$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2ff0469b-9f32-4585-929d-a8709323cfa2.roa File: 2ff0469b-9f32-4585-929d-a8709323cfa2.roa (raw, json) Hash identifier: qBey9APOcuMt4gEJ2HTuvdX65y0LwOL5oz24GIhYKNk= Subject key identifier: AA:3A:09:4E:6F:33:67:41:A7:BB:55:9B:1F:84:EE:4A:17:A2:19:5A Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 55B019A5875CC5FB708F2C121ED7E496CCFBE3AE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2ff0469b-9f32-4585-929d-a8709323cfa2.roa Signing time: Fri 08 May 2026 02:50:03 +0000 ROA not before: Fri 08 May 2026 02:50:03 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c0e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:b0:19:a5:87:5c:c5:fb:70:8f:2c:12:1e:d7:e4:96:cc:fb:e3:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 8 02:50:03 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=7475ae9bd71014605f473fc8839d6fdb31af992d14e36447378d3f2734a136ab, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0a:85:40:2f:ab:f3:8d:d0:77:69:2e:e1:86: 7a:61:ba:9c:39:da:e2:91:92:fe:75:40:ed:23:ae: 43:35:70:2f:00:f3:e5:df:98:e6:c2:f9:30:eb:b6: 9c:78:7a:bf:26:69:fc:ca:07:d1:17:79:aa:f7:a7: 32:56:62:73:e6:22:df:37:a6:01:4a:93:0c:10:1a: fe:20:b7:65:66:15:2e:1b:03:b9:86:73:b5:b1:1e: 76:7e:f0:b1:25:e8:25:c7:fa:de:d5:c4:8a:d0:b4: c1:69:98:ca:23:43:9e:ba:2b:dd:8c:41:70:56:16: c5:47:d5:2f:ff:c8:5b:97:0d:71:96:ce:65:be:82: 4b:c6:07:0a:61:ec:de:8d:7d:fe:e8:d0:20:5e:ef: d7:1c:fc:70:96:83:a0:66:16:79:10:87:12:99:7b: d9:eb:e6:90:7d:e4:f8:99:1b:d6:dc:c3:b5:71:61: 0f:b4:79:21:3d:f9:50:07:ae:6f:a3:f9:a3:33:05: 15:6e:e4:83:3d:1d:97:12:ea:30:a3:e8:b1:77:a7: cd:5f:66:51:a7:ea:d6:b3:d5:a3:d1:cb:7d:13:f6: f6:63:ba:1e:23:0f:b1:73:30:1b:f0:ed:9f:85:dd: e6:88:47:61:44:b7:c3:1e:ef:aa:ea:1e:87:42:2b: 7e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3A:09:4E:6F:33:67:41:A7:BB:55:9B:1F:84:EE:4A:17:A2:19:5A X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2ff0469b-9f32-4585-929d-a8709323cfa2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0e::/48 Signature Algorithm: sha256WithRSAEncryption a8:fc:99:88:c5:59:2b:de:62:02:b0:f7:05:be:54:85:c2:96: ed:7d:3b:e7:df:75:70:9d:72:1e:99:12:af:56:4a:25:0d:1b: 7f:4f:fe:8b:8a:a8:e6:29:f0:71:cc:79:6d:86:92:eb:3a:51: 3f:4e:9f:e2:9c:bf:19:ba:46:9a:92:2b:78:18:35:96:81:6e: d3:39:14:5c:0a:fa:36:43:3e:ef:2b:f6:e7:bf:f2:d3:02:ad: 45:2b:61:3a:41:f2:27:59:3b:6a:cb:ec:03:f8:90:1c:98:ae: 86:f7:dc:cd:26:13:40:1a:5b:42:94:ec:1a:cc:39:01:00:3a: 02:ba:e3:f0:65:74:4c:5d:b1:7a:c6:05:16:24:9d:ed:1d:c0: 8d:1c:21:de:9f:ff:8f:22:b7:61:e9:da:28:ae:de:54:c1:d2: 76:31:39:bd:36:19:a8:e7:a9:8a:0c:3c:b8:02:b2:7e:33:55: 22:9e:4f:5b:88:4f:77:af:c8:fd:b4:89:88:18:1b:07:be:ce: d3:dc:22:b0:cf:df:b9:bd:51:a6:2e:84:41:f0:5a:4c:d5:41: c0:b9:6d:32:81:70:a0:29:27:6f:15:b6:4a:c1:bd:7d:39:bc: 7e:6b:1b:8b:ea:41:51:7c:86:6c:ac:ba:e1:4a:6a:36:55:56: 78:4b:b8:2b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVbAZpYdcxftwjywSHtfklsz7464wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA4MDI1MDAzWhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDc1YWU5YmQ3MTAxNDYwNWY0NzNmYzg4MzlkNmZkYjMx YWY5OTJkMTRlMzY0NDczNzhkM2YyNzM0YTEzNmFiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDACoVAL6vzjdB3aS7hhnphupw52uKRkv51QO0jrkM1cC8A 8+XfmObC+TDrtpx4er8mafzKB9EXear3pzJWYnPmIt83pgFKkwwQGv4gt2VmFS4b A7mGc7WxHnZ+8LEl6CXH+t7VxIrQtMFpmMojQ566K92MQXBWFsVH1S//yFuXDXGW zmW+gkvGBwph7N6Nff7o0CBe79cc/HCWg6BmFnkQhxKZe9nr5pB95PiZG9bcw7Vx YQ+0eSE9+VAHrm+j+aMzBRVu5IM9HZcS6jCj6LF3p81fZlGn6taz1aPRy30T9vZj uh4jD7FzMBvw7Z+F3eaIR2FEt8Me76rqHodCK36tAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqjoJTm8zZ0Gnu1WbH4TuSheiGVowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJmZjA0NjliLTlmMzItNDU4NS05MjlkLWE4NzA5MzIzY2ZhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA4wDQYJKoZIhvcNAQELBQADggEBAKj8mYjFWSveYgKw9wW+VIXC lu19O+ffdXCdch6ZEq9WSiUNG39P/ouKqOYp8HHMeW2Gkus6UT9On+Kcvxm6RpqS K3gYNZaBbtM5FFwK+jZDPu8r9ue/8tMCrUUrYTpB8idZO2rL7AP4kByYrob33M0m E0AaW0KU7BrMOQEAOgK64/BldExdsXrGBRYkne0dwI0cId6f/48it2Hp2iiu3lTB 0nYxOb02GajnqYoMPLgCsn4zVSKeT1uIT3evyP20iYgYGwe+ztPcIrDP37m9UaYu hEHwWkzVQcC5bTKBcKApJ28VtkrBvX05vH5rG4vqQVF8hmysuuFKajZVVnhLuCs= -----END CERTIFICATE-----Generated at Tue May 12 23:28:57 2026 by rpki-client