$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/69d3ff66-a8d4-4624-b122-66d52c0c5489.roa File: 69d3ff66-a8d4-4624-b122-66d52c0c5489.roa (raw, json) Hash identifier: MrIDeKiDtRbf3ZMq8TQai3HKmOGUA4Dq20hZJKr4pMQ= Subject key identifier: E9:87:E2:7F:DE:64:6D:32:D1:29:9E:00:7A:6F:45:EE:A5:7E:81:4E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 38D521D21A340F92B96CB9B65730164F436416D7 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/69d3ff66-a8d4-4624-b122-66d52c0c5489.roa Signing time: Mon 04 May 2026 14:50:48 +0000 ROA not before: Mon 04 May 2026 14:50:48 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:d5:21:d2:1a:34:0f:92:b9:6c:b9:b6:57:30:16:4f:43:64:16:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 4 14:50:48 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=194ca251aba6ef1a42f44726d423c10bdd2c6363e18ccb7b11f21c7354b73a48, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d8:05:df:4f:51:b7:11:42:66:90:68:d5:15: 7f:00:a1:50:11:e6:46:a8:64:d3:4d:86:09:f5:46: f6:c6:2e:f0:d2:0a:cd:5a:70:d1:fd:f6:27:7e:6d: 75:c7:9c:bb:d6:40:06:70:57:04:4b:c6:10:96:88: fe:b1:1a:a9:5f:22:7e:b2:fb:48:da:d3:ea:07:fd: 3e:d7:16:57:38:44:39:63:92:1c:67:3f:18:b4:03: 0a:95:2a:de:dd:b9:b9:8b:21:6f:85:68:96:f9:0c: d5:94:d2:70:24:2f:19:ea:f7:82:a4:ba:2b:6d:d5: 41:71:85:4f:ae:0a:57:96:2f:6d:b5:ba:70:d9:dc: 4b:fe:fc:02:33:76:a2:e1:f2:c6:bf:01:11:d0:81: db:7d:a8:2c:62:91:eb:6e:22:b6:97:ef:6a:cd:d2: ec:bb:9c:e6:e9:27:4e:21:3e:05:ea:08:80:df:ca: 5c:49:91:77:c3:1d:a7:b3:73:49:87:01:98:11:cb: a8:02:7d:6d:e9:3b:25:3b:30:6d:86:62:21:c8:ca: f0:21:1c:06:82:3f:70:06:ef:ed:47:02:82:26:30: 60:9e:55:9f:86:6d:b5:0e:25:4e:b8:2b:27:08:30: 6c:9a:87:2e:ec:c5:49:69:3f:ca:2f:05:ab:a4:0f: fe:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:87:E2:7F:DE:64:6D:32:D1:29:9E:00:7A:6F:45:EE:A5:7E:81:4E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/69d3ff66-a8d4-4624-b122-66d52c0c5489.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c00::/48 Signature Algorithm: sha256WithRSAEncryption 91:6f:67:35:d4:6d:23:0a:37:d0:26:44:e4:12:c2:19:4d:9c: 6e:72:58:4c:0f:4c:cf:a5:75:36:58:b8:95:18:d8:30:8a:7c: a0:e2:97:3e:b4:66:d0:bb:87:da:59:fe:22:3e:55:70:c1:0a: 20:5f:b2:0b:41:55:e3:53:f3:02:f2:ba:5b:c3:9b:d0:46:98: 03:5f:fc:db:4f:c7:39:34:21:b0:67:c0:06:ff:0a:b7:bf:4d: 0d:f2:cf:65:1d:ff:69:7f:57:bd:72:27:ff:17:09:d3:e0:3d: 29:1b:f8:76:24:2f:61:3e:03:bb:3e:f9:e4:f3:2d:cd:e9:1d: d6:13:6c:89:ed:59:b9:de:4e:67:ae:4b:74:d0:b4:40:58:b3: 9e:82:f6:37:9c:63:36:ca:86:e6:4c:71:0c:e0:d0:3a:63:f3: 4e:f5:04:23:b6:f1:e7:72:47:ad:be:2d:1d:8e:69:01:f2:58: 18:92:e8:b9:cb:35:72:0d:37:8c:29:6e:5d:95:b0:a7:15:b5: 8e:a1:26:5b:26:96:9f:76:b9:d6:01:89:e3:a7:54:84:41:cc: 8f:80:bc:2c:21:15:5d:46:f9:48:f9:79:fc:76:d7:3f:b3:7c: 8b:c3:83:55:b8:74:d9:c8:cc:b7:5a:1f:06:73:71:aa:5c:45: b6:85:b4:c8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUONUh0ho0D5K5bLm2VzAWT0NkFtcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA0MTQ1MDQ4WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOTRjYTI1MWFiYTZlZjFhNDJmNDQ3MjZkNDIzYzEwYmRk MmM2MzYzZTE4Y2NiN2IxMWYyMWM3MzU0YjczYTQ4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz2AXfT1G3EUJmkGjVFX8AoVAR5kaoZNNNhgn1RvbGLvDS Cs1acNH99id+bXXHnLvWQAZwVwRLxhCWiP6xGqlfIn6y+0ja0+oH/T7XFlc4RDlj khxnPxi0AwqVKt7dubmLIW+FaJb5DNWU0nAkLxnq94Kkuitt1UFxhU+uCleWL221 unDZ3Ev+/AIzdqLh8sa/ARHQgdt9qCxiketuIraX72rN0uy7nObpJ04hPgXqCIDf ylxJkXfDHaezc0mHAZgRy6gCfW3pOyU7MG2GYiHIyvAhHAaCP3AG7+1HAoImMGCe VZ+GbbUOJU64KycIMGyahy7sxUlpP8ovBaukD/4dAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6Yfif95kbTLRKZ4Aem9F7qV+gU4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzY5ZDNmZjY2LWE4ZDQtNDYyNC1iMTIyLTY2ZDUyYzBjNTQ4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAAwDQYJKoZIhvcNAQELBQADggEBAJFvZzXUbSMKN9AmROQSwhlN nG5yWEwPTM+ldTZYuJUY2DCKfKDilz60ZtC7h9pZ/iI+VXDBCiBfsgtBVeNT8wLy ulvDm9BGmANf/NtPxzk0IbBnwAb/Cre/TQ3yz2Ud/2l/V71yJ/8XCdPgPSkb+HYk L2E+A7s++eTzLc3pHdYTbIntWbneTmeuS3TQtEBYs56C9jecYzbKhuZMcQzg0Dpj 8071BCO28edyR62+LR2OaQHyWBiS6LnLNXINN4wpbl2VsKcVtY6hJlsmlp92udYB ieOnVIRBzI+AvCwhFV1G+Uj5efx21z+zfIvDg1W4dNnIzLdaHwZzcapcRbaFtMg= -----END CERTIFICATE-----Generated at Tue May 12 22:38:41 2026 by rpki-client