$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c989c04a-7b52-4ce5-a0dc-f32498c5affd.roa File: c989c04a-7b52-4ce5-a0dc-f32498c5affd.roa (raw, json) Hash identifier: 4o80Ic1NkiSrhetg7pbAzQOio9wP6Mpaq/vTfn3waXM= Subject key identifier: 65:B2:EA:C0:1F:32:66:D3:EE:91:92:0C:2B:01:B0:7F:60:6C:E2:81 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1B865F0019659A794571EFAD99EA4AC848921D0F Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c989c04a-7b52-4ce5-a0dc-f32498c5affd.roa Signing time: Sat 28 Feb 2026 04:40:12 +0000 ROA not before: Sat 28 Feb 2026 04:40:12 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:62b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:86:5f:00:19:65:9a:79:45:71:ef:ad:99:ea:4a:c8:48:92:1d:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 28 04:40:12 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=df919794bf97370970eea283c0a8068ba44a0008d3f92ceb0ed156b1c3692b3d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:18:a7:63:5c:27:62:63:20:f6:43:96:20:ea: 2b:39:ec:fe:ec:4b:b5:04:92:09:bc:07:9d:66:32: 11:e1:9f:92:ef:62:90:98:7d:64:a9:97:9d:7e:5e: 55:e1:94:7e:fd:90:5e:0d:9b:d8:fa:19:1c:30:62: 7b:5f:b4:d7:38:96:50:f4:c4:cc:85:54:c8:9e:d1: 73:2f:4f:db:7f:be:f6:5e:cd:f6:bb:17:2e:a4:b9: 78:a4:0e:53:a1:fa:9e:0d:84:3c:63:7f:56:d1:64: c4:e8:36:ef:b4:e6:19:e7:25:bb:ed:70:6d:ce:81: da:27:b3:a8:15:c8:bc:a6:27:f0:c4:f6:b1:e9:f9: 47:33:02:4b:a2:2d:a0:87:41:0b:4b:57:eb:e2:a8: aa:de:6e:9d:38:a5:c3:aa:91:a6:9a:2a:60:83:7d: 3e:c2:c5:ca:66:ee:4a:4a:fa:ef:c6:b1:79:df:fa: d9:81:2b:b8:a5:8e:ad:07:e7:4b:4e:d7:19:73:33: 0c:11:6b:42:10:73:af:15:3b:f0:36:8f:75:80:31: 21:46:eb:72:16:b4:80:71:8d:bf:67:35:9a:1c:22: 41:bf:67:dd:9d:8e:6b:69:77:32:84:8e:36:88:9b: f9:88:67:a7:79:57:0b:b5:96:dc:80:fb:5e:4c:7c: f9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B2:EA:C0:1F:32:66:D3:EE:91:92:0C:2B:01:B0:7F:60:6C:E2:81 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c989c04a-7b52-4ce5-a0dc-f32498c5affd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:62b::/48 Signature Algorithm: sha256WithRSAEncryption 94:61:dd:63:d0:1e:10:2c:01:4b:17:1e:75:fc:b6:1a:40:93: 69:c2:67:63:8f:8a:74:5b:a3:29:ac:a8:1f:86:62:77:c2:ea: 99:96:91:72:35:45:97:f9:c9:74:0a:7d:81:ff:21:ea:19:f5: 6d:8b:77:36:6b:2f:4c:9b:3b:3b:4c:7d:7e:06:db:2e:42:bc: 8f:00:72:01:79:e9:75:b7:c2:4a:26:20:7f:71:35:11:c7:24: 3a:33:08:99:64:cf:ea:ed:ef:59:ba:eb:6f:1b:59:96:ba:3f: c7:71:2b:dc:56:96:3a:78:d1:5e:ad:a1:33:60:7b:2c:10:19: e7:fd:c2:50:c4:e4:27:52:49:17:ba:75:f2:ee:07:41:a4:ed: a3:3c:68:5d:bb:64:13:07:97:44:3d:b8:bb:04:4d:b3:11:3b: 31:06:f4:cc:b0:19:9b:0a:d5:98:7d:4c:a6:be:d6:48:09:da: 9e:95:dc:15:bc:b5:d5:ce:6e:cf:64:b1:d0:2a:7e:d3:1d:0d: 5c:31:87:b0:29:ff:03:9e:2b:42:6d:ce:13:5b:91:de:de:e2: ca:a5:f3:a9:49:d7:a0:e8:d7:c9:af:92:8d:2e:52:16:6a:1c: 9e:f9:85:3f:a8:8b:85:b2:9a:53:3a:cc:c8:d8:59:db:e3:cf: 52:6a:e1:50 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG4ZfABllmnlFce+tmepKyEiSHQ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjI4MDQ0MDEyWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjkxOTc5NGJmOTczNzA5NzBlZWEyODNjMGE4MDY4YmE0 NGEwMDA4ZDNmOTJjZWIwZWQxNTZiMWMzNjkyYjNkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoGKdjXCdiYyD2Q5Yg6is57P7sS7UEkgm8B51mMhHhn5Lv YpCYfWSpl51+XlXhlH79kF4Nm9j6GRwwYntftNc4llD0xMyFVMie0XMvT9t/vvZe zfa7Fy6kuXikDlOh+p4NhDxjf1bRZMToNu+05hnnJbvtcG3Ogdons6gVyLymJ/DE 9rHp+UczAkuiLaCHQQtLV+viqKrebp04pcOqkaaaKmCDfT7Cxcpm7kpK+u/GsXnf +tmBK7iljq0H50tO1xlzMwwRa0IQc68VO/A2j3WAMSFG63IWtIBxjb9nNZocIkG/ Z92djmtpdzKEjjaIm/mIZ6d5Vwu1ltyA+15MfPmxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZbLqwB8yZtPukZIMKwGwf2Bs4oEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2M5ODljMDRhLTdiNTItNGNlNS1hMGRjLWYzMjQ5OGM1YWZmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABiswDQYJKoZIhvcNAQELBQADggEBAJRh3WPQHhAsAUsXHnX8thpA k2nCZ2OPinRboymsqB+GYnfC6pmWkXI1RZf5yXQKfYH/IeoZ9W2LdzZrL0ybOztM fX4G2y5CvI8AcgF56XW3wkomIH9xNRHHJDozCJlkz+rt71m6628bWZa6P8dxK9xW ljp40V6toTNgeywQGef9wlDE5CdSSRe6dfLuB0Gk7aM8aF27ZBMHl0Q9uLsETbMR OzEG9MywGZsK1Zh9TKa+1kgJ2p6V3BW8tdXObs9ksdAqftMdDVwxh7Ap/wOeK0Jt zhNbkd7e4sql86lJ16Do18mvko0uUhZqHJ75hT+oi4WymlM6zMjYWdvjz1Jq4VA= -----END CERTIFICATE-----Generated at Sun Mar 1 21:52:48 2026 by rpki-client