$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ef61cc60-17a6-4a87-9035-322b2907a5e5.roa File: ef61cc60-17a6-4a87-9035-322b2907a5e5.roa (raw, json) Hash identifier: wE43infRCmX9vrGS9W4QKX7/KmNCQyuvpO/D3qM4bV8= Subject key identifier: 30:D3:BF:CD:67:27:14:1E:C7:32:58:81:87:04:B3:B2:5E:DB:AA:58 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0C09D35EF1A02A10D4857808835A561ECDF629F2 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ef61cc60-17a6-4a87-9035-322b2907a5e5.roa Signing time: Fri 08 May 2026 03:00:39 +0000 ROA not before: Fri 08 May 2026 03:00:39 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c1c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:09:d3:5e:f1:a0:2a:10:d4:85:78:08:83:5a:56:1e:cd:f6:29:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 8 03:00:39 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=e2447fd96bda8201a5133d5e983486ba9564c7f2a0ec5e73b821fe562038f466, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1e:54:ae:57:e6:76:de:d6:9f:17:55:18:6e: 61:46:29:4a:c6:61:fb:ea:1a:7c:5f:84:67:47:6b: 95:d7:be:84:59:05:41:36:70:01:1f:92:dc:1f:97: b7:68:77:77:99:fd:da:1e:a2:e1:74:88:08:0c:55: 5a:95:15:04:31:9f:b5:d2:65:3e:b5:bc:5e:fe:95: 38:23:e0:4d:e0:3b:09:7a:84:8d:46:87:d1:07:35: 60:c5:5b:dd:87:1c:8d:22:6b:72:17:49:f6:a8:fd: 04:93:2f:0d:aa:98:ef:9d:81:0b:d4:cf:e3:1f:05: f1:22:89:06:1d:fa:22:95:62:22:2e:26:49:8a:ba: 1f:28:c5:bc:c2:da:76:7b:08:b2:51:12:6a:6d:21: 2e:54:f0:f4:b4:70:bc:71:cd:b7:db:9c:07:00:6b: 36:cd:89:65:b0:a2:78:52:75:c1:67:02:57:e3:ab: d5:61:6e:b9:b1:2c:ca:c4:08:30:c6:f6:8d:ec:0f: 0f:00:be:18:55:27:80:98:85:4c:89:cc:3b:b6:d4: 26:f0:f8:48:63:f1:55:08:6d:1d:d4:6d:a7:07:4c: 3a:ca:ab:ce:08:92:16:ba:4c:3f:79:42:01:46:10: 19:2d:0c:50:91:35:5d:37:38:fa:88:56:f9:ac:c0: 29:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D3:BF:CD:67:27:14:1E:C7:32:58:81:87:04:B3:B2:5E:DB:AA:58 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ef61cc60-17a6-4a87-9035-322b2907a5e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1c::/48 Signature Algorithm: sha256WithRSAEncryption 5f:9a:30:d8:15:db:2a:d9:70:10:84:32:b6:99:70:dc:f3:ee: 68:f3:c8:73:eb:de:8a:19:21:54:65:fc:22:4e:f9:49:d2:8c: d1:48:06:fa:0d:77:0f:22:58:8a:49:c5:99:18:3b:b1:78:8b: 4c:98:e3:21:c3:19:05:72:f2:8b:c0:42:63:94:67:21:f6:11: f3:04:f2:64:37:f9:18:50:51:12:a1:51:cf:35:2b:b5:e5:71: ab:41:fc:b1:07:69:fe:c3:49:86:2e:25:7e:74:90:f0:e8:e8: 1b:cf:52:86:d6:4f:a5:a6:d3:2a:84:0f:c8:af:e8:9c:5a:ff: 56:c9:9a:a2:67:06:4d:a4:e4:f5:9e:14:d5:8d:35:a1:4d:5c: ba:5e:16:ea:e8:b2:5a:8d:83:2a:00:ed:3d:13:4c:ed:f2:8f: 9e:7d:3f:f0:f0:0f:bd:07:87:33:04:a7:48:81:3b:76:73:d7: 3b:e2:03:ed:10:b0:3b:36:1e:33:5f:6d:b1:52:f7:af:75:39: a6:83:6b:74:aa:50:fd:b1:96:56:24:17:21:de:8c:07:f3:78: cd:51:72:b8:aa:51:d6:f8:05:43:09:3a:ee:f2:ae:e3:23:1e: 5d:43:3e:fd:db:83:23:b7:bf:5e:1d:7f:94:29:b0:f1:f8:f8: 5c:8c:ec:4a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDAnTXvGgKhDUhXgIg1pWHs32KfIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA4MDMwMDM5WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjQ0N2ZkOTZiZGE4MjAxYTUxMzNkNWU5ODM0ODZiYTk1 NjRjN2YyYTBlYzVlNzNiODIxZmU1NjIwMzhmNDY2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClHlSuV+Z23tafF1UYbmFGKUrGYfvqGnxfhGdHa5XXvoRZ BUE2cAEfktwfl7dod3eZ/doeouF0iAgMVVqVFQQxn7XSZT61vF7+lTgj4E3gOwl6 hI1Gh9EHNWDFW92HHI0ia3IXSfao/QSTLw2qmO+dgQvUz+MfBfEiiQYd+iKVYiIu JkmKuh8oxbzC2nZ7CLJREmptIS5U8PS0cLxxzbfbnAcAazbNiWWwonhSdcFnAlfj q9VhbrmxLMrECDDG9o3sDw8AvhhVJ4CYhUyJzDu21Cbw+Ehj8VUIbR3UbacHTDrK q84Ikha6TD95QgFGEBktDFCRNV03OPqIVvmswCkfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMNO/zWcnFB7HMliBhwSzsl7bqlgwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2VmNjFjYzYwLTE3YTYtNGE4Ny05MDM1LTMyMmIyOTA3YTVlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBwwDQYJKoZIhvcNAQELBQADggEBAF+aMNgV2yrZcBCEMraZcNzz 7mjzyHPr3ooZIVRl/CJO+UnSjNFIBvoNdw8iWIpJxZkYO7F4i0yY4yHDGQVy8ovA QmOUZyH2EfME8mQ3+RhQURKhUc81K7XlcatB/LEHaf7DSYYuJX50kPDo6BvPUobW T6Wm0yqED8iv6Jxa/1bJmqJnBk2k5PWeFNWNNaFNXLpeFuroslqNgyoA7T0TTO3y j559P/DwD70HhzMEp0iBO3Zz1zviA+0QsDs2HjNfbbFS9691OaaDa3SqUP2xllYk FyHejAfzeM1RcriqUdb4BUMJOu7yruMjHl1DPv3bgyO3v14df5QpsPH4+FyM7Eo= -----END CERTIFICATE-----Generated at Tue May 12 23:39:57 2026 by rpki-client