$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa File: 2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa (raw, json) Hash identifier: D8NSn71/5oAg3bGS0rhojvK6OwQdck8zcmuL1iTmsfk= Subject key identifier: 82:7E:4F:06:AB:05:DA:DB:88:04:2A:43:09:83:E6:31:FA:66:EF:68 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 36AAF53437566C2AFCD4F8BDE80C8B18207928DA Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa Signing time: Thu 26 Feb 2026 01:50:28 +0000 ROA not before: Thu 26 Feb 2026 01:50:28 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 699 IP address blocks: 2606:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:aa:f5:34:37:56:6c:2a:fc:d4:f8:bd:e8:0c:8b:18:20:79:28:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 26 01:50:28 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=112afec3e55d5c685f1cd57b3c9dc69a4f630594215c2c3239d4e2887ec1ae74, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:2e:a2:f0:7c:ac:14:6e:41:8c:04:4b:db:e1: c7:9d:ff:3f:08:42:04:b6:39:61:fc:03:8a:40:9e: 78:f3:f7:8e:ff:d5:80:9f:0d:c2:52:10:40:bb:b1: 10:7f:2d:52:10:97:36:78:37:16:86:41:8e:bb:13: 5d:a9:42:a9:a6:c6:04:65:c5:81:54:ca:4c:33:49: d6:dc:94:19:c2:d6:c6:ad:b2:6d:9c:dd:ff:2f:2a: 35:b9:a6:e9:23:e4:3d:4c:f0:a0:29:3c:58:67:84: b2:ef:26:0b:1e:20:6c:bb:cf:e7:23:88:4e:e1:05: 66:7a:67:59:7f:f0:61:ae:16:d3:2f:82:6b:5a:f1: 83:c8:66:fe:3b:b2:19:10:2c:09:a7:c5:9d:dc:fe: f0:78:21:e4:7e:21:47:a8:69:ba:2b:2f:be:3f:bc: 48:12:74:e8:6d:11:f7:0c:1d:f0:a7:31:53:ab:27: 26:a3:6a:9b:f4:c5:30:ed:6e:df:45:96:fd:11:4d: c6:88:dd:bd:9d:f1:7d:71:2e:83:b3:56:40:18:f6: 03:23:99:c2:82:a6:5b:50:4d:fc:56:10:bc:df:c2: ab:07:d2:99:a5:66:90:af:da:01:8b:8a:5f:99:50: a6:8b:82:60:2e:ac:e8:7d:41:83:c9:9a:85:5c:49: bc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7E:4F:06:AB:05:DA:DB:88:04:2A:43:09:83:E6:31:FA:66:EF:68 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 17:35:e2:66:de:aa:c9:38:e9:44:11:4b:80:53:cc:30:8f:a3: 2b:54:a4:12:e7:8e:57:fa:3c:b8:f8:0e:73:f8:46:ed:a9:26: 4f:70:ae:76:d4:38:c3:ad:09:a3:2c:06:27:d6:b1:8a:c0:9d: a2:74:c5:c8:10:8b:42:67:71:0a:2f:3b:70:93:3e:70:53:55: c1:47:87:1d:f1:79:2e:75:71:58:e1:9a:14:56:26:97:11:48: cb:02:25:d9:ad:b5:5b:87:0f:cf:aa:79:24:62:3e:5e:f7:49: 9b:8b:1e:21:d3:d5:21:df:5e:4c:ed:e2:30:d3:68:4c:d3:b2: 85:ac:33:13:c2:92:92:4f:a0:2e:e3:ca:93:3d:c9:7c:94:9d: 8b:6f:a9:3e:6f:d1:b4:38:73:e1:f3:85:2a:b1:ff:ed:42:5d: cb:85:41:2b:9a:e1:7c:d0:a9:6a:46:ff:a1:8b:12:1e:08:65: 5a:75:c6:8b:20:cd:8c:90:5a:94:2d:b8:b0:98:db:07:2d:a9: e0:99:b5:00:6e:64:ab:f5:77:b1:2e:36:c2:32:92:ec:c1:b2: b9:8c:fb:24:8a:6a:f5:c4:a5:5d:cd:64:3d:b6:ac:40:8c:3f: e9:c6:ec:43:76:b3:12:3b:1f:a4:29:98:4f:44:49:79:33:36: 54:2e:43:94 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUNqr1NDdWbCr81Pi96AyLGCB5KNowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI2MDE1MDI4WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTJhZmVjM2U1NWQ1YzY4NWYxY2Q1N2IzYzlkYzY5YTRm NjMwNTk0MjE1YzJjMzIzOWQ0ZTI4ODdlYzFhZTc0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrLqLwfKwUbkGMBEvb4ced/z8IQgS2OWH8A4pAnnjz947/ 1YCfDcJSEEC7sRB/LVIQlzZ4NxaGQY67E12pQqmmxgRlxYFUykwzSdbclBnC1sat sm2c3f8vKjW5pukj5D1M8KApPFhnhLLvJgseIGy7z+cjiE7hBWZ6Z1l/8GGuFtMv gmta8YPIZv47shkQLAmnxZ3c/vB4IeR+IUeoaborL74/vEgSdOhtEfcMHfCnMVOr Jyajapv0xTDtbt9Flv0RTcaI3b2d8X1xLoOzVkAY9gMjmcKCpltQTfxWELzfwqsH 0pmlZpCv2gGLil+ZUKaLgmAurOh9QYPJmoVcSbynAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUgn5PBqsF2tuIBCpDCYPmMfpm72gwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJkYTkwYzJiLThiZWEtNDBjNi04ZGM4LTU3NjViNjdmYzYxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBntAMA0GCSqGSIb3DQEBCwUAA4IBAQAXNeJm3qrJOOlEEUuAU8wwj6Mr VKQS545X+jy4+A5z+EbtqSZPcK521DjDrQmjLAYn1rGKwJ2idMXIEItCZ3EKLztw kz5wU1XBR4cd8XkudXFY4ZoUViaXEUjLAiXZrbVbhw/PqnkkYj5e90mbix4h09Uh 315M7eIw02hM07KFrDMTwpKST6Au48qTPcl8lJ2Lb6k+b9G0OHPh84Uqsf/tQl3L hUErmuF80KlqRv+hixIeCGVadcaLIM2MkFqULbiwmNsHLangmbUAbmSr9XexLjbC MpLswbK5jPskimr1xKVdzWQ9tqxAjD/pxuxDdrMSOx+kKZhPREl5MzZULkOU -----END CERTIFICATE-----Generated at Mon Mar 2 04:29:17 2026 by rpki-client