$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cff2aad7-f173-47b6-ad48-6f279ff321d1.roa File: cff2aad7-f173-47b6-ad48-6f279ff321d1.roa (raw, json) Hash identifier: dMPLN/fV8g7sMk7E8kCP7CCEPoEMkhuSemPCMOGF0/Q= Subject key identifier: A2:40:91:89:66:DA:9F:7B:D7:C1:1D:E5:E1:1F:69:94:23:74:68:DE Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2C4162E52A27795158707C9192F2EDDA2C333EA1 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cff2aad7-f173-47b6-ad48-6f279ff321d1.roa Signing time: Sat 02 May 2026 00:20:06 +0000 ROA not before: Sat 02 May 2026 00:20:06 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:41:62:e5:2a:27:79:51:58:70:7c:91:92:f2:ed:da:2c:33:3e:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:20:06 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=fdae1793a9925ee7247d6519c47405e5ef6f3664d69aec3d48604e68fe9fb7ff, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5b:95:ca:30:21:c0:80:28:07:3b:fd:30:17: 7a:c0:6a:a2:e8:01:32:94:70:02:a0:a0:7e:46:84: fa:a5:a1:32:86:77:86:81:9c:f5:51:04:92:1d:e0: f4:8f:8b:68:c4:ea:c9:87:4e:0a:24:1b:02:55:d1: c4:07:24:eb:e0:42:ad:0a:f5:e9:0d:db:bd:d7:dd: b4:0c:00:0e:10:e8:d3:5e:f6:8d:f0:5a:39:5a:ec: 54:f8:c3:99:a9:89:11:d4:ed:4e:4c:01:7d:fc:e2: 00:aa:93:ad:13:50:7b:71:fb:35:03:7b:52:9f:7c: 4d:5b:5e:18:79:3c:d3:17:43:95:e9:87:6f:f5:0c: 58:54:7a:2b:9d:b2:e0:b8:1c:fd:1a:24:26:75:57: 54:62:5d:e8:9d:b7:2c:49:52:a6:a1:7e:df:42:1d: 73:91:9c:0e:dc:28:92:7c:5a:e1:49:71:65:4e:8c: 56:f1:23:5e:05:b8:03:56:29:76:2a:d6:84:f5:c6: 95:b7:7a:a8:04:26:85:06:91:de:ef:f1:7c:39:c4: cc:89:63:82:23:62:c0:fe:b8:37:6a:9c:92:55:66: de:69:3a:31:c9:06:94:f5:11:d5:b1:ea:e2:ec:b2: 54:8a:21:f5:aa:59:ce:dc:13:49:67:85:4e:87:b8: e5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:40:91:89:66:DA:9F:7B:D7:C1:1D:E5:E1:1F:69:94:23:74:68:DE X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cff2aad7-f173-47b6-ad48-6f279ff321d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.212.0/24 Signature Algorithm: sha256WithRSAEncryption 28:48:7c:85:a5:6b:ce:22:6b:17:a0:14:81:a2:e7:ab:77:5b: f8:9a:c7:c6:3a:ab:ab:5b:20:f6:2e:f0:10:4f:19:27:4e:4b: 8d:ea:11:69:75:33:24:55:ca:17:f0:18:31:1f:f3:36:f5:31: 5e:45:92:b9:ae:8d:60:35:a2:37:84:7e:3e:2b:56:ad:12:22: d2:cf:a7:2a:a9:d5:8e:b0:f1:d6:8a:7b:9f:47:20:57:5b:65: db:69:7d:f6:33:b3:1c:1c:32:f7:7a:53:49:dd:0d:df:ed:49: dd:76:83:98:17:bc:7c:5e:e2:3c:3c:ba:fa:d7:24:c0:3f:fb: 15:d5:50:de:60:c9:9f:8f:d9:91:1f:35:08:14:08:56:43:b2: 2d:90:1f:a1:5e:0f:20:cb:9a:1a:e0:1a:ff:cb:37:5f:0c:84: 97:6e:c7:1d:00:ba:c3:64:15:cc:e3:0b:9c:27:b4:ee:44:f5: c7:fc:a4:93:c8:09:48:d6:53:bb:1f:03:81:e7:d9:0c:1a:32: a7:d2:2d:2b:ca:69:ab:20:b4:4d:40:ee:c6:db:67:1d:4d:9c: d4:22:46:a4:b1:a3:d5:3a:98:54:d6:5c:0b:ae:49:0a:41:22: b4:b3:14:60:52:3f:5b:e5:16:f6:0c:f1:5c:bf:18:c6:39:bf: 2a:55:a2:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULEFi5SoneVFYcHyRkvLt2iwzPqEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAyMDA2WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZGFlMTc5M2E5OTI1ZWU3MjQ3ZDY1MTljNDc0MDVlNWVm NmYzNjY0ZDY5YWVjM2Q0ODYwNGU2OGZlOWZiN2ZmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4W5XKMCHAgCgHO/0wF3rAaqLoATKUcAKgoH5GhPqloTKG d4aBnPVRBJId4PSPi2jE6smHTgokGwJV0cQHJOvgQq0K9ekN273X3bQMAA4Q6NNe 9o3wWjla7FT4w5mpiRHU7U5MAX384gCqk60TUHtx+zUDe1KffE1bXhh5PNMXQ5Xp h2/1DFhUeiudsuC4HP0aJCZ1V1RiXeidtyxJUqahft9CHXORnA7cKJJ8WuFJcWVO jFbxI14FuANWKXYq1oT1xpW3eqgEJoUGkd7v8Xw5xMyJY4IjYsD+uDdqnJJVZt5p OjHJBpT1EdWx6uLsslSKIfWqWc7cE0lnhU6HuOXDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUokCRiWban3vXwR3l4R9plCN0aN4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NmZjJhYWQ3LWYxNzMtNDdiNi1hZDQ4LTZmMjc5ZmYzMjFkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dQwDQYJKoZIhvcNAQELBQADggEBAChIfIWla84iaxegFIGi56t3W/ia x8Y6q6tbIPYu8BBPGSdOS43qEWl1MyRVyhfwGDEf8zb1MV5FkrmujWA1ojeEfj4r Vq0SItLPpyqp1Y6w8daKe59HIFdbZdtpffYzsxwcMvd6U0ndDd/tSd12g5gXvHxe 4jw8uvrXJMA/+xXVUN5gyZ+P2ZEfNQgUCFZDsi2QH6FeDyDLmhrgGv/LN18MhJdu xx0AusNkFczjC5wntO5E9cf8pJPICUjWU7sfA4Hn2QwaMqfSLSvKaasgtE1A7sbb Zx1NnNQiRqSxo9U6mFTWXAuuSQpBIrSzFGBSP1vlFvYM8Vy/GMY5vypVok8= -----END CERTIFICATE-----Generated at Sun May 3 14:48:57 2026 by rpki-client