$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f70dcbfa-0a21-4dcb-b79e-bfd7efa166b7.roa File: f70dcbfa-0a21-4dcb-b79e-bfd7efa166b7.roa (raw, json) Hash identifier: xPF+754NjQA9Gjod6f8vR22wmCv/loJOZvfF9dZacWs= Subject key identifier: 06:5E:A0:58:A4:09:BE:73:B2:5A:AE:8C:93:F4:0D:D6:0C:0F:50:65 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 754A8DAEEF5E54DF63B9CFB1EDE4E2D8BD0EEDB3 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f70dcbfa-0a21-4dcb-b79e-bfd7efa166b7.roa Signing time: Sat 28 Feb 2026 04:30:55 +0000 ROA not before: Sat 28 Feb 2026 04:30:55 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:328::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4a:8d:ae:ef:5e:54:df:63:b9:cf:b1:ed:e4:e2:d8:bd:0e:ed:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 28 04:30:55 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=346bb5fe9d6367e087089e983527dbf23eb6f65f652aef5e750a81bd18160219, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a6:31:40:8b:2f:b7:c6:46:f2:d1:ac:e7:9b: fa:3d:89:1d:d1:d6:17:47:08:f3:3d:00:05:c5:cd: 33:28:45:1c:bd:5e:7f:b9:6b:97:89:03:d0:34:d4: bd:6e:fb:23:b1:c1:83:90:25:81:4a:3b:2e:c5:53: d7:c9:c1:fc:6d:ed:82:1e:11:eb:ac:20:26:94:da: 60:dc:a2:51:04:3b:df:f9:cb:07:90:56:65:c7:84: 82:95:b0:bf:95:33:ed:5a:87:97:03:15:6a:b9:76: 0a:26:2d:3d:b0:17:64:54:2c:0c:7f:ae:05:e4:0e: 1e:89:41:28:ed:42:81:db:3b:41:f6:45:e1:21:73: f3:e1:5e:2b:f9:0c:43:ad:42:5d:a2:51:be:7f:79: 26:3c:1c:e1:77:8b:f5:6e:c0:89:38:4c:58:90:1b: a8:e6:92:d4:04:84:c7:61:60:23:9f:1b:9d:b1:f7: 15:68:8f:ee:68:86:db:4d:cf:b8:a8:60:b6:67:a2: a7:a4:da:c1:f2:83:89:c1:0c:58:f7:25:95:93:ba: 99:76:89:d5:b4:9c:79:9d:52:35:ed:b6:1a:ba:65: 57:de:bb:e7:8a:40:2d:f9:53:4f:63:68:2d:c5:ec: 6c:0a:94:70:62:c0:89:50:18:dc:47:14:93:a1:a9: 73:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:5E:A0:58:A4:09:BE:73:B2:5A:AE:8C:93:F4:0D:D6:0C:0F:50:65 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/f70dcbfa-0a21-4dcb-b79e-bfd7efa166b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:328::/48 Signature Algorithm: sha256WithRSAEncryption 3a:24:a4:e8:83:b9:87:f8:48:9a:e3:7c:21:de:57:64:e9:96: 2a:3e:27:62:cd:76:d2:42:65:88:e3:4e:48:d0:5d:64:44:c5: ab:ad:6d:34:78:7d:04:ca:87:d3:fd:e0:ae:be:f1:2b:94:56: 53:b5:96:d4:9b:f1:71:f7:52:1d:5c:ea:cb:b9:2a:a6:5a:74: c8:06:7b:ca:c0:f0:c4:04:e5:f7:41:94:09:90:45:19:ab:24: 9f:ff:b2:71:ab:4c:8f:4b:8e:ea:a4:40:c4:38:88:ee:6d:9c: 9e:31:e6:76:50:24:de:09:d3:85:fa:5c:72:a4:ac:a4:81:1d: 9c:f4:b1:ac:83:96:c7:11:c0:8e:02:e9:8a:19:7f:42:51:43: 4e:1e:76:69:d6:ab:9d:e8:2e:92:6a:3f:d1:31:9d:0b:33:64: 44:a6:f5:f6:03:a7:9d:28:ca:a0:d6:70:20:a2:27:da:2f:9a: 05:f2:53:2d:15:d5:5f:43:36:ec:75:ac:58:34:72:f8:72:da: d2:1a:a9:86:d6:64:26:98:62:7f:9b:6b:32:4e:51:9f:e1:18: 82:1a:35:d2:15:a8:e9:1f:67:e7:9d:40:9e:e4:52:82:1d:37: 9e:21:e9:cc:da:13:8a:40:2a:8b:1d:6d:bc:fb:52:b3:3e:c7: 3e:aa:4e:c7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdUqNru9eVN9juc+x7eTi2L0O7bMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjI4MDQzMDU1WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDZiYjVmZTlkNjM2N2UwODcwODllOTgzNTI3ZGJmMjNl YjZmNjVmNjUyYWVmNWU3NTBhODFiZDE4MTYwMjE5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbpjFAiy+3xkby0aznm/o9iR3R1hdHCPM9AAXFzTMoRRy9 Xn+5a5eJA9A01L1u+yOxwYOQJYFKOy7FU9fJwfxt7YIeEeusICaU2mDcolEEO9/5 yweQVmXHhIKVsL+VM+1ah5cDFWq5dgomLT2wF2RULAx/rgXkDh6JQSjtQoHbO0H2 ReEhc/PhXiv5DEOtQl2iUb5/eSY8HOF3i/VuwIk4TFiQG6jmktQEhMdhYCOfG52x 9xVoj+5ohttNz7ioYLZnoqek2sHyg4nBDFj3JZWTupl2idW0nHmdUjXtthq6ZVfe u+eKQC35U09jaC3F7GwKlHBiwIlQGNxHFJOhqXOXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBl6gWKQJvnOyWq6Mk/QN1gwPUGUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Y3MGRjYmZhLTBhMjEtNGRjYi1iNzllLWJmZDdlZmExNjZiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAAygwDQYJKoZIhvcNAQELBQADggEBADokpOiDuYf4SJrjfCHeV2Tp lio+J2LNdtJCZYjjTkjQXWRExautbTR4fQTKh9P94K6+8SuUVlO1ltSb8XH3Uh1c 6su5KqZadMgGe8rA8MQE5fdBlAmQRRmrJJ//snGrTI9LjuqkQMQ4iO5tnJ4x5nZQ JN4J04X6XHKkrKSBHZz0sayDlscRwI4C6YoZf0JRQ04edmnWq53oLpJqP9ExnQsz ZESm9fYDp50oyqDWcCCiJ9ovmgXyUy0V1V9DNux1rFg0cvhy2tIaqYbWZCaYYn+b azJOUZ/hGIIaNdIVqOkfZ+edQJ7kUoIdN54h6czaE4pAKosdbbz7UrM+xz6qTsc= -----END CERTIFICATE-----Generated at Mon Mar 2 02:46:14 2026 by rpki-client