$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2f1243e4-dd56-43c1-90e0-aec73f1a9489.roa File: 2f1243e4-dd56-43c1-90e0-aec73f1a9489.roa (raw, json) Hash identifier: nkXcQwtJ0ZSR3fD5c5oKk9FbGa0apIBSvE1hfRWvtjA= Subject key identifier: 1E:91:2E:BD:DD:8E:0B:F1:1B:88:01:59:43:5A:5F:3C:9C:61:44:CF Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5BD1A29D8ACBDB02FBA882CAF5E52B527EB6BFEE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2f1243e4-dd56-43c1-90e0-aec73f1a9489.roa Signing time: Fri 01 May 2026 00:00:39 +0000 ROA not before: Fri 01 May 2026 00:00:39 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 206.55.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d1:a2:9d:8a:cb:db:02:fb:a8:82:ca:f5:e5:2b:52:7e:b6:bf:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 1 00:00:39 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=ac9752822643623d8517f7131f13d2c05f027a449575d7e006172886e32b8475, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ad:dc:e6:ba:20:6f:f3:46:c7:59:dc:d4:43: 87:ea:d2:1b:a1:c0:a8:68:e4:0c:5f:d5:99:d2:1f: 86:78:e2:cf:c3:e9:e9:8e:a0:6b:1a:9d:49:9e:86: 05:bf:1b:61:ed:bc:e1:63:ef:1d:ff:72:f1:50:64: 68:ef:b6:b5:85:df:3f:11:6c:63:f8:c7:d0:9e:c7: 89:02:68:b3:b8:53:35:32:3f:ed:a0:f7:fd:aa:3f: 33:8b:9b:b6:1d:d4:55:e2:ea:dd:b8:bd:a3:8d:e9: 6e:40:7f:34:67:c4:22:16:d4:45:cb:5b:f7:72:f5: 8f:6b:fe:33:76:0e:0c:54:fc:30:82:ed:c7:c3:84: 42:d3:33:ba:61:7a:09:29:2d:ab:94:a7:3f:a6:db: b8:41:5d:56:c6:43:60:09:a6:84:bc:4a:50:e4:d1: 4a:a6:96:fc:27:d1:16:56:f1:51:8c:52:a9:7d:4e: ac:de:9a:b5:4e:63:07:0e:40:5d:50:e3:3a:2b:f8: 25:70:aa:91:f9:be:86:25:a2:16:4d:6c:8b:15:1e: 9b:61:88:de:93:6d:cb:93:6e:89:f0:a0:f9:3a:89: 40:e7:f2:63:fa:a1:b8:0a:f8:a1:e5:3d:6f:c8:91: 93:ec:03:ba:d3:83:1b:58:ae:a4:f5:98:a5:3d:6d: c6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:91:2E:BD:DD:8E:0B:F1:1B:88:01:59:43:5A:5F:3C:9C:61:44:CF X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2f1243e4-dd56-43c1-90e0-aec73f1a9489.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.55.128.0/19 Signature Algorithm: sha256WithRSAEncryption 78:44:0d:92:e2:0c:ab:b8:78:e1:b4:ec:a7:c1:b6:d2:55:25: 6b:db:16:ba:0f:03:aa:ac:ac:2f:83:f7:76:e4:28:3a:5e:6d: 0f:bb:8b:58:68:19:2c:c4:31:d5:17:c0:29:bb:92:fe:e1:f4: bb:9a:cb:30:a1:7e:38:1d:14:75:e3:d7:0f:40:27:1e:99:f4: 4b:a3:4d:35:c4:50:5d:58:bd:60:f8:fa:47:a6:ec:9b:0d:6a: 9e:f6:0c:2a:b1:d7:a6:c8:03:88:b7:4f:9c:7d:f0:13:db:19: 47:2f:15:02:a7:0b:af:bd:47:3e:6a:cd:c4:ca:16:89:cb:e2: 1b:c6:47:e8:21:fd:a7:ae:74:50:eb:8d:16:2c:fd:7b:5a:45: 6a:0d:39:ec:ab:6d:f8:68:aa:eb:fc:05:a7:95:05:c6:8e:f9: d6:03:81:ba:6f:68:30:b1:93:4d:80:c7:12:6a:ba:88:88:38: a9:7f:b8:2c:c0:4e:1d:13:c2:40:f7:46:89:e3:11:07:22:fb: 45:5c:04:7d:c6:54:e3:74:29:6b:3c:ce:2f:96:0d:fb:be:af: f8:01:00:b4:46:04:ce:4a:86:29:29:1c:0c:26:1e:fd:e0:23: ee:92:28:0b:73:02:83:38:a9:14:54:62:45:ed:b6:91:78:f3: 6a:6d:74:86 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW9GinYrL2wL7qILK9eUrUn62v+4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAxMDAwMDM5WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzk3NTI4MjI2NDM2MjNkODUxN2Y3MTMxZjEzZDJjMDVm MDI3YTQ0OTU3NWQ3ZTAwNjE3Mjg4NmUzMmI4NDc1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvrdzmuiBv80bHWdzUQ4fq0huhwKho5Axf1ZnSH4Z44s/D 6emOoGsanUmehgW/G2HtvOFj7x3/cvFQZGjvtrWF3z8RbGP4x9Cex4kCaLO4UzUy P+2g9/2qPzOLm7Yd1FXi6t24vaON6W5AfzRnxCIW1EXLW/dy9Y9r/jN2DgxU/DCC 7cfDhELTM7phegkpLauUpz+m27hBXVbGQ2AJpoS8SlDk0Uqmlvwn0RZW8VGMUql9 TqzemrVOYwcOQF1Q4zor+CVwqpH5voYlohZNbIsVHpthiN6TbcuTbonwoPk6iUDn 8mP6obgK+KHlPW/IkZPsA7rTgxtYrqT1mKU9bcZfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHpEuvd2OC/EbiAFZQ1pfPJxhRM8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzJmMTI0M2U0LWRkNTYtNDNjMS05MGUwLWFlYzczZjFhOTQ4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXON4AwDQYJKoZIhvcNAQELBQADggEBAHhEDZLiDKu4eOG07KfBttJVJWvb FroPA6qsrC+D93bkKDpebQ+7i1hoGSzEMdUXwCm7kv7h9LuayzChfjgdFHXj1w9A Jx6Z9EujTTXEUF1YvWD4+kem7JsNap72DCqx16bIA4i3T5x98BPbGUcvFQKnC6+9 Rz5qzcTKFonL4hvGR+gh/aeudFDrjRYs/XtaRWoNOeyrbfhoquv8BaeVBcaO+dYD gbpvaDCxk02AxxJquoiIOKl/uCzATh0TwkD3RonjEQci+0VcBH3GVON0KWs8zi+W Dfu+r/gBALRGBM5KhikpHAwmHv3gI+6SKAtzAoM4qRRUYkXttpF482ptdIY= -----END CERTIFICATE-----Generated at Sun May 3 14:48:07 2026 by rpki-client