$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa File: ba6294fd-941c-4316-acc0-e4f732862a4c.roa (raw, json) Hash identifier: Xx6A+orjpzA+isMJLrHXtklaSDK1cInmH7VlGlLbBdE= Subject key identifier: F1:4F:6C:C7:BD:7E:73:99:58:00:66:1E:C1:04:A1:BA:EA:7F:0B:0B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4850ACEB003EA31BBA9EDEA052AC543E8C58AC46 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa Signing time: Sat 28 Feb 2026 04:50:19 +0000 ROA not before: Sat 28 Feb 2026 04:50:19 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:639::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:50:ac:eb:00:3e:a3:1b:ba:9e:de:a0:52:ac:54:3e:8c:58:ac:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 28 04:50:19 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=d0525a363d5e7bf16c46df349706458e27cf2571702e4b0cd6edba78381eca6b, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:52:bc:e5:f1:bb:2b:75:3b:cd:36:34:05:e4: 3a:15:b4:03:6a:b3:59:74:42:81:16:10:5c:9a:d1: e5:38:2c:66:a9:3c:d2:55:20:fe:f9:a5:de:0a:71: 20:d7:6b:e2:d4:4a:bc:20:a8:cc:88:d9:16:e7:a6: 25:33:0e:40:83:98:63:b3:24:f6:da:e9:b4:c9:2d: 36:46:47:62:40:63:4e:92:39:f4:cc:6d:28:4b:7f: 49:36:c5:c4:d1:b6:78:a7:48:d3:b0:50:5a:ad:7f: 09:dc:9e:6a:71:c3:b5:f1:d2:c1:88:43:f7:f7:a0: 64:ec:5f:37:e6:0e:c0:03:19:69:94:93:7a:80:35: 1c:18:89:07:9e:1f:a2:b7:cb:0f:21:e6:00:0c:ea: 7e:8b:bb:f3:83:a4:50:44:69:46:cb:87:64:79:b2: d8:9e:60:26:c5:6e:15:3b:b8:d3:c3:05:ef:ed:b7: 2f:77:d3:99:36:44:3b:41:44:cc:51:ca:99:2e:64: ac:ba:e1:6c:74:d0:52:90:36:ab:bf:6c:61:d0:3d: 28:5e:99:a1:91:51:67:53:11:f8:61:51:88:43:14: cc:90:d1:6a:b9:26:1b:03:d8:cd:da:fe:48:ee:ab: ba:b5:e3:e4:11:85:4e:13:f1:85:e3:c2:08:fc:a7: 73:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:4F:6C:C7:BD:7E:73:99:58:00:66:1E:C1:04:A1:BA:EA:7F:0B:0B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:639::/48 Signature Algorithm: sha256WithRSAEncryption 91:c7:60:b0:62:12:74:9a:86:a3:84:43:f5:c1:14:38:aa:e2: dc:f8:bd:1f:85:9f:cc:9e:bf:1e:c9:74:98:0a:6e:dc:d9:7c: 8a:64:9e:20:01:b7:95:1d:a0:05:43:78:0e:34:af:23:9f:fc: 22:a7:eb:6b:cd:1a:19:97:37:8b:f4:cf:07:86:e5:9e:2a:84: 94:03:71:69:67:8b:8a:18:45:ac:f0:ad:06:4a:54:95:a8:24: de:cb:5c:90:73:d5:b8:34:5e:fa:a0:7f:cd:b2:6c:a4:df:67: c0:80:ef:04:2f:9d:4d:46:c3:04:50:4d:c9:66:ed:83:78:91: 1b:aa:cb:03:c4:04:5a:1a:3b:4d:29:08:f6:d7:fc:2a:5b:d8: 2d:d4:1b:84:f9:87:49:9e:08:8d:1c:32:e3:53:ee:a4:70:31: d6:56:54:10:59:a6:49:44:ca:21:f4:59:ca:82:88:fe:62:a2: d3:ed:7d:b5:fe:0f:5c:be:a5:a9:4f:32:fd:d2:3f:3b:ba:31: 96:38:0b:7e:3d:59:98:90:f0:f4:d8:dc:9a:50:16:f6:54:b7: 76:a6:70:1c:27:16:25:57:ac:8b:b5:f4:47:49:37:30:47:2a: de:2d:fa:d3:2b:ef:57:b7:71:39:b5:10:49:fc:fd:13:81:d8: 54:30:87:69 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSFCs6wA+oxu6nt6gUqxUPoxYrEYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjI4MDQ1MDE5WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDUyNWEzNjNkNWU3YmYxNmM0NmRmMzQ5NzA2NDU4ZTI3 Y2YyNTcxNzAyZTRiMGNkNmVkYmE3ODM4MWVjYTZiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrUrzl8bsrdTvNNjQF5DoVtANqs1l0QoEWEFya0eU4LGap PNJVIP75pd4KcSDXa+LUSrwgqMyI2RbnpiUzDkCDmGOzJPba6bTJLTZGR2JAY06S OfTMbShLf0k2xcTRtninSNOwUFqtfwncnmpxw7Xx0sGIQ/f3oGTsXzfmDsADGWmU k3qANRwYiQeeH6K3yw8h5gAM6n6Lu/ODpFBEaUbLh2R5stieYCbFbhU7uNPDBe/t ty9305k2RDtBRMxRypkuZKy64Wx00FKQNqu/bGHQPShemaGRUWdTEfhhUYhDFMyQ 0Wq5JhsD2M3a/kjuq7q14+QRhU4T8YXjwgj8p3OzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8U9sx71+c5lYAGYewQShuup/CwswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JhNjI5NGZkLTk0MWMtNDMxNi1hY2MwLWU0ZjczMjg2MmE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABjkwDQYJKoZIhvcNAQELBQADggEBAJHHYLBiEnSahqOEQ/XBFDiq 4tz4vR+Fn8yevx7JdJgKbtzZfIpkniABt5UdoAVDeA40ryOf/CKn62vNGhmXN4v0 zweG5Z4qhJQDcWlni4oYRazwrQZKVJWoJN7LXJBz1bg0Xvqgf82ybKTfZ8CA7wQv nU1GwwRQTclm7YN4kRuqywPEBFoaO00pCPbX/Cpb2C3UG4T5h0meCI0cMuNT7qRw MdZWVBBZpklEyiH0WcqCiP5iotPtfbX+D1y+palPMv3SPzu6MZY4C349WZiQ8PTY 3JpQFvZUt3amcBwnFiVXrIu19EdJNzBHKt4t+tMr71e3cTm1EEn8/ROB2FQwh2k= -----END CERTIFICATE-----Generated at Sun Mar 1 21:59:53 2026 by rpki-client