$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/dce2db93-8fb7-42b9-be56-23f46b5bf4e0.roa File: dce2db93-8fb7-42b9-be56-23f46b5bf4e0.roa (raw, json) Hash identifier: iiZ7eJU+RTTiDeRPvG1YH2pKpIZKKeHmbzDowGyOq60= Subject key identifier: 57:ED:DD:6A:A8:CB:7E:F9:20:B7:35:C9:69:3B:0F:AD:04:FB:DE:DD Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0EB29449B39317E6656467689B648FAE81710D18 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/dce2db93-8fb7-42b9-be56-23f46b5bf4e0.roa Signing time: Sat 02 May 2026 00:30:29 +0000 ROA not before: Sat 02 May 2026 00:30:29 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:b2:94:49:b3:93:17:e6:65:64:67:68:9b:64:8f:ae:81:71:0d:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:30:29 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=64f4df99b92bd280922029696da7ea7f90b55da8d9f6a8540a4f184285d54297, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:04:88:37:4a:38:fb:d5:09:cb:20:b3:f6:df: 84:4b:b5:54:66:48:b2:39:82:2d:08:7b:73:94:b2: 88:41:5f:96:65:21:91:26:08:53:6a:61:bb:47:bd: fc:fd:ac:bc:12:b2:f0:14:1f:15:24:7b:55:d4:a1: db:68:04:4b:fb:6d:18:b8:b3:d8:72:0d:15:40:aa: 45:d9:24:be:56:67:c1:7e:c6:a9:fb:83:7b:da:8b: 5e:17:ba:22:8d:e9:5f:c0:ef:84:15:43:a0:85:ee: 88:f0:3c:c2:c4:2e:11:21:b9:9e:ac:5f:33:18:7c: 72:71:6d:b5:ad:fb:13:fb:28:db:67:99:a1:fc:1d: 76:00:bc:0f:0c:05:1f:80:c5:84:15:39:c3:9a:8c: 1a:0f:8a:d1:21:9a:c1:7e:54:95:04:f7:7e:ba:6c: c8:3e:d1:28:d3:c1:e8:1f:8a:8b:e6:67:54:8d:00: 48:9c:b5:81:c1:6f:b7:bb:10:02:13:92:da:0d:44: df:83:72:88:e6:d8:fe:80:55:17:05:c3:94:f2:8f: 01:31:b2:70:4e:a7:b8:3e:03:79:d4:aa:c3:88:3a: 22:4b:cb:36:75:70:e4:b3:05:d4:09:4e:68:6d:34: c9:28:72:4a:1b:9b:60:0a:35:52:ed:55:a1:24:c6: a7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:ED:DD:6A:A8:CB:7E:F9:20:B7:35:C9:69:3B:0F:AD:04:FB:DE:DD X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/dce2db93-8fb7-42b9-be56-23f46b5bf4e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.189.0/24 Signature Algorithm: sha256WithRSAEncryption 93:40:53:de:b2:82:44:a8:33:6e:3e:48:12:67:b5:23:a2:a4: b6:c0:57:d9:12:ff:38:a5:9e:1d:1d:89:a2:b0:1a:69:ab:9d: 2d:15:90:11:93:31:ab:0a:a0:6d:00:a3:13:17:16:88:02:c4: 41:b1:bc:1b:fb:0d:fe:0f:1e:f0:a9:ec:7d:42:c4:f9:de:c7: a0:e7:b8:55:41:1d:3d:56:8d:7e:ab:b6:c7:2d:25:0a:62:32: c4:f4:a1:4b:74:2d:e4:8d:54:2a:ba:c7:e4:f7:71:63:68:6c: 92:8b:a5:e8:73:fa:25:3b:96:71:42:b5:d9:56:1a:3d:b7:6b: 66:d0:7d:92:2a:1f:25:3c:19:bc:70:dc:21:ae:b3:66:98:1b: 31:79:6d:31:5c:6a:45:b9:28:2b:99:36:aa:3c:f5:29:0d:41: 8b:86:4c:2a:05:73:b1:bd:5c:9a:e7:9a:cb:e3:6a:ec:c3:d3: 44:c1:5f:4a:db:80:90:cc:f0:eb:22:c6:23:ae:f7:3a:e8:a1: 73:26:5c:a0:d4:92:80:11:33:76:30:6d:41:b9:f0:e0:ed:89: 9c:64:54:77:0b:01:8f:1f:21:d6:07:f4:a9:0c:20:43:80:1d: 39:1e:d7:9c:d9:b5:d0:a6:0c:14:8f:47:99:f2:fb:3b:55:72: 03:39:a4:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDrKUSbOTF+ZlZGdom2SProFxDRgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAzMDI5WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGY0ZGY5OWI5MmJkMjgwOTIyMDI5Njk2ZGE3ZWE3Zjkw YjU1ZGE4ZDlmNmE4NTQwYTRmMTg0Mjg1ZDU0Mjk3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNBIg3Sjj71QnLILP234RLtVRmSLI5gi0Ie3OUsohBX5Zl IZEmCFNqYbtHvfz9rLwSsvAUHxUke1XUodtoBEv7bRi4s9hyDRVAqkXZJL5WZ8F+ xqn7g3vai14XuiKN6V/A74QVQ6CF7ojwPMLELhEhuZ6sXzMYfHJxbbWt+xP7KNtn maH8HXYAvA8MBR+AxYQVOcOajBoPitEhmsF+VJUE9366bMg+0SjTwegfiovmZ1SN AEictYHBb7e7EAITktoNRN+Dcojm2P6AVRcFw5TyjwExsnBOp7g+A3nUqsOIOiJL yzZ1cOSzBdQJTmhtNMkockobm2AKNVLtVaEkxqflAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUV+3daqjLfvkgtzXJaTsPrQT73t0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2RjZTJkYjkzLThmYjctNDJiOS1iZTU2LTIzZjQ2YjViZjRlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM370wDQYJKoZIhvcNAQELBQADggEBAJNAU96ygkSoM24+SBJntSOipLbA V9kS/zilnh0diaKwGmmrnS0VkBGTMasKoG0AoxMXFogCxEGxvBv7Df4PHvCp7H1C xPnex6DnuFVBHT1WjX6rtsctJQpiMsT0oUt0LeSNVCq6x+T3cWNobJKLpehz+iU7 lnFCtdlWGj23a2bQfZIqHyU8Gbxw3CGus2aYGzF5bTFcakW5KCuZNqo89SkNQYuG TCoFc7G9XJrnmsvjauzD00TBX0rbgJDM8OsixiOu9zrooXMmXKDUkoARM3YwbUG5 8ODtiZxkVHcLAY8fIdYH9KkMIEOAHTke15zZtdCmDBSPR5ny+ztVcgM5pBw= -----END CERTIFICATE-----Generated at Sun May 3 16:11:13 2026 by rpki-client