$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/99e36b6b-0208-44a2-a5f3-df3bd254fcda.roa File: 99e36b6b-0208-44a2-a5f3-df3bd254fcda.roa (raw, json) Hash identifier: dkpbwyXLvDIS8ed2L1hRjpRIzCebp7+uluSeyiAn7Rs= Subject key identifier: 5A:AC:F2:5B:37:EC:87:DE:A3:D1:37:FF:2A:1A:81:1A:05:DB:2C:F3 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 46B9A330E15A9C93BD9F43B81F085990089113A4 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/99e36b6b-0208-44a2-a5f3-df3bd254fcda.roa Signing time: Sat 02 May 2026 00:30:12 +0000 ROA not before: Sat 02 May 2026 00:30:12 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:b9:a3:30:e1:5a:9c:93:bd:9f:43:b8:1f:08:59:90:08:91:13:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:30:12 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=97f003afbf788c3d6a780dea4857a4f034c4d0c81377e6a9161a8133b6366195, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:8e:7b:9f:9c:cd:8c:fc:a0:23:5f:d4:fc:55: 6b:66:b7:4e:cf:2a:12:ec:b9:ec:fd:5b:ef:43:fe: 0d:37:11:cd:cf:33:8b:d0:21:cc:29:c1:43:9e:5d: 6e:80:59:d9:b2:af:d5:fd:09:cb:48:24:44:5a:02: 96:c4:a2:a0:10:de:55:67:c2:4f:ca:71:95:c0:ca: ec:ad:65:70:ce:28:10:30:65:f0:cc:66:45:fc:19: a2:ca:72:1d:c2:4b:12:20:0d:38:cb:46:2a:72:bd: 61:c5:2e:fd:44:55:1d:46:d0:a3:76:a8:9e:24:2f: 02:ae:72:f7:8d:8c:af:91:c7:c2:12:0b:52:39:e4: 93:be:74:e8:19:25:7a:96:bf:6b:cf:cf:64:ae:db: 5b:33:39:1a:9a:0a:26:9b:f0:e5:2b:1f:c5:c4:8c: 65:ab:cf:60:4a:47:17:5d:27:ce:0a:0d:0b:99:16: 74:a6:f9:99:b2:78:a2:29:e4:c2:e4:83:73:06:79: a4:d5:d0:8c:b9:ed:86:bd:33:e0:0f:6b:16:30:2b: e9:61:84:5c:ff:6c:55:23:d5:e7:0b:60:6b:69:d8: c6:11:cc:79:a5:39:d8:fa:6f:90:b4:70:8a:86:89: cb:e3:c2:53:a3:33:0e:9d:5c:51:78:84:fa:65:c1: e1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:AC:F2:5B:37:EC:87:DE:A3:D1:37:FF:2A:1A:81:1A:05:DB:2C:F3 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/99e36b6b-0208-44a2-a5f3-df3bd254fcda.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.184.0/24 Signature Algorithm: sha256WithRSAEncryption 52:3c:c7:c8:59:ab:25:4e:36:85:57:ce:41:6e:8f:bf:4c:be: 96:c9:fa:8a:44:ce:6a:c6:a8:ff:70:8b:2e:84:02:a8:23:6e: cf:25:83:60:eb:da:44:80:c3:a6:fe:83:fb:fb:35:10:e9:09: 1e:5e:68:6f:6a:0c:0c:47:31:f5:dc:b7:6f:23:92:95:31:fe: fe:d8:bd:1f:ef:98:24:44:1d:4c:08:75:dc:6a:95:c8:58:e1: b2:0c:ff:80:1f:1a:28:ec:78:7e:f1:4d:e4:40:46:ca:2d:67: 1e:56:72:42:ed:7e:06:a2:b4:b6:59:3c:4b:ad:48:d7:17:7e: 05:c9:dd:af:ab:2c:b7:20:1b:f0:3c:aa:a7:19:c8:5e:4c:8a: fd:db:f7:ad:da:70:22:17:22:cb:03:b5:46:90:1f:eb:a6:1b: e0:2f:cf:bf:c0:ab:25:51:53:ef:23:70:67:49:86:2f:74:78: 60:a6:3f:b9:13:36:0d:fe:b6:4a:15:6d:b4:dc:5f:62:b7:6d: b9:e5:8e:a7:a2:c8:c8:8b:41:42:25:99:0d:7e:6b:32:0b:41: 3e:98:12:0b:64:05:1b:a1:10:8b:79:d7:59:85:42:85:11:d5: 66:00:b9:22:83:c2:ea:ab:d0:d0:bb:a8:71:a7:63:0f:bd:10: d0:c3:89:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURrmjMOFanJO9n0O4HwhZkAiRE6QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAzMDEyWhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2YwMDNhZmJmNzg4YzNkNmE3ODBkZWE0ODU3YTRmMDM0 YzRkMGM4MTM3N2U2YTkxNjFhODEzM2I2MzY2MTk1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPjnufnM2M/KAjX9T8VWtmt07PKhLsuez9W+9D/g03Ec3P M4vQIcwpwUOeXW6AWdmyr9X9CctIJERaApbEoqAQ3lVnwk/KcZXAyuytZXDOKBAw ZfDMZkX8GaLKch3CSxIgDTjLRipyvWHFLv1EVR1G0KN2qJ4kLwKucveNjK+Rx8IS C1I55JO+dOgZJXqWv2vPz2Su21szORqaCiab8OUrH8XEjGWrz2BKRxddJ84KDQuZ FnSm+ZmyeKIp5MLkg3MGeaTV0Iy57Ya9M+APaxYwK+lhhFz/bFUj1ecLYGtp2MYR zHmlOdj6b5C0cIqGicvjwlOjMw6dXFF4hPplweEzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWqzyWzfsh96j0Tf/KhqBGgXbLPMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk5ZTM2YjZiLTAyMDgtNDRhMi1hNWYzLWRmM2JkMjU0ZmNkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37gwDQYJKoZIhvcNAQELBQADggEBAFI8x8hZqyVONoVXzkFuj79MvpbJ +opEzmrGqP9wiy6EAqgjbs8lg2Dr2kSAw6b+g/v7NRDpCR5eaG9qDAxHMfXct28j kpUx/v7YvR/vmCREHUwIddxqlchY4bIM/4AfGijseH7xTeRARsotZx5WckLtfgai tLZZPEutSNcXfgXJ3a+rLLcgG/A8qqcZyF5Miv3b963acCIXIssDtUaQH+umG+Av z7/AqyVRU+8jcGdJhi90eGCmP7kTNg3+tkoVbbTcX2K3bbnljqeiyMiLQUIlmQ1+ azILQT6YEgtkBRuhEIt511mFQoUR1WYAuSKDwuqr0NC7qHGnYw+9ENDDiQ0= -----END CERTIFICATE-----Generated at Sun May 3 15:22:52 2026 by rpki-client