$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa File: f174f360-a3ca-4335-8414-4727cef110a8.roa (raw, json) Hash identifier: GS+AC4CqFfeIxPa62bZueZQo0IXEKG9TkVHe62D+ujk= Subject key identifier: 6C:46:91:44:D3:28:58:A0:B3:FA:7E:AC:58:F3:1B:11:20:B9:2C:3E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0EAACF2326FE34B97CBBFE46838AB4FF6B074077 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa Signing time: Sat 02 May 2026 00:20:09 +0000 ROA not before: Sat 02 May 2026 00:20:09 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:aa:cf:23:26:fe:34:b9:7c:bb:fe:46:83:8a:b4:ff:6b:07:40:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:20:09 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=f0d94c778b9d66ce9f6465b1d10e8c9bc834bbc00e6591ed11dfec05560bc77e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:71:07:ba:c0:3b:70:6c:93:36:9c:cc:6b:91: 59:9f:26:cb:72:6c:9e:d4:b3:44:6d:a3:6d:b6:11: 96:36:4a:8a:51:bc:ca:cf:05:2b:d1:8e:25:04:0c: 6d:37:6b:75:2f:55:79:fb:51:82:99:e2:90:f2:68: 84:85:85:65:30:78:04:6c:03:21:7f:2a:98:00:b0: b8:e2:65:d0:69:eb:0b:6f:ab:17:53:91:cd:5e:4e: 7f:84:b1:5f:7c:04:9f:d0:62:a4:09:64:6c:e3:ab: dc:bd:39:32:ad:d2:06:b2:ca:24:9b:4a:47:cb:a2: 6d:93:2f:fa:0c:55:af:01:ed:d9:7a:35:2d:3d:85: 36:9e:05:2b:46:7a:02:f2:f6:0c:d4:94:4c:a7:75: 39:66:c4:85:92:e8:38:bb:22:aa:5d:eb:5d:25:46: 67:76:73:53:57:12:dc:0d:89:65:50:fb:be:02:22: 7d:8e:79:24:17:d0:d3:4d:95:df:7a:fd:cf:7f:4b: 93:17:71:25:94:e3:f6:6d:b1:50:c9:3d:ad:37:31: e4:51:c8:ab:c9:85:30:f5:36:7e:49:05:42:06:83: 4d:7f:1d:ad:ba:92:eb:52:15:ff:28:d0:a2:19:ac: 93:ac:dd:c4:6d:35:98:6f:0a:19:c9:51:de:b9:4d: 8f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:46:91:44:D3:28:58:A0:B3:FA:7E:AC:58:F3:1B:11:20:B9:2C:3E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 14:e5:d2:d4:33:43:53:96:bf:39:e3:d3:4e:d2:a1:b8:73:ac: 27:37:ef:c7:05:6c:1c:3c:d9:a0:43:35:6c:5e:09:a2:a5:23: c2:68:54:97:ad:f4:42:48:16:a3:8f:70:c1:85:92:4f:4b:b7: 1c:79:d4:e8:45:bc:fb:c8:b7:03:b3:7e:65:38:c7:41:b5:9d: c8:13:14:69:e5:38:88:db:af:89:27:3e:c7:8d:71:4d:9d:0b: 92:e9:1b:c9:2d:f7:88:76:8f:ff:50:f8:c1:a5:05:c8:c8:98: b2:35:c2:29:c8:c5:09:ef:4f:5a:3e:ef:91:27:73:63:71:81: 26:a9:14:97:d0:b1:1c:d5:c8:65:ae:4b:9f:1a:8e:40:e1:2b: e0:5d:42:b9:19:41:af:e0:6b:4d:90:3b:63:fd:d4:e0:8e:82: ff:ca:7a:4b:0c:c9:41:fe:dd:d0:f9:64:61:3f:15:d2:38:21: 3f:db:65:9e:2a:d0:d6:5c:94:11:94:42:31:b1:ba:f7:c1:a1: f9:1d:cb:ab:02:e2:b4:46:e9:7d:b3:9b:51:34:79:7d:87:74: ac:a8:89:e2:eb:3c:09:b4:fd:2f:9c:f4:e6:13:dd:fb:8c:0e: 23:e7:c8:dc:0f:60:33:a9:b6:e7:5f:2f:40:52:9a:b8:d3:fb: 85:a3:84:ee -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDqrPIyb+NLl8u/5Gg4q0/2sHQHcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAyMDA5WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMGQ5NGM3NzhiOWQ2NmNlOWY2NDY1YjFkMTBlOGM5YmM4 MzRiYmMwMGU2NTkxZWQxMWRmZWMwNTU2MGJjNzdlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCacQe6wDtwbJM2nMxrkVmfJstybJ7Us0Rto222EZY2SopR vMrPBSvRjiUEDG03a3UvVXn7UYKZ4pDyaISFhWUweARsAyF/KpgAsLjiZdBp6wtv qxdTkc1eTn+EsV98BJ/QYqQJZGzjq9y9OTKt0gayyiSbSkfLom2TL/oMVa8B7dl6 NS09hTaeBStGegLy9gzUlEyndTlmxIWS6Di7Iqpd610lRmd2c1NXEtwNiWVQ+74C In2OeSQX0NNNld96/c9/S5MXcSWU4/ZtsVDJPa03MeRRyKvJhTD1Nn5JBUIGg01/ Ha26kutSFf8o0KIZrJOs3cRtNZhvChnJUd65TY//AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbEaRRNMoWKCz+n6sWPMbESC5LD4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2YxNzRmMzYwLWEzY2EtNDMzNS04NDE0LTQ3MjdjZWYxMTBhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBABTl0tQzQ1OWvznj007SobhzrCc3 78cFbBw82aBDNWxeCaKlI8JoVJet9EJIFqOPcMGFkk9Ltxx51OhFvPvItwOzfmU4 x0G1ncgTFGnlOIjbr4knPseNcU2dC5LpG8kt94h2j/9Q+MGlBcjImLI1winIxQnv T1o+75Enc2NxgSapFJfQsRzVyGWuS58ajkDhK+BdQrkZQa/ga02QO2P91OCOgv/K eksMyUH+3dD5ZGE/FdI4IT/bZZ4q0NZclBGUQjGxuvfBofkdy6sC4rRG6X2zm1E0 eX2HdKyoieLrPAm0/S+c9OYT3fuMDiPnyNwPYDOptudfL0BSmrjT+4WjhO4= -----END CERTIFICATE-----Generated at Sun May 3 15:24:44 2026 by rpki-client