$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/addfda24-421e-4b45-80e1-dd5a255777c5.roa File: addfda24-421e-4b45-80e1-dd5a255777c5.roa (raw, json) Hash identifier: TH/gy++kySB25g/npC+ESFJ+a1lPTveUzayQfcK5nc4= Subject key identifier: CF:65:61:2D:7C:52:B0:69:1C:2D:36:31:8E:52:85:F2:3E:C2:4A:59 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3568337CF1A807AEB49278B535C4F44F2FF92E7D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/addfda24-421e-4b45-80e1-dd5a255777c5.roa Signing time: Sat 02 May 2026 00:20:09 +0000 ROA not before: Sat 02 May 2026 00:20:09 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:68:33:7c:f1:a8:07:ae:b4:92:78:b5:35:c4:f4:4f:2f:f9:2e:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:20:09 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=e8827569e35b1023b804cc9d89fa693a73e1e99dc791f99b1ea8f4ab8dd427ea, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:36:aa:63:de:ec:b9:fa:d6:cf:c1:24:00:b7: c8:bf:59:7f:26:e9:2c:88:20:f0:f6:0b:f8:5d:75: ca:e4:cf:20:cb:35:26:3d:04:75:3c:30:07:d5:0f: 95:6e:25:13:0c:04:1e:f8:ce:8a:db:78:05:79:3a: 9c:e2:fa:99:a8:db:74:88:7b:79:09:9e:1e:1f:3a: e9:9f:9c:8f:91:8b:c5:8b:da:31:e1:b6:0b:34:8a: 5f:5a:eb:a1:4c:7c:41:ea:26:c0:d0:68:0e:77:f2: be:82:a6:d6:e5:fb:2b:85:c7:0e:7a:14:67:31:2f: a1:2b:d3:4c:9d:ac:33:2d:62:d8:d8:1f:e6:8d:2f: 24:89:87:c2:2a:a4:ba:5a:b1:f7:f8:c8:82:9a:ef: 4c:bd:e0:fb:2b:19:10:7e:8d:30:e6:52:a1:b7:54: 06:a0:e4:d4:94:16:68:cc:eb:c0:1f:6c:b4:c1:e4: 2b:ae:ea:10:f3:f4:0f:8e:64:59:5f:41:0f:41:53: b2:ff:5d:a6:b0:15:9e:d8:14:22:45:b2:0e:a7:51: 14:03:21:c0:de:b9:31:1b:59:5a:ae:d8:a6:00:fe: 82:8e:63:a8:c5:3e:32:68:a7:89:bd:69:76:d6:ac: 94:82:88:55:95:d0:c6:0e:3f:28:e4:6e:f9:89:7d: 7f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:65:61:2D:7C:52:B0:69:1C:2D:36:31:8E:52:85:F2:3E:C2:4A:59 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/addfda24-421e-4b45-80e1-dd5a255777c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.228.0/22 Signature Algorithm: sha256WithRSAEncryption 11:78:ff:cc:89:9f:ec:a6:96:b3:cf:86:6d:86:e5:40:09:32: c8:af:28:5b:32:0d:b6:af:f8:79:70:a3:3f:92:99:14:d6:2b: 08:1a:71:17:4a:22:2b:ca:b7:cb:2e:ce:5a:88:17:19:af:37: eb:a5:58:9f:80:23:1b:ec:c0:8b:ee:47:48:4a:5d:b5:70:54: 04:1e:b9:58:cc:18:aa:e0:0a:2f:93:ba:7d:fc:67:ce:31:c3: 3b:9e:8d:56:c4:98:ac:76:63:c9:14:a7:e9:b3:df:b1:7b:d9: 08:f1:03:be:e2:02:c5:4d:72:e8:bd:9e:09:61:68:51:6f:fc: 4a:ff:63:dc:ee:db:73:a2:41:d4:4d:bd:bc:4e:39:22:3b:98: 2b:db:ff:e7:9e:aa:0a:29:3e:cd:8a:f0:1b:31:a2:e7:3c:9a: 34:06:22:3c:d6:7f:62:d1:6b:f4:2b:18:c4:37:f4:25:ea:86: 35:0c:18:60:83:95:05:b3:2d:0e:a8:1e:b0:7f:9c:27:d6:88: 0a:6b:cf:25:74:ef:8c:90:69:1a:a6:88:bc:8e:ef:7f:de:95: 1b:bc:a9:b9:4e:d5:59:70:a6:f5:98:24:e9:b9:e2:2b:3c:71: 2d:80:e8:1d:58:ca:2e:0f:e7:c2:29:14:32:2a:0d:35:6f:49: c9:e7:3e:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNWgzfPGoB660kni1NcT0Ty/5Ln0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAyMDA5WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlODgyNzU2OWUzNWIxMDIzYjgwNGNjOWQ4OWZhNjkzYTcz ZTFlOTlkYzc5MWY5OWIxZWE4ZjRhYjhkZDQyN2VhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKNqpj3uy5+tbPwSQAt8i/WX8m6SyIIPD2C/hddcrkzyDL NSY9BHU8MAfVD5VuJRMMBB74zorbeAV5Opzi+pmo23SIe3kJnh4fOumfnI+Ri8WL 2jHhtgs0il9a66FMfEHqJsDQaA538r6Cptbl+yuFxw56FGcxL6Er00ydrDMtYtjY H+aNLySJh8IqpLpasff4yIKa70y94PsrGRB+jTDmUqG3VAag5NSUFmjM68AfbLTB 5Cuu6hDz9A+OZFlfQQ9BU7L/XaawFZ7YFCJFsg6nURQDIcDeuTEbWVqu2KYA/oKO Y6jFPjJop4m9aXbWrJSCiFWV0MYOPyjkbvmJfX9TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUz2VhLXxSsGkcLTYxjlKF8j7CSlkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2FkZGZkYTI0LTQyMWUtNGI0NS04MGUxLWRkNWEyNTU3NzdjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX++QwDQYJKoZIhvcNAQELBQADggEBABF4/8yJn+ymlrPPhm2G5UAJMsiv KFsyDbav+Hlwoz+SmRTWKwgacRdKIivKt8suzlqIFxmvN+ulWJ+AIxvswIvuR0hK XbVwVAQeuVjMGKrgCi+Tun38Z84xwzuejVbEmKx2Y8kUp+mz37F72QjxA77iAsVN cui9nglhaFFv/Er/Y9zu23OiQdRNvbxOOSI7mCvb/+eeqgopPs2K8Bsxouc8mjQG IjzWf2LRa/QrGMQ39CXqhjUMGGCDlQWzLQ6oHrB/nCfWiAprzyV074yQaRqmiLyO 73/elRu8qblO1VlwpvWYJOm54is8cS2A6B1Yyi4P58IpFDIqDTVvScnnPts= -----END CERTIFICATE-----Generated at Sun May 3 15:23:14 2026 by rpki-client