$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0290dfd4-d635-41df-a146-3afba4f4dc86.roa File: 0290dfd4-d635-41df-a146-3afba4f4dc86.roa (raw, json) Hash identifier: eMazzKHCLdqZgwD158t/rqeyd7AIWf/tGcIhnbWXJVo= Subject key identifier: E2:06:6B:22:94:25:82:D9:DE:94:29:79:63:C5:69:95:9D:C2:E4:89 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 79C55849F2DC23F513A5E0DB3301EC35BB732E92 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0290dfd4-d635-41df-a146-3afba4f4dc86.roa Signing time: Mon 27 Apr 2026 00:10:10 +0000 ROA not before: Mon 27 Apr 2026 00:10:10 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 40045 IP address blocks: 2605:9cc0:3b4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 12 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:c5:58:49:f2:dc:23:f5:13:a5:e0:db:33:01:ec:35:bb:73:2e:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 27 00:10:10 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=e7ebe3d60165a4e67699b3d1b53cfc9331330f986681cf22726308063aa85d77, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ab:02:77:fe:37:ab:fd:6f:92:bc:d5:eb:ac: 1c:75:9d:6c:4b:fc:72:df:37:30:d3:b7:8f:69:65: 99:58:f7:b5:34:42:be:1e:96:c8:0c:5d:1f:d3:35: 8a:cc:20:09:ca:07:a9:0b:d5:26:a1:4f:0a:88:42: 49:b2:35:9b:54:0b:d2:d8:05:ed:f2:7f:ee:10:37: 18:fc:03:7a:03:0f:ec:8b:d2:73:dd:e7:43:1d:55: e9:87:ec:b1:bb:6b:26:66:f3:8c:c7:38:45:4a:de: 26:f4:1a:49:15:e9:a9:86:05:6b:f1:ad:92:57:6f: bb:af:84:be:17:f4:69:c5:22:40:e0:a0:85:18:2e: f1:c3:b5:cb:b6:02:1d:48:b6:76:7e:14:fc:6d:38: 02:99:ee:11:b2:f8:d0:36:b9:84:b6:3e:42:6b:5c: 38:e5:2a:7c:f6:79:ea:94:7e:7e:0b:e6:46:c6:b4: cb:ee:53:53:a9:5a:c3:a4:b5:a8:db:df:5a:ea:c3: 5f:8b:47:4c:32:19:4e:f3:4d:5e:17:cc:fa:91:b2: e8:83:ee:f1:63:35:40:68:26:a4:0c:cf:8d:2c:64: 4f:f6:00:e5:64:3d:af:f0:5e:b5:6b:f5:ef:57:1a: 3d:2c:1e:6b:f6:ad:72:50:67:dc:fa:d6:fd:c3:71: f4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:06:6B:22:94:25:82:D9:DE:94:29:79:63:C5:69:95:9D:C2:E4:89 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/0290dfd4-d635-41df-a146-3afba4f4dc86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3b4::/48 Signature Algorithm: sha256WithRSAEncryption 4b:0a:bb:37:9b:ca:6d:86:11:46:6b:d8:ff:e4:cb:96:f2:2c: c1:5b:d4:9a:56:ba:4e:46:cf:08:43:89:3e:13:5f:f0:7c:87: 49:7d:b0:64:69:2e:5c:9c:78:d7:ae:56:db:40:24:ee:e8:cf: fe:ba:33:79:ab:34:11:da:a7:8e:24:02:ce:a1:a1:ee:28:30: 97:49:d1:b9:a0:39:6f:4f:7b:ec:3f:30:e4:a7:aa:e7:73:a2: a1:e1:04:3e:fe:b7:7d:00:16:ea:09:21:08:49:db:a3:6d:e3: 38:3c:9e:cf:d7:b6:10:d3:c6:fb:0d:d8:34:be:00:9d:25:ca: 7b:86:ed:40:a7:0f:7d:09:9f:bf:0e:99:40:77:15:b6:0b:91: e3:3b:8f:97:22:91:e4:da:8a:c9:54:6e:00:e7:b0:38:64:c3: c0:82:a3:3a:3c:c2:33:1a:b8:89:22:66:7d:28:e5:b9:be:45: 34:c0:5a:da:14:fa:4a:cd:7e:bd:01:97:5c:10:18:cb:aa:2c: 44:c3:13:8f:7b:e4:85:53:05:c8:b0:e6:d9:d9:1e:ea:d8:1a: 13:93:b2:67:f3:ef:3e:7c:48:0f:8b:c5:84:f0:8c:46:6a:47: 5c:34:e2:7a:88:0a:2e:ca:a9:8d:2a:35:b4:44:24:52:92:b2: 49:5d:8e:b9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUecVYSfLcI/UTpeDbMwHsNbtzLpIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNDI3MDAxMDEwWhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlN2ViZTNkNjAxNjVhNGU2NzY5OWIzZDFiNTNjZmM5MzMx MzMwZjk4NjY4MWNmMjI3MjYzMDgwNjNhYTg1ZDc3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiqwJ3/jer/W+SvNXrrBx1nWxL/HLfNzDTt49pZZlY97U0 Qr4elsgMXR/TNYrMIAnKB6kL1SahTwqIQkmyNZtUC9LYBe3yf+4QNxj8A3oDD+yL 0nPd50MdVemH7LG7ayZm84zHOEVK3ib0GkkV6amGBWvxrZJXb7uvhL4X9GnFIkDg oIUYLvHDtcu2Ah1ItnZ+FPxtOAKZ7hGy+NA2uYS2PkJrXDjlKnz2eeqUfn4L5kbG tMvuU1OpWsOktajb31rqw1+LR0wyGU7zTV4XzPqRsuiD7vFjNUBoJqQMz40sZE/2 AOVkPa/wXrVr9e9XGj0sHmv2rXJQZ9z61v3DcfQnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4gZrIpQlgtnelCl5Y8VplZ3C5IkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzAyOTBkZmQ0LWQ2MzUtNDFkZi1hMTQ2LTNhZmJhNGY0ZGM4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA7QwDQYJKoZIhvcNAQELBQADggEBAEsKuzebym2GEUZr2P/ky5by LMFb1JpWuk5GzwhDiT4TX/B8h0l9sGRpLlyceNeuVttAJO7oz/66M3mrNBHap44k As6hoe4oMJdJ0bmgOW9Pe+w/MOSnqudzoqHhBD7+t30AFuoJIQhJ26Nt4zg8ns/X thDTxvsN2DS+AJ0lynuG7UCnD30Jn78OmUB3FbYLkeM7j5cikeTaislUbgDnsDhk w8CCozo8wjMauIkiZn0o5bm+RTTAWtoU+krNfr0Bl1wQGMuqLETDE4975IVTBciw 5tnZHurYGhOTsmfz7z58SA+LxYTwjEZqR1w04nqICi7KqY0qNbREJFKSskldjrk= -----END CERTIFICATE-----Generated at Mon May 11 17:41:38 2026 by rpki-client