$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6f4d9a8e-be4a-4717-b47c-2e16952fd9a5.roa File: 6f4d9a8e-be4a-4717-b47c-2e16952fd9a5.roa (raw, json) Hash identifier: OlLTGyBA5NUCG/dnYqQu5Lph/86AUpim5wHLnlMqmsc= Subject key identifier: 5A:4D:1F:94:75:D9:4A:AB:5F:57:59:F0:BD:78:C0:4A:C1:5B:54:8A Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 07FCE44E47189FFBF8277E832BD4234DADA0495F Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6f4d9a8e-be4a-4717-b47c-2e16952fd9a5.roa Signing time: Fri 15 May 2026 00:20:06 +0000 ROA not before: Fri 15 May 2026 00:20:06 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c1f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:fc:e4:4e:47:18:9f:fb:f8:27:7e:83:2b:d4:23:4d:ad:a0:49:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 15 00:20:06 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=35f096d8bae57c1942535ec65b7a9ecfb988db4b6d67bb3e3e3f29a887a3b885, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5a:9d:2d:c5:4e:7b:d2:5a:fc:14:e7:d6:6a: ca:a5:81:5e:cb:9a:12:04:f2:92:7f:bf:ff:5f:6c: bc:fc:38:0b:7d:41:ad:15:be:18:f1:98:74:fb:b6: 70:80:77:66:e4:17:03:d9:a3:7e:76:46:78:f4:d1: a9:fe:71:0f:05:18:1b:6a:a2:86:ef:1b:f0:d6:8e: da:f1:d7:6d:ce:6f:51:e2:73:36:5b:74:08:60:af: 22:0d:c2:11:85:a7:2d:49:84:15:cd:de:33:7e:3b: be:c6:f5:c4:41:e0:0b:ab:29:7a:cd:ba:87:9c:8e: 1c:b0:46:dd:cc:34:08:fc:74:d3:08:0c:08:4b:66: 3e:ca:69:3e:52:83:df:b5:2d:1e:ef:f3:03:5a:27: 2c:92:33:60:62:61:99:d2:47:3e:eb:82:6b:0b:9e: 3f:a1:6b:82:e3:bd:fb:cb:f7:90:9d:a6:47:39:67: dd:3d:ce:72:56:ed:a9:70:5b:83:80:75:8b:c1:14: af:66:5d:74:e7:2b:02:f7:07:b1:56:3a:eb:18:fc: 0b:7f:a6:4d:69:19:74:b5:9f:8f:b6:5b:52:cc:fa: 23:fb:93:89:ca:a9:37:18:a6:b4:39:03:e7:15:19: 34:9f:b4:c6:8b:bb:59:91:6c:1a:76:7c:94:9d:39: 27:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:4D:1F:94:75:D9:4A:AB:5F:57:59:F0:BD:78:C0:4A:C1:5B:54:8A X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6f4d9a8e-be4a-4717-b47c-2e16952fd9a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1f::/48 Signature Algorithm: sha256WithRSAEncryption 4d:6e:11:97:a9:3e:3d:07:26:d2:9c:c2:12:d7:4c:1a:cf:b2: 15:33:83:63:83:ac:6d:d3:ac:84:82:ea:35:20:eb:a6:c8:55: 2a:27:2a:db:40:9d:3c:94:04:25:21:a5:68:f6:5e:c5:da:b4: cc:bc:3c:a1:0a:b3:a0:ac:1c:45:1c:3f:a1:e4:ba:5b:50:28: 1d:5c:73:b0:6d:b0:11:ec:a0:5d:36:19:6a:3d:8e:5e:86:c5: c8:b2:63:9c:3e:28:48:f1:27:49:11:a2:e8:da:d7:30:47:39: 27:13:56:bc:90:7f:2a:d8:a0:44:be:19:7f:54:06:57:ac:2f: 16:d3:4a:e5:e6:d1:c3:43:09:d2:61:84:85:8e:e2:cd:66:9a: 4d:11:99:c7:61:5a:0b:9c:2c:c8:ed:01:77:36:2a:99:49:d9: 30:59:f7:ed:80:a6:67:05:a6:b0:96:32:c4:68:aa:3e:e9:98: 90:d3:ca:cd:de:50:c4:9c:33:e8:6d:56:30:a5:af:45:a4:d7: c7:1c:88:3a:84:4d:8c:a9:ec:99:71:bd:98:b6:bc:4e:b7:c5: 33:8e:c8:23:99:d7:58:12:f6:0c:b7:31:81:e0:94:45:72:7a: ee:e9:ef:dc:ec:68:b3:c2:51:df:b6:ef:93:f7:1b:9b:d1:30: 10:db:46:d0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUB/zkTkcYn/v4J36DK9QjTa2gSV8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTE1MDAyMDA2WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWYwOTZkOGJhZTU3YzE5NDI1MzVlYzY1YjdhOWVjZmI5 ODhkYjRiNmQ2N2JiM2UzZTNmMjlhODg3YTNiODg1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuWp0txU570lr8FOfWasqlgV7LmhIE8pJ/v/9fbLz8OAt9 Qa0VvhjxmHT7tnCAd2bkFwPZo352Rnj00an+cQ8FGBtqoobvG/DWjtrx123Ob1Hi czZbdAhgryINwhGFpy1JhBXN3jN+O77G9cRB4AurKXrNuoecjhywRt3MNAj8dNMI DAhLZj7KaT5Sg9+1LR7v8wNaJyySM2BiYZnSRz7rgmsLnj+ha4LjvfvL95Cdpkc5 Z909znJW7alwW4OAdYvBFK9mXXTnKwL3B7FWOusY/At/pk1pGXS1n4+2W1LM+iP7 k4nKqTcYprQ5A+cVGTSftMaLu1mRbBp2fJSdOSfjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWk0flHXZSqtfV1nwvXjASsFbVIowHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzZmNGQ5YThlLWJlNGEtNDcxNy1iNDdjLTJlMTY5NTJmZDlhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADB8wDQYJKoZIhvcNAQELBQADggEBAE1uEZepPj0HJtKcwhLXTBrP shUzg2ODrG3TrISC6jUg66bIVSonKttAnTyUBCUhpWj2XsXatMy8PKEKs6CsHEUc P6HkultQKB1cc7BtsBHsoF02GWo9jl6GxciyY5w+KEjxJ0kRouja1zBHOScTVryQ fyrYoES+GX9UBlesLxbTSuXm0cNDCdJhhIWO4s1mmk0RmcdhWgucLMjtAXc2KplJ 2TBZ9+2ApmcFprCWMsRoqj7pmJDTys3eUMScM+htVjClr0Wk18cciDqETYyp7Jlx vZi2vE63xTOOyCOZ11gS9gy3MYHglEVyeu7p79zsaLPCUd+275P3G5vRMBDbRtA= -----END CERTIFICATE-----Generated at Thu Jun 11 23:34:48 2026 by rpki-client