$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a4b43ebf-0d93-4470-9ac2-768f9381f392.roa File: a4b43ebf-0d93-4470-9ac2-768f9381f392.roa (raw, json) Hash identifier: vYlOk7x+DkLHOh5kHwt1LpNaGDHFqbf6LTzh+rRx1H8= Subject key identifier: 25:15:42:F0:9E:55:8E:25:3D:91:53:9A:62:71:F4:21:54:38:D0:17 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 671174C8D66B8DB913904CE17D5193CA0132C314 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a4b43ebf-0d93-4470-9ac2-768f9381f392.roa Signing time: Mon 23 Feb 2026 00:40:07 +0000 ROA not before: Mon 23 Feb 2026 00:40:07 +0000 ROA not after: Sun 24 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:3c2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:11:74:c8:d6:6b:8d:b9:13:90:4c:e1:7d:51:93:ca:01:32:c3:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 23 00:40:07 2026 GMT Not After : May 24 23:59:59 2026 GMT Subject: serialNumber=94fbd4a7d87fada05de0a6bbe7b833702dfbecff9fe7f61f73f826ef060bc8a1, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:08:43:9b:f5:d7:9b:18:e1:a3:d7:1c:7a:71: 6f:63:7c:b7:f2:1b:27:9e:ea:d9:34:53:f2:ac:b9: 40:ef:19:2a:77:4a:dd:b5:36:86:04:19:74:ad:60: 96:e6:ac:1c:92:b9:ea:64:d1:dc:32:70:8d:9f:5b: d7:2b:85:d8:38:53:5e:dd:be:7e:94:b0:fb:ba:0d: ea:5b:62:aa:8e:b5:65:4e:09:af:45:e7:d8:5a:ab: c1:2f:5d:a7:0b:51:85:cf:7e:4d:2c:8b:d4:33:2b: 33:6b:69:6a:bb:34:3b:5f:65:85:c7:3a:69:63:a4: 9c:d8:f1:9c:a3:b7:0f:b2:8b:44:71:7c:d9:5a:5f: 40:e2:0d:77:23:91:e9:c1:3d:e1:a7:67:68:f4:04: d4:d7:98:4d:a4:ec:46:fb:3b:25:1b:6e:fb:ed:8f: 49:5a:26:c3:67:c6:6c:82:46:e2:3e:5f:b0:c4:f6: 21:61:64:9f:e4:1d:71:45:08:e3:04:d7:75:68:96: d2:57:91:e8:23:dd:67:b8:af:db:71:f8:b8:30:92: dc:7e:67:6d:8e:29:a5:b8:56:ad:0e:33:fb:45:19: 11:35:21:89:49:1b:83:32:ce:d6:7a:ae:c9:77:37: a6:9e:23:6f:88:4b:39:88:6d:c7:ba:45:2c:9a:4d: 36:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:15:42:F0:9E:55:8E:25:3D:91:53:9A:62:71:F4:21:54:38:D0:17 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a4b43ebf-0d93-4470-9ac2-768f9381f392.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3c2::/48 Signature Algorithm: sha256WithRSAEncryption 27:d8:0b:81:b9:bd:2a:96:09:62:e8:b8:48:aa:21:76:1e:d2: 4e:7e:57:f9:c6:c9:8c:22:11:9d:98:f1:ec:f2:e4:47:fb:6f: ca:2d:d8:4c:ea:eb:81:15:97:63:2e:0b:52:de:12:5d:9e:8d: 34:5c:a8:07:a1:51:a8:58:06:7d:29:3c:c3:83:c9:1c:67:2a: 3b:1e:72:47:1e:92:cc:57:89:27:a4:11:ce:2c:88:a5:a1:bf: 11:9e:a3:ff:5e:dc:b4:62:b5:52:c7:70:42:49:17:03:2c:72: 3c:47:03:f1:cb:ae:d4:19:5f:cd:fa:41:44:a8:48:b0:bb:57: 2d:70:5d:be:7f:b2:14:5e:f1:77:42:8f:4f:38:dc:a5:de:23: ba:0a:57:5c:6c:cd:b1:29:a7:e0:a6:f9:66:d6:87:52:9f:10: e0:0d:ea:a7:d5:3f:57:e8:06:4c:b6:2b:2e:2d:ff:3b:38:be: 9a:a6:d3:6f:46:e8:b5:2c:36:55:8f:69:fd:11:22:b6:b8:69: 4c:b2:e9:95:9d:e5:d4:4a:67:42:f9:b6:ac:07:8b:11:65:99: e0:e5:c5:06:bc:4d:9f:31:7c:b4:df:55:de:19:f1:0c:a0:9b: d4:e7:e9:6e:7b:25:f5:99:40:70:fc:61:77:9b:e6:11:31:81: d6:ff:07:af -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZxF0yNZrjbkTkEzhfVGTygEywxQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjIzMDA0MDA3WhcNMjYwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NGZiZDRhN2Q4N2ZhZGEwNWRlMGE2YmJlN2I4MzM3MDJk ZmJlY2ZmOWZlN2Y2MWY3M2Y4MjZlZjA2MGJjOGExMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1CEOb9debGOGj1xx6cW9jfLfyGyee6tk0U/KsuUDvGSp3 St21NoYEGXStYJbmrBySuepk0dwycI2fW9crhdg4U17dvn6UsPu6DepbYqqOtWVO Ca9F59haq8EvXacLUYXPfk0si9QzKzNraWq7NDtfZYXHOmljpJzY8Zyjtw+yi0Rx fNlaX0DiDXcjkenBPeGnZ2j0BNTXmE2k7Eb7OyUbbvvtj0laJsNnxmyCRuI+X7DE 9iFhZJ/kHXFFCOME13VoltJXkegj3We4r9tx+Lgwktx+Z22OKaW4Vq0OM/tFGRE1 IYlJG4MyztZ6rsl3N6aeI2+ISzmIbce6RSyaTTbLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJRVC8J5VjiU9kVOaYnH0IVQ40BcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2E0YjQzZWJmLTBkOTMtNDQ3MC05YWMyLTc2OGY5MzgxZjM5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA8IwDQYJKoZIhvcNAQELBQADggEBACfYC4G5vSqWCWLouEiqIXYe 0k5+V/nGyYwiEZ2Y8ezy5Ef7b8ot2Ezq64EVl2MuC1LeEl2ejTRcqAehUahYBn0p PMODyRxnKjseckceksxXiSekEc4siKWhvxGeo/9e3LRitVLHcEJJFwMscjxHA/HL rtQZX836QUSoSLC7Vy1wXb5/shRe8XdCj0843KXeI7oKV1xszbEpp+Cm+WbWh1Kf EOAN6qfVP1foBky2Ky4t/zs4vpqm029G6LUsNlWPaf0RIra4aUyy6ZWd5dRKZ0L5 tqwHixFlmeDlxQa8TZ8xfLTfVd4Z8Qygm9Tn6W57JfWZQHD8YXeb5hExgdb/B68= -----END CERTIFICATE-----Generated at Sun Mar 1 23:36:23 2026 by rpki-client