$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa File: db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa (raw, json) Hash identifier: xdwm5iZk0CvI6wu/cvXlgSGw5b3h1NZloh6Ap8jsne0= Subject key identifier: AD:E6:78:65:60:56:5B:DC:5F:F7:22:7A:CE:21:09:09:EC:F9:A6:4F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 43BF771DB548E43ABC3B63858E49243F0AF57EB7 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa Signing time: Fri 08 May 2026 03:10:13 +0000 ROA not before: Fri 08 May 2026 03:10:13 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:bf:77:1d:b5:48:e4:3a:bc:3b:63:85:8e:49:24:3f:0a:f5:7e:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 8 03:10:13 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=e6238e22691a837e9675bb85587bf6629836477a64f32b5733b9e8a2d9569485, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7d:fc:79:ff:f5:77:ed:09:cc:27:59:cb:78: c2:b1:c6:48:4a:11:58:75:b4:10:63:d2:ac:61:11: 08:9e:31:1a:6f:69:b3:3d:ac:fe:88:ad:64:58:db: f0:8a:e6:b2:91:f2:08:63:dd:6e:5c:0b:46:d8:96: cf:51:e9:c8:22:b7:51:92:c5:33:ae:a7:6b:60:07: 74:c1:98:1e:4f:9a:87:73:e9:76:e8:29:3d:be:64: 07:74:4e:6b:f6:02:f7:d5:85:49:2b:19:42:32:36: 3a:ff:a3:fa:9d:7f:68:68:f1:4f:85:bf:0c:b6:4b: fc:7e:5e:3b:8e:9a:da:f5:d0:80:ae:26:b3:57:00: 7c:16:c9:f5:ac:50:83:c0:2a:78:8d:90:be:6f:f4: 5a:1b:ff:20:54:45:c8:9c:14:ff:a4:d0:b2:72:00: 74:df:be:ae:70:6d:48:9d:75:c1:ea:d5:83:df:e6: b6:5e:63:6e:6d:d5:4d:94:94:b4:c4:8b:47:83:20: 99:13:d1:d7:00:df:04:d2:5b:a3:d2:19:4e:c9:f9: 57:8d:1e:64:d9:f1:e2:3d:42:f4:ae:16:8d:24:cf: d7:96:fd:e1:38:42:02:d7:e6:03:da:4d:06:54:64: 1b:06:d4:67:4c:cc:10:eb:5d:9c:0e:67:69:53:fd: 95:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:E6:78:65:60:56:5B:DC:5F:F7:22:7A:CE:21:09:09:EC:F9:A6:4F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/db3bbfe8-2718-45e1-a3a5-afbf572d00cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c14::/48 Signature Algorithm: sha256WithRSAEncryption 4c:bf:99:bc:29:17:2f:b6:bd:31:47:43:de:6a:35:40:79:50: fd:17:1e:3b:6a:74:f6:ea:b6:28:b0:b1:d8:ba:70:c2:d0:71: 01:53:68:ee:de:f1:a0:82:72:c4:0d:c6:4d:ae:fa:40:17:40: 32:c7:65:3c:75:a3:c9:24:79:68:25:58:4e:55:a2:4f:e9:94: 51:f4:03:7e:b7:44:2a:f5:f9:c7:14:bd:20:e3:11:ba:9d:65: 30:0e:5a:80:6f:13:03:e0:eb:25:c6:f8:7a:dc:4b:f4:da:3c: 61:f6:e1:44:79:5b:9b:70:80:12:b0:a3:4a:95:fb:92:d5:da: fc:01:37:00:80:91:63:51:f4:9f:66:8f:66:ee:fa:bc:29:ac: a5:7e:ea:6e:ba:53:ed:7f:91:b2:3d:0f:7f:d3:d0:86:6f:fc: ef:c1:6b:78:d6:fb:17:47:43:d9:d5:b2:dc:3b:f4:0b:38:9f: 0b:fd:a6:11:20:1c:94:31:1b:68:92:93:4d:05:ab:8a:1f:94: d3:b3:fe:ce:76:0f:75:4e:59:0e:b3:bb:7c:5f:5a:7d:af:0c: 57:81:9b:1f:c4:14:bd:56:4e:dd:41:6b:3d:1c:e6:e1:b6:2a: 89:49:e8:d6:ff:0e:6a:7c:dd:68:51:6b:14:08:f8:23:a0:f5: e7:48:51:65 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQ793HbVI5Dq8O2OFjkkkPwr1frcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA4MDMxMDEzWhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNjIzOGUyMjY5MWE4MzdlOTY3NWJiODU1ODdiZjY2Mjk4 MzY0NzdhNjRmMzJiNTczM2I5ZThhMmQ5NTY5NDg1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLffx5//V37QnMJ1nLeMKxxkhKEVh1tBBj0qxhEQieMRpv abM9rP6IrWRY2/CK5rKR8ghj3W5cC0bYls9R6cgit1GSxTOup2tgB3TBmB5Pmodz 6XboKT2+ZAd0Tmv2AvfVhUkrGUIyNjr/o/qdf2ho8U+Fvwy2S/x+XjuOmtr10ICu JrNXAHwWyfWsUIPAKniNkL5v9Fob/yBURcicFP+k0LJyAHTfvq5wbUiddcHq1YPf 5rZeY25t1U2UlLTEi0eDIJkT0dcA3wTSW6PSGU7J+VeNHmTZ8eI9QvSuFo0kz9eW /eE4QgLX5gPaTQZUZBsG1GdMzBDrXZwOZ2lT/ZWtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUreZ4ZWBWW9xf9yJ6ziEJCez5pk8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RiM2JiZmU4LTI3MTgtNDVlMS1hM2E1LWFmYmY1NzJkMDBjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBQwDQYJKoZIhvcNAQELBQADggEBAEy/mbwpFy+2vTFHQ95qNUB5 UP0XHjtqdPbqtiiwsdi6cMLQcQFTaO7e8aCCcsQNxk2u+kAXQDLHZTx1o8kkeWgl WE5Vok/plFH0A363RCr1+ccUvSDjEbqdZTAOWoBvEwPg6yXG+HrcS/TaPGH24UR5 W5twgBKwo0qV+5LV2vwBNwCAkWNR9J9mj2bu+rwprKV+6m66U+1/kbI9D3/T0IZv /O/Ba3jW+xdHQ9nVstw79As4nwv9phEgHJQxG2iSk00Fq4oflNOz/s52D3VOWQ6z u3xfWn2vDFeBmx/EFL1WTt1Baz0c5uG2KolJ6Nb/Dmp83WhRaxQI+COg9edIUWU= -----END CERTIFICATE-----Generated at Tue May 12 22:50:18 2026 by rpki-client