$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d9e0f0b1-d6d1-422d-a664-0486c785db4d.roa File: d9e0f0b1-d6d1-422d-a664-0486c785db4d.roa (raw, json) Hash identifier: ohSz05+16meakj0TXd3nkW2WTgx9JrUyfhsBmU4OLlI= Subject key identifier: 2B:1E:18:02:42:83:3B:57:18:E2:87:1B:1F:BB:FE:D2:E0:35:49:7B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 13088E5E2CEBC16A82C661A1091406FA34DD616B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d9e0f0b1-d6d1-422d-a664-0486c785db4d.roa Signing time: Mon 27 Apr 2026 00:10:09 +0000 ROA not before: Mon 27 Apr 2026 00:10:09 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:3b4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:08:8e:5e:2c:eb:c1:6a:82:c6:61:a1:09:14:06:fa:34:dd:61:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 27 00:10:09 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=3f93c2f4b4ef7faf5bfdc43cafdc98d2b5786b3b4779b0004897336921783b3f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e8:d8:95:23:3b:70:08:e6:b5:c2:95:25:33: ae:eb:75:8e:05:29:f6:44:c2:45:4f:a3:86:71:34: 86:7e:18:6e:a8:3a:d7:3f:43:1b:be:37:72:06:35: 66:55:85:25:92:b6:81:1e:c2:66:5a:dd:a6:93:59: 69:ff:8a:db:c1:23:1c:83:13:f5:dd:79:f7:e5:de: d7:da:b1:af:f2:b6:3b:e6:3d:a0:03:7c:19:fa:ca: 85:b3:a5:42:08:75:1d:07:b3:2c:4e:2a:c9:2a:c4: 40:b2:97:27:47:86:57:1b:45:d4:19:f5:56:d8:4d: 3b:a7:98:3e:e6:2a:01:20:3b:ef:32:ea:95:ea:af: 6b:e2:6b:41:19:a2:ec:c3:8a:41:4d:55:94:a8:7b: 45:dd:fd:36:fc:61:e1:2c:e7:0f:32:0a:c4:dc:6c: a3:31:7a:c9:d4:ef:70:d9:0d:5c:a6:8b:be:7a:a0: 9a:36:b4:bc:75:8c:29:26:7b:19:79:10:f4:0e:d5: b0:5b:b0:5e:fe:f6:57:9d:9e:19:16:68:98:8a:d7: 29:dd:a0:64:b5:45:fa:aa:c7:b7:c5:a9:84:f1:1a: d8:43:e8:29:5f:c4:a1:48:e5:28:4c:b1:62:56:ec: f1:7a:23:4e:c0:c9:bc:59:73:31:9b:d8:43:28:5d: 8b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:1E:18:02:42:83:3B:57:18:E2:87:1B:1F:BB:FE:D2:E0:35:49:7B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d9e0f0b1-d6d1-422d-a664-0486c785db4d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3b4::/48 Signature Algorithm: sha256WithRSAEncryption 1b:3d:ff:be:93:ef:c6:22:1d:0d:fe:ad:c8:92:05:e6:04:0b: a2:2c:db:93:ae:e1:41:8f:c0:eb:c5:9c:44:1f:31:8c:97:6a: 24:7c:17:71:eb:56:20:44:3b:d8:b9:0a:4f:c6:f5:b8:93:01: f5:36:2c:30:4f:66:ba:3d:f7:fd:34:30:e3:9d:b9:db:1d:cf: 22:dc:5c:22:74:f5:cd:7f:f1:cb:d9:e2:d4:2f:e3:7e:b9:3e: 44:b5:ce:bb:98:bd:70:bb:ec:2d:b7:f0:39:ef:ce:c4:a2:4f: 1d:0b:f7:c3:d2:99:48:0b:41:77:43:71:74:3d:02:48:61:d9: 09:75:25:8d:15:13:4b:08:1b:5e:12:09:b0:82:14:79:03:12: a5:0f:d5:ea:3a:9b:5f:7c:65:7f:dd:33:52:cb:40:77:a5:ad: 2a:4a:2b:42:91:ed:48:57:0a:16:c6:48:c8:37:9b:18:92:ca: a9:15:78:2f:b0:3c:38:de:d1:7a:59:f2:53:21:d9:40:43:c7: 61:58:2e:a0:a4:cd:bc:f4:19:b9:6c:1a:11:24:a4:7b:37:eb: 1b:e8:5d:0c:cf:34:27:b5:ac:6d:7b:9e:05:be:20:e9:a2:8b: c2:b4:76:f6:42:f7:70:7b:86:d7:11:d5:e8:c7:d0:38:eb:a5: f9:84:12:37 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEwiOXizrwWqCxmGhCRQG+jTdYWswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNDI3MDAxMDA5WhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjkzYzJmNGI0ZWY3ZmFmNWJmZGM0M2NhZmRjOThkMmI1 Nzg2YjNiNDc3OWIwMDA0ODk3MzM2OTIxNzgzYjNmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC36NiVIztwCOa1wpUlM67rdY4FKfZEwkVPo4ZxNIZ+GG6o Otc/Qxu+N3IGNWZVhSWStoEewmZa3aaTWWn/itvBIxyDE/Xdeffl3tfasa/ytjvm PaADfBn6yoWzpUIIdR0HsyxOKskqxECylydHhlcbRdQZ9VbYTTunmD7mKgEgO+8y 6pXqr2via0EZouzDikFNVZSoe0Xd/Tb8YeEs5w8yCsTcbKMxesnU73DZDVymi756 oJo2tLx1jCkmexl5EPQO1bBbsF7+9lednhkWaJiK1yndoGS1Rfqqx7fFqYTxGthD 6ClfxKFI5ShMsWJW7PF6I07AybxZczGb2EMoXYsBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKx4YAkKDO1cY4ocbH7v+0uA1SXswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q5ZTBmMGIxLWQ2ZDEtNDIyZC1hNjY0LTA0ODZjNzg1ZGI0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA7QwDQYJKoZIhvcNAQELBQADggEBABs9/76T78YiHQ3+rciSBeYE C6Is25Ou4UGPwOvFnEQfMYyXaiR8F3HrViBEO9i5Ck/G9biTAfU2LDBPZro99/00 MOOdudsdzyLcXCJ09c1/8cvZ4tQv4365PkS1zruYvXC77C238DnvzsSiTx0L98PS mUgLQXdDcXQ9Akhh2Ql1JY0VE0sIG14SCbCCFHkDEqUP1eo6m198ZX/dM1LLQHel rSpKK0KR7UhXChbGSMg3mxiSyqkVeC+wPDje0XpZ8lMh2UBDx2FYLqCkzbz0Gbls GhEkpHs36xvoXQzPNCe1rG17ngW+IOmii8K0dvZC93B7htcR1ejH0DjrpfmEEjc= -----END CERTIFICATE-----Generated at Mon May 4 23:14:41 2026 by rpki-client