$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a4b43ebf-0d93-4470-9ac2-768f9381f392.roa File: a4b43ebf-0d93-4470-9ac2-768f9381f392.roa (raw, json) Hash identifier: IC1qSSHVLl/Av8XOWblW1Iyj7QK27P9seFp4d1+cCXQ= Subject key identifier: D8:69:6A:2B:90:F6:CE:6E:A6:7C:9A:66:CA:7E:6D:E2:F1:61:5A:91 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4391E54BB8427E1B1536D80A24EA9F46C4D170CE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a4b43ebf-0d93-4470-9ac2-768f9381f392.roa Signing time: Thu 14 May 2026 00:10:11 +0000 ROA not before: Thu 14 May 2026 00:10:11 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:3c2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:91:e5:4b:b8:42:7e:1b:15:36:d8:0a:24:ea:9f:46:c4:d1:70:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 14 00:10:11 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=588cafc9d53cbca9e4ba6033376fa1ae3a897c5fafc28622eb7979b6d8d68a4f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f6:94:56:4a:d8:29:e4:05:41:68:32:25:1a: a3:66:92:45:74:e2:0d:41:dc:f3:68:bd:fb:28:64: 71:8f:38:47:b6:3d:bb:00:fe:85:43:38:e3:ba:94: bd:d9:63:a5:18:df:f2:bb:46:cc:8c:da:4c:75:e7: 0e:73:fd:de:af:a8:91:cc:f9:d3:be:b2:3b:3e:19: 84:0f:42:cf:c7:b5:e3:04:da:00:aa:a1:49:11:01: 70:ba:89:99:bd:ab:e6:0e:40:ca:e8:cd:a0:bb:32: 03:b1:79:aa:8a:0b:85:7c:72:02:59:ac:65:51:cc: ef:00:ef:95:1b:88:e1:41:83:d3:b5:06:ee:72:05: 93:45:c4:a0:ae:6a:51:bf:37:d7:e9:86:7f:e8:af: 86:ad:37:d4:e8:0c:23:a9:96:a4:bb:26:15:84:89: db:c7:39:df:de:3c:e2:28:0d:97:d5:f3:da:34:a4: 90:94:3c:ac:a9:6d:cb:5c:ec:a7:63:68:a8:5e:cf: 70:3b:fc:3d:7a:d7:9e:c4:c3:02:7c:14:df:57:f6: 45:f4:a4:ba:50:26:77:2d:f5:9c:94:44:3f:51:fa: 88:38:a6:a1:1c:b3:a0:85:1a:f1:d7:01:39:dd:6e: 01:23:a5:df:31:fc:b8:68:ec:22:1c:22:1c:fd:86: a6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:69:6A:2B:90:F6:CE:6E:A6:7C:9A:66:CA:7E:6D:E2:F1:61:5A:91 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/a4b43ebf-0d93-4470-9ac2-768f9381f392.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:3c2::/48 Signature Algorithm: sha256WithRSAEncryption 0f:f9:f1:f4:7c:18:87:f1:87:e0:6e:0d:ad:93:dc:3d:67:31: 24:96:99:3e:3d:ef:2f:90:a1:90:25:40:dd:c5:6f:84:1d:12: 5f:04:46:d4:4d:bd:e9:42:8d:ae:c6:a1:cb:fd:e8:5a:37:88: 6f:ef:49:01:8c:03:f9:48:73:92:21:83:80:9f:29:c6:4b:e7: 85:79:99:e1:6c:9c:22:bd:f6:9d:d1:1b:57:95:50:76:64:ca: d6:e1:a7:d1:28:d5:2a:73:1a:bc:1d:0c:6b:0b:cc:6b:0e:14: de:8f:d5:24:e5:c9:be:4e:e2:4b:e6:bf:be:33:9b:d8:80:3e: c4:c3:d5:fa:39:bf:80:45:2c:b7:ab:e7:0c:9e:39:c6:7a:8a: c6:1d:63:52:37:e4:52:01:06:29:70:39:e7:4e:19:28:0d:c0: 90:b2:67:55:65:c4:3c:cd:1c:aa:ea:47:6d:09:23:2f:66:28: 65:c6:22:9d:6b:6d:55:25:36:e8:7d:41:ed:10:95:02:99:b9: 17:e7:31:d8:62:38:f3:6f:b7:17:5f:fd:9e:18:44:0d:c8:46: 20:a6:69:42:22:d1:2c:73:e1:a4:9e:a8:4b:0d:15:70:dc:bf: b8:09:2d:b3:b9:33:d9:21:dd:ce:75:36:29:67:25:4d:8c:59: 3c:d7:c3:c9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQ5HlS7hCfhsVNtgKJOqfRsTRcM4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjYwNTE0MDAxMDExWhcNMjYwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODhjYWZjOWQ1M2NiY2E5ZTRiYTYwMzMzNzZmYTFhZTNh ODk3YzVmYWZjMjg2MjJlYjc5NzliNmQ4ZDY4YTRmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+9pRWStgp5AVBaDIlGqNmkkV04g1B3PNovfsoZHGPOEe2 PbsA/oVDOOO6lL3ZY6UY3/K7RsyM2kx15w5z/d6vqJHM+dO+sjs+GYQPQs/HteME 2gCqoUkRAXC6iZm9q+YOQMrozaC7MgOxeaqKC4V8cgJZrGVRzO8A75UbiOFBg9O1 Bu5yBZNFxKCualG/N9fphn/or4atN9ToDCOplqS7JhWEidvHOd/ePOIoDZfV89o0 pJCUPKypbctc7KdjaKhez3A7/D16157EwwJ8FN9X9kX0pLpQJnct9ZyURD9R+og4 pqEcs6CFGvHXATndbgEjpd8x/Lho7CIcIhz9hqYfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2GlqK5D2zm6mfJpmyn5t4vFhWpEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2E0YjQzZWJmLTBkOTMtNDQ3MC05YWMyLTc2OGY5MzgxZjM5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAA8IwDQYJKoZIhvcNAQELBQADggEBAA/58fR8GIfxh+BuDa2T3D1n MSSWmT497y+QoZAlQN3Fb4QdEl8ERtRNvelCja7Gocv96Fo3iG/vSQGMA/lIc5Ih g4CfKcZL54V5meFsnCK99p3RG1eVUHZkytbhp9Eo1SpzGrwdDGsLzGsOFN6P1STl yb5O4kvmv74zm9iAPsTD1fo5v4BFLLer5wyeOcZ6isYdY1I35FIBBilwOedOGSgN wJCyZ1VlxDzNHKrqR20JIy9mKGXGIp1rbVUlNuh9Qe0QlQKZuRfnMdhiOPNvtxdf /Z4YRA3IRiCmaUIi0Sxz4aSeqEsNFXDcv7gJLbO5M9kh3c51NilnJU2MWTzXw8k= -----END CERTIFICATE-----Generated at Sat Jun 13 08:00:49 2026 by rpki-client