$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa File: da1fbb90-a595-4798-8d13-e5183edbf500.roa (raw, json) Hash identifier: ROFmSySA7WAvMGa73KRQuK8sm9me2mcxQ8dseebWkLI= Subject key identifier: 87:C1:84:0F:18:F5:1E:DB:56:DC:29:BC:CC:A6:58:B1:50:BB:F5:F3 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2B5199B662E6734F75459068A27F6A4BB74F82BA Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa Signing time: Fri 13 Feb 2026 14:50:10 +0000 ROA not before: Fri 13 Feb 2026 14:50:10 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:612::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 01 Mar 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:51:99:b6:62:e6:73:4f:75:45:90:68:a2:7f:6a:4b:b7:4f:82:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 13 14:50:10 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=67c1e3f6528860d24f06c06cc793703583962eab4c0d0feefe3efdf6b1f2f5c8, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1f:66:66:71:57:3a:0f:c2:0b:ee:3a:2c:67: f4:94:df:5e:d1:3b:cc:f7:b1:25:82:29:67:22:0f: 83:28:bc:be:7a:8b:6e:5c:7b:e6:7e:0a:ae:60:41: 9d:6b:3f:6b:3d:23:4e:34:ce:5c:0d:5c:a3:b6:c6: e6:0d:25:76:ed:f4:03:37:1f:4c:85:d1:f8:14:d0: 8c:e6:06:3e:37:4e:68:ff:1b:2b:68:37:b2:3e:59: 60:14:3c:ec:6d:ed:c4:be:73:d0:c7:98:05:27:7a: a4:26:85:3c:ea:29:f6:59:06:4b:de:3c:2c:32:db: 7f:6e:a0:3c:2f:e9:1e:30:5a:c6:60:1d:e3:fd:6e: c3:7e:d0:20:69:95:16:09:6f:33:df:b0:cd:30:f6: 05:29:56:d7:f3:d2:7f:3f:d7:b6:5a:50:dd:09:b5: 5d:07:33:a7:b9:e0:da:18:8a:7f:cd:36:d0:29:eb: cf:89:53:a8:86:9d:b2:c3:dc:e6:ab:72:3e:5a:ce: fb:bd:18:19:07:fb:3e:ef:16:be:14:c8:ff:f3:0b: c2:b5:c5:b0:14:6f:e7:b1:e4:47:90:da:a2:3a:9a: 12:e1:9d:a4:84:a8:59:b2:a8:19:1a:04:c5:a0:c6: bd:6e:15:fa:23:c6:7b:14:06:61:2d:4d:6e:db:af: d0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C1:84:0F:18:F5:1E:DB:56:DC:29:BC:CC:A6:58:B1:50:BB:F5:F3 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:612::/48 Signature Algorithm: sha256WithRSAEncryption 70:d7:f9:dd:9e:7c:52:91:4f:a2:fc:4e:d9:b3:d8:ee:19:1d: 16:df:7e:22:12:91:ec:c7:2b:25:2e:7b:c9:b1:a6:2a:5c:05: 61:ac:77:91:cb:6d:99:c7:07:99:7a:a0:0f:3c:da:3d:27:9a: 84:c0:f8:8c:10:52:19:4a:b8:f1:eb:1a:70:75:e3:47:a0:ce: c2:9c:5b:8d:4f:b7:9f:14:ad:5e:f5:c2:df:c6:82:e1:b5:07: 2d:95:20:6a:a9:d9:f3:19:da:13:fc:75:cc:31:56:a8:23:b4: 5f:7c:90:e4:37:c1:d4:8f:1e:1e:47:ff:93:78:7e:dc:23:89: b2:8f:24:c6:0b:34:03:af:30:7c:dd:b3:ff:10:63:41:08:d2: bf:c7:43:e9:bf:f7:bb:49:4b:7d:28:5b:af:5d:f9:ab:1e:af: ec:67:f5:60:9a:55:98:95:95:60:7a:73:2a:44:0b:5d:2a:fa: 85:51:f5:5c:d3:2a:b1:a2:c2:d4:a2:aa:92:f8:0e:b8:2f:d6: c8:09:5e:c7:73:f0:e4:83:20:e9:2c:d9:02:c5:e1:6c:b7:f2: 70:90:cc:78:70:40:19:e4:a7:35:68:6e:2d:80:dc:84:50:7e: 52:08:1f:f4:9b:a7:d9:6b:9f:1a:4a:bd:f9:1c:e8:e1:d8:c5: 7d:e0:87:b2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUK1GZtmLmc091RZBoon9qS7dPgrowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwMjEzMTQ1MDEwWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2MxZTNmNjUyODg2MGQyNGYwNmMwNmNjNzkzNzAzNTgz OTYyZWFiNGMwZDBmZWVmZTNlZmRmNmIxZjJmNWM4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGH2ZmcVc6D8IL7josZ/SU317RO8z3sSWCKWciD4MovL56 i25ce+Z+Cq5gQZ1rP2s9I040zlwNXKO2xuYNJXbt9AM3H0yF0fgU0IzmBj43Tmj/ GytoN7I+WWAUPOxt7cS+c9DHmAUneqQmhTzqKfZZBkvePCwy239uoDwv6R4wWsZg HeP9bsN+0CBplRYJbzPfsM0w9gUpVtfz0n8/17ZaUN0JtV0HM6e54NoYin/NNtAp 68+JU6iGnbLD3Oarcj5azvu9GBkH+z7vFr4UyP/zC8K1xbAUb+ex5EeQ2qI6mhLh naSEqFmyqBkaBMWgxr1uFfojxnsUBmEtTW7br9CLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUh8GEDxj1HttW3Cm8zKZYsVC79fMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RhMWZiYjkwLWE1OTUtNDc5OC04ZDEzLWU1MTgzZWRiZjUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhIwDQYJKoZIhvcNAQELBQADggEBAHDX+d2efFKRT6L8Ttmz2O4Z HRbffiISkezHKyUue8mxpipcBWGsd5HLbZnHB5l6oA882j0nmoTA+IwQUhlKuPHr GnB140egzsKcW41Pt58UrV71wt/GguG1By2VIGqp2fMZ2hP8dcwxVqgjtF98kOQ3 wdSPHh5H/5N4ftwjibKPJMYLNAOvMHzds/8QY0EI0r/HQ+m/97tJS30oW69d+ase r+xn9WCaVZiVlWB6cypEC10q+oVR9VzTKrGiwtSiqpL4Drgv1sgJXsdz8OSDIOks 2QLF4Wy38nCQzHhwQBnkpzVobi2A3IRQflIIH/Sbp9lrnxpKvfkc6OHYxX3gh7I= -----END CERTIFICATE-----Generated at Fri Feb 27 16:18:01 2026 by rpki-client