$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bdcaa906-63fd-4cc3-bf7a-252f4f2c9ad4.roa File: bdcaa906-63fd-4cc3-bf7a-252f4f2c9ad4.roa (raw, json) Hash identifier: 8PiVWOSTohjLLyCW58C+UdSng8hbGyKl8tNP6SUmoDA= Subject key identifier: 80:E0:3A:68:59:7D:33:3C:1D:14:B2:17:DE:64:D6:E3:FA:E2:7B:92 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4ED3D77ADAEF43F0A20F48D903273968730F1D62 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bdcaa906-63fd-4cc3-bf7a-252f4f2c9ad4.roa Signing time: Tue 24 Feb 2026 00:20:04 +0000 ROA not before: Tue 24 Feb 2026 00:20:04 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:d70::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d3:d7:7a:da:ef:43:f0:a2:0f:48:d9:03:27:39:68:73:0f:1d:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 24 00:20:04 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=4f657e4548b2cd6fc4fd97922ecaf946c8a5e242d30986e6b4997e229db122c8, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:30:73:58:55:52:38:75:16:e8:4f:98:46:5e: 0f:a7:5b:71:41:34:e1:02:cc:cb:80:01:a9:97:e8: 0e:68:21:f7:2a:dd:f7:ca:68:5c:c4:0f:a9:e1:27: 36:8a:87:9d:f8:bc:70:b8:57:85:ba:51:a4:17:a9: 21:40:fe:85:f6:a3:1f:bf:a5:da:68:01:25:3d:06: 37:79:87:07:54:db:01:19:12:2a:95:23:e1:e4:8a: 8f:28:9c:77:f4:c5:3d:9f:6d:a3:46:21:cb:26:1d: f0:ee:d6:e6:09:e7:29:7b:c3:0c:ea:3e:b5:7a:a9: 90:5b:87:3f:1b:4d:d9:73:87:06:be:71:83:68:7a: a7:e5:6d:4e:db:2b:f5:89:26:9f:52:7b:98:e0:0a: e1:42:a2:eb:2c:64:19:27:f9:af:6e:4c:dc:b6:fb: 98:da:96:da:7d:60:3a:b7:59:33:55:fe:79:3d:90: 40:b5:12:53:ce:13:5c:e1:2d:54:13:ec:d5:2b:ee: 66:6f:6d:8a:18:23:c8:d2:19:ba:0a:11:10:22:cd: 62:46:fc:d1:ff:75:3b:7d:d9:8f:29:fe:3e:b7:33: 1a:a5:a9:7f:c4:5b:5a:e2:dd:bb:8f:06:d0:2e:d3: bc:22:ab:bb:2e:ab:16:34:c6:b9:3c:de:b3:72:74: c1:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E0:3A:68:59:7D:33:3C:1D:14:B2:17:DE:64:D6:E3:FA:E2:7B:92 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bdcaa906-63fd-4cc3-bf7a-252f4f2c9ad4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:d70::/44 Signature Algorithm: sha256WithRSAEncryption 1c:4f:b0:6d:2a:1c:11:e5:2e:0d:3e:43:a9:62:d6:0b:68:40: 07:83:48:b8:cc:fd:09:17:24:2a:bc:1e:16:1e:15:a2:58:fd: 98:2b:de:fb:68:25:8f:75:9f:7d:05:3d:fd:3c:0b:23:8f:06: 31:38:29:a6:19:5a:94:da:a4:df:66:09:42:af:e0:dd:b1:a4: 52:90:5d:47:11:3c:cf:fe:eb:5d:81:79:56:07:b2:8c:54:32: f5:0c:ef:63:ce:de:90:9c:bf:ba:bd:f5:5f:6c:47:cf:53:a8: 0d:88:bd:de:64:d8:a1:1d:0b:53:e3:6f:8d:d2:e0:5d:a0:9f: 50:00:40:56:d7:2a:31:cb:1e:d7:21:eb:77:98:b7:9c:77:bd: e2:c7:fe:cc:7e:07:df:d4:60:d7:26:b2:7f:4a:22:f5:01:76: b9:56:59:27:a7:ef:84:cf:0f:b1:3c:62:af:0b:71:6a:ef:ef: 68:4f:0c:86:c1:45:49:8e:26:b8:da:b6:9d:d5:21:8d:83:c0: 19:b2:f6:24:d2:c7:da:f9:d2:88:15:24:65:35:ee:bc:49:ae: 51:21:7c:40:84:2c:c2:ca:b5:72:26:4b:42:c7:ad:09:0b:fa: e6:46:aa:0e:f5:1c:88:28:5b:6f:0d:d8:97:4d:72:0c:4b:0e: 83:1a:68:63 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTtPXetrvQ/CiD0jZAyc5aHMPHWIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjI0MDAyMDA0WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjY1N2U0NTQ4YjJjZDZmYzRmZDk3OTIyZWNhZjk0NmM4 YTVlMjQyZDMwOTg2ZTZiNDk5N2UyMjlkYjEyMmM4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRMHNYVVI4dRboT5hGXg+nW3FBNOECzMuAAamX6A5oIfcq 3ffKaFzED6nhJzaKh534vHC4V4W6UaQXqSFA/oX2ox+/pdpoASU9Bjd5hwdU2wEZ EiqVI+Hkio8onHf0xT2fbaNGIcsmHfDu1uYJ5yl7wwzqPrV6qZBbhz8bTdlzhwa+ cYNoeqflbU7bK/WJJp9Se5jgCuFCoussZBkn+a9uTNy2+5jaltp9YDq3WTNV/nk9 kEC1ElPOE1zhLVQT7NUr7mZvbYoYI8jSGboKERAizWJG/NH/dTt92Y8p/j63Mxql qX/EW1ri3buPBtAu07wiq7suqxY0xrk83rNydMFZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgOA6aFl9MzwdFLIX3mTW4/rie5IwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JkY2FhOTA2LTYzZmQtNGNjMy1iZjdhLTI1MmY0ZjJjOWFkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmBZzADXAwDQYJKoZIhvcNAQELBQADggEBABxPsG0qHBHlLg0+Q6li1gto QAeDSLjM/QkXJCq8HhYeFaJY/Zgr3vtoJY91n30FPf08CyOPBjE4KaYZWpTapN9m CUKv4N2xpFKQXUcRPM/+612BeVYHsoxUMvUM72PO3pCcv7q99V9sR89TqA2Ivd5k 2KEdC1Pjb43S4F2gn1AAQFbXKjHLHtch63eYt5x3veLH/sx+B9/UYNcmsn9KIvUB drlWWSen74TPD7E8Yq8LcWrv72hPDIbBRUmOJrjatp3VIY2DwBmy9iTSx9r50ogV JGU17rxJrlEhfECELMLKtXImS0LHrQkL+uZGqg71HIgoW28N2JdNcgxLDoMaaGM= -----END CERTIFICATE-----Generated at Sun Mar 1 21:41:01 2026 by rpki-client