$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/7c541838-12b7-470a-b044-f31d3ab72ede.roa File: 7c541838-12b7-470a-b044-f31d3ab72ede.roa (raw, json) Hash identifier: LmTffo5WZXPUt4+ZL7JtTOap3VHLtx8BdENOahn7zwM= Subject key identifier: CF:A9:76:AE:5B:62:A9:C2:BB:74:54:1E:81:24:64:AA:53:C8:84:5F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 35811421E22B8B525867F8DB7E8F3EA9B8BCC6 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/7c541838-12b7-470a-b044-f31d3ab72ede.roa Signing time: Sat 02 May 2026 00:30:39 +0000 ROA not before: Sat 02 May 2026 00:30:39 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 May 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:81:14:21:e2:2b:8b:52:58:67:f8:db:7e:8f:3e:a9:b8:bc:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:30:39 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=49dcfcbaa58937c2780efb167077fb472efb169bc1bb778caaeba84c5af2f267, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:09:b7:1d:01:61:5a:79:af:89:50:62:e8:8a: 9b:ab:83:e3:03:83:5e:46:fc:fe:c5:7b:7c:01:8f: aa:74:0e:db:7c:68:ec:86:37:88:20:9b:6a:5c:45: 2d:e7:52:5d:e9:33:56:06:61:75:22:1e:7c:9c:c7: 2f:e2:9f:41:90:99:3b:58:29:71:36:e9:17:ea:c9: b3:4f:6b:90:cb:e8:5d:8c:f1:88:9f:fa:0d:c4:b8: 23:0d:a6:7c:13:0f:c4:60:d2:2f:33:09:38:9d:6e: 6d:04:48:83:92:22:fd:08:3d:e0:75:49:d3:c0:da: 26:bd:08:71:0b:30:7d:ba:9b:59:59:1c:11:88:2e: 9c:0b:71:23:20:cf:fc:94:78:e5:bc:45:99:c1:a0: 53:5d:4f:03:bb:21:0c:c7:82:66:21:39:e5:3c:76: 72:44:a7:f5:d7:aa:2c:2a:05:61:e7:f1:34:a6:bc: be:4e:9e:82:10:28:f4:8d:66:72:e1:38:a6:9f:6d: d0:f0:35:22:0e:09:51:88:f1:a8:9a:4a:a3:18:4c: 58:56:d1:14:f6:ce:66:8a:e2:81:22:63:71:a9:37: d4:95:80:5d:b4:4b:c7:1b:77:24:19:4f:a8:3a:f2: 5d:55:71:4e:79:0d:32:c0:d0:d7:0d:ca:ce:d6:07: 00:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:A9:76:AE:5B:62:A9:C2:BB:74:54:1E:81:24:64:AA:53:C8:84:5F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/7c541838-12b7-470a-b044-f31d3ab72ede.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.208.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:91:2a:e2:fe:e8:05:e2:ec:a4:71:00:b3:3b:44:bf:ea:db: 63:c1:bd:cf:9e:03:f5:56:22:1c:bf:e4:dd:4a:7a:c1:36:4a: 08:5f:fb:73:65:2e:36:0a:83:8f:12:49:d5:a3:8d:d8:a6:38: f2:34:8b:30:2c:a2:df:0f:5a:22:ec:c3:13:53:1f:fe:04:45: 1b:0d:db:1b:61:f3:09:ca:43:c1:5e:64:c1:00:44:af:62:05: b7:23:18:01:bb:a5:0e:ed:01:15:1f:5b:a5:bb:21:19:d9:fc: 