$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa File: abd82657-873c-4247-976a-fa627e8bd542.roa (raw, json) Hash identifier: L8R6rBnKC59BJ/mFI64EUlY8k1LVeaHtQK2DPhjkyz0= Subject key identifier: D5:7F:71:4C:C0:84:7B:04:26:3C:E9:97:C1:E8:31:49:23:53:EA:C0 Certificate issuer: /CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Certificate serial: 3AC29C9E803246A1DA20FF735DFD9FFBEC450F17 Authority key identifier: 53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa Signing time: Tue 05 May 2026 00:00:06 +0000 ROA not before: Tue 05 May 2026 00:00:06 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 54113 IP address blocks: 2606:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:c2:9c:9e:80:32:46:a1:da:20:ff:73:5d:fd:9f:fb:ec:45:0f:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Validity Not Before: May 5 00:00:06 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=4ca33c2410742bd11dc974afd6d3cd9a1d71cf75c477571c1f4a905d88124870, CN=2c2421b9-0ce5-48c5-ac23-91a5565f7afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4f:05:50:e2:46:3f:a1:50:7e:68:f0:aa:25: dc:49:db:18:4d:c6:b2:0c:09:28:3f:90:85:de:39: bb:f7:9c:4a:ab:d6:01:f0:c4:a3:8c:87:68:9d:2a: c2:69:4b:fe:21:9d:ee:88:37:9c:3c:0c:8b:e7:97: d6:62:1d:9b:c4:00:54:00:4f:63:a0:84:d9:e4:3f: 95:f5:bc:98:d2:3f:06:2b:62:46:f8:92:21:5f:cd: 2d:03:5c:80:10:85:0f:35:78:d7:d7:0d:16:de:36: bf:68:74:1d:91:7b:25:4a:af:24:0f:0e:7f:e3:22: 0e:21:69:95:ac:46:f0:1f:5d:ef:d1:a7:8c:48:b4: b2:be:48:39:df:02:e8:c7:08:16:46:68:af:40:b7: 71:d2:d1:6e:b2:2e:5e:4b:16:75:04:f5:8b:d1:5f: 09:16:c5:d7:2e:6b:ae:71:5f:21:37:da:ce:8f:27: eb:b9:50:3c:43:ae:c5:29:bd:34:02:b2:ff:ad:dc: b9:bf:ea:cd:11:8c:9e:e1:40:20:a0:c0:38:2c:67: bc:0d:78:24:f4:d5:80:79:70:c0:f8:d4:e6:51:cb: 9f:68:b2:17:ab:25:15:6b:2c:bb:61:2c:9b:c0:b5: e9:4a:44:92:39:71:f0:87:cd:ec:20:27:e6:41:12: 31:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:7F:71:4C:C0:84:7B:04:26:3C:E9:97:C1:E8:31:49:23:53:EA:C0 X509v3 Authority Key Identifier: keyid:53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 79:a1:37:2f:cd:c3:50:2c:f9:46:3d:4a:d5:d5:c7:ec:0d:d7: d4:1b:b8:f4:82:fc:79:f2:8e:b7:0c:fd:e6:44:69:b9:aa:dd: dd:8b:3a:cd:5d:c1:0f:77:8b:53:86:39:89:fe:80:88:ab:b1: 14:77:1c:fc:b8:e4:41:00:74:97:2f:1c:8d:34:12:0a:f4:aa: b1:2b:32:e6:4a:58:69:d1:2f:e8:a7:f8:92:a7:26:c4:df:1b: 41:1a:24:c7:59:75:23:a4:36:c7:6e:6e:9f:f6:3a:e3:57:ff: