:9d:c0:25:b9:19:31:98:65:40:dc:ee:35:48:a8:90: 5c:9d:79:e7:05:de:33:9e:ad:e7:76:6a:f8:5a:00:00:20:70: d3:d9:fe:c3:cb:44:e7:19:31:d2:50:9c:c1:dc:ba:db:9f:74: b2:6a:76:b9:d6:fa:4d:6a:4b:ad:2b:29:aa:95:77:76:6d:fc: 86:38:60:bd:a1:0e:5c:14:e9:6f:8b:99:bf:61:c7:39:dd:2d: f2:00:2b:29:07:99:60:e1:0c:f5:bf:22:d2:50:dc:8a:18:e7: 5c:d4:b3:12:38:50:78:56:1c:3f:e8:bf:ec:98:30:b2:50:a9: 16:15:39:ea:4a:72:32:ea:57:3f:82:03:05:78:1d:ca:47:01: 53:9e:c8:bd:b0:41:d9:cd:b0:59:fd:5e:cc:fa:51:e8:c9:83: 02:68:a2:86:9b:4b:49:29:11:9c:76:95:70:f7:00:2f:91:3f: 0c:df:f0:9d:f7:69:cf:5d:2c:56:c1:6f:39:b4:3a:23:8f:8c: 5b:84:81:a7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaNYTtKghIJhvZWl83Y86ld/Y1b4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjI4MDQzMTAwWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YjVkYjE4MGY3ZmVkOWM0NDFhODUxN2Y1ZjViYWQ4ZmQx MDUyMjlkZjkyNzVkZDRkZmEwZmExMzgwNDE4ODBjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdUnbmYv7C81ZHbhIgSCUQvOVXb0kZL0Lh9rofrrKrtukT lWqQOC6/J5BcQjWBJ3R5gUDLKgodp1oHZia6ytdRKK3CZIVocNpu2fmCNaHCRiTk cvxQ5A1/HCL5HE9YKOUeFFoZj3CC0we6tP61oY9M4F1vYxnTnAO/aOX15WOR32Av XQXLD1cDx5E+4s24rp/kOesUFJivE2GDiLU7NiwrkaWryyRm73tR2HQT2tQe3fS6 Gy+Awh4GNTipHl4g3trJaANqU0SpfLhu3aOMMiSttVlXz/Dn85xVPddO4gnQmzji V5MysusZAIJN/eVaLV3yWqUYrFo73iMkP5/kqOBbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHzDhtuSb9/Z/Wvyx+gh0/iM5XggwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzhlNWNhYzMxLTMzZDItNDU0ZC1hMmI3LTZlZjg1YThkNDk0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5YwDQYJKoZIhvcNAQELBQADggEBAJivnhJnxQWgh3zczAcSnW9B 8iPKFSWvS1IPREe8MPQqhHkremSTVie0Sd9IeBebIDw79qxbFU8Cjp3AJbkZMZhl QNzuNUiokFydeecF3jOered2avhaAAAgcNPZ/sPLROcZMdJQnMHcutufdLJqdrnW +k1qS60rKaqVd3Zt/IY4YL2hDlwU6W+Lmb9hxzndLfIAKykHmWDhDPW/ItJQ3IoY 51zUsxI4UHhWHD/ov+yYMLJQqRYVOepKcjLqVz+CAwV4HcpHAVOeyL2wQdnNsFn9 Xsz6UejJgwJoooabS0kpEZx2lXD3AC+RPwzf8J33ac9dLFbBbzm0OiOPjFuEgac= -----END CERTIFICATE-----Generated at Sun Mar 1 21:44:44 2026 by rpki-client