$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa File: d61aefde-15db-4326-8486-f4cd98992cbc.roa (raw, json) Hash identifier: 5Xkvy8HhITsPnRNB63Jy0oKf6TNTyJiuFZjjzfnbsaE= Subject key identifier: 37:C0:73:31:3D:13:D4:BA:53:27:63:1E:A1:A4:B3:9A:6F:72:2E:AE Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 20D4002EE3F46DD234928F3EA72D5A622A935C53 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa Signing time: Sat 02 May 2026 00:30:12 +0000 ROA not before: Sat 02 May 2026 00:30:12 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:d4:00:2e:e3:f4:6d:d2:34:92:8f:3e:a7:2d:5a:62:2a:93:5c:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:30:12 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=7998786d62c9e4136c1cda8421c2a609b93c24e88c08284543d9c85b5b3d0731, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:26:65:ad:6a:30:4a:06:cf:c2:04:b2:37:80: a7:05:b3:54:3e:6a:d5:5f:c2:fe:85:df:3c:e5:07: 69:ea:73:7a:f3:d9:e3:4e:dd:82:a5:ec:c2:ae:47: 88:d1:fc:a4:96:f3:ca:ac:0a:46:00:e4:5a:5e:aa: 12:4a:84:15:5a:d6:16:4c:3a:28:66:5d:17:b6:5e: 75:0b:1d:78:85:9b:c6:0d:e3:5b:97:ef:bb:36:bf: aa:fb:45:4a:26:bd:d5:d3:85:7c:0e:4b:b1:7f:95: f9:70:22:6d:82:e3:e3:03:23:21:57:15:0e:04:7e: f3:e6:ee:72:23:2a:9d:59:90:bc:db:08:12:a8:7c: ac:6b:c8:98:42:73:5c:cc:68:50:73:d0:cb:4c:b5: 6d:04:71:ed:c1:cb:a4:14:35:74:50:5d:5f:36:7b: 6d:77:4c:9b:b5:a7:56:39:2e:ff:c7:b4:3b:e8:96: ef:b7:b5:84:45:bd:6b:c5:88:21:f1:b4:d8:c3:f1: b6:0a:b3:b9:7e:99:df:96:12:b5:f4:3a:94:a4:3a: 60:a1:af:f4:73:61:ec:82:21:52:1e:da:d4:9d:de: 2f:15:44:cb:0e:b8:75:77:de:fa:5f:49:5c:7c:c2: 91:69:11:06:42:2e:8e:b2:ef:ee:27:e0:ec:bc:a4: 3d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C0:73:31:3D:13:D4:BA:53:27:63:1E:A1:A4:B3:9A:6F:72:2E:AE X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.223.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:c1:da:e2:48:4f:25:13:b4:be:c3:b1:95:c5:a7:fd:b4:47: 9b:b7:ef:cd:39:27:58:0f:1d:4f:49:c9:6c:7e:cd:b7:b4:4d: 2b:35:86:6b:7e:8a:ad:a1:a6:f2:7f:71:14:61:f0:d8:86:d2: 82:ff:fd:63:07:53:8c:60:f8:f2:be:a2:87:5f:18:9c:b4:88: cf:40:f4:3a:2c:8e:f8:a7:d9:17:be:d8:a1:5c:cb:53:1d:e1: 69:0a:7d:c0:ef:04:24:06:ef:33:c3:bb:80:c1:de:31:d1:e9: 89:a8:f7:23:a0:e6:71:9c:74:6e:9c:32:b2:4c:25:28:cf:6b: af:22:89:23:41:7e:cb:ce:d7:24:05:3d:15:8d:5e:05:d2:88: a9:60:03:95:21:cb:87:b0:ef:ff:53:54:4e:a2:17:ab:2c:08: cc:41:ad:b1:3a:61:65:e1:40:07:eb:5a:1a:12:3a:aa:cb:8d: bc:ef:19:87:5b:91:19:9a:62:86:c6:96:8b:ab:a0:8b:a4:74: 70:c7:68:d8:24:97:1d:d8:91:2a:ee:9c:b5:28:6a:00:0a:d6: 4d:14:25:56:33:13:0e:33:be:f7:ef:21:55:01:99:12:e4:1f: 49:c1:c3:de:00:57:dc:39:04:d0:46:93:f3:4d:b5:b2:a6:70: 6c:d1:7f:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUINQALuP0bdI0ko8+py1aYiqTXFMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAzMDEyWhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTk4Nzg2ZDYyYzllNDEzNmMxY2RhODQyMWMyYTYwOWI5 M2MyNGU4OGMwODI4NDU0M2Q5Yzg1YjViM2QwNzMxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHJmWtajBKBs/CBLI3gKcFs1Q+atVfwv6F3zzlB2nqc3rz 2eNO3YKl7MKuR4jR/KSW88qsCkYA5FpeqhJKhBVa1hZMOihmXRe2XnULHXiFm8YN 41uX77s2v6r7RUomvdXThXwOS7F/lflwIm2C4+MDIyFXFQ4EfvPm7nIjKp1ZkLzb CBKofKxryJhCc1zMaFBz0MtMtW0Ece3By6QUNXRQXV82e213TJu1p1Y5Lv/HtDvo lu+3tYRFvWvFiCHxtNjD8bYKs7l+md+WErX0OpSkOmChr/RzYeyCIVIe2tSd3i8V RMsOuHV33vpfSVx8wpFpEQZCLo6y7+4n4Oy8pD1rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUN8BzMT0T1LpTJ2MeoaSzmm9yLq4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Q2MWFlZmRlLTE1ZGItNDMyNi04NDg2LWY0Y2Q5ODk5MmNiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d8wDQYJKoZIhvcNAQELBQADggEBAHrB2uJITyUTtL7DsZXFp/20R5u3 7805J1gPHU9JyWx+zbe0TSs1hmt+iq2hpvJ/cRRh8NiG0oL//WMHU4xg+PK+oodf GJy0iM9A9Dosjvin2Re+2KFcy1Md4WkKfcDvBCQG7zPDu4DB3jHR6Ymo9yOg5nGc dG6cMrJMJSjPa68iiSNBfsvO1yQFPRWNXgXSiKlgA5Uhy4ew7/9TVE6iF6ssCMxB rbE6YWXhQAfrWhoSOqrLjbzvGYdbkRmaYobGlouroIukdHDHaNgklx3YkSrunLUo agAK1k0UJVYzEw4zvvfvIVUBmRLkH0nBw94AV9w5BNBGk/NNtbKmcGzRf6g= -----END CERTIFICATE-----Generated at Sun May 3 15:24:13 2026 by rpki-client