$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53491bc-c995-40aa-b532-7c3c0d39d244.roa File: d53491bc-c995-40aa-b532-7c3c0d39d244.roa (raw, json) Hash identifier: XI/jN77oUyM9D6ww1RllQtKeyxEmDhyRxoevZ85zIjQ= Subject key identifier: 85:CD:86:A2:23:3F:A8:B1:49:B0:B8:96:A3:C3:D6:90:F1:1C:7C:D0 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 236220C547F578FA1B3A219B49541A8CBF65D55B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53491bc-c995-40aa-b532-7c3c0d39d244.roa Signing time: Sat 28 Feb 2026 04:30:58 +0000 ROA not before: Sat 28 Feb 2026 04:30:58 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c40::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:62:20:c5:47:f5:78:fa:1b:3a:21:9b:49:54:1a:8c:bf:65:d5:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 28 04:30:58 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=0ea075d319b6e45b3cc8da71c7ebb6c8308feb2775bd455eabbb2b16d7204f0f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:47:bf:bd:ea:ad:83:e6:6c:9a:7a:8f:ba:33: c6:6a:a4:04:75:69:3d:4c:10:da:b0:a3:70:49:b8: cf:6e:d9:5e:b6:91:f2:e5:e0:41:3e:4d:77:33:b4: 05:77:d1:12:d1:58:a5:c2:68:0d:d6:e9:5c:20:6e: ac:28:56:7b:1a:10:d2:cd:2c:9a:f2:84:8a:d8:97: 2d:38:3b:a5:58:6c:14:cb:3f:b0:ca:20:9a:ec:9f: 2b:da:d0:f0:42:37:af:4a:45:e2:7d:e9:4f:d6:46: 47:95:78:ed:b4:6e:7a:09:04:7e:76:db:5f:aa:7a: 68:9b:9c:00:fa:65:a8:fc:49:c0:05:8e:b7:0c:2d: a8:29:a4:3b:12:58:3e:0a:e0:da:1b:3b:d1:e8:90: f0:59:5c:72:a9:2f:cf:4a:f7:80:1f:66:50:16:88: 12:2a:5a:f2:59:85:39:7a:37:e2:90:65:e1:1c:72: cf:de:e8:11:57:a3:fc:47:1e:7c:6f:1e:5a:1d:e7: ad:81:35:fc:7f:8d:22:98:29:09:8f:94:b6:3f:e9: 2f:02:c2:e4:2b:8e:d9:29:ef:87:3b:e7:f4:f4:03: 54:6c:d2:99:b2:6f:9d:5e:ec:27:1a:eb:03:a3:94: 64:d1:07:32:37:16:d1:21:e1:bf:20:1a:a9:9a:a1: a7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:CD:86:A2:23:3F:A8:B1:49:B0:B8:96:A3:C3:D6:90:F1:1C:7C:D0 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53491bc-c995-40aa-b532-7c3c0d39d244.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c40::/45 Signature Algorithm: sha256WithRSAEncryption a4:14:f3:e5:f9:70:24:89:c5:0c:d6:ed:5c:da:30:d0:52:4c: 24:68:34:44:c6:dd:36:d0:a3:94:d8:bf:f5:9a:82:11:3c:ac: 38:e9:cf:d0:57:8d:7e:5b:fc:ab:a3:7d:1d:32:74:b4:20:8d: ef:f2:7f:a3:21:e9:69:a9:66:f2:53:14:b8:19:bf:1a:5c:65: 0d:a2:ee:e3:56:68:e1:6a:2e:21:0e:2b:75:08:01:d5:90:39: 76:da:e6:0d:11:35:df:6e:db:db:aa:55:f4:4f:fd:8b:28:db: ca:f8:2f:c0:d6:fa:72:1e:e4:6c:72:d4:be:d1:65:e1:98:10: 17:1b:bf:22:0b:cd:89:58:83:bd:d1:01:fb:0a:35:9a:9f:ac: fe:80:2a:48:ec:53:c9:97:4f:b8:a3:5b:79:88:2a:a3:f2:94: 61:c4:d8:25:62:47:43:5e:95:d0:ee:5d:7f:57:97:29:1a:4a: fd:85:62:58:2c:a0:e6:96:52:3a:d7:d6:2e:ce:46:9a:7f:1d: 34:21:0d:68:cf:2b:b7:1b:4d:88:5e:78:0e:78:0f:0f:11:ea: f4:81:6e:7d:3b:80:72:b7:2f:7d:f5:17:26:7b:57:38:b7:01: ae:27:c1:84:d4:a5:29:4b:f0:75:ad:0a:03:e0:74:9e:51:cc: 2b:7a:3e:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI2IgxUf1ePobOiGbSVQajL9l1VswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjI4MDQzMDU4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZWEwNzVkMzE5YjZlNDViM2NjOGRhNzFjN2ViYjZjODMw OGZlYjI3NzViZDQ1NWVhYmJiMmIxNmQ3MjA0ZjBmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6R7+96q2D5myaeo+6M8ZqpAR1aT1MENqwo3BJuM9u2V62 kfLl4EE+TXcztAV30RLRWKXCaA3W6VwgbqwoVnsaENLNLJryhIrYly04O6VYbBTL P7DKIJrsnyva0PBCN69KReJ96U/WRkeVeO20bnoJBH5221+qemibnAD6Zaj8ScAF jrcMLagppDsSWD4K4NobO9HokPBZXHKpL89K94AfZlAWiBIqWvJZhTl6N+KQZeEc cs/e6BFXo/xHHnxvHlod562BNfx/jSKYKQmPlLY/6S8CwuQrjtkp74c75/T0A1Rs 0pmyb51e7Cca6wOjlGTRBzI3FtEh4b8gGqmaoaejAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhc2GoiM/qLFJsLiWo8PWkPEcfNAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q1MzQ5MWJjLWM5OTUtNDBhYS1iNTMyLTdjM2MwZDM5ZDI0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmBZzADEAwDQYJKoZIhvcNAQELBQADggEBAKQU8+X5cCSJxQzW7VzaMNBS TCRoNETG3TbQo5TYv/WaghE8rDjpz9BXjX5b/KujfR0ydLQgje/yf6Mh6WmpZvJT FLgZvxpcZQ2i7uNWaOFqLiEOK3UIAdWQOXba5g0RNd9u29uqVfRP/Yso28r4L8DW +nIe5Gxy1L7RZeGYEBcbvyILzYlYg73RAfsKNZqfrP6AKkjsU8mXT7ijW3mIKqPy lGHE2CViR0NeldDuXX9XlykaSv2FYlgsoOaWUjrX1i7ORpp/HTQhDWjPK7cbTYhe eA54Dw8R6vSBbn07gHK3L331FyZ7Vzi3Aa4nwYTUpSlL8HWtCgPgdJ5RzCt6PmY= -----END CERTIFICATE-----Generated at Mon Mar 2 13:47:45 2026 by rpki-client