$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/58ae88e3-1626-4e66-a775-9d30fa3396fa.roa File: 58ae88e3-1626-4e66-a775-9d30fa3396fa.roa (raw, json) Hash identifier: jtiZA0140z2Ogoe34DkikeZXPSTgR9JQj0aXrnZEdaI= Subject key identifier: 11:AE:CC:E3:02:43:98:D5:9E:EE:A1:20:94:E1:D1:B9:2F:97:44:75 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 6486D646849F87F861E54DB6BC6922FD6A38CABB Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/58ae88e3-1626-4e66-a775-9d30fa3396fa.roa Signing time: Tue 19 May 2026 03:50:59 +0000 ROA not before: Tue 19 May 2026 03:50:59 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:b00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 30 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:86:d6:46:84:9f:87:f8:61:e5:4d:b6:bc:69:22:fd:6a:38:ca:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 19 03:50:59 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=5c2f0e13af0e975893aff39e8687f7bd6594ba7103b4308ff40f69dd1edb3ee4, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d4:ad:43:fd:7e:ab:07:76:fa:5d:52:95:3c: 9b:ab:26:8e:36:f8:4a:72:7b:ec:d2:89:37:bb:c7: e2:35:bb:ea:a1:ef:2f:66:dd:13:ab:7b:5f:cc:38: d9:5c:fe:f5:aa:5f:f1:72:2a:9f:a5:de:aa:bb:fa: 1a:95:7a:cd:46:e3:79:87:1a:1f:1e:e8:8d:3f:76: bc:6c:b1:21:c7:a3:0b:59:69:b0:44:be:b5:de:e5: 3d:19:b5:e6:16:06:47:a0:8d:be:b8:24:3b:82:0c: aa:59:8c:0e:f7:1c:8d:cc:6f:f2:d1:2b:c1:70:ca: 3b:d9:c3:ca:02:06:87:7b:92:e4:7c:4e:a4:48:12: ce:01:6d:2d:8d:8a:c5:d9:f9:20:ea:e5:e5:31:e1: 1c:a0:3e:1b:b3:44:48:b4:87:87:f7:3b:a7:d0:07: 17:7c:c4:cd:37:c4:7d:fe:76:d7:9a:7a:35:82:16: bc:a2:6b:db:8b:2f:71:74:cc:86:6c:5b:d0:c4:bd: 4b:29:7e:93:aa:f7:c4:22:68:7e:54:1b:48:ef:03: 64:16:7c:49:eb:41:78:57:34:81:cd:cd:36:3d:ae: 3a:91:f8:5c:f2:b7:b7:64:53:0b:60:56:70:08:b5: 96:47:b9:c3:c5:a3:a1:09:66:01:10:47:f6:8e:ae: 0b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:AE:CC:E3:02:43:98:D5:9E:EE:A1:20:94:E1:D1:B9:2F:97:44:75 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/58ae88e3-1626-4e66-a775-9d30fa3396fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:b00::/40 Signature Algorithm: sha256WithRSAEncryption 0a:91:26:e1:a3:8e:6e:0a:60:5c:90:55:be:d8:eb:00:3e:4e: 38:9f:9e:55:31:87:68:dd:e0:cb:8e:80:9c:5c:92:82:3d:9a: 33:ad:4a:c7:9d:a4:37:d6:01:13:de:dd:ef:01:03:99:34:d9: 2e:b5:96:18:75:6a:f8:d6:ff:70:7e:b8:c6:44:ab:d3:6d:e7: e6:99:50:57:50:d5:6c:23:e3:ca:b8:41:7f:aa:46:46:87:11: aa:1a:e7:d1:29:ff:34:b4:3a:45:97:2f:e4:f9:1b:65:9f:9f: 7a:72:5c:c8:1c:e0:6f:58:ac:00:c6:3d:50:59:4f:37:fd:2e: fc:d3:cb:35:b2:9a:44:df:8f:86:50:c0:ed:30:b4:e0:84:2a: 08:82:68:54:3e:10:52:53:cf:06:8c:ea:0c:a9:d1:9d:ff:11: 53:29:32:94:b9:28:30:5e:af:aa:c3:96:0a:2e:0f:a8:ae:e3: c8:bd:47:9c:60:88:4c:93:30:95:b5:aa:9b:23:b7:9b:a5:cf: 94:cf:f8:b6:c0:67:85:db:21:13:79:9f:bf:c8:23:bf:c5:75: bf:d8:b4:ce:ce:5f:0c:87:cb:56:b6:90:a9:5f:4d:82:60:59: ad:69:1d:0e:1a:67:39:c1:99:3e:64:76:ab:29:93:a0:88:59: 76:fc:09:d4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZIbWRoSfh/hh5U22vGki/Wo4yrswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTE5MDM1MDU5WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzJmMGUxM2FmMGU5NzU4OTNhZmYzOWU4Njg3ZjdiZDY1 OTRiYTcxMDNiNDMwOGZmNDBmNjlkZDFlZGIzZWU0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV1K1D/X6rB3b6XVKVPJurJo42+Epye+zSiTe7x+I1u+qh 7y9m3ROre1/MONlc/vWqX/FyKp+l3qq7+hqVes1G43mHGh8e6I0/drxssSHHowtZ abBEvrXe5T0ZteYWBkegjb64JDuCDKpZjA73HI3Mb/LRK8FwyjvZw8oCBod7kuR8 TqRIEs4BbS2NisXZ+SDq5eUx4RygPhuzREi0h4f3O6fQBxd8xM03xH3+dteaejWC Fryia9uLL3F0zIZsW9DEvUspfpOq98QiaH5UG0jvA2QWfEnrQXhXNIHNzTY9rjqR +Fzyt7dkUwtgVnAItZZHucPFo6EJZgEQR/aOrgvnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUEa7M4wJDmNWe7qEglOHRuS+XRHUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzU4YWU4OGUzLTE2MjYtNGU2Ni1hNzc1LTlkMzBmYTMzOTZmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBZzACzANBgkqhkiG9w0BAQsFAAOCAQEACpEm4aOObgpgXJBVvtjrAD5O OJ+eVTGHaN3gy46AnFySgj2aM61Kx52kN9YBE97d7wEDmTTZLrWWGHVq+Nb/cH64 xkSr023n5plQV1DVbCPjyrhBf6pGRocRqhrn0Sn/NLQ6RZcv5PkbZZ+fenJcyBzg b1isAMY9UFlPN/0u/NPLNbKaRN+PhlDA7TC04IQqCIJoVD4QUlPPBozqDKnRnf8R UykylLkoMF6vqsOWCi4PqK7jyL1HnGCITJMwlbWqmyO3m6XPlM/4tsBnhdshE3mf v8gjv8V1v9i0zs5fDIfLVraQqV9NgmBZrWkdDhpnOcGZPmR2qymToIhZdvwJ1A== -----END CERTIFICATE-----Generated at Thu May 28 21:29:51 2026 by rpki-client