$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa File: 3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa (raw, json) Hash identifier: cPLfP4N7BubaQ70RVGaa+G4HRZvQm2Vo535wrzypdOA= Subject key identifier: 5B:B3:34:DC:72:0A:67:6B:78:0E:09:19:AF:FA:A7:E2:58:77:D2:F1 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 46454203243C819E7784EBF5CED58A062279457B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa Signing time: Fri 08 May 2026 03:00:22 +0000 ROA not before: Fri 08 May 2026 03:00:22 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:64d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:45:42:03:24:3c:81:9e:77:84:eb:f5:ce:d5:8a:06:22:79:45:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 8 03:00:22 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=22dde18df2419c10cabfca59326783e2e26b423b44104bd2db9f54a6872a8f51, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5a:c5:f6:56:96:3b:84:90:ec:01:41:a9:75: 6f:49:c9:19:f9:15:21:29:13:3a:2a:4c:48:86:40: 08:a0:4c:79:aa:64:98:99:44:3b:73:84:c1:e1:b8: 63:3b:a3:a2:38:f4:33:c8:5a:19:e5:5c:67:86:83: 25:b1:6e:96:6b:d5:f1:21:60:27:e1:4a:d2:71:d9: 4f:be:17:5c:19:38:6d:18:fa:ef:f2:50:13:3d:70: b3:81:c3:f9:75:53:04:a8:0d:fb:d3:6f:2c:ba:50: 70:00:25:ac:20:3b:7e:21:e9:e1:ff:d5:cb:11:67: 33:86:f0:12:0a:2b:70:1d:4d:8a:fe:c8:2e:25:8a: 55:15:79:b7:56:3f:46:9a:ef:fe:25:69:2b:3c:32: ff:90:f6:d4:8a:c6:23:de:6c:16:de:55:ff:1d:cf: 64:23:44:c0:d1:49:97:4b:f5:53:00:86:01:47:78: 53:35:a9:33:e0:c5:be:08:10:98:90:cf:63:64:19: ab:1a:c3:fb:18:d1:3b:cc:ca:ba:96:e0:59:5c:74: 7b:25:2f:66:71:7a:df:4b:17:a4:c3:f0:d1:7b:eb: 15:92:96:d8:65:54:5c:3c:50:db:a7:2a:22:c0:e5: 14:7a:d1:18:4f:e6:ef:1f:e4:bd:78:21:7c:08:02: 52:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:B3:34:DC:72:0A:67:6B:78:0E:09:19:AF:FA:A7:E2:58:77:D2:F1 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3ff4c7b2-a6a3-42fb-9f80-b7f5ffc66399.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:64d::/48 Signature Algorithm: sha256WithRSAEncryption 71:94:f9:22:b6:99:3c:bb:b4:b0:6e:59:eb:b7:a5:71:13:26: 8e:f9:a0:2e:6e:92:d8:c9:b5:65:9e:d3:84:4b:ed:c2:bf:96: 23:f8:4d:94:ff:79:6a:9a:c3:2b:5a:e1:08:07:54:78:b1:13: 2f:55:44:cc:13:79:97:16:06:63:46:f1:97:c0:15:8e:b9:ee: c8:4f:02:7c:23:59:d1:58:b7:8d:57:ee:ae:21:27:44:50:c7: df:bb:a3:5b:a9:c0:ee:f3:3a:1e:c5:2b:62:5b:9e:ad:77:47: d3:33:90:35:70:30:81:4f:8a:6d:09:49:c7:5a:bd:ad:7a:44: b0:52:15:57:75:f6:5d:0e:d8:b6:bd:1f:0e:02:26:3b:d4:98: 5d:f2:22:b0:13:3f:85:95:97:99:2e:58:eb:c3:6f:99:db:1e: 7b:df:3b:c6:10:24:b4:e4:82:3a:d8:fe:42:9e:de:3f:9d:d9: 21:97:26:b5:5c:91:9d:48:48:cf:bd:94:27:4c:32:77:1b:c8: fa:ed:65:e1:d3:f5:63:13:a1:59:30:ff:69:2f:eb:77:65:f1: 31:c2:91:d3:9d:cb:58:34:a6:ec:c8:38:c1:1c:f8:a3:7a:e0: 53:52:e6:ef:ec:84:a9:04:f7:ba:4f:f2:2c:cd:82:57:c3:f0: b7:73:98:e4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURkVCAyQ8gZ53hOv1ztWKBiJ5RXswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA4MDMwMDIyWhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmRkZTE4ZGYyNDE5YzEwY2FiZmNhNTkzMjY3ODNlMmUy NmI0MjNiNDQxMDRiZDJkYjlmNTRhNjg3MmE4ZjUxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKWsX2VpY7hJDsAUGpdW9JyRn5FSEpEzoqTEiGQAigTHmq ZJiZRDtzhMHhuGM7o6I49DPIWhnlXGeGgyWxbpZr1fEhYCfhStJx2U++F1wZOG0Y +u/yUBM9cLOBw/l1UwSoDfvTbyy6UHAAJawgO34h6eH/1csRZzOG8BIKK3AdTYr+ yC4lilUVebdWP0aa7/4laSs8Mv+Q9tSKxiPebBbeVf8dz2QjRMDRSZdL9VMAhgFH eFM1qTPgxb4IEJiQz2NkGasaw/sY0TvMyrqW4FlcdHslL2Zxet9LF6TD8NF76xWS lthlVFw8UNunKiLA5RR60RhP5u8f5L14IXwIAlKPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUW7M03HIKZ2t4DgkZr/qn4lh30vEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmZjRjN2IyLWE2YTMtNDJmYi05ZjgwLWI3ZjVmZmM2NjM5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABk0wDQYJKoZIhvcNAQELBQADggEBAHGU+SK2mTy7tLBuWeu3pXET Jo75oC5uktjJtWWe04RL7cK/liP4TZT/eWqawyta4QgHVHixEy9VRMwTeZcWBmNG 8ZfAFY657shPAnwjWdFYt41X7q4hJ0RQx9+7o1upwO7zOh7FK2Jbnq13R9MzkDVw MIFPim0JScdava16RLBSFVd19l0O2La9Hw4CJjvUmF3yIrATP4WVl5kuWOvDb5nb HnvfO8YQJLTkgjrY/kKe3j+d2SGXJrVckZ1ISM+9lCdMMncbyPrtZeHT9WMToVkw /2kv63dl8THCkdOdy1g0puzIOMEc+KN64FNS5u/shKkE97pP8izNglfD8LdzmOQ= -----END CERTIFICATE-----Generated at Tue May 12 23:15:13 2026 by rpki-client