1a:8c:d1:bd:67:73:73:b6:5a:b3:d1:70:dc:15:96:d4:1d:60: 7d:7b:02:74:34:9d:a5:e0:d2:f5:95:24:de:ce:f1:46:6b:53: a1:79:d2:72:c9:47:24:8c:f2:f9:d1:ec:62:79:49:2f:ae:55: 62:08:2d:b5:e9:d6:a9:e7:f7:5c:07:c6:7b:f8:95:ce:32:fb: e6:0b:08:30:eb:b7:ea:f7:da:c5:5e:1f:d5:d4:6e:27:c9:24: 6c:07:45:20:1b:6d:50:60:a3:18:0d:58:c1:bd:0c:d3:6b:43: 17:cf:f0:1c:d5:b6:52:48:3c:3c:09:64:35:aa:e7:be:fb:01: 81:7f:36:ff:ee:73:8d:96:d3:1b:58:93:16:67:b6:a7:84:59: e2:a7:53:f6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITNYEUIeIri1JYZ/jbfo8+qbi8xjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkNThmYTJjY2I2NmIxYjBlYWUyZDZlM2Y1YzQ2ZTljMmYy ZDFkMzA5ZGZiZDlkMmFmNTAeFw0yNjA1MDIwMDMwMzlaFw0yNjA3MzEyMzU5NTla MHoxSTBHBgNVBAUTQDQ5ZGNmY2JhYTU4OTM3YzI3ODBlZmIxNjcwNzdmYjQ3MmVm YjE2OWJjMWJiNzc4Y2FhZWJhODRjNWFmMmYyNjcxLTArBgNVBAMTJDQyNTE5ZWI5 LTk1NzktNDk3OS1iZGFmLTE2NGFiZDBlMjkwZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAL4Jtx0BYVp5r4lQYuiKm6uD4wODXkb8/sV7fAGPqnQO23xo 7IY3iCCbalxFLedSXekzVgZhdSIefJzHL+KfQZCZO1gpcTbpF+rJs09rkMvoXYzx iJ/6DcS4Iw2mfBMPxGDSLzMJOJ1ubQRIg5Ii/Qg94HVJ08DaJr0IcQswfbqbWVkc EYgunAtxIyDP/JR45bxFmcGgU11PA7shDMeCZiE55Tx2ckSn9deqLCoFYefxNKa8 vk6eghAo9I1mcuE4pp9t0PA1Ig4JUYjxqJpKoxhMWFbRFPbOZorigSJjcak31JWA XbRLxxt3JBlPqDryXVVxTnkNMsDQ1w3KztYHAKMCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTPqXauW2Kpwrt0VB6BJGSqU8iEXzAfBgNVHSMEGDAWgBS8k65xD68UIjYI L47Za1bLqdUCjTAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzEwNTliNTJkLTg0 NmEtNGNiZS1hN2RiLTc5NmYxZGQ4YjkyOS9kNThmYTJjY2I2NmIxYjBlYWUyZDZl M2Y1YzQ2ZTljMmYyZDFkMzA5ZGZiZDlkMmFmNS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iOGExZGQyNS1jMzEzLTRmMjUtYWMyMS1iZjU1 NTE0ZDljN2QvN2M1NDE4MzgtMTJiNy00NzBhLWIwNDQtZjMxZDNhYjcyZWRlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEt YmY1NTUxNGQ5YzdkL2F4c09yaTF1UDF4RzZjTHkwZE1KMzcyZEt2VS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEARf50DANBgkqhkiG9w0BAQsFAAOCAQEAPZEq4v7oBeLspHEAsztEv+rbY8G9 z54D9VYiHL/k3Up6wTZKCF/7c2UuNgqDjxJJ1aON2KY48jSLMCyi3w9aIuzDE1Mf /gRFGw3bG2HzCcpDwV5kwQBEr2IFtyMYAbulDu0BFR9bpbshGdn8GozRvWdzc7Za s9Fw3BWW1B1gfXsCdDSdpeDS9ZUk3s7xRmtToXnScslHJIzy+dHsYnlJL65VYggt tenWqef3XAfGe/iVzjL75gsIMOu36vfaxV4f1dRuJ8kkbAdFIBttUGCjGA1Ywb0M 02tDF8/wHNW2Ukg8PAlkNarnvvsBgX82/+5zjZbTG1iTFme2p4RZ4qdT9g== -----END CERTIFICATE-----Generated at Sun May 3 17:00:03 2026 by rpki-client