$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/63541871-4b7b-4ccb-a81e-3eaa437846d3.roa File: 63541871-4b7b-4ccb-a81e-3eaa437846d3.roa (raw, json) Hash identifier: raVyqfsIHmxntcZeXCOeqgJ2JO4iNVnq5tlqPneA4HA= Subject key identifier: 1E:FF:DE:20:42:16:86:59:D5:F5:9C:6B:B4:12:AA:7E:98:43:AC:E0 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 12064808D8C09B55D3480EAC1C1CB58F33043B61 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/63541871-4b7b-4ccb-a81e-3eaa437846d3.roa Signing time: Fri 08 May 2026 03:00:23 +0000 ROA not before: Fri 08 May 2026 03:00:23 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 40045 IP address blocks: 2605:9cc0:c04::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 12 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:06:48:08:d8:c0:9b:55:d3:48:0e:ac:1c:1c:b5:8f:33:04:3b:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 8 03:00:23 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=c927448ab4398da195dbfa709849f666d28517a86dc442188a5aa29d8da6f588, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:62:eb:79:a1:74:b0:37:94:2e:25:6b:c2:da: cb:e2:71:e2:1e:c6:22:99:0f:2d:81:c3:25:e3:f2: 9f:26:59:04:e7:47:c1:59:6c:d2:00:16:10:f9:78: 6e:60:d9:f0:80:01:3b:a3:e9:d3:38:9c:fe:d3:1b: 07:ad:f1:33:7e:cc:54:32:68:0f:58:b3:7c:e9:28: b5:64:7e:2c:55:e2:65:69:47:d6:51:c3:cb:80:7c: cd:e5:f2:59:aa:5d:96:fc:fe:30:a4:5d:76:29:11: ad:ef:05:27:96:25:be:2e:cb:8c:42:52:21:99:be: 91:18:52:06:ed:e4:40:7f:83:63:91:c4:95:1e:67: 18:62:d6:7b:8e:15:b0:45:0d:c5:ea:f4:eb:51:2a: dd:d6:90:29:22:d3:ac:23:7b:5c:60:f6:5f:c0:65: 6d:e1:56:69:be:24:92:5b:e8:8a:0e:a5:94:56:e7: 2e:62:fe:e3:dc:90:b4:3d:e7:7f:8c:d0:15:0f:c8: 35:40:28:29:96:ae:15:bf:76:fd:de:b6:b7:47:3f: 7d:68:35:42:1d:bd:f9:c1:ba:52:dd:e1:64:90:a1: cd:32:09:72:3f:d7:d4:e3:93:c3:6f:a7:71:68:0b: 31:ce:34:f8:79:d9:e2:04:1c:b7:6c:83:9c:b7:6b: 88:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FF:DE:20:42:16:86:59:D5:F5:9C:6B:B4:12:AA:7E:98:43:AC:E0 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/63541871-4b7b-4ccb-a81e-3eaa437846d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c04::/48 Signature Algorithm: sha256WithRSAEncryption 9b:73:45:aa:3c:99:c1:78:4b:a5:0a:02:32:54:5d:a2:31:42: d8:7d:98:06:96:a8:ae:1e:37:6a:7c:86:0b:e3:c0:01:d8:80: 4e:6f:3d:c7:73:fb:9e:6d:b6:2d:7e:64:de:02:2d:53:7e:bb: 0c:61:ca:c5:ac:8b:71:81:21:b9:00:b8:3d:6d:93:e0:82:9f: 48:bb:ea:02:9f:f5:e3:50:40:5d:c3:a5:26:d5:98:2b:a8:47: 08:7b:d1:c6:b9:2d:b5:a5:1d:49:2b:2c:68:1e:98:93:14:0d: f5:3f:2e:fa:45:c4:4e:50:ab:71:f7:d6:89:e9:e2:09:6c:1d: 20:f9:de:69:9e:c1:9f:04:c8:5b:bd:4b:7c:8c:53:91:20:59: 52:2b:e6:fb:bd:74:b0:fc:fd:b3:ed:d8:fb:9c:36:12:ab:86: 2b:63:34:04:8b:2f:2b:b6:1d:58:5f:e9:f2:79:59:5e:1f:9a: 08:4a:aa:01:83:03:e4:a6:a7:3d:45:06:3f:48:1d:4e:15:f9: 9d:c0:56:ed:8a:f2:41:67:d2:ff:53:8e:a4:14:e2:e3:44:76: be:dd:30:43:16:91:ab:fc:69:89:e8:75:cc:bc:f4:f2:fd:18: 52:15:76:77:fb:d0:33:43:61:b0:2d:c7:54:fd:a9:37:97:b5: 9b:62:e8:22 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEgZICNjAm1XTSA6sHBy1jzMEO2EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA4MDMwMDIzWhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTI3NDQ4YWI0Mzk4ZGExOTVkYmZhNzA5ODQ5ZjY2NmQy ODUxN2E4NmRjNDQyMTg4YTVhYTI5ZDhkYTZmNTg4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFYut5oXSwN5QuJWvC2sviceIexiKZDy2BwyXj8p8mWQTn R8FZbNIAFhD5eG5g2fCAATuj6dM4nP7TGwet8TN+zFQyaA9Ys3zpKLVkfixV4mVp R9ZRw8uAfM3l8lmqXZb8/jCkXXYpEa3vBSeWJb4uy4xCUiGZvpEYUgbt5EB/g2OR xJUeZxhi1nuOFbBFDcXq9OtRKt3WkCki06wje1xg9l/AZW3hVmm+JJJb6IoOpZRW 5y5i/uPckLQ953+M0BUPyDVAKCmWrhW/dv3etrdHP31oNUIdvfnBulLd4WSQoc0y CXI/19Tjk8Nvp3FoCzHONPh52eIEHLdsg5y3a4g/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHv/eIEIWhlnV9ZxrtBKqfphDrOAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzYzNTQxODcxLTRiN2ItNGNjYi1hODFlLTNlYWE0Mzc4NDZkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADAQwDQYJKoZIhvcNAQELBQADggEBAJtzRao8mcF4S6UKAjJUXaIx Qth9mAaWqK4eN2p8hgvjwAHYgE5vPcdz+55tti1+ZN4CLVN+uwxhysWsi3GBIbkA uD1tk+CCn0i76gKf9eNQQF3DpSbVmCuoRwh70ca5LbWlHUkrLGgemJMUDfU/LvpF xE5Qq3H31onp4glsHSD53mmewZ8EyFu9S3yMU5EgWVIr5vu9dLD8/bPt2PucNhKr hitjNASLLyu2HVhf6fJ5WV4fmghKqgGDA+Smpz1FBj9IHU4V+Z3AVu2K8kFn0v9T jqQU4uNEdr7dMEMWkav8aYnodcy89PL9GFIVdnf70DNDYbAtx1T9qTeXtZti6CI= -----END CERTIFICATE-----Generated at Mon May 11 17:42:46 2026 by rpki-client