$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa File: b135e8de-4e6c-4d15-87c3-51709cb5a460.roa (raw, json) Hash identifier: O+xhOgeFHBcyvshYtzYWZBg+mb1TjNJdI0UutUjWlCk= Subject key identifier: D6:36:9B:2C:0B:3D:4F:1E:E4:8D:F8:D0:4A:EB:A9:7B:27:7B:AA:95 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2712389E7EBC215670C79465E6C98C8B6DEC299B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa Signing time: Sat 28 Feb 2026 04:40:08 +0000 ROA not before: Sat 28 Feb 2026 04:40:08 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:39c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:12:38:9e:7e:bc:21:56:70:c7:94:65:e6:c9:8c:8b:6d:ec:29:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 28 04:40:08 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=d4663887d7e89591af623ca65d005150b6bcf33b3000acd0c92db3cfc2362420, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:90:4d:df:93:02:e7:22:e3:bb:38:b3:f3:95: 5f:d8:f2:42:51:fd:43:fb:26:84:4f:13:83:bf:79: ab:34:ee:57:67:59:c8:ab:ac:74:a2:99:68:db:d3: 12:2b:69:ae:f6:27:a6:c7:c1:48:4a:e2:b5:99:78: a1:a9:3e:68:09:72:43:44:40:3e:7d:19:97:6b:fd: bc:47:55:87:7f:00:39:d4:16:50:ac:fa:3f:2e:54: 29:2d:59:76:23:59:c4:00:77:f7:68:50:81:90:7c: 65:bc:8d:c6:47:ea:85:62:5d:07:6c:81:a0:85:6e: 30:9d:05:39:0a:37:b9:2d:cf:7b:d7:94:2b:c7:c9: 7b:4b:53:45:14:7e:81:c0:f9:c6:8e:da:bd:15:38: d8:3a:77:c7:a4:c6:69:2b:4d:7b:21:e2:5b:0f:7b: cf:8e:26:16:cf:b5:70:70:48:f1:57:14:71:96:5b: 5c:03:d7:d7:f2:0d:a1:70:c9:cd:c1:0a:a2:cc:75: 4c:26:48:27:34:4a:b7:82:19:f4:b6:94:6f:be:0b: 72:a5:80:59:fd:d1:2b:88:12:2e:0d:fb:97:8a:b2: 20:28:b4:0b:a1:f6:9d:aa:2d:ae:d0:fa:60:bc:2c: c8:d7:8d:6d:df:f8:c8:7d:bf:00:75:0a:08:a7:b2: 63:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:36:9B:2C:0B:3D:4F:1E:E4:8D:F8:D0:4A:EB:A9:7B:27:7B:AA:95 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b135e8de-4e6c-4d15-87c3-51709cb5a460.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:39c::/48 Signature Algorithm: sha256WithRSAEncryption aa:67:60:e7:42:2d:4f:77:0a:cc:b3:5e:a2:75:d5:59:a8:68: 55:c4:7f:82:35:a8:54:22:07:09:c2:41:be:4f:9a:9a:1c:be: 22:fd:4d:5b:42:9d:b4:96:f9:01:58:b4:d1:0c:86:aa:d3:9c: e9:4c:25:06:0b:07:3d:43:ca:79:33:39:9a:8f:19:eb:96:f0: 75:ed:74:a1:2b:99:d8:08:9d:a0:c3:ca:de:ba:4a:de:da:7d: 63:f4:c9:9c:dc:03:3a:c5:aa:df:24:dc:ba:c3:ac:04:59:87: e9:fd:a5:1e:8c:df:e9:e4:ee:1b:db:68:33:e4:47:11:e9:ec: 13:ad:11:9c:51:8a:77:02:be:0a:ec:86:ba:31:f6:98:93:76: 7e:ac:71:d4:96:dd:c7:79:47:34:06:86:76:20:4c:67:ec:65: 69:e6:6e:84:19:27:bb:17:05:ca:6c:39:6e:6f:69:cd:84:20: 3d:67:09:0a:39:27:09:00:03:7a:00:bf:e8:80:b7:24:96:00: aa:42:ba:19:85:8b:6f:63:39:cb:9f:03:79:35:df:6c:de:d5: 54:e9:43:f5:93:f6:e0:8f:92:1b:34:1e:b2:ec:d4:b2:d2:c9: 34:85:ba:9b:47:61:be:c4:e1:e6:fc:aa:6e:5a:15:f7:b0:b0: aa:16:34:9c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJxI4nn68IVZwx5Rl5smMi23sKZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjI4MDQ0MDA4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDY2Mzg4N2Q3ZTg5NTkxYWY2MjNjYTY1ZDAwNTE1MGI2 YmNmMzNiMzAwMGFjZDBjOTJkYjNjZmMyMzYyNDIwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBkE3fkwLnIuO7OLPzlV/Y8kJR/UP7JoRPE4O/eas07ldn WcirrHSimWjb0xIraa72J6bHwUhK4rWZeKGpPmgJckNEQD59GZdr/bxHVYd/ADnU FlCs+j8uVCktWXYjWcQAd/doUIGQfGW8jcZH6oViXQdsgaCFbjCdBTkKN7ktz3vX lCvHyXtLU0UUfoHA+caO2r0VONg6d8ekxmkrTXsh4lsPe8+OJhbPtXBwSPFXFHGW W1wD19fyDaFwyc3BCqLMdUwmSCc0SreCGfS2lG++C3KlgFn90SuIEi4N+5eKsiAo tAuh9p2qLa7Q+mC8LMjXjW3f+Mh9vwB1CginsmNBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1jabLAs9Tx7kjfjQSuupeyd7qpUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2IxMzVlOGRlLTRlNmMtNGQxNS04N2MzLTUxNzA5Y2I1YTQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA5wwDQYJKoZIhvcNAQELBQADggEBAKpnYOdCLU93CsyzXqJ11Vmo aFXEf4I1qFQiBwnCQb5PmpocviL9TVtCnbSW+QFYtNEMhqrTnOlMJQYLBz1Dynkz OZqPGeuW8HXtdKErmdgInaDDyt66St7afWP0yZzcAzrFqt8k3LrDrARZh+n9pR6M 3+nk7hvbaDPkRxHp7BOtEZxRincCvgrshrox9piTdn6scdSW3cd5RzQGhnYgTGfs ZWnmboQZJ7sXBcpsOW5vac2EID1nCQo5JwkAA3oAv+iAtySWAKpCuhmFi29jOcuf A3k132ze1VTpQ/WT9uCPkhs0HrLs1LLSyTSFuptHYb7E4eb8qm5aFfewsKoWNJw= -----END CERTIFICATE-----Generated at Sun Mar 1 23:35:39 2026 by rpki-client