$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a046f509-2a7a-4f07-bb1f-b51c79bee36b.roa File: a046f509-2a7a-4f07-bb1f-b51c79bee36b.roa (raw, json) Hash identifier: H9A1fwDeWe88xEvE9YCAYvmiMQdhgC4XlE4JFxLHybI= Subject key identifier: C0:68:92:68:80:27:2C:1A:B9:3B:26:90:B6:15:97:E7:55:5F:41:3F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7B844FA45FEED749C8C1FD1050A19CAA487E44EC Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a046f509-2a7a-4f07-bb1f-b51c79bee36b.roa Signing time: Fri 08 May 2026 03:10:09 +0000 ROA not before: Fri 08 May 2026 03:10:09 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:84:4f:a4:5f:ee:d7:49:c8:c1:fd:10:50:a1:9c:aa:48:7e:44:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 8 03:10:09 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=d3ac56d22f358e1dcb1c8a0540972bb0a24527808a0d4b67da93524f2bb181fb, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:29:28:d5:8f:2c:8b:11:67:bd:f7:90:70:0e: f9:94:20:f7:95:da:e8:69:dd:49:06:34:53:49:29: 52:ce:57:e5:be:7b:ea:64:d4:30:1b:b1:6c:44:85: 01:9f:ad:3f:2c:89:b2:a4:90:6c:82:27:7d:94:9b: 0f:97:03:a8:56:47:8e:db:86:fc:79:8e:8a:e5:6f: 70:09:a5:dd:b0:9a:4d:2d:ae:96:3c:be:45:54:89: 57:14:58:d2:93:a9:fa:9b:87:41:3a:5d:0b:78:6d: 9e:dc:c5:8c:1f:54:7f:1e:ef:be:49:ee:2f:40:5f: 7f:f1:bd:71:ec:99:34:ff:05:9e:d3:ee:2a:57:d2: 38:32:34:da:06:b9:56:c0:01:11:13:cb:4a:64:d9: e5:23:7f:94:9c:aa:fb:34:d3:17:4b:71:17:05:15: bd:f1:61:38:93:3a:8c:8e:bb:17:d8:9f:4c:07:7a: ea:f3:f3:de:e0:9f:df:f9:f7:fc:91:b8:5a:19:ae: b8:ae:13:2f:77:34:74:21:bf:15:36:28:c6:83:74: 26:f4:99:f8:21:58:e1:9c:8e:80:2d:f5:f1:24:a2: b0:23:5d:ae:04:cf:93:b3:08:01:58:ff:12:76:bd: 2c:94:af:26:7d:76:56:25:fc:4b:6d:f7:1b:6c:f7: 28:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:68:92:68:80:27:2C:1A:B9:3B:26:90:B6:15:97:E7:55:5F:41:3F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a046f509-2a7a-4f07-bb1f-b51c79bee36b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c13::/48 Signature Algorithm: sha256WithRSAEncryption 02:26:c0:66:1c:f9:e7:18:24:25:ec:69:d5:c2:5e:a5:92:98: 1c:b8:b6:f9:6d:5e:b8:0a:1d:94:25:ad:20:2f:24:a3:4f:8b: 9f:8e:e8:01:95:b9:79:43:aa:33:f9:c2:e8:f7:2d:c9:2f:02: 0a:ef:ba:57:d3:47:9c:bf:7f:e6:74:82:03:97:df:4b:e5:d2: 22:73:e7:68:ab:9d:40:02:ef:24:34:61:eb:4f:af:7a:4d:4b: 10:19:69:ea:d5:df:bb:ab:df:32:43:10:f2:27:d6:1c:96:db: 95:c6:6d:fe:cd:60:16:83:a8:a3:d8:56:e2:37:9a:6a:93:98: 22:19:c9:52:bb:b9:f6:3f:e5:41:56:b5:a1:0f:41:b5:f8:a8: 8f:97:2d:28:68:79:b7:01:82:bc:db:8e:56:6f:27:98:76:d9: 22:3a:89:9e:43:94:1a:a0:9d:b4:9e:41:5b:87:23:16:66:d8: 79:d4:45:85:1e:e2:f2:7b:72:bc:b7:9c:43:18:13:ae:7e:ea: 51:a8:38:4f:2e:f9:66:fa:f1:99:30:31:fb:71:16:b8:20:cb: 8d:26:66:22:82:75:96:6b:30:4f:81:53:7f:2c:93:0a:85:f5: e5:cc:65:47:fb:f6:af:3b:c4:ab:20:8e:2f:2c:cd:08:a1:19: 41:5b:05:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUe4RPpF/u10nIwf0QUKGcqkh+ROwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA4MDMxMDA5WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkM2FjNTZkMjJmMzU4ZTFkY2IxYzhhMDU0MDk3MmJiMGEy NDUyNzgwOGEwZDRiNjdkYTkzNTI0ZjJiYjE4MWZiMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIKSjVjyyLEWe995BwDvmUIPeV2uhp3UkGNFNJKVLOV+W+ e+pk1DAbsWxEhQGfrT8sibKkkGyCJ32Umw+XA6hWR47bhvx5jorlb3AJpd2wmk0t rpY8vkVUiVcUWNKTqfqbh0E6XQt4bZ7cxYwfVH8e775J7i9AX3/xvXHsmTT/BZ7T 7ipX0jgyNNoGuVbAARETy0pk2eUjf5Scqvs00xdLcRcFFb3xYTiTOoyOuxfYn0wH eurz897gn9/59/yRuFoZrriuEy93NHQhvxU2KMaDdCb0mfghWOGcjoAt9fEkorAj Xa4Ez5OzCAFY/xJ2vSyUryZ9dlYl/Ett9xts9yghAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwGiSaIAnLBq5OyaQthWX51VfQT8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2EwNDZmNTA5LTJhN2EtNGYwNy1iYjFmLWI1MWM3OWJlZTM2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBMwDQYJKoZIhvcNAQELBQADggEBAAImwGYc+ecYJCXsadXCXqWS mBy4tvltXrgKHZQlrSAvJKNPi5+O6AGVuXlDqjP5wuj3LckvAgrvulfTR5y/f+Z0 ggOX30vl0iJz52irnUAC7yQ0YetPr3pNSxAZaerV37ur3zJDEPIn1hyW25XGbf7N YBaDqKPYVuI3mmqTmCIZyVK7ufY/5UFWtaEPQbX4qI+XLShoebcBgrzbjlZvJ5h2 2SI6iZ5DlBqgnbSeQVuHIxZm2HnURYUe4vJ7cry3nEMYE65+6lGoOE8u+Wb68Zkw MftxFrggy40mZiKCdZZrME+BU38skwqF9eXMZUf79q87xKsgji8szQihGUFbBfE= -----END CERTIFICATE-----Generated at Tue May 12 23:15:13 2026 by rpki-client