$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa File: 951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa (raw, json) Hash identifier: 08lhjmh3LgB+3Pk20cYon14M6v6aTE6ewOyUnB8Zyp8= Subject key identifier: 6B:E1:7F:CD:C8:21:5D:F0:A5:DB:D5:08:7A:76:C7:01:8F:34:90:90 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5FDF0E5A29A96CDB2B27B32CBF43504CB4A59942 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa Signing time: Sat 02 May 2026 00:30:41 +0000 ROA not before: Sat 02 May 2026 00:30:41 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:df:0e:5a:29:a9:6c:db:2b:27:b3:2c:bf:43:50:4c:b4:a5:99:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:30:41 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=653a71f9779ec321dd7ba3478d8f969b2a8376ef8420a12e0863fad73fdac17b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1e:b3:7d:34:62:19:8e:7d:1c:83:4c:da:ba: d7:e2:f7:55:db:85:e3:90:87:10:97:2b:dc:03:52: c0:08:e1:df:db:61:1e:04:6f:5b:e3:a2:ae:52:9f: ca:22:f2:b3:cf:5f:5a:a2:ec:fe:42:ac:78:45:66: 81:9d:69:35:e7:17:67:6e:78:db:54:82:41:8b:40: 83:5e:17:f0:90:89:29:72:8d:c9:73:0c:4c:ca:fe: 94:76:27:ab:6a:c3:b6:18:0b:cc:36:4c:2c:fe:83: ab:6b:40:f7:f3:a9:34:b7:94:77:53:f9:7b:fe:4e: db:0f:44:ad:c1:4c:07:4f:69:fd:49:16:e3:5b:84: 15:03:1b:b3:d7:aa:ba:71:11:a7:d3:e6:c1:40:a2: c5:e1:57:95:36:92:3a:69:6e:81:fe:9e:a0:ee:09: 26:fd:f9:aa:83:a9:ec:42:67:59:65:33:aa:fb:b2: e9:58:13:ce:fa:59:bd:f7:44:40:5d:9b:25:2f:4c: 7c:d2:99:33:a0:11:73:c4:bf:d6:d5:eb:78:cb:5a: 22:a4:8e:6b:7f:d4:02:f8:01:6f:4f:f8:b5:67:15: 28:7a:cb:f8:a4:60:5f:cd:4d:23:48:c7:e4:e3:02: 3b:4b:57:ff:e6:89:68:1a:61:17:66:c1:30:a0:0f: 4c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:E1:7F:CD:C8:21:5D:F0:A5:DB:D5:08:7A:76:C7:01:8F:34:90:90 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.218.0/23 Signature Algorithm: sha256WithRSAEncryption 95:75:63:3f:df:12:57:12:bd:95:59:f6:fa:67:e1:a2:cb:c9: 4f:49:97:d6:31:ee:77:d1:dc:8c:24:95:fa:d3:a0:08:41:12: 8d:4c:71:e7:a7:a3:82:65:84:42:5b:c2:90:c9:da:0f:c7:6d: 3b:60:04:d0:1f:a8:87:f6:77:f4:e7:6f:0f:33:76:68:86:8e: a7:49:3c:be:1d:db:19:36:77:06:1e:e8:c4:63:31:27:ce:eb: 6e:44:d3:3a:67:97:6f:93:12:a0:fa:10:b9:88:18:d2:b1:71: 55:f7:57:3f:12:f1:79:c4:6b:7a:58:14:8a:75:69:03:de:f3: e1:e2:e4:55:ce:77:4b:7b:e7:bc:73:db:ec:7b:5f:54:23:9d: d2:83:48:5f:4d:0f:25:b0:d0:82:e3:df:05:ba:f7:62:1b:1e: 4b:75:37:a5:de:2d:f1:f9:4e:c6:a1:57:7e:d3:bd:ef:b5:d6: c4:01:04:8a:fe:ba:c1:ed:8b:1d:c3:d2:6a:dd:8d:95:1c:a5: ff:95:ff:a6:81:d3:20:06:a8:3c:ad:8a:84:f5:22:98:a1:70: ba:08:42:73:e7:52:05:72:02:26:e3:10:d0:71:fa:92:62:7c: 7a:9f:62:c8:4a:8e:c8:af:50:fc:00:cb:6f:2f:a9:ac:b4:f1: ef:24:39:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX98OWimpbNsrJ7Msv0NQTLSlmUIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAzMDQxWhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NTNhNzFmOTc3OWVjMzIxZGQ3YmEzNDc4ZDhmOTY5YjJh ODM3NmVmODQyMGExMmUwODYzZmFkNzNmZGFjMTdiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkHrN9NGIZjn0cg0zautfi91XbheOQhxCXK9wDUsAI4d/b YR4Eb1vjoq5Sn8oi8rPPX1qi7P5CrHhFZoGdaTXnF2dueNtUgkGLQINeF/CQiSly jclzDEzK/pR2J6tqw7YYC8w2TCz+g6trQPfzqTS3lHdT+Xv+TtsPRK3BTAdPaf1J FuNbhBUDG7PXqrpxEafT5sFAosXhV5U2kjppboH+nqDuCSb9+aqDqexCZ1llM6r7 sulYE876Wb33REBdmyUvTHzSmTOgEXPEv9bV63jLWiKkjmt/1AL4AW9P+LVnFSh6 y/ikYF/NTSNIx+TjAjtLV//miWgaYRdmwTCgD0wXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUa+F/zcghXfCl29UIenbHAY80kJAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk1MWI2NmYwLTg5OTMtNDdkMi05YmY1LWU4NWY0YWQ1ZTMyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+dowDQYJKoZIhvcNAQELBQADggEBAJV1Yz/fElcSvZVZ9vpn4aLLyU9J l9Yx7nfR3IwklfrToAhBEo1Mceeno4JlhEJbwpDJ2g/HbTtgBNAfqIf2d/Tnbw8z dmiGjqdJPL4d2xk2dwYe6MRjMSfO625E0zpnl2+TEqD6ELmIGNKxcVX3Vz8S8XnE a3pYFIp1aQPe8+Hi5FXOd0t757xz2+x7X1QjndKDSF9NDyWw0ILj3wW692IbHkt1 N6XeLfH5TsahV37Tve+11sQBBIr+usHtix3D0mrdjZUcpf+V/6aB0yAGqDytioT1 IpihcLoIQnPnUgVyAibjENBx+pJifHqfYshKjsivUPwAy28vqay08e8kOXE= -----END CERTIFICATE-----Generated at Sun May 3 16:11:13 2026 by rpki-client