$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa File: b59643bf-eb80-414a-aca0-653646d46e07.roa (raw, json) Hash identifier: esZyf/gm1+J4EFKvdo1fBz+QWyWFofVhhWFu0VlyOxc= Subject key identifier: C6:9D:55:2D:E1:FD:BA:1C:19:18:DD:49:DC:C2:F5:D2:AE:C9:D7:B5 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6873D91F3D8DAE24CBBF3A0698F46BE8C4106F2E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa Signing time: Sat 16 May 2026 00:00:32 +0000 ROA not before: Sat 16 May 2026 00:00:32 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 199.127.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 19 May 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:73:d9:1f:3d:8d:ae:24:cb:bf:3a:06:98:f4:6b:e8:c4:10:6f:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 16 00:00:32 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=4159b8017e48c2725b83ddfcc3b6cfdd0cb58c25c6affc19748b1ffa1566734d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:23:a9:07:71:c9:41:4f:30:a0:af:78:45:8f: 46:bb:8c:e3:e8:a6:fb:39:d1:6b:95:cd:76:85:86: bb:95:d9:17:3c:5b:b3:d0:08:6e:42:7e:37:f7:ad: f3:2e:d3:9e:dd:a5:90:bf:b9:01:0c:36:5d:c5:ff: 66:87:82:45:e7:c4:e2:cf:6e:6e:a4:50:0d:af:81: b7:bb:f4:45:78:81:83:81:65:67:b5:a9:ec:93:5c: 36:31:8b:e3:47:57:92:65:1a:08:9d:e4:b1:00:e1: 47:87:39:cf:ce:59:ae:cb:a2:f6:f7:7a:9c:eb:1e: c7:3b:9c:f4:e5:70:86:2b:90:1a:f0:40:1f:1b:7d: 5f:88:68:47:cf:e8:3b:a3:ea:b5:4c:35:88:ef:02: c4:6a:0c:be:18:2d:1e:53:1e:34:4d:c3:23:5d:40: 45:9a:9f:61:76:3f:bc:6b:98:eb:4c:2e:0a:5c:79: 84:8c:3b:53:ff:62:51:9b:fe:f0:5c:84:6f:36:75: 3d:9d:6b:7c:5a:85:86:ab:62:26:4d:ef:c7:5e:bb: 07:55:1a:f4:13:34:b3:33:de:1a:02:39:05:3f:19: 33:f3:83:19:91:de:c9:fa:de:30:41:7b:4a:79:a7: e2:e0:24:45:4b:35:b2:f4:51:36:0c:01:e9:04:5c: 65:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:9D:55:2D:E1:FD:BA:1C:19:18:DD:49:DC:C2:F5:D2:AE:C9:D7:B5 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.127.232.0/22 Signature Algorithm: sha256WithRSAEncryption 42:51:1c:04:9f:5e:29:6f:aa:86:ee:37:b1:22:43:ab:ed:05: 5d:99:b0:b1:00:07:40:12:7a:9a:84:cb:85:08:48:f0:f1:e4: 5f:06:7f:f7:2a:05:71:f3:99:50:86:09:e2:83:8a:6f:61:33: 3d:d2:23:0e:e8:2b:a9:38:40:1b:8d:5a:18:77:11:cc:68:2b: 39:ca:53:06:49:d5:e6:53:95:78:ad:90:96:aa:78:d7:c4:c8: 16:b0:97:1f:bf:4d:da:e6:37:32:8c:b7:c7:6d:81:92:81:d9: 91:e3:2d:81:02:e9:41:f7:86:e5:da:67:4e:4a:24:e2:9b:54: 0e:fb:b8:b9:dc:7f:3d:ee:77:de:b0:48:46:06:17:1f:d5:a1: 5f:06:d8:aa:71:bb:26:9b:cb:b4:d0:3f:62:30:a7:63:ed:a1: db:d4:c4:01:e5:9f:d5:b0:4d:f8:0d:d0:05:7e:64:11:ba:b0: 21:8b:9f:21:2f:af:c8:f7:a3:41:61:40:fd:1b:31:3a:d8:92: 67:35:6b:da:a0:7c:60:41:60:60:0d:f6:64:29:45:6e:a9:1f: 5c:6f:62:37:1f:9a:d4:ee:b0:a1:57:d6:29:40:b6:18:15:65: b6:f0:28:c1:06:90:0a:3b:e5:bd:5a:f7:9d:43:8e:2e:3c:33: d7:97:b7:0e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaHPZHz2NriTLvzoGmPRr6MQQby4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTE2MDAwMDMyWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTU5YjgwMTdlNDhjMjcyNWI4M2RkZmNjM2I2Y2ZkZDBj YjU4YzI1YzZhZmZjMTk3NDhiMWZmYTE1NjY3MzRkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEI6kHcclBTzCgr3hFj0a7jOPopvs50WuVzXaFhruV2Rc8 W7PQCG5Cfjf3rfMu057dpZC/uQEMNl3F/2aHgkXnxOLPbm6kUA2vgbe79EV4gYOB ZWe1qeyTXDYxi+NHV5JlGgid5LEA4UeHOc/OWa7Lovb3epzrHsc7nPTlcIYrkBrw QB8bfV+IaEfP6Duj6rVMNYjvAsRqDL4YLR5THjRNwyNdQEWan2F2P7xrmOtMLgpc eYSMO1P/YlGb/vBchG82dT2da3xahYarYiZN78deuwdVGvQTNLMz3hoCOQU/GTPz gxmR3sn63jBBe0p5p+LgJEVLNbL0UTYMAekEXGXbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxp1VLeH9uhwZGN1J3ML10q7J17UwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1OTY0M2JmLWViODAtNDE0YS1hY2EwLTY1MzY0NmQ0NmUwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALHf+gwDQYJKoZIhvcNAQELBQADggEBAEJRHASfXilvqobuN7EiQ6vtBV2Z sLEAB0ASepqEy4UISPDx5F8Gf/cqBXHzmVCGCeKDim9hMz3SIw7oK6k4QBuNWhh3 EcxoKznKUwZJ1eZTlXitkJaqeNfEyBawlx+/TdrmNzKMt8dtgZKB2ZHjLYEC6UH3 huXaZ05KJOKbVA77uLncfz3ud96wSEYGFx/VoV8G2Kpxuyaby7TQP2Iwp2PtodvU xAHln9WwTfgN0AV+ZBG6sCGLnyEvr8j3o0FhQP0bMTrYkmc1a9qgfGBBYGAN9mQp RW6pH1xvYjcfmtTusKFX1ilAthgVZbbwKMEGkAo75b1a951Dji48M9eXtw4= -----END CERTIFICATE-----Generated at Mon May 18 07:59:57 2026 by rpki-client