$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa File: da1fbb90-a595-4798-8d13-e5183edbf500.roa (raw, json) Hash identifier: UHoH/ybIL7AH9zTtM5GOjBsJ5lVasdRIf+NHbrOO4/g= Subject key identifier: 53:7E:6C:DE:DF:19:8F:F6:1E:61:4D:9A:FF:F2:B5:DD:64:DB:93:E2 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4952D2292C68B20377CC88BDD0274ACAD1DE5660 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa Signing time: Mon 04 May 2026 14:50:50 +0000 ROA not before: Mon 04 May 2026 14:50:50 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:612::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:52:d2:29:2c:68:b2:03:77:cc:88:bd:d0:27:4a:ca:d1:de:56:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 4 14:50:50 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=7c466d2d73301b44a7a17c54d9110802ca3325a28d44580f3eb2961f5399354e, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fd:16:9d:48:03:e0:a5:b5:c0:be:ce:14:31: da:f5:19:21:09:39:de:c1:fe:bc:ad:c3:13:61:cf: 8a:0f:43:4b:25:fb:b7:91:f7:5a:ee:23:b7:fd:f3: 39:55:c6:4e:39:a2:c7:e0:ca:b8:8e:4a:91:d1:0a: d1:e9:b3:e6:61:24:fb:07:62:54:84:20:72:ae:22: 7e:4c:02:15:92:5a:07:f9:80:6f:f6:c0:54:ee:93: 44:ff:72:f5:c9:a1:94:b4:76:b6:5f:26:d6:04:cf: 7d:8e:ea:e2:24:05:1f:bd:8e:75:29:64:f6:26:e0: 0e:d3:5c:06:b4:00:da:e8:83:47:20:89:33:de:f3: 15:57:be:8c:23:22:a1:ef:25:3a:fb:04:a3:a8:1d: 5c:17:16:4d:47:5b:18:c4:4f:6e:2f:4c:c7:13:76: a0:09:3b:a0:6d:cf:2d:cd:47:b8:a2:5b:ac:57:ce: 16:ac:86:ca:ea:cc:71:63:12:9e:1d:b6:37:02:64: 1b:ca:ec:27:5c:76:f2:31:16:07:16:25:04:2a:63: 1b:11:d1:19:17:6d:b9:af:93:cc:87:ec:07:ba:36: 10:7d:1c:d2:a0:40:f7:1f:24:d0:ba:fb:49:ca:83: 68:65:38:95:11:1f:e8:e8:73:11:3c:ea:fc:c5:5e: 13:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:7E:6C:DE:DF:19:8F:F6:1E:61:4D:9A:FF:F2:B5:DD:64:DB:93:E2 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/da1fbb90-a595-4798-8d13-e5183edbf500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:612::/48 Signature Algorithm: sha256WithRSAEncryption 24:7e:d7:28:31:70:4b:84:b8:b4:8e:91:42:47:1f:db:56:ea: a2:95:41:ca:82:10:ca:60:38:92:89:17:9f:e4:b5:40:75:3a: 67:96:78:52:83:09:cd:98:15:a3:75:52:c8:28:48:cd:78:ba: 90:d4:f1:1d:f6:e9:1c:7f:08:53:06:52:f4:7a:0f:0f:99:83: bc:c1:15:8b:df:37:21:27:25:dd:b6:0b:d5:52:14:44:2e:37: d3:a1:22:d6:fa:71:12:8f:a4:da:df:56:d8:1b:2d:bf:7b:a0: 17:c6:a4:e3:e3:c4:9c:07:40:1a:e1:85:a8:d1:d1:df:d7:43: d3:18:c1:91:37:d0:6e:2f:5a:46:aa:14:57:1e:c1:04:af:fe: 24:70:42:71:66:dd:04:e3:83:0c:4b:9b:78:2f:ee:24:7d:e3: 56:d7:00:90:aa:9c:72:3a:2e:14:30:8b:30:f9:b7:b8:ac:c4: 5b:28:62:b6:b3:c5:74:7e:a6:69:b5:f8:50:56:12:12:56:71: e6:7b:16:61:71:83:89:4f:5b:50:b4:dc:b6:ac:39:cc:1a:85: fa:72:47:9e:e6:76:8d:84:f7:96:fa:77:9a:9a:e7:e3:31:b1: f3:9f:fb:43:d7:fc:73:dc:26:6d:df:cc:3f:0e:33:55:79:04: 2f:2e:c9:23 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSVLSKSxosgN3zIi90CdKytHeVmAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTA0MTQ1MDUwWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzQ2NmQyZDczMzAxYjQ0YTdhMTdjNTRkOTExMDgwMmNh MzMyNWEyOGQ0NDU4MGYzZWIyOTYxZjUzOTkzNTRlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDh/RadSAPgpbXAvs4UMdr1GSEJOd7B/rytwxNhz4oPQ0sl +7eR91ruI7f98zlVxk45osfgyriOSpHRCtHps+ZhJPsHYlSEIHKuIn5MAhWSWgf5 gG/2wFTuk0T/cvXJoZS0drZfJtYEz32O6uIkBR+9jnUpZPYm4A7TXAa0ANrog0cg iTPe8xVXvowjIqHvJTr7BKOoHVwXFk1HWxjET24vTMcTdqAJO6Btzy3NR7iiW6xX zhashsrqzHFjEp4dtjcCZBvK7CdcdvIxFgcWJQQqYxsR0RkXbbmvk8yH7Ae6NhB9 HNKgQPcfJNC6+0nKg2hlOJURH+jocxE86vzFXhOXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUU35s3t8Zj/YeYU2a//K13WTbk+IwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2RhMWZiYjkwLWE1OTUtNDc5OC04ZDEzLWU1MTgzZWRiZjUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzABhIwDQYJKoZIhvcNAQELBQADggEBACR+1ygxcEuEuLSOkUJHH9tW 6qKVQcqCEMpgOJKJF5/ktUB1OmeWeFKDCc2YFaN1UsgoSM14upDU8R326Rx/CFMG UvR6Dw+Zg7zBFYvfNyEnJd22C9VSFEQuN9OhItb6cRKPpNrfVtgbLb97oBfGpOPj xJwHQBrhhajR0d/XQ9MYwZE30G4vWkaqFFcewQSv/iRwQnFm3QTjgwxLm3gv7iR9 41bXAJCqnHI6LhQwizD5t7isxFsoYrazxXR+pmm1+FBWEhJWceZ7FmFxg4lPW1C0 3LasOcwahfpyR57mdo2E95b6d5qa5+MxsfOf+0PX/HPcJm3fzD8OM1V5BC8uySM= -----END CERTIFICATE-----Generated at Tue May 12 20:19:23 2026 by rpki-client