$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2ce0da13-0e88-4bf2-bd9d-35168bcefdc3.roa File: 2ce0da13-0e88-4bf2-bd9d-35168bcefdc3.roa (raw, json) Hash identifier: tMwVbTO7JtIehE0Mucv6juF2sh827VAPgNXZt/kwlf8= Subject key identifier: A4:7A:60:CE:CC:D3:C6:9D:82:6E:C6:B5:C7:96:C0:0A:3A:D3:53:36 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 10AB66E2357BBE218D9E9F3DFBDBD5B3AD29BABE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2ce0da13-0e88-4bf2-bd9d-35168bcefdc3.roa Signing time: Sat 02 May 2026 00:30:08 +0000 ROA not before: Sat 02 May 2026 00:30:08 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ab:66:e2:35:7b:be:21:8d:9e:9f:3d:fb:db:d5:b3:ad:29:ba:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:30:08 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=79df5055d610e8c47a2c71ba1c154ada588995d8dc1f988646894acac9066173, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8e:2f:54:84:03:3b:c2:5f:42:a3:49:99:f7: ca:8b:43:d5:a6:89:93:7a:db:ca:62:fc:c1:ee:3a: 6a:eb:fb:e0:17:ab:29:6b:f0:42:7d:6c:66:28:84: 08:86:bc:37:3b:3c:cb:b6:9c:49:ef:23:bb:49:14: 52:27:e4:13:2e:eb:6f:c3:5e:cf:b0:78:db:cf:06: f6:fb:72:8d:ec:00:09:6d:72:7e:d8:e9:fe:1d:70: e5:a1:1e:48:06:45:fc:5c:68:6f:ac:72:54:e3:87: bc:21:c4:83:8d:05:20:6a:f6:5c:7c:f7:8b:2f:76: 41:14:45:0d:55:2c:4a:7e:35:da:5f:5a:95:92:ae: a8:cf:36:2f:5b:1c:19:bd:53:69:e6:64:74:f0:0c: 7b:c1:20:55:23:40:aa:09:35:c1:d3:9c:16:e5:99: 27:f8:61:b2:37:de:78:ca:c2:24:29:53:72:52:58: 9a:2d:33:6e:52:1e:fd:bd:50:fc:db:3b:e4:71:6f: 96:a9:a8:9a:1d:a4:d1:06:8f:36:1a:3d:17:9e:66: a7:dc:28:55:e7:27:eb:6c:cd:cd:b2:43:7a:ac:6c: 6f:46:1c:3f:2e:e7:53:3b:f3:60:a5:a0:d8:7d:4f: 4e:5f:62:2c:56:8a:69:c6:fd:8d:ab:f0:09:fd:7d: ec:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:7A:60:CE:CC:D3:C6:9D:82:6E:C6:B5:C7:96:C0:0A:3A:D3:53:36 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2ce0da13-0e88-4bf2-bd9d-35168bcefdc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.229.0/24 Signature Algorithm: sha256WithRSAEncryption 94:18:62:ef:6a:37:2c:c7:7b:b8:40:1f:e3:7e:a8:a2:96:26: 51:06:39:99:cb:7f:4c:5a:5d:1f:dd:d4:c1:9d:ea:75:4d:86: fb:04:6b:2b:ce:90:47:3f:4e:12:f1:b4:c2:98:68:65:09:b6: 3f:a3:2e:db:ff:87:17:7b:bd:e5:dd:45:77:a3:a4:92:46:87: 0a:58:16:81:df:9c:ba:76:6c:ef:60:5c:2c:7d:05:77:f9:e8: 8e:aa:5f:64:36:9b:08:54:98:8a:86:9e:a5:e2:dd:be:59:1a: ae:10:16:86:be:88:59:5c:ea:24:bf:86:7f:a1:9b:a6:5a:6e: e1:24:0a:5d:67:c4:bb:e3:42:8e:e1:ad:3b:ee:68:37:b4:16: 24:72:0b:90:2d:9f:cb:f5:0b:9e:e6:23:d4:1d:51:53:62:7f: 28:58:f3:08:bb:2c:18:e7:ea:ae:ec:52:f4:37:f6:ce:92:3d: 0d:6e:bf:c6:88:16:f8:95:28:d8:91:ff:85:27:dc:81:e5:98: c0:4f:7b:1c:84:4f:67:3b:98:92:b3:5c:d6:21:09:b3:83:93: 09:cc:44:f5:e1:1f:20:00:5d:20:fb:18:f6:74:bc:be:49:46: 75:e5:11:7b:43:71:98:d7:6a:2a:44:22:bb:bf:25:5b:15:3a: 90:d7:79:c2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEKtm4jV7viGNnp89+9vVs60pur4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAzMDA4WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OWRmNTA1NWQ2MTBlOGM0N2EyYzcxYmExYzE1NGFkYTU4 ODk5NWQ4ZGMxZjk4ODY0Njg5NGFjYWM5MDY2MTczMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZji9UhAM7wl9Co0mZ98qLQ9WmiZN628pi/MHuOmrr++AX qylr8EJ9bGYohAiGvDc7PMu2nEnvI7tJFFIn5BMu62/DXs+weNvPBvb7co3sAAlt cn7Y6f4dcOWhHkgGRfxcaG+sclTjh7whxIONBSBq9lx894svdkEURQ1VLEp+Ndpf WpWSrqjPNi9bHBm9U2nmZHTwDHvBIFUjQKoJNcHTnBblmSf4YbI33njKwiQpU3JS WJotM25SHv29UPzbO+Rxb5apqJodpNEGjzYaPReeZqfcKFXnJ+tszc2yQ3qsbG9G HD8u51M782CloNh9T05fYixWimnG/Y2r8An9fexbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpHpgzszTxp2Cbsa1x5bACjrTUzYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzJjZTBkYTEzLTBlODgtNGJmMi1iZDlkLTM1MTY4YmNlZmRjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeUwDQYJKoZIhvcNAQELBQADggEBAJQYYu9qNyzHe7hAH+N+qKKWJlEG OZnLf0xaXR/d1MGd6nVNhvsEayvOkEc/ThLxtMKYaGUJtj+jLtv/hxd7veXdRXej pJJGhwpYFoHfnLp2bO9gXCx9BXf56I6qX2Q2mwhUmIqGnqXi3b5ZGq4QFoa+iFlc 6iS/hn+hm6ZabuEkCl1nxLvjQo7hrTvuaDe0FiRyC5Atn8v1C57mI9QdUVNifyhY 8wi7LBjn6q7sUvQ39s6SPQ1uv8aIFviVKNiR/4Un3IHlmMBPexyET2c7mJKzXNYh CbODkwnMRPXhHyAAXSD7GPZ0vL5JRnXlEXtDcZjXaipEIru/JVsVOpDXecI= -----END CERTIFICATE-----Generated at Sun May 3 16:11:10 2026 by rpki-client