$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa File: b5e0d86e-0f74-41d8-a413-497ad79e414d.roa (raw, json) Hash identifier: uUfVpznOxnT9OF5PaAa4e9HHMk0HHTVU085f2IxLiGE= Subject key identifier: DD:8C:8D:98:61:CE:2F:A9:9F:8E:83:81:76:60:D4:96:30:C5:1C:58 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3A8919FEB63B7112F5B83D3016CE316880B14865 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa Signing time: Fri 01 May 2026 00:00:38 +0000 ROA not before: Fri 01 May 2026 00:00:38 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:89:19:fe:b6:3b:71:12:f5:b8:3d:30:16:ce:31:68:80:b1:48:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 1 00:00:38 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=74654ba1b9bbba039d376ed5b92a6420daa4168f9b43058eee5c02b004fee628, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2b:fe:33:75:5d:57:b8:bf:56:f8:ce:97:67: 99:4b:78:06:d4:13:b9:da:58:1b:74:ac:f6:3e:3d: db:ce:fa:0e:83:0c:8a:e2:de:92:ad:ec:c2:15:eb: ac:6e:9e:66:11:90:72:6d:f4:02:fe:a1:a6:da:13: 69:34:f1:b2:d1:65:91:f4:61:41:ee:2f:e6:76:10: 25:9e:bc:25:9d:24:08:9b:48:83:fe:fc:72:0c:f3: cd:e3:8c:d1:92:0b:96:77:bb:93:34:5a:66:5c:c6: da:fa:ac:be:9d:51:7c:89:22:f7:e2:1a:51:b3:57: 87:0f:e4:21:50:67:be:fa:55:47:8d:e0:bf:62:e5: 12:11:9c:b9:0b:6c:47:a6:16:9f:c2:00:09:8f:45: 2b:16:b0:45:34:e6:bd:67:0f:16:bd:56:be:7b:fc: 3f:4f:91:d6:53:4f:12:d3:a0:d2:6d:2b:c4:8b:66: 5f:fa:59:de:3a:b4:6a:b6:af:f1:5c:db:ea:f2:c7: 60:17:d3:6c:17:c9:3f:53:9d:4d:96:c2:f9:75:d9: 82:70:e9:17:71:de:24:17:6c:14:6c:ff:20:08:c4: 4d:7b:b9:f3:57:e7:06:d0:4b:a8:37:38:8e:2f:0d: 3b:65:1d:b7:00:b9:9f:92:e9:7b:ca:74:f2:cb:ce: bc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:8C:8D:98:61:CE:2F:A9:9F:8E:83:81:76:60:D4:96:30:C5:1C:58 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.160.0/19 Signature Algorithm: sha256WithRSAEncryption 3f:26:a0:fa:93:b0:ce:b8:f5:1b:4e:28:b2:39:80:97:dd:04: 72:23:ce:3c:d4:6c:c5:e4:d4:1c:5a:fa:18:88:45:d8:b3:00: e2:20:ac:91:f8:05:c9:ae:1b:d7:2b:f2:76:67:55:dc:0a:31: 90:f2:61:8f:36:ae:f2:6c:d5:5e:89:cf:f2:da:5d:94:a1:40: ed:c6:e3:c5:0c:f9:ad:61:2f:67:94:b2:19:df:1e:02:ac:1c: e0:da:50:0f:c9:cb:77:b6:49:b5:3e:10:e9:ed:33:a9:3d:22: 13:3b:ba:75:9c:46:03:32:fc:b9:59:b3:5c:42:a1:f2:82:f4: 63:11:e4:9f:d7:48:10:0b:a2:29:17:0d:59:10:4c:1a:40:7b: 9e:cb:d6:f6:f5:8f:b4:c9:7c:96:24:a2:54:a8:f0:fc:65:c5: 02:a4:ab:59:11:9b:7e:be:ce:8b:07:b6:59:52:6c:b9:28:d0: b4:f0:dc:d6:18:32:aa:95:e6:9b:13:0f:28:42:1f:d0:46:4d: 90:f2:27:61:dd:33:d7:e1:f7:8d:85:a1:05:cb:9e:0f:46:3e: 32:cf:71:3a:99:88:f0:64:8c:26:4d:f1:ab:bd:c8:32:e0:a4: e4:97:14:fd:50:cd:1e:2b:36:f1:a7:1e:fc:01:8e:2f:3b:10: 70:35:69:12 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOokZ/rY7cRL1uD0wFs4xaICxSGUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAxMDAwMDM4WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDY1NGJhMWI5YmJiYTAzOWQzNzZlZDViOTJhNjQyMGRh YTQxNjhmOWI0MzA1OGVlZTVjMDJiMDA0ZmVlNjI4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmK/4zdV1XuL9W+M6XZ5lLeAbUE7naWBt0rPY+PdvO+g6D DIri3pKt7MIV66xunmYRkHJt9AL+oabaE2k08bLRZZH0YUHuL+Z2ECWevCWdJAib SIP+/HIM883jjNGSC5Z3u5M0WmZcxtr6rL6dUXyJIvfiGlGzV4cP5CFQZ776VUeN 4L9i5RIRnLkLbEemFp/CAAmPRSsWsEU05r1nDxa9Vr57/D9PkdZTTxLToNJtK8SL Zl/6Wd46tGq2r/Fc2+ryx2AX02wXyT9TnU2Wwvl12YJw6Rdx3iQXbBRs/yAIxE17 ufNX5wbQS6g3OI4vDTtlHbcAuZ+S6XvKdPLLzrwPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3YyNmGHOL6mfjoOBdmDUljDFHFgwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1ZTBkODZlLTBmNzQtNDFkOC1hNDEzLTQ5N2FkNzllNDE0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXY3aAwDQYJKoZIhvcNAQELBQADggEBAD8moPqTsM649RtOKLI5gJfdBHIj zjzUbMXk1Bxa+hiIRdizAOIgrJH4BcmuG9cr8nZnVdwKMZDyYY82rvJs1V6Jz/La XZShQO3G48UM+a1hL2eUshnfHgKsHODaUA/Jy3e2SbU+EOntM6k9IhM7unWcRgMy /LlZs1xCofKC9GMR5J/XSBALoikXDVkQTBpAe57L1vb1j7TJfJYkolSo8PxlxQKk q1kRm36+zosHtllSbLko0LTw3NYYMqqV5psTDyhCH9BGTZDyJ2HdM9fh942FoQXL ng9GPjLPcTqZiPBkjCZN8au9yDLgpOSXFP1QzR4rNvGnHvwBji87EHA1aRI= -----END CERTIFICATE-----Generated at Sun May 3 15:23:25 2026 by rpki-client