cf:54:23:47:d0:a4:17:7f:a9:5d:22:21:f1:53:54:9d:78:e5: d0:72:2a:d2:88:d0:da:b3:0f:4e:a7:84:f9:3d:7d:f1:8f:29: af:3c:1d:0f:6d:21:b8:50:d1:37:80:d5:87:cb:e8:db:62:a4: 59:75:0a:be:04:8d:18:28:0b:91:db:52:e9:eb:ff:9a:ba:e4: ac:85:21:44:55:8f:7b:90:a6:2c:a0:61:9f:fb:1d:10:54:e2: 96:43:cb:22:d1:43:11:eb:c8:5f:19:3e:fb:d7:45:b6:95:2b: 27:f0:6a:29:36:69:87:ad:eb:ba:e7:cc:2a:3d:d4:f3:66:50: d6:11:53:f1:f2:dd:75:2d:9e:d8:4d:f4:cf:c4:b0:5a:5e:e0: c0:c5:fe:55 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUOsKcnoAyRqHaIP9zXf2f++xFDxcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjMwNTMwMzQwODgxMTU2YzJlMTRhZmVmOWQ2MTk2MjI3 ZTJjNjAzNWEwOWVmMGQyNTcwHhcNMjYwNTA1MDAwMDA2WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2EzM2MyNDEwNzQyYmQxMWRjOTc0YWZkNmQzY2Q5YTFk NzFjZjc1YzQ3NzU3MWMxZjRhOTA1ZDg4MTI0ODcwMS0wKwYDVQQDEyQyYzI0MjFi OS0wY2U1LTQ4YzUtYWMyMy05MWE1NTY1ZjdhZmMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNTwVQ4kY/oVB+aPCqJdxJ2xhNxrIMCSg/kIXeObv3nEqr 1gHwxKOMh2idKsJpS/4hne6IN5w8DIvnl9ZiHZvEAFQAT2OghNnkP5X1vJjSPwYr Ykb4kiFfzS0DXIAQhQ81eNfXDRbeNr9odB2ReyVKryQPDn/jIg4haZWsRvAfXe/R p4xItLK+SDnfAujHCBZGaK9At3HS0W6yLl5LFnUE9YvRXwkWxdcua65xXyE32s6P J+u5UDxDrsUpvTQCsv+t3Lm/6s0RjJ7hQCCgwDgsZ7wNeCT01YB5cMD41OZRy59o sherJRVrLLthLJvAtelKRJI5cfCHzewgJ+ZBEjHXAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU1X9xTMCEewQmPOmXwegxSSNT6sAwHwYDVR0jBBgwFoAUU+6gKbpu763K tNB3mJ3V7UdVtnAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8zMTQ1ZWJmZi1k Yzg0LTQ1YTktYjc2OS1lZmJhYWY1Nzc5ZTMvYjMwNTMwMzQwODgxMTU2YzJlMTRh ZmVmOWQ2MTk2MjI3ZTJjNjAzNWEwOWVmMGQyNTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNzFlNTIzNmYtYzZmMS00OTI4LWExYjktOGRl ZjA5YzA2MDg1L2FiZDgyNjU3LTg3M2MtNDI0Ny05NzZhLWZhNjI3ZThiZDU0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzcxZTUyMzZmLWM2ZjEtNDkyOC1hMWI5 LThkZWYwOWMwNjA4NS9nUlZzTGhTdjc1MWhsaUotTEdBMW9KN3cwbGMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBizAMA0GCSqGSIb3DQEBCwUAA4IBAQB5oTcvzcNQLPlGPUrV1cfsDdfU G7j0gvx58o63DP3mRGm5qt3dizrNXcEPd4tThjmJ/oCIq7EUdxz8uORBAHSXLxyN NBIK9KqxKzLmSlhp0S/op/iSpybE3xtBGiTHWXUjpDbHbm6f9jrjV//PVCNH0KQX f6ldIiHxU1SdeOXQcirSiNDasw9Op4T5PX3xjymvPB0PbSG4UNE3gNWHy+jbYqRZ dQq+BI0YKAuR21Lp6/+auuSshSFEVY97kKYsoGGf+x0QVOKWQ8si0UMR68hfGT77 10W2lSsn8GopNmmHreu658wqPdTzZlDWEVPx8t11LZ7YTfTPxLBaXuDAxf5V -----END CERTIFICATE-----Generated at Wed May 13 14:07:10 2026 by rpki-client