$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa File: cb088b4a-420f-4b13-84d1-b160e021b919.roa (raw, json) Hash identifier: a8peyDoQdKz7CMRQSbF6KNGWjkYpHrMqpoKcjfKBeS0= Subject key identifier: 5B:B3:0A:59:F5:27:1C:8D:B5:45:D9:BE:4D:16:4F:AA:40:8D:ED:CE Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 622544C8E1CD6B4970638F55AD431A1D120212BE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa Signing time: Sat 02 May 2026 00:20:05 +0000 ROA not before: Sat 02 May 2026 00:20:05 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:25:44:c8:e1:cd:6b:49:70:63:8f:55:ad:43:1a:1d:12:02:12:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:20:05 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=b772934a7016616c64ce37b03493b1351c207fa6086515db6b72f6fb1ce8166e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:28:eb:f0:1c:da:69:b7:9a:ee:9c:2d:fc:e2: 64:18:79:4f:af:0b:54:6a:e8:82:45:8c:fb:22:fc: 65:ef:9f:59:80:b5:ac:2d:73:e4:fd:5e:5a:99:d6: 62:7e:bf:5d:fa:c2:32:33:67:0a:23:64:47:bc:0b: a4:19:6f:df:49:04:47:16:ab:47:87:6e:0d:ff:21: 8c:c8:2d:5a:49:a3:5e:81:b0:e5:63:16:c6:9a:60: 90:a7:08:b4:89:6a:82:f3:fd:22:c9:c8:05:3a:50: 58:1a:69:7c:8d:f9:1d:b8:e1:7f:6a:e0:7e:8a:ed: a8:47:60:23:aa:9c:2e:35:f1:5a:c2:13:9c:66:6f: db:27:f7:af:eb:11:57:d4:de:ba:a8:59:50:12:e7: 5e:c7:91:8e:87:65:55:f5:99:99:91:52:1a:d2:a0: fa:c5:e9:72:15:f5:96:dc:62:4c:87:0f:aa:13:a0: 0a:80:f0:86:b8:ef:6d:e2:fa:99:c1:71:6e:4f:34: 12:94:0a:4d:5a:94:03:2f:82:32:4e:c8:dc:6a:36: 21:f0:8b:5c:35:5b:a1:36:55:c0:8c:58:08:23:03: 18:4c:7b:2f:56:da:8c:fa:29:04:76:77:34:32:7f: dc:91:f6:db:d0:9d:3a:d2:36:c9:31:e9:75:20:4d: 49:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:B3:0A:59:F5:27:1C:8D:B5:45:D9:BE:4D:16:4F:AA:40:8D:ED:CE X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.227.0/24 Signature Algorithm: sha256WithRSAEncryption 11:ed:59:d6:75:48:85:35:f0:1b:6d:9b:75:87:20:ef:0f:36: b6:3e:46:71:fc:74:49:c4:05:fd:18:0b:64:b3:02:31:66:62: 77:bc:bd:f1:70:d2:ad:91:e0:bd:b1:66:7e:95:a7:6a:c3:44: 05:27:a5:78:62:41:8e:30:ef:c4:57:5b:61:5b:13:36:9d:34: 5c:c2:9c:ca:f4:65:ab:56:7f:b4:17:8c:34:ec:df:22:90:5b: 1f:4f:fe:54:9d:9c:71:38:20:7a:1e:c1:57:bd:c4:72:ce:88: e0:f1:0e:29:3b:d0:1a:bb:fd:23:17:2d:85:10:1b:ff:aa:85: 8a:18:7a:c4:09:09:f8:44:76:ab:5d:e1:ce:37:00:92:c1:dd: 32:21:a6:a6:62:b1:7d:c9:72:f4:76:12:4d:4d:3b:0a:dd:f4: 55:39:b2:83:66:e0:84:33:7e:f6:50:38:46:06:58:77:a1:bc: 11:11:2c:b2:24:35:60:40:7e:8d:96:da:64:8d:75:19:fa:c2: a0:41:0a:7e:e8:bf:70:c3:a2:15:3b:9d:aa:f7:6f:61:50:81: 26:f6:ff:56:ec:12:30:f4:ac:75:2d:b9:71:3e:9a:41:d1:e8: e3:e2:56:ea:c3:bb:b5:a9:92:22:8d:ee:8b:db:bb:88:1d:6f: d4:87:3e:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYiVEyOHNa0lwY49VrUMaHRICEr4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAyMDA1WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzcyOTM0YTcwMTY2MTZjNjRjZTM3YjAzNDkzYjEzNTFj MjA3ZmE2MDg2NTE1ZGI2YjcyZjZmYjFjZTgxNjZlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBKOvwHNppt5runC384mQYeU+vC1Rq6IJFjPsi/GXvn1mA tawtc+T9XlqZ1mJ+v136wjIzZwojZEe8C6QZb99JBEcWq0eHbg3/IYzILVpJo16B sOVjFsaaYJCnCLSJaoLz/SLJyAU6UFgaaXyN+R244X9q4H6K7ahHYCOqnC418VrC E5xmb9sn96/rEVfU3rqoWVAS517HkY6HZVX1mZmRUhrSoPrF6XIV9ZbcYkyHD6oT oAqA8Ia4723i+pnBcW5PNBKUCk1alAMvgjJOyNxqNiHwi1w1W6E2VcCMWAgjAxhM ey9W2oz6KQR2dzQyf9yR9tvQnTrSNskx6XUgTUmPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUW7MKWfUnHI21Rdm+TRZPqkCN7c4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NiMDg4YjRhLTQyMGYtNGIxMy04NGQxLWIxNjBlMDIxYjkxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeMwDQYJKoZIhvcNAQELBQADggEBABHtWdZ1SIU18Bttm3WHIO8PNrY+ RnH8dEnEBf0YC2SzAjFmYne8vfFw0q2R4L2xZn6Vp2rDRAUnpXhiQY4w78RXW2Fb EzadNFzCnMr0ZatWf7QXjDTs3yKQWx9P/lSdnHE4IHoewVe9xHLOiODxDik70Bq7 /SMXLYUQG/+qhYoYesQJCfhEdqtd4c43AJLB3TIhpqZisX3JcvR2Ek1NOwrd9FU5 soNm4IQzfvZQOEYGWHehvBERLLIkNWBAfo2W2mSNdRn6wqBBCn7ov3DDohU7nar3 b2FQgSb2/1bsEjD0rHUtuXE+mkHR6OPiVurDu7WpkiKN7ovbu4gdb9SHPkY= -----END CERTIFICATE-----Generated at Sun May 3 15:23:35 2026 by rpki-client