$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa File: 59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa (raw, json) Hash identifier: cTVzhWaesVgzrxRGm3m84gDBNXWQccLT3MDTc4LIswk= Subject key identifier: 21:EF:62:D6:5A:6B:A2:76:66:82:CA:B8:04:9F:A9:94:FE:F1:36:0D Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7BED57AB17402E5AB5C3E8C280E2E7A83544E9E0 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa Signing time: Sat 02 May 2026 00:30:07 +0000 ROA not before: Sat 02 May 2026 00:30:07 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ed:57:ab:17:40:2e:5a:b5:c3:e8:c2:80:e2:e7:a8:35:44:e9:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:30:07 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=c468c70be018af896f53abe4011ab1fb3e147bc7bd2e84c2531eb2680dc24252, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:80:cc:be:89:f1:bc:45:47:88:c0:c2:7c:b9: c4:d1:a5:e3:9d:db:8e:f1:98:4b:86:c6:0a:3f:36: 2e:bd:35:04:60:e4:f7:f4:a6:3d:57:c8:cd:d5:c9: 14:dc:cd:19:e6:d2:0e:38:25:33:f6:c2:2e:fe:6f: da:7a:0f:b2:18:15:7f:78:55:16:ad:24:7c:0c:41: 13:8b:e0:82:b3:c8:f5:6a:65:9e:99:86:ca:ed:2a: 3c:4b:72:a4:d4:d4:9e:6e:18:94:c5:db:21:3a:8e: da:a7:10:c6:08:72:57:c4:86:ab:b2:e2:28:c0:84: a0:40:e6:c7:2a:90:f0:b7:61:49:a2:94:8e:65:a9: b1:c2:27:1d:bd:37:8d:a9:8b:a6:55:28:5c:e5:12: dd:51:8f:8c:0a:f0:2d:06:4d:29:65:55:f6:d1:eb: 1c:10:8d:f7:fc:a7:06:36:0b:41:cb:1e:8c:b8:4e: 93:c5:e0:6f:0d:db:e7:04:ce:18:eb:72:11:f1:f5: bc:84:c8:b2:50:36:da:49:a2:f2:41:42:af:4e:3e: d7:fe:ba:fc:35:fc:f4:40:b4:06:99:22:58:b5:b0: e4:50:55:d2:92:7f:64:83:c4:01:52:6f:61:dc:3c: ec:7f:67:38:94:fe:5b:1c:ff:f9:83:4f:c3:f3:0c: 39:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:EF:62:D6:5A:6B:A2:76:66:82:CA:B8:04:9F:A9:94:FE:F1:36:0D X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.220.0/24 Signature Algorithm: sha256WithRSAEncryption 84:c3:11:8b:3a:06:b2:c8:a9:e4:99:22:fb:3b:d1:f3:9a:66: 8f:67:7c:58:50:f8:de:e0:b3:36:b9:46:16:ba:45:58:b1:19: 0c:39:b2:1b:ba:ae:c5:a4:0f:93:32:ae:5d:b6:89:1a:35:ac: 39:f9:e2:97:5a:8c:d0:5c:5c:b0:0b:bd:f6:a1:cb:dc:3a:b3: 40:fa:c0:91:58:e6:d9:af:7b:71:c2:51:a2:6a:b3:e7:b6:e7: 8a:03:ac:08:39:cd:c0:a8:6e:66:24:a5:b9:69:cc:76:7f:5b: 6b:c9:db:6e:61:5b:94:9b:47:13:25:84:fc:e3:2b:99:80:e3: d4:63:6a:63:d2:96:29:9e:4a:ac:fe:8c:b6:dd:c1:ce:19:23: e8:34:68:25:1c:4c:fb:9d:92:82:3d:bf:e4:7e:6b:76:ce:73: 84:15:ca:30:83:e9:a7:c3:ea:28:e8:3a:34:8d:9c:55:0f:44: ac:7c:1d:02:6b:7d:73:2a:c3:81:0f:7d:e5:3b:c5:63:0b:11: de:15:fa:ff:8f:93:a8:2e:99:57:81:72:ee:ae:b0:09:51:1f: c1:e9:79:96:5c:e3:03:fa:70:37:7a:a7:59:4c:cd:f0:61:ae: 67:d8:45:6c:42:cc:26:46:59:63:1c:47:b6:84:ba:3e:67:9c: d6:92:e0:12 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe+1XqxdALlq1w+jCgOLnqDVE6eAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAzMDA3WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDY4YzcwYmUwMThhZjg5NmY1M2FiZTQwMTFhYjFmYjNl MTQ3YmM3YmQyZTg0YzI1MzFlYjI2ODBkYzI0MjUyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxgMy+ifG8RUeIwMJ8ucTRpeOd247xmEuGxgo/Ni69NQRg 5Pf0pj1XyM3VyRTczRnm0g44JTP2wi7+b9p6D7IYFX94VRatJHwMQROL4IKzyPVq ZZ6ZhsrtKjxLcqTU1J5uGJTF2yE6jtqnEMYIclfEhquy4ijAhKBA5scqkPC3YUmi lI5lqbHCJx29N42pi6ZVKFzlEt1Rj4wK8C0GTSllVfbR6xwQjff8pwY2C0HLHoy4 TpPF4G8N2+cEzhjrchHx9byEyLJQNtpJovJBQq9OPtf+uvw1/PRAtAaZIli1sORQ VdKSf2SDxAFSb2HcPOx/ZziU/lsc//mDT8PzDDk5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIe9i1lpronZmgsq4BJ+plP7xNg0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU5YWIyNjRlLTI4NGYtNGUzMC1iMmYwLWQ4NWZhNzNiNjJiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dwwDQYJKoZIhvcNAQELBQADggEBAITDEYs6BrLIqeSZIvs70fOaZo9n fFhQ+N7gsza5Rha6RVixGQw5shu6rsWkD5Myrl22iRo1rDn54pdajNBcXLALvfah y9w6s0D6wJFY5tmve3HCUaJqs+e254oDrAg5zcCobmYkpblpzHZ/W2vJ225hW5Sb RxMlhPzjK5mA49RjamPSlimeSqz+jLbdwc4ZI+g0aCUcTPudkoI9v+R+a3bOc4QV yjCD6afD6ijoOjSNnFUPRKx8HQJrfXMqw4EPfeU7xWMLEd4V+v+Pk6gumVeBcu6u sAlRH8HpeZZc4wP6cDd6p1lMzfBhrmfYRWxCzCZGWWMcR7aEuj5nnNaS4BI= -----END CERTIFICATE-----Generated at Sun May 3 16:11:14 2026 by rpki-client