$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3983d9b9-cb06-4315-b0e8-52b47d039b39.roa File: 3983d9b9-cb06-4315-b0e8-52b47d039b39.roa (raw, json) Hash identifier: 9vocR8tiNsLSvZnqmeC7YdQqRUKmxBk8pgY9UotZDjM= Subject key identifier: 8E:74:B7:2C:E9:4B:07:CA:5E:CC:69:3B:13:BF:6B:39:59:61:89:F6 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3DF0D4EF1FEE444969CC8F28EF356E7AF0BC3F1A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3983d9b9-cb06-4315-b0e8-52b47d039b39.roa Signing time: Fri 08 May 2026 03:00:10 +0000 ROA not before: Fri 08 May 2026 03:00:10 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c0d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:f0:d4:ef:1f:ee:44:49:69:cc:8f:28:ef:35:6e:7a:f0:bc:3f:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 8 03:00:10 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=7ce02dd43ce697f8634db13381367a5edda49ff5732b81ba0f29144c34462cd0, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4f:92:61:47:0f:9d:58:cf:de:57:09:6e:c8: 29:c1:36:0d:4c:ca:76:23:ec:d6:de:60:32:85:75: 10:fd:3b:86:72:48:a5:77:9c:16:60:82:bb:1e:b1: a7:c0:62:38:9b:ef:57:97:4c:d2:4c:ed:3a:4f:66: 11:40:bc:53:42:64:a7:aa:ea:64:16:04:fa:5d:02: 8e:3d:d0:51:4e:cd:c4:6b:26:30:0d:2a:70:4b:bb: ed:f9:05:24:2f:0a:3d:bb:41:54:87:a0:e0:a4:45: 7b:c8:f5:fc:4a:39:15:48:bf:f7:83:32:c9:70:db: 8d:47:4d:ca:fb:8a:48:26:ca:3c:6c:96:ca:e0:74: e5:6c:a7:9b:53:fa:7c:74:f2:10:c1:5c:5a:04:74: d7:43:25:2b:bd:5a:fb:36:47:26:75:c1:3c:2c:e3: 16:31:0d:7c:5f:15:a6:af:1c:22:67:9d:7d:63:44: 44:b4:c2:67:27:31:fd:18:db:04:f5:85:87:c2:cb: 0d:e5:e4:a0:62:c1:d9:13:22:73:df:bc:95:69:65: a7:2d:18:31:5f:3c:8c:1d:7d:de:48:72:1b:ed:79: 47:0d:f5:25:ec:15:46:54:a8:9f:d2:dc:3f:6f:25: 2e:7b:9e:e1:43:b8:dc:39:0a:a0:d2:84:92:fc:b0: f6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:74:B7:2C:E9:4B:07:CA:5E:CC:69:3B:13:BF:6B:39:59:61:89:F6 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3983d9b9-cb06-4315-b0e8-52b47d039b39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c0d::/48 Signature Algorithm: sha256WithRSAEncryption a2:fd:7b:97:13:a3:cb:f4:0c:e9:a9:47:4f:a1:e7:06:1a:c9: 08:91:12:bf:96:7e:f4:64:af:88:78:ab:4a:41:71:8c:0c:8f: 7a:70:ef:4d:5e:61:91:af:6f:88:34:9b:07:54:b5:a9:3e:38: 4e:0f:5e:bc:b1:85:25:ba:24:4b:0f:a9:e9:b1:5f:d6:84:e2: 7d:ca:a5:77:11:04:ec:70:6e:3a:3e:c8:0d:33:af:b2:51:0b: 5a:42:da:d8:b9:37:2e:86:c0:41:d2:38:43:c7:e5:87:d5:e7: 16:50:a6:69:f1:cf:09:66:7e:93:90:4a:f5:15:a9:51:4b:c3: 28:9f:9c:bc:b0:83:83:13:fc:5f:08:49:6f:9f:b1:b2:fb:4a: c2:e7:ac:f0:f1:35:bd:de:b0:95:f2:2c:0c:f3:3f:d2:49:7b: 53:36:57:7d:7e:b9:00:72:8d:a6:46:7d:88:e0:78:8c:dd:c9: e5:d3:88:41:99:55:9f:14:52:06:45:28:06:ed:14:57:7e:87: 6a:ef:3d:05:42:bf:da:b2:10:fc:f0:51:fc:ac:5a:00:e3:57: 6b:2a:33:65:d1:9e:54:16:a7:1d:80:a6:cb:c0:e3:8b:8c:6a: 1f:d6:3e:62:c6:d3:f9:16:15:32:47:ff:1e:59:00:9b:dd:21: cc:20:6c:51 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPfDU7x/uRElpzI8o7zVuevC8PxowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA4MDMwMDEwWhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Y2UwMmRkNDNjZTY5N2Y4NjM0ZGIxMzM4MTM2N2E1ZWRk YTQ5ZmY1NzMyYjgxYmEwZjI5MTQ0YzM0NDYyY2QwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsT5JhRw+dWM/eVwluyCnBNg1MynYj7NbeYDKFdRD9O4Zy SKV3nBZggrsesafAYjib71eXTNJM7TpPZhFAvFNCZKeq6mQWBPpdAo490FFOzcRr JjANKnBLu+35BSQvCj27QVSHoOCkRXvI9fxKORVIv/eDMslw241HTcr7ikgmyjxs lsrgdOVsp5tT+nx08hDBXFoEdNdDJSu9Wvs2RyZ1wTws4xYxDXxfFaavHCJnnX1j RES0wmcnMf0Y2wT1hYfCyw3l5KBiwdkTInPfvJVpZactGDFfPIwdfd5IchvteUcN 9SXsFUZUqJ/S3D9vJS57nuFDuNw5CqDShJL8sPYdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjnS3LOlLB8pezGk7E79rOVlhifYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM5ODNkOWI5LWNiMDYtNDMxNS1iMGU4LTUyYjQ3ZDAzOWIzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADA0wDQYJKoZIhvcNAQELBQADggEBAKL9e5cTo8v0DOmpR0+h5wYa yQiREr+WfvRkr4h4q0pBcYwMj3pw701eYZGvb4g0mwdUtak+OE4PXryxhSW6JEsP qemxX9aE4n3KpXcRBOxwbjo+yA0zr7JRC1pC2ti5Ny6GwEHSOEPH5YfV5xZQpmnx zwlmfpOQSvUVqVFLwyifnLywg4MT/F8ISW+fsbL7SsLnrPDxNb3esJXyLAzzP9JJ e1M2V31+uQByjaZGfYjgeIzdyeXTiEGZVZ8UUgZFKAbtFFd+h2rvPQVCv9qyEPzw UfysWgDjV2sqM2XRnlQWpx2ApsvA44uMah/WPmLG0/kWFTJH/x5ZAJvdIcwgbFE= -----END CERTIFICATE-----Generated at Tue May 12 22:23:40 2026 by rpki-client