$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa File: 3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa (raw, json) Hash identifier: nYsyIEi3QHPeut8dBLkh599SU8EKuwtS3LReDIYVdzo= Subject key identifier: 7B:3D:C1:14:40:20:0E:41:12:51:B6:66:FD:D8:00:CF:03:A9:51:FF Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 06F831E58B84766E11E98841E9C5EC8E54534A53 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa Signing time: Fri 01 May 2026 00:00:36 +0000 ROA not before: Fri 01 May 2026 00:00:36 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:f8:31:e5:8b:84:76:6e:11:e9:88:41:e9:c5:ec:8e:54:53:4a:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 1 00:00:36 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=2763ad31278d264efb36755782d56c60a865a0d468802f40fe02dc3298653ca6, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9e:6c:a6:c4:b7:4b:a1:0d:fb:7c:ee:8e:e3: d7:8d:9f:63:2d:90:96:c0:c8:fc:d2:24:41:0a:dc: ea:51:9e:d6:e1:5a:55:ec:08:17:77:5e:ec:de:d1: 09:58:74:c5:65:53:3a:ce:fc:24:cc:6e:5c:b1:23: 06:b0:58:05:e1:e0:28:71:10:b1:5a:78:78:bf:b7: 52:51:7d:d0:c3:27:0c:28:8e:20:fa:8d:0b:26:7b: 83:10:ac:26:88:c9:4a:40:0d:2e:0f:66:1a:63:55: a7:0c:27:17:15:f8:bf:8c:da:a4:bd:32:22:b9:43: 0f:ed:5c:a2:be:39:93:61:74:b9:de:86:9d:bb:1a: 65:11:e9:d8:6d:22:0f:76:ba:b1:ee:82:00:79:3c: 54:1b:3e:70:84:90:ab:26:41:2e:c1:3c:84:dd:1f: 9c:f5:01:3b:c1:39:94:ec:89:0e:d3:1d:5c:96:89: 32:90:69:32:67:f2:e5:ff:5f:88:78:d1:be:2b:06: ae:83:e0:d2:15:7a:e3:55:13:1d:b3:45:ad:1c:75: 36:7e:4e:41:0a:a3:45:be:b6:65:25:e4:19:27:b8: 3e:87:f0:41:0e:bd:10:8e:0c:52:c0:d1:01:22:5f: b3:ba:87:6e:2d:ee:f1:05:cb:e8:02:86:11:25:85: b5:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3D:C1:14:40:20:0E:41:12:51:B6:66:FD:D8:00:CF:03:A9:51:FF X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 2e:47:d5:b0:2e:44:48:e8:4b:54:40:7b:6e:52:e3:bd:62:64: 2f:08:54:5f:9b:50:d5:37:03:25:a0:e3:0b:4a:22:9f:65:37: bd:7d:f2:05:cd:a0:46:16:65:e0:79:8c:a7:8b:41:a6:d6:6a: 6b:ee:fe:8c:5e:88:26:b6:59:5a:5d:45:64:ed:3c:4d:e8:11: 00:85:68:02:e1:60:1f:4e:58:20:cf:0d:71:1a:55:2f:93:e6: 67:93:b6:c0:7f:3f:04:21:25:58:ae:28:f2:b3:8d:f5:71:f3: 99:2f:76:e0:8e:86:13:f5:65:70:54:e1:3f:31:81:21:93:42: 89:4c:27:c7:0b:13:e9:82:a0:25:1b:ca:af:38:e0:fe:ac:ee: 6e:ff:8c:5c:69:26:2c:ae:ae:de:43:95:e7:cf:27:81:dc:d8: 17:6e:99:a9:86:bf:4b:5c:b6:6a:71:1a:9b:09:a2:67:d2:73: eb:78:ff:8f:df:50:5d:5f:19:b3:cf:e8:df:92:d6:ed:4b:5c: b8:ac:9f:77:8d:8b:80:a9:6a:91:5f:56:f9:81:77:19:d4:52: 70:fd:92:6a:73:ad:57:d8:5b:12:03:4c:86:f5:41:2b:12:22: 8c:36:5e:85:99:2b:2b:ae:ae:48:99:71:18:04:72:8a:49:b4: 16:e5:17:32 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBvgx5YuEdm4R6YhB6cXsjlRTSlMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAxMDAwMDM2WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzYzYWQzMTI3OGQyNjRlZmIzNjc1NTc4MmQ1NmM2MGE4 NjVhMGQ0Njg4MDJmNDBmZTAyZGMzMjk4NjUzY2E2MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgnmymxLdLoQ37fO6O49eNn2MtkJbAyPzSJEEK3OpRntbh WlXsCBd3Xuze0QlYdMVlUzrO/CTMblyxIwawWAXh4ChxELFaeHi/t1JRfdDDJwwo jiD6jQsme4MQrCaIyUpADS4PZhpjVacMJxcV+L+M2qS9MiK5Qw/tXKK+OZNhdLne hp27GmUR6dhtIg92urHuggB5PFQbPnCEkKsmQS7BPITdH5z1ATvBOZTsiQ7THVyW iTKQaTJn8uX/X4h40b4rBq6D4NIVeuNVEx2zRa0cdTZ+TkEKo0W+tmUl5BknuD6H 8EEOvRCODFLA0QEiX7O6h24t7vEFy+gChhElhbUzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUez3BFEAgDkESUbZm/dgAzwOpUf8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNlMGRhY2UzLTBlMmEtNDI1Mi04YzkyLTRjN2VlYzRjMzU4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBAC5H1bAuREjoS1RAe25S471iZC8I VF+bUNU3AyWg4wtKIp9lN7198gXNoEYWZeB5jKeLQabWamvu/oxeiCa2WVpdRWTt PE3oEQCFaALhYB9OWCDPDXEaVS+T5meTtsB/PwQhJViuKPKzjfVx85kvduCOhhP1 ZXBU4T8xgSGTQolMJ8cLE+mCoCUbyq844P6s7m7/jFxpJiyurt5DlefPJ4Hc2Bdu mamGv0tctmpxGpsJomfSc+t4/4/fUF1fGbPP6N+S1u1LXLisn3eNi4CpapFfVvmB dxnUUnD9kmpzrVfYWxIDTIb1QSsSIow2XoWZKyuurkiZcRgEcopJtBblFzI= -----END CERTIFICATE-----Generated at Sun May 3 14:48:16 2026 by rpki-client