$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa File: 41f74973-a63a-4161-8c87-21184ab17c25.roa (raw, json) Hash identifier: yQV6VqOrR55sW9fhu3vYS53zvY7fF1PqvrfP06q8FNM= Subject key identifier: F8:C7:D6:FD:40:88:C7:CE:55:DB:AA:30:6D:62:BB:78:0E:2D:C9:CF Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1BD9838B3C1CECC079F61CC9D7805B705155F2BC Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa Signing time: Fri 08 May 2026 03:00:37 +0000 ROA not before: Fri 08 May 2026 03:00:37 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c1c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:d9:83:8b:3c:1c:ec:c0:79:f6:1c:c9:d7:80:5b:70:51:55:f2:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 8 03:00:37 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=a6334097dda472997aacca737a1692a71979a4d9316abb8907f3f513fc54410a, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c9:bf:b5:16:08:73:da:a9:5c:15:d0:60:15: c6:a4:7c:ba:73:b1:40:c1:c0:10:cd:83:b2:db:7e: 04:b6:e2:4a:03:f1:6f:ae:13:53:b1:a9:8f:04:b1: 31:99:0c:0d:9c:24:c9:8b:22:cf:43:b8:25:4b:00: 07:57:2a:bf:f0:c6:51:e1:06:8f:d6:d2:62:bb:b3: 28:84:49:19:bb:66:be:02:be:78:0f:01:5b:5a:5a: 34:33:cb:61:22:dd:9a:4c:a0:ae:9a:0c:46:ff:a6: 99:af:a5:f9:b6:23:7b:22:3d:f5:af:2f:72:0d:4f: 30:91:60:1e:da:79:f5:64:4e:df:58:ad:ec:6d:a2: b4:96:2b:33:bb:07:5f:84:79:3d:70:49:1c:66:f9: 65:1f:00:0f:44:41:52:f2:02:3d:12:f1:4b:00:d7: d3:d7:70:38:8d:41:0a:1e:41:1d:59:f1:78:67:ef: ec:ae:03:0f:5a:b5:ba:90:80:2a:1c:ff:f5:32:ba: 56:ff:11:2c:bc:56:f4:f0:ca:1f:d6:c4:c9:51:42: c1:b3:f9:cb:04:2c:64:69:80:c5:db:f2:09:ae:02: bf:70:36:ad:81:d9:77:78:e3:d7:f7:ca:40:28:5c: 50:9a:be:93:6c:71:43:3e:0a:f1:f0:1e:e7:cc:89: a9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C7:D6:FD:40:88:C7:CE:55:DB:AA:30:6D:62:BB:78:0E:2D:C9:CF X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1c::/48 Signature Algorithm: sha256WithRSAEncryption 88:7c:d4:26:f0:ed:47:92:a4:c6:89:76:e4:ba:2b:42:1c:3f: c0:23:d1:e0:72:9d:9f:16:af:8f:38:ae:25:26:82:a3:74:fd: 68:ff:69:71:61:23:12:3b:cf:ed:31:64:2f:4c:41:ff:61:e4: ed:f1:1f:f1:bf:cd:60:cb:23:f8:0c:21:7d:92:1a:14:ac:73: e5:10:46:17:9d:ac:24:51:7f:c7:e1:83:9d:5a:69:6d:c3:a1: 5e:49:18:0c:d7:b0:19:2f:bb:98:f5:71:a7:2f:4a:a5:ba:fa: ce:03:44:db:a4:85:ed:39:e3:84:a7:7d:c5:63:10:67:02:c9: f6:f2:54:86:44:52:e7:cc:77:1c:b4:28:dd:69:b8:88:9e:86: 75:50:a7:40:3b:f2:6b:f3:92:00:dc:4c:3a:de:1b:3a:74:b3: b0:cf:5d:79:be:c2:6a:00:1f:5f:01:0a:78:b7:39:1b:aa:49: 50:34:b0:81:3a:71:15:43:15:36:3e:2a:de:90:e1:f1:6f:ce: 6e:64:27:70:c9:84:15:ca:cc:3c:a7:8a:59:75:27:9c:d0:b6: 07:8f:17:a6:f3:c9:66:ea:24:9b:5b:29:3c:33:2d:7e:67:36: 80:f4:3b:3d:ea:96:55:2f:87:14:d7:47:65:95:c3:04:e3:6e: b1:42:f3:a4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG9mDizwc7MB59hzJ14BbcFFV8rwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA4MDMwMDM3WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjMzNDA5N2RkYTQ3Mjk5N2FhY2NhNzM3YTE2OTJhNzE5 NzlhNGQ5MzE2YWJiODkwN2YzZjUxM2ZjNTQ0MTBhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsyb+1Fghz2qlcFdBgFcakfLpzsUDBwBDNg7LbfgS24koD 8W+uE1OxqY8EsTGZDA2cJMmLIs9DuCVLAAdXKr/wxlHhBo/W0mK7syiESRm7Zr4C vngPAVtaWjQzy2Ei3ZpMoK6aDEb/ppmvpfm2I3siPfWvL3INTzCRYB7aefVkTt9Y rextorSWKzO7B1+EeT1wSRxm+WUfAA9EQVLyAj0S8UsA19PXcDiNQQoeQR1Z8Xhn 7+yuAw9atbqQgCoc//Uyulb/ESy8VvTwyh/WxMlRQsGz+csELGRpgMXb8gmuAr9w Nq2B2Xd449f3ykAoXFCavpNscUM+CvHwHufMiakDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+MfW/UCIx85V26owbWK7eA4tyc8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQxZjc0OTczLWE2M2EtNDE2MS04Yzg3LTIxMTg0YWIxN2MyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBwwDQYJKoZIhvcNAQELBQADggEBAIh81Cbw7UeSpMaJduS6K0Ic P8Aj0eBynZ8Wr484riUmgqN0/Wj/aXFhIxI7z+0xZC9MQf9h5O3xH/G/zWDLI/gM IX2SGhSsc+UQRhedrCRRf8fhg51aaW3DoV5JGAzXsBkvu5j1cacvSqW6+s4DRNuk he0544SnfcVjEGcCyfbyVIZEUufMdxy0KN1puIiehnVQp0A78mvzkgDcTDreGzp0 s7DPXXm+wmoAH18BCni3ORuqSVA0sIE6cRVDFTY+Kt6Q4fFvzm5kJ3DJhBXKzDyn ill1J5zQtgePF6bzyWbqJJtbKTwzLX5nNoD0Oz3qllUvhxTXR2WVwwTjbrFC86Q= -----END CERTIFICATE-----Generated at Tue May 12 23:09:24 2026 by rpki-client