$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bc64ede4-78eb-4056-81e0-5a953a42ee96.roa File: bc64ede4-78eb-4056-81e0-5a953a42ee96.roa (raw, json) Hash identifier: L+N4U6/NpBTp1ngJ5CGnQPw+eSwOukJ8U6uyPd0aMqg= Subject key identifier: 45:55:18:73:43:69:DC:CE:23:FB:77:36:22:6C:57:54:90:6B:77:36 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3B0086F203BB2A468FB713049BC0C4D7F250EC12 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bc64ede4-78eb-4056-81e0-5a953a42ee96.roa Signing time: Mon 04 May 2026 14:50:50 +0000 ROA not before: Mon 04 May 2026 14:50:50 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2605:9cc0:612::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:00:86:f2:03:bb:2a:46:8f:b7:13:04:9b:c0:c4:d7:f2:50:ec:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 4 14:50:50 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=9f11ebf7325c4bac19f446e3412ca718e1de970080b9fec608ba66b743da85fc, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ae:16:df:f2:2f:15:f6:6c:28:00:68:06:46: af:ed:bb:a8:d9:27:af:79:f7:b5:5f:58:07:ce:bf: fc:ef:4b:b2:1b:87:04:57:d2:db:31:fb:c2:21:66: 28:50:06:92:00:4a:36:41:7e:6c:77:21:5b:68:8a: 40:e7:a4:7c:16:17:e1:ab:6a:cc:aa:4c:8d:7c:71: 72:b3:07:2b:92:f7:33:22:cc:63:96:2a:48:53:55: 69:7a:00:1a:ba:58:50:9a:3b:8a:4c:32:7f:44:e5: 62:7a:01:80:3d:44:d7:bf:f6:b8:27:20:e4:ef:68: b4:82:43:5e:a1:00:1f:91:38:09:00:0f:21:eb:ed: 02:42:d7:b8:5c:4c:f6:b0:0f:3f:5b:60:b6:9e:f6: b6:18:2b:29:67:2e:4d:bd:2a:82:ce:ca:c5:f0:3a: df:d1:06:8a:6a:e8:05:e1:3b:24:98:3b:47:3a:8c: d5:65:05:c0:ca:26:ff:07:c8:d6:aa:91:35:38:12: 05:e0:03:cb:91:1f:c0:9d:a8:ed:bc:68:0e:f5:9a: 90:48:6e:03:72:c0:e7:df:9a:82:14:a6:29:1c:e7: 90:02:a4:3f:88:bd:d6:d9:44:d7:c4:b0:6f:f1:01: 14:fe:dd:32:32:e0:97:03:33:b4:2a:78:94:84:c9: e0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:55:18:73:43:69:DC:CE:23:FB:77:36:22:6C:57:54:90:6B:77:36 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/bc64ede4-78eb-4056-81e0-5a953a42ee96.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:612::/48 Signature Algorithm: sha256WithRSAEncryption 7b:94:ff:52:5b:3e:38:a8:05:0b:e5:db:eb:58:7c:2c:cd:f2: f6:7e:87:49:9b:3d:03:5f:cf:f0:21:91:d9:3f:0a:60:b7:79: c5:04:48:93:f2:36:3a:6f:b1:8d:d8:66:35:9d:ad:05:90:3f: 03:55:a1:bc:e3:3a:6e:67:3e:91:08:0b:39:80:3a:25:f0:5c: 9d:70:58:f9:32:ca:fe:64:06:ef:e1:81:1e:2c:42:99:7c:09: e4:85:4c:e8:aa:d1:74:5c:e9:5a:ac:85:09:3f:f8:b9:3a:23: b4:75:b4:32:06:ab:3f:c6:7e:51:6c:9d:75:e4:9b:42:5e:6e: b9:01:ea:e0:17:b4:55:26:72:90:49:bf:cc:77:a0:f2:f8:3e: 25:c4:79:86:67:f4:05:88:e7:ea:f5:38:15:13:93:02:6f:a6: 58:df:31:a6:2a:19:ae:f3:4a:37:d0:e6:df:88:14:3e:e4:01: ce:9c:84:83:68:f2:ac:6b:cc:68:68:e5:b1:ea:c3:d1:ce:52: 6a:74:d3:8b:ac:44:db:e9:8b:93:4c:3b:eb:f2:13:74:97:04: 94:5a:6b:4d:cb:1a:78:b3:b2:d1:ac:87:7f:c7:9d:48:66:00: 56:0a:9a:0d:74:b8:62:a7:39:0e:cc:0f:59:9e:ff:83:8c:c0: c3:ae:27:33 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOwCG8gO7KkaPtxMEm8DE1/JQ7BIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA0MTQ1MDUwWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjExZWJmNzMyNWM0YmFjMTlmNDQ2ZTM0MTJjYTcxOGUx ZGU5NzAwODBiOWZlYzYwOGJhNjZiNzQzZGE4NWZjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfrhbf8i8V9mwoAGgGRq/tu6jZJ69597VfWAfOv/zvS7Ib hwRX0tsx+8IhZihQBpIASjZBfmx3IVtoikDnpHwWF+GrasyqTI18cXKzByuS9zMi zGOWKkhTVWl6ABq6WFCaO4pMMn9E5WJ6AYA9RNe/9rgnIOTvaLSCQ16hAB+ROAkA DyHr7QJC17hcTPawDz9bYLae9rYYKylnLk29KoLOysXwOt/RBopq6AXhOySYO0c6 jNVlBcDKJv8HyNaqkTU4EgXgA8uRH8CdqO28aA71mpBIbgNywOffmoIUpikc55AC pD+IvdbZRNfEsG/xART+3TIy4JcDM7QqeJSEyeBhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURVUYc0Np3M4j+3c2ImxXVJBrdzYwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2JjNjRlZGU0LTc4ZWItNDA1Ni04MWUwLTVhOTUzYTQyZWU5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhIwDQYJKoZIhvcNAQELBQADggEBAHuU/1JbPjioBQvl2+tYfCzN 8vZ+h0mbPQNfz/Ahkdk/CmC3ecUESJPyNjpvsY3YZjWdrQWQPwNVobzjOm5nPpEI CzmAOiXwXJ1wWPkyyv5kBu/hgR4sQpl8CeSFTOiq0XRc6VqshQk/+Lk6I7R1tDIG qz/GflFsnXXkm0JebrkB6uAXtFUmcpBJv8x3oPL4PiXEeYZn9AWI5+r1OBUTkwJv pljfMaYqGa7zSjfQ5t+IFD7kAc6chINo8qxrzGho5bHqw9HOUmp004usRNvpi5NM O+vyE3SXBJRaa03LGnizstGsh3/HnUhmAFYKmg10uGKnOQ7MD1me/4OMwMOuJzM= -----END CERTIFICATE-----Generated at Tue May 12 23:38:49 2026 by rpki-client