$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa File: fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa (raw, json) Hash identifier: ucm8XpQqlB9paKjZQHWNKJp7YEQv66CzdBWOFeb1bM0= Subject key identifier: 6D:81:41:08:44:6A:71:52:3F:07:63:FB:FE:DB:37:7E:DA:A9:4E:00 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1F78CF138504032FBC9C93D1ABB8B7662DBB5FC4 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa Signing time: Fri 08 May 2026 03:00:23 +0000 ROA not before: Fri 08 May 2026 03:00:23 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:c04::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:78:cf:13:85:04:03:2f:bc:9c:93:d1:ab:b8:b7:66:2d:bb:5f:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 8 03:00:23 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=60321b477e2eb052499b2f6b69e61d02ada39721833c0784394a398b0545e4ef, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:36:40:55:4a:7b:3e:b3:fc:3d:3a:72:42:e7: 64:0d:93:11:90:38:43:09:70:ae:7e:41:e0:be:89: 80:fd:1e:93:59:1d:ec:48:e4:8b:1d:28:29:d7:92: 36:0f:40:af:fa:c7:77:14:c9:1e:bd:1b:6e:ca:c1: 64:ef:8b:47:80:c2:aa:5a:67:51:59:ea:62:ef:e6: 00:b9:a8:b5:9c:43:4b:73:33:20:ed:be:b5:6b:11: 4f:3d:a2:e6:53:3d:a2:65:7d:2e:4f:c4:5c:76:40: 73:8c:05:c1:41:85:7c:12:d3:73:49:43:73:2c:be: 2b:c7:6b:a8:68:fc:8a:2a:45:dd:e1:9e:71:68:e9: da:7b:5f:12:0d:5a:8f:67:fa:3e:d3:e6:68:cb:14: 3d:3d:e1:af:f0:71:04:12:41:36:b4:43:56:e7:14: 06:2b:b5:b8:11:64:e2:1b:34:b4:09:d5:3e:b5:8e: 19:5d:b9:7f:0f:d2:ad:d0:e3:07:35:5b:00:4e:55: 67:f3:8c:3e:20:10:7b:ff:82:38:02:7f:82:c9:28: be:2d:72:19:05:5c:00:80:c6:12:73:57:93:38:9a: da:58:c4:6d:81:98:4e:eb:76:b0:af:e0:c3:f7:39: 49:ae:8a:b6:29:ae:7b:98:36:2b:58:45:a8:52:c3: b6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:81:41:08:44:6A:71:52:3F:07:63:FB:FE:DB:37:7E:DA:A9:4E:00 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/fdfce505-d22a-40b9-a253-7b77b0f9f1c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c04::/48 Signature Algorithm: sha256WithRSAEncryption 50:cf:f7:5e:d0:50:fa:bd:9a:bf:df:f0:55:aa:0b:c8:e0:75: 17:17:16:08:c4:ae:b5:01:a9:b7:c8:7b:e9:88:45:11:6b:2a: f9:c4:0c:24:85:ba:9b:5d:8a:ac:d2:47:89:5c:02:92:1d:ae: 3a:d7:8e:dd:ac:31:de:0e:5b:8a:04:c7:c5:73:d9:9a:53:52: 8b:e5:df:1f:c5:16:60:02:de:bd:b5:c0:db:75:75:65:7b:71: 53:cc:58:c8:2a:31:a0:79:b4:fb:30:7a:9d:bf:a4:b9:32:4a: ec:c7:3a:db:09:80:db:97:7f:9a:b6:7f:d9:bd:66:11:eb:65: 75:72:a2:1a:91:ef:da:ed:24:c6:0b:a8:88:79:e4:cd:7d:12: db:cd:26:6f:77:f7:b1:35:13:98:c1:4a:58:97:00:eb:57:06: 6c:b2:7c:40:e7:6c:41:b1:ba:3e:91:ce:6a:16:6d:c5:71:e6: cf:76:43:ae:0c:db:44:90:a8:10:62:ca:21:35:15:c4:8e:ec: e8:14:cf:94:82:95:73:a0:0a:8a:e9:36:20:38:51:7c:94:a9: 69:9e:84:e1:89:b7:aa:d1:f5:1b:1d:cd:59:f1:06:a0:19:07: 5d:09:3e:80:97:6e:2e:b2:69:45:2a:5e:f3:7d:a8:27:a4:72: c5:f8:1e:42 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUH3jPE4UEAy+8nJPRq7i3Zi27X8QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA4MDMwMDIzWhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDMyMWI0NzdlMmViMDUyNDk5YjJmNmI2OWU2MWQwMmFk YTM5NzIxODMzYzA3ODQzOTRhMzk4YjA1NDVlNGVmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUNkBVSns+s/w9OnJC52QNkxGQOEMJcK5+QeC+iYD9HpNZ HexI5IsdKCnXkjYPQK/6x3cUyR69G27KwWTvi0eAwqpaZ1FZ6mLv5gC5qLWcQ0tz MyDtvrVrEU89ouZTPaJlfS5PxFx2QHOMBcFBhXwS03NJQ3MsvivHa6ho/IoqRd3h nnFo6dp7XxINWo9n+j7T5mjLFD094a/wcQQSQTa0Q1bnFAYrtbgRZOIbNLQJ1T61 jhlduX8P0q3Q4wc1WwBOVWfzjD4gEHv/gjgCf4LJKL4tchkFXACAxhJzV5M4mtpY xG2BmE7rdrCv4MP3OUmuirYprnuYNitYRahSw7Y9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbYFBCERqcVI/B2P7/ts3ftqpTgAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2ZkZmNlNTA1LWQyMmEtNDBiOS1hMjUzLTdiNzdiMGY5ZjFjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAQwDQYJKoZIhvcNAQELBQADggEBAFDP917QUPq9mr/f8FWqC8jg dRcXFgjErrUBqbfIe+mIRRFrKvnEDCSFuptdiqzSR4lcApIdrjrXjt2sMd4OW4oE x8Vz2ZpTUovl3x/FFmAC3r21wNt1dWV7cVPMWMgqMaB5tPswep2/pLkySuzHOtsJ gNuXf5q2f9m9ZhHrZXVyohqR79rtJMYLqIh55M19EtvNJm9397E1E5jBSliXAOtX BmyyfEDnbEGxuj6RzmoWbcVx5s92Q64M20SQqBBiyiE1FcSO7OgUz5SClXOgCorp NiA4UXyUqWmehOGJt6rR9RsdzVnxBqAZB10JPoCXbi6yaUUqXvN9qCekcsX4HkI= -----END CERTIFICATE-----Generated at Tue May 12 23:14:06 2026 by rpki-client