$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa File: b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa (raw, json) Hash identifier: axTfJRoEtt8Q6RxWgYg52ixnGRCFGy+h4DW83E7a3HQ= Subject key identifier: 5D:AA:94:34:32:08:DB:59:76:A4:FC:60:A8:51:BB:A9:57:00:7D:3F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4CF1A193730C4922DB41F78FC68BA9E20B05E2D5 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa Signing time: Sat 02 May 2026 00:30:07 +0000 ROA not before: Sat 02 May 2026 00:30:07 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:f1:a1:93:73:0c:49:22:db:41:f7:8f:c6:8b:a9:e2:0b:05:e2:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:30:07 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=2b8e4caba5fecc4bd1884497812c7b66fa7983930c8b16d11d6e6db0705211f0, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a4:38:e5:f5:22:dd:61:66:61:62:1a:ae:16: a1:f9:49:59:d9:0e:9f:96:13:60:01:24:7c:da:01: f2:4f:ad:90:dc:8a:61:bf:30:24:14:e0:d7:f3:fd: 74:b1:34:df:6c:d5:63:4a:42:8b:93:05:58:33:f7: 61:28:be:59:24:bb:c7:6f:5d:3c:38:a7:b4:92:39: 88:9b:35:bd:66:4d:9b:48:9b:03:95:f3:6c:b5:30: 31:6a:aa:3a:38:7f:f3:fa:11:34:bd:0a:42:f7:20: c0:6f:f2:6b:d1:20:8f:f0:82:90:db:35:5f:b2:c6: 06:1e:f1:a8:d6:bb:20:1b:a4:68:df:f3:9a:1b:20: 6f:7a:f7:f7:7c:7d:36:cf:c5:b7:c0:4d:21:aa:a4: bf:56:fc:c4:57:e3:0c:e3:69:72:ab:6e:b9:e5:c5: 20:6e:a1:aa:e8:ac:ce:a3:f9:6b:54:33:9e:02:26: 5c:c7:eb:30:6b:00:a3:2b:84:de:c3:76:0b:cd:a5: 6a:44:b9:d9:3a:e1:1c:3c:e4:15:f4:fe:c9:fb:b0: 44:46:3d:5b:08:82:78:83:f3:31:93:85:c9:91:a3: e8:21:d4:ce:ee:06:cd:92:c8:c2:88:e6:d3:27:7e: 88:37:e2:fe:0b:98:6b:a6:37:9a:87:1a:64:3c:9c: 46:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:AA:94:34:32:08:DB:59:76:A4:FC:60:A8:51:BB:A9:57:00:7D:3F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.236.0/23 Signature Algorithm: sha256WithRSAEncryption 69:5b:4e:22:e5:6c:6b:6f:91:4a:70:5e:ab:3c:96:8d:1d:f4: 75:8d:b5:49:63:48:61:bf:41:24:fe:71:40:22:0d:c2:39:c6: fd:ec:2d:cb:25:b7:e5:e9:be:ee:b1:69:a8:ab:0a:14:c4:b0: ad:c0:30:73:f5:4d:c2:7d:cf:6a:d9:4e:13:8c:8d:4e:d2:fa: 6f:32:cb:63:35:27:0b:40:d8:1b:f3:0c:aa:11:fe:06:0b:2b: fa:8a:fa:bb:d2:2e:f6:53:e8:84:22:b9:d8:89:2a:0a:8b:ef: b7:f3:64:46:16:fb:19:47:7f:ad:35:2d:e5:43:c6:4e:27:92: 04:5d:82:07:86:bf:1e:a4:55:15:cd:21:93:4d:06:78:26:f7: 6f:25:51:11:4f:2b:73:8b:bc:91:5f:5a:90:a2:90:db:e9:ed: e0:1f:17:76:77:02:07:35:e6:0f:ec:4e:67:d2:e9:63:9f:63: 1c:60:e7:4c:a1:75:62:7e:ee:d1:ee:e7:a2:30:9a:08:e8:37: a0:c9:da:aa:86:ab:4a:3b:6e:94:3d:b8:0b:ae:50:c9:f2:75: d6:0f:0d:46:b9:97:70:4f:f7:29:c4:3b:16:e2:d2:c5:c8:5b: a4:11:33:80:50:12:5b:7c:57:b7:0c:90:29:d7:56:95:38:2e: 0a:5e:76:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTPGhk3MMSSLbQfePxoup4gsF4tUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAzMDA3WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjhlNGNhYmE1ZmVjYzRiZDE4ODQ0OTc4MTJjN2I2NmZh Nzk4MzkzMGM4YjE2ZDExZDZlNmRiMDcwNTIxMWYwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNpDjl9SLdYWZhYhquFqH5SVnZDp+WE2ABJHzaAfJPrZDc imG/MCQU4Nfz/XSxNN9s1WNKQouTBVgz92Eovlkku8dvXTw4p7SSOYibNb1mTZtI mwOV82y1MDFqqjo4f/P6ETS9CkL3IMBv8mvRII/wgpDbNV+yxgYe8ajWuyAbpGjf 85obIG969/d8fTbPxbfATSGqpL9W/MRX4wzjaXKrbrnlxSBuoarorM6j+WtUM54C JlzH6zBrAKMrhN7DdgvNpWpEudk64Rw85BX0/sn7sERGPVsIgniD8zGThcmRo+gh 1M7uBs2SyMKI5tMnfog34v4LmGumN5qHGmQ8nEavAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXaqUNDII21l2pPxgqFG7qVcAfT8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I0YmI5ODUxLWI1YWEtNDM3MC1iZmZlLTRmYzFmZDQxNDg1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX++wwDQYJKoZIhvcNAQELBQADggEBAGlbTiLlbGtvkUpwXqs8lo0d9HWN tUljSGG/QST+cUAiDcI5xv3sLcslt+Xpvu6xaairChTEsK3AMHP1TcJ9z2rZThOM jU7S+m8yy2M1JwtA2BvzDKoR/gYLK/qK+rvSLvZT6IQiudiJKgqL77fzZEYW+xlH f601LeVDxk4nkgRdggeGvx6kVRXNIZNNBngm928lURFPK3OLvJFfWpCikNvp7eAf F3Z3Agc15g/sTmfS6WOfYxxg50yhdWJ+7tHu56IwmgjoN6DJ2qqGq0o7bpQ9uAuu UMnyddYPDUa5l3BP9ynEOxbi0sXIW6QRM4BQElt8V7cMkCnXVpU4Lgpednc= -----END CERTIFICATE-----Generated at Sun May 3 14:48:11 2026 by rpki-client