$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8a5ff071-2589-4b8f-bab2-ab661880d472.roa File: 8a5ff071-2589-4b8f-bab2-ab661880d472.roa (raw, json) Hash identifier: dSTVGYevrz9MIlLjxn1EIj2NRbi6CYO2UzKkBXih858= Subject key identifier: 23:B8:AD:C3:E1:71:CE:FB:B2:38:28:49:71:58:AE:E9:F3:59:56:E9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 6CF06D69E829CB14570A5BDADAF04CFB3ADEFE61 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8a5ff071-2589-4b8f-bab2-ab661880d472.roa Signing time: Thu 14 May 2026 00:10:11 +0000 ROA not before: Thu 14 May 2026 00:10:11 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:3c2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:f0:6d:69:e8:29:cb:14:57:0a:5b:da:da:f0:4c:fb:3a:de:fe:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 14 00:10:11 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=b31eda991d9033f6f6f1c62564eccc8bb876cabdb69f8af11d6140df61e0a118, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:89:6c:f6:fc:8a:c3:ab:42:05:d9:8a:ed:a4: d0:47:62:5d:e2:0f:b1:0d:66:e3:52:42:da:e6:73: 74:f7:5e:aa:5c:b7:a1:24:80:7e:8d:79:68:20:fb: c2:c9:0e:44:5e:51:f7:3c:62:c4:c8:3c:74:9f:bf: c5:75:a7:f4:c5:2e:04:9d:a4:ab:d6:35:17:b0:d3: 5d:35:7f:47:00:0f:8e:cb:c8:7f:0a:38:b8:c6:ef: 50:b5:7a:c7:90:0f:2c:70:72:d2:b6:a8:a4:a3:53: 18:9f:9a:d7:60:d1:ee:0c:94:e8:6c:5d:67:bc:8d: 0f:1f:31:18:a4:fd:46:f4:27:96:cc:50:79:05:1b: e3:91:58:e6:78:dd:88:78:d3:39:7b:c4:44:97:1a: 48:43:54:14:97:55:a2:48:8e:19:29:d6:3c:41:a1: f9:91:bb:fa:f5:fe:64:1b:bb:cd:8a:b0:32:37:1c: cc:f2:4c:e8:77:23:7e:e5:b2:fa:fa:80:5c:9f:a1: e8:17:8e:d7:24:1a:73:37:4e:aa:ee:db:27:e6:0c: 88:12:93:33:c5:ab:54:b9:78:7f:10:b2:1b:66:06: 95:e8:63:f0:9c:80:58:dc:37:12:3d:bc:53:d9:03: 5f:f1:0c:de:68:20:83:97:7c:84:de:69:24:bb:c4: cb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B8:AD:C3:E1:71:CE:FB:B2:38:28:49:71:58:AE:E9:F3:59:56:E9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8a5ff071-2589-4b8f-bab2-ab661880d472.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3c2::/48 Signature Algorithm: sha256WithRSAEncryption 18:6f:f7:41:98:31:2b:81:fd:b0:d2:f2:2f:a5:ad:d6:88:59: a0:9d:44:94:ba:03:1d:30:ac:9f:c8:6a:fa:0e:1c:8e:4a:e0: e0:16:2c:b0:54:08:b3:ce:fb:9b:f5:93:37:ff:3a:ec:80:02: 5d:f7:f2:65:af:0a:68:4f:a7:e0:8d:92:bf:dd:72:4b:cd:eb: f9:39:57:a4:99:bf:cf:0f:ae:db:82:dd:fd:a2:60:15:ad:dc: cb:6a:c0:f9:ae:9c:f5:57:bc:35:3a:c6:70:07:b6:78:94:ef: 1b:ae:38:c1:27:c8:21:51:0e:82:b4:28:ed:ed:e2:04:0c:9b: 93:15:46:31:e9:58:1c:e3:b0:62:26:13:97:d9:00:38:e4:ae: a6:f1:d2:e1:87:46:b9:f2:ba:1c:16:30:d0:af:5a:01:2f:83: b9:da:71:6f:72:75:ba:62:3c:87:af:42:52:86:60:75:3c:f3: 0d:e6:2d:54:d0:0d:4d:aa:78:d5:bb:da:dd:2e:0a:f0:27:72: b4:59:ee:56:c4:63:2f:77:94:33:ac:07:9c:e8:96:86:29:59: 9c:19:a4:cd:3e:12:62:11:c7:53:b0:cd:13:6b:13:65:d0:09: 8d:94:17:49:ce:89:7a:d6:cf:31:83:9c:07:15:41:f0:76:1c: 41:7c:fa:a1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbPBtaegpyxRXClva2vBM+zre/mEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTE0MDAxMDExWhcNMjYwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzFlZGE5OTFkOTAzM2Y2ZjZmMWM2MjU2NGVjY2M4YmI4 NzZjYWJkYjY5ZjhhZjExZDYxNDBkZjYxZTBhMTE4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCGiWz2/IrDq0IF2YrtpNBHYl3iD7ENZuNSQtrmc3T3Xqpc t6EkgH6NeWgg+8LJDkReUfc8YsTIPHSfv8V1p/TFLgSdpKvWNRew0101f0cAD47L yH8KOLjG71C1eseQDyxwctK2qKSjUxifmtdg0e4MlOhsXWe8jQ8fMRik/Ub0J5bM UHkFG+ORWOZ43Yh40zl7xESXGkhDVBSXVaJIjhkp1jxBofmRu/r1/mQbu82KsDI3 HMzyTOh3I37lsvr6gFyfoegXjtckGnM3Tqru2yfmDIgSkzPFq1S5eH8QshtmBpXo Y/CcgFjcNxI9vFPZA1/xDN5oIIOXfITeaSS7xMv7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUI7itw+FxzvuyOChJcViu6fNZVukwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzhhNWZmMDcxLTI1ODktNGI4Zi1iYWIyLWFiNjYxODgwZDQ3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA8IwDQYJKoZIhvcNAQELBQADggEBABhv90GYMSuB/bDS8i+lrdaI WaCdRJS6Ax0wrJ/IavoOHI5K4OAWLLBUCLPO+5v1kzf/OuyAAl338mWvCmhPp+CN kr/dckvN6/k5V6SZv88PrtuC3f2iYBWt3MtqwPmunPVXvDU6xnAHtniU7xuuOMEn yCFRDoK0KO3t4gQMm5MVRjHpWBzjsGImE5fZADjkrqbx0uGHRrnyuhwWMNCvWgEv g7nacW9ydbpiPIevQlKGYHU88w3mLVTQDU2qeNW72t0uCvAncrRZ7lbEYy93lDOs B5zoloYpWZwZpM0+EmIRx1OwzRNrE2XQCY2UF0nOiXrWzzGDnAcVQfB2HEF8+qE= -----END CERTIFICATE-----Generated at Sat Jun 13 11:34:14 2026 by rpki-client