$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: mRrv2jvWDJ9k8Emi4XKmhctWDzWthPOh/OpFT5uqy0o= Subject key identifier: 13:E0:63:18:1F:A3:4B:B2:AF:B3:B7:63:D2:D0:5D:2B:A3:21:57:7D Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3F24335480B791934871400660B71682CCC99D0D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Fri 01 May 2026 00:00:37 +0000 ROA not before: Fri 01 May 2026 00:00:37 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 May 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:24:33:54:80:b7:91:93:48:71:40:06:60:b7:16:82:cc:c9:9d:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 1 00:00:37 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=93730ba8a456f514df1bcf4f7cce70c93c59ccd54e7e02a2dad398d72dc2108f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bf:92:bc:a3:96:64:2c:aa:87:26:2f:1a:4c: ba:4b:60:96:35:69:68:3f:47:9b:9b:6c:98:08:eb: a2:4a:9c:5b:fe:12:59:89:48:4d:ef:ee:29:b1:7d: c6:dc:9d:f0:32:65:87:05:ce:31:91:6d:b6:6d:08: 41:3c:b8:81:fb:36:d1:c4:e7:b7:d3:9e:26:14:ca: bb:53:2b:e0:a0:d0:a9:fe:c4:37:50:aa:fa:25:bf: 7d:8a:c7:94:0c:98:c5:1a:4e:af:4a:f3:0b:36:64: 07:8a:d7:73:84:bf:35:8d:90:2e:07:05:5a:e8:15: bf:fc:40:f0:33:a6:11:97:a8:97:62:a4:17:01:ba: 36:57:9c:56:31:cc:5b:d7:ee:39:1a:02:86:1c:e1: cd:11:78:fe:f9:bb:6f:21:8a:db:90:ae:0b:40:1b: 88:f5:15:6b:49:9d:9f:c2:72:43:b9:5e:f1:3b:dd: d3:17:11:29:12:97:cc:76:73:46:33:cb:28:06:c8: c9:8c:ec:1d:e9:27:bb:d8:9d:15:70:a4:d5:63:8f: f9:2e:9d:82:80:c5:60:cc:e7:31:bd:bf:1f:28:ad: eb:76:3d:50:15:44:b9:a6:ea:2f:b2:dc:28:1c:7c: bd:58:c9:01:9a:57:3f:7d:c4:25:d4:fe:4e:e5:f3: f0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E0:63:18:1F:A3:4B:B2:AF:B3:B7:63:D2:D0:5D:2B:A3:21:57:7D X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:b7:c5:87:3a:57:35:de:a4:98:b4:f8:29:14:5c:36:a8:29: a7:14:cf:31:62:2d:76:a9:e5:68:fb:7e:91:3d:db:be:71:35: 76:df:a2:79:43:30:be:82:63:c5:34:f9:91:a6:27:68:6e:fd: ae:c3:13:29:d5:c6:6e:07:30:89:42:5f:2d:df:ae:0b:17:63: 3b:70:d5:3b:e5:35:80:14:8e:9a:46:bf:93:ae:5e:7b:24:6b: b0:7e:a8:19:e5:0a:b1:6d:a4:3a:74:9b:fd:7f:ed:ec:23:6b: 01:31:51:b1:40:39:c1:1d:c8:cd:cf:1e:fb:c7:33:a3:d0:ca: 12:0a:44:12:cb:c2:67:c4:77:bb:b8:e4:7f:5f:1f:80:98:e2: cd:c3:9c:be:83:1f:ba:4b:eb:e2:80:a4:46:50:17:34:23:35: 2b:b0:d9:0d:7d:03:c1:eb:da:c0:0f:04:1a:f3:75:79:c0:33: 55:16:af:5d:98:73:84:13:1b:fb:cb:fb:37:95:a6:f1:f8:48: 88:82:6d:42:39:bd:38:ce:d1:c7:f5:75:79:70:db:f7:ba:6e: cd:a5:ab:37:ad:95:71:10:10:99:ca:21:cf:f0:38:eb:cb:18: 23:eb:24:37:9b:7e:8a:d9:1a:1b:ee:11:ec:f9:05:b5:3d:01: 39:40:0e:64 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPyQzVIC3kZNIcUAGYLcWgszJnQ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAxMDAwMDM3WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzczMGJhOGE0NTZmNTE0ZGYxYmNmNGY3Y2NlNzBjOTNj NTljY2Q1NGU3ZTAyYTJkYWQzOThkNzJkYzIxMDhmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+v5K8o5ZkLKqHJi8aTLpLYJY1aWg/R5ubbJgI66JKnFv+ ElmJSE3v7imxfcbcnfAyZYcFzjGRbbZtCEE8uIH7NtHE57fTniYUyrtTK+Cg0Kn+ xDdQqvolv32Kx5QMmMUaTq9K8ws2ZAeK13OEvzWNkC4HBVroFb/8QPAzphGXqJdi pBcBujZXnFYxzFvX7jkaAoYc4c0ReP75u28hituQrgtAG4j1FWtJnZ/CckO5XvE7 3dMXESkSl8x2c0YzyygGyMmM7B3pJ7vYnRVwpNVjj/kunYKAxWDM5zG9vx8oret2 PVAVRLmm6i+y3CgcfL1YyQGaVz99xCXU/k7l8/DpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE+BjGB+jS7Kvs7dj0tBdK6MhV30wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAI63xYc6VzXepJi0+CkUXDaoKacU zzFiLXap5Wj7fpE9275xNXbfonlDML6CY8U0+ZGmJ2hu/a7DEynVxm4HMIlCXy3f rgsXYztw1TvlNYAUjppGv5OuXnska7B+qBnlCrFtpDp0m/1/7ewjawExUbFAOcEd yM3PHvvHM6PQyhIKRBLLwmfEd7u45H9fH4CY4s3DnL6DH7pL6+KApEZQFzQjNSuw 2Q19A8Hr2sAPBBrzdXnAM1UWr12Yc4QTG/vL+zeVpvH4SIiCbUI5vTjO0cf1dXlw 2/e6bs2lqzetlXEQEJnKIc/wOOvLGCPrJDebforZGhvuEez5BbU9ATlADmQ= -----END CERTIFICATE-----Generated at Sun May 3 16:53:25 2026 by rpki-client