$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f558359a-2a02-4c8e-9a72-7159b2569d66.roa File: f558359a-2a02-4c8e-9a72-7159b2569d66.roa (raw, json) Hash identifier: 3CJNAN+PtMF96mgNQ/0ubZ8H6FpvA2Ak5RKcYkB/hT0= Subject key identifier: 89:02:ED:4E:EA:75:32:FD:D8:F2:C3:46:48:28:68:BF:B5:9F:FC:C9 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 56B7542C03C5CB96980117D109C2BD11E1E15A19 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f558359a-2a02-4c8e-9a72-7159b2569d66.roa Signing time: Fri 15 May 2026 00:10:20 +0000 ROA not before: Fri 15 May 2026 00:10:20 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.210.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:b7:54:2c:03:c5:cb:96:98:01:17:d1:09:c2:bd:11:e1:e1:5a:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 15 00:10:20 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=3bf60249b7e08a183f23d69d21ca53bf72c35150d467bfafbbeb68db70130539, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:eb:b5:83:55:b7:ef:e3:97:e9:5d:47:85:95: bb:a6:69:fb:10:33:eb:df:55:2d:1e:6e:3e:41:3b: 04:8d:66:88:90:21:e6:53:6a:ec:75:b2:7d:a9:4f: 4b:8a:07:d3:fa:43:55:13:85:20:79:60:ad:e7:7b: 65:5e:e4:a2:5c:fc:f0:f2:95:fb:27:fd:6e:81:2a: ad:1d:97:34:c4:e2:62:1b:89:27:e1:c6:f1:d7:7f: 84:24:9c:01:c7:72:c7:9d:5a:e7:bb:26:34:11:43: cf:31:6c:8a:1d:36:07:37:5d:fc:4d:64:77:d0:4c: 7d:bd:40:b6:50:5b:e9:13:f5:86:4f:d3:51:61:e3: f6:b3:83:b3:d5:19:4b:99:c4:11:db:56:25:17:57: 9f:2e:d4:6a:fa:90:f6:b8:3d:db:fe:a8:fd:b2:31: f5:93:aa:54:b3:3f:07:20:a3:d9:5c:a0:81:19:44: d1:92:68:16:ee:82:7c:be:ae:dd:11:f6:75:bf:90: e3:7a:54:84:ab:cf:2e:57:fa:46:7a:4a:ba:6f:ef: 33:89:ea:cc:18:bb:11:90:cf:ad:78:f0:0e:9a:78: dd:fe:3d:d2:e0:3d:5a:87:c7:96:34:53:d3:40:0a: 8b:f6:58:7d:e4:e4:01:66:b9:54:cf:02:e7:a9:ed: 61:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:02:ED:4E:EA:75:32:FD:D8:F2:C3:46:48:28:68:BF:B5:9F:FC:C9 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f558359a-2a02-4c8e-9a72-7159b2569d66.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.210.0/23 Signature Algorithm: sha256WithRSAEncryption 17:3b:5b:6e:99:a1:e0:15:2f:ee:ab:24:66:3d:63:41:e0:cd: 18:0b:a0:a8:2c:01:72:61:32:ce:86:8f:20:2f:b2:ac:37:76: 6a:bd:8a:2e:3c:46:1d:4d:20:f5:fd:cc:bd:32:7b:f3:34:f1: e3:a1:f0:a2:0f:24:25:26:7f:c9:c7:ef:ab:4e:8d:4d:af:ff: a8:c7:b4:5e:b5:fd:df:6a:a7:7b:21:e7:e3:80:98:5d:f1:0c: 45:cf:86:71:66:4a:9d:94:b6:6d:84:ff:c6:9d:b9:9e:fa:3d: 88:40:b9:98:8a:e2:39:a9:02:be:2e:5d:cd:de:d5:3c:04:53: fc:46:40:4f:81:5e:11:e1:76:f4:d9:5c:5a:56:13:b6:c9:c6: aa:75:e7:52:25:a3:1b:13:2f:5d:dd:b5:fd:8b:98:9f:c1:aa: b9:69:6f:be:5b:b8:d6:bf:7c:7f:b8:c1:d8:81:73:23:c1:dc: bc:16:2d:85:40:42:ae:8c:8e:b8:3a:1a:ab:c7:43:c4:42:54: 0c:f0:89:89:18:3f:25:7c:9e:63:98:a6:19:26:d4:a6:20:71: af:2d:4b:23:2a:b6:3e:a6:d3:81:be:f9:09:b4:84:58:5c:69: dc:81:de:9a:75:a0:14:b7:b1:3e:b6:bd:1c:8b:14:68:22:bf: 57:fd:d9:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVrdULAPFy5aYARfRCcK9EeHhWhkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTE1MDAxMDIwWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYmY2MDI0OWI3ZTA4YTE4M2YyM2Q2OWQyMWNhNTNiZjcy YzM1MTUwZDQ2N2JmYWZiYmViNjhkYjcwMTMwNTM5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDE67WDVbfv45fpXUeFlbumafsQM+vfVS0ebj5BOwSNZoiQ IeZTaux1sn2pT0uKB9P6Q1UThSB5YK3ne2Ve5KJc/PDylfsn/W6BKq0dlzTE4mIb iSfhxvHXf4QknAHHcsedWue7JjQRQ88xbIodNgc3XfxNZHfQTH29QLZQW+kT9YZP 01Fh4/azg7PVGUuZxBHbViUXV58u1Gr6kPa4Pdv+qP2yMfWTqlSzPwcgo9lcoIEZ RNGSaBbugny+rt0R9nW/kON6VISrzy5X+kZ6Srpv7zOJ6swYuxGQz6148A6aeN3+ PdLgPVqHx5Y0U9NACov2WH3k5AFmuVTPAuep7WE9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiQLtTup1Mv3Y8sNGSChov7Wf/MkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y1NTgzNTlhLTJhMDItNGM4ZS05YTcyLTcxNTliMjU2OWQ2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+dIwDQYJKoZIhvcNAQELBQADggEBABc7W26ZoeAVL+6rJGY9Y0HgzRgL oKgsAXJhMs6GjyAvsqw3dmq9ii48Rh1NIPX9zL0ye/M08eOh8KIPJCUmf8nH76tO jU2v/6jHtF61/d9qp3sh5+OAmF3xDEXPhnFmSp2Utm2E/8aduZ76PYhAuZiK4jmp Ar4uXc3e1TwEU/xGQE+BXhHhdvTZXFpWE7bJxqp151IloxsTL13dtf2LmJ/Bqrlp b75buNa/fH+4wdiBcyPB3LwWLYVAQq6Mjrg6GqvHQ8RCVAzwiYkYPyV8nmOYphkm 1KYgca8tSyMqtj6m04G++Qm0hFhcadyB3pp1oBS3sT62vRyLFGgiv1f92bE= -----END CERTIFICATE-----Generated at Fri May 22 21:57:38 2026 by rpki-client