$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6e920276-a9de-4e1e-a66f-9d1e10f4cd23.roa File: 6e920276-a9de-4e1e-a66f-9d1e10f4cd23.roa (raw, json) Hash identifier: +SN309K/YIEZxfFQpehS+0nwnnDDKQ7Y2WJeWyDaJXU= Subject key identifier: 5E:70:6A:6F:C6:3B:51:9C:56:45:B4:D6:5E:30:89:80:29:23:D0:A9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2F50EDEB206BAB078528A58B15C554C267A5A2D9 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6e920276-a9de-4e1e-a66f-9d1e10f4cd23.roa Signing time: Mon 04 May 2026 15:40:46 +0000 ROA not before: Mon 04 May 2026 15:40:46 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:d00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:50:ed:eb:20:6b:ab:07:85:28:a5:8b:15:c5:54:c2:67:a5:a2:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 4 15:40:46 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=44f8d9d5a45818bb69c0c901d6621b33bf07a539f6cb5052b085d162b042dd37, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9b:ed:4d:9e:f4:24:e9:74:9f:76:53:c6:b2: b3:35:40:06:39:6a:89:45:65:50:51:c0:de:4b:2d: ec:cf:f1:4e:2b:c3:40:9a:5d:94:8f:2c:e9:db:a4: 7e:0a:1c:18:38:06:13:8b:e7:36:c9:e6:7e:47:ce: 39:33:73:1b:b7:c4:01:49:38:3f:fa:c0:ff:0a:0c: 7f:d1:18:2a:ad:7f:c8:3c:af:af:63:35:6d:8c:57: 81:c1:20:e0:e7:5a:92:f0:da:0d:b7:5c:93:9c:ca: 64:df:7b:fd:29:87:bf:b4:38:28:5f:1a:c9:07:5b: 7e:b7:a6:af:28:23:b5:60:ac:92:e8:35:7f:a8:67: c6:9d:5a:69:9b:c7:52:4f:9b:90:7a:88:2d:e1:86: 36:05:73:52:b3:2d:ea:1b:41:e4:b8:95:66:86:0e: a5:25:e3:02:1f:c0:88:0c:b8:ef:d3:01:0d:bf:8b: 56:e4:29:9b:e9:72:bb:f1:68:bb:c6:ae:58:0b:6e: 12:93:b8:a7:17:70:86:3d:c8:5b:c9:29:e3:ad:5b: 47:99:49:c3:bf:bf:22:f6:d0:be:d8:75:9a:db:c5: e4:98:bc:78:13:75:bc:29:cd:16:ef:0a:36:1a:db: 01:74:55:30:73:c2:c7:e6:f5:fe:37:30:30:a8:ab: df:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:70:6A:6F:C6:3B:51:9C:56:45:B4:D6:5E:30:89:80:29:23:D0:A9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6e920276-a9de-4e1e-a66f-9d1e10f4cd23.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:d00::/40 Signature Algorithm: sha256WithRSAEncryption 1d:5c:53:c4:e1:24:32:cf:c4:61:f4:3e:40:e2:ce:10:98:41: 4f:0b:ce:cb:ff:68:0d:d8:bf:46:e7:d7:e1:78:89:8e:b2:3f: 8f:95:66:08:36:7b:31:57:6c:1b:8f:82:a0:38:b3:45:09:0c: fa:dd:90:7f:55:a8:da:e1:1b:aa:e1:e8:76:2b:76:d3:c4:0d: 43:b2:4e:a9:90:db:6a:09:bb:d9:90:42:6d:3a:a9:fd:56:f5: 68:1e:78:4e:ae:40:d2:17:20:76:07:72:9f:8d:2a:9a:4a:b2: a7:0f:2e:48:0a:dc:55:7f:ce:2a:07:3f:14:cd:d6:8f:57:ef: 7c:d4:44:91:f0:e3:fc:d2:55:e1:e7:50:ae:ba:e3:06:62:a5: de:41:c6:18:23:1d:9a:db:b8:75:83:0d:96:af:9f:9f:c5:e4: 3c:bd:24:b5:2e:a1:1a:f6:78:d8:48:74:0e:0a:60:b8:72:fb: b6:ae:5a:5d:78:f2:b3:d4:49:f7:0c:54:7c:0d:13:36:dc:24: 75:1c:8d:c4:82:7f:88:aa:64:49:0f:0e:ea:99:88:64:9b:0a: fe:50:09:43:63:6f:13:ce:32:81:08:77:9c:02:c9:e2:96:b9: 13:d3:e5:45:01:e5:ad:14:68:c9:d6:76:2d:8e:8a:2d:c0:fa: 1b:18:56:4f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUL1Dt6yBrqweFKKWLFcVUwmelotkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA0MTU0MDQ2WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGY4ZDlkNWE0NTgxOGJiNjljMGM5MDFkNjYyMWIzM2Jm MDdhNTM5ZjZjYjUwNTJiMDg1ZDE2MmIwNDJkZDM3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCm+1NnvQk6XSfdlPGsrM1QAY5aolFZVBRwN5LLezP8U4r w0CaXZSPLOnbpH4KHBg4BhOL5zbJ5n5Hzjkzcxu3xAFJOD/6wP8KDH/RGCqtf8g8 r69jNW2MV4HBIODnWpLw2g23XJOcymTfe/0ph7+0OChfGskHW363pq8oI7VgrJLo NX+oZ8adWmmbx1JPm5B6iC3hhjYFc1KzLeobQeS4lWaGDqUl4wIfwIgMuO/TAQ2/ i1bkKZvpcrvxaLvGrlgLbhKTuKcXcIY9yFvJKeOtW0eZScO/vyL20L7YdZrbxeSY vHgTdbwpzRbvCjYa2wF0VTBzwsfm9f43MDCoq9+9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUXnBqb8Y7UZxWRbTWXjCJgCkj0KkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzZlOTIwMjc2LWE5ZGUtNGUxZS1hNjZmLTlkMWUxMGY0Y2QyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBZzADTANBgkqhkiG9w0BAQsFAAOCAQEAHVxTxOEkMs/EYfQ+QOLOEJhB TwvOy/9oDdi/RufX4XiJjrI/j5VmCDZ7MVdsG4+CoDizRQkM+t2Qf1Wo2uEbquHo dit208QNQ7JOqZDbagm72ZBCbTqp/Vb1aB54Tq5A0hcgdgdyn40qmkqypw8uSArc VX/OKgc/FM3Wj1fvfNREkfDj/NJV4edQrrrjBmKl3kHGGCMdmtu4dYMNlq+fn8Xk PL0ktS6hGvZ42Eh0DgpguHL7tq5aXXjys9RJ9wxUfA0TNtwkdRyNxIJ/iKpkSQ8O 6pmIZJsK/lAJQ2NvE84ygQh3nALJ4pa5E9PlRQHlrRRoydZ2LY6KLcD6GxhWTw== -----END CERTIFICATE-----Generated at Mon May 4 17:57:49 2026 by rpki-client