$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa File: f99236be-03a7-4f91-be31-5366989c9d7b.roa (raw, json) Hash identifier: FW89zH1QpvXOVEPxsY2iG+mJci1UgOg4Jm9/V8JcmaU= Subject key identifier: B5:3E:96:76:D4:C4:A0:39:CA:E2:8E:22:48:91:6A:AD:EA:90:B3:5A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 42B49CB2FC57298F2D2200090EEE263E1CAB48A6 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa Signing time: Sat 16 May 2026 00:00:31 +0000 ROA not before: Sat 16 May 2026 00:00:31 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 199.255.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 04 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:b4:9c:b2:fc:57:29:8f:2d:22:00:09:0e:ee:26:3e:1c:ab:48:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 16 00:00:31 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=b22b5977b80e33931c67a737a1ac032787997b30ecbadb560eb898783e18a8ef, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3e:ba:a2:d8:6c:24:41:bf:cc:b0:0e:d4:1f: 30:5b:b9:27:95:6d:c4:8f:fc:ed:cf:37:8f:79:0e: da:82:a0:0b:99:74:9c:69:88:6b:b5:e7:e3:e4:e0: 2c:90:6a:84:2e:93:b6:3b:c6:60:81:5c:74:9e:a1: 4e:53:7b:82:06:fc:dd:11:ba:aa:9c:d1:39:3b:73: 38:d1:c5:8e:42:87:9f:39:d2:1f:3e:fd:6c:d0:6c: c9:10:4f:7b:17:98:47:27:13:25:09:ed:fc:ea:1a: 43:85:f3:12:35:47:00:bb:15:a5:60:80:13:ac:5d: 28:72:a8:44:09:7c:48:44:60:08:98:48:d1:f8:52: 66:6d:f1:ab:a0:4b:60:b5:58:ad:5f:0c:4d:b8:66: b1:ed:ad:8a:ad:35:d6:00:7a:a3:70:f6:6a:48:37: b3:dd:11:50:ec:d1:2a:90:d5:19:08:32:0d:15:0f: d4:63:63:89:49:b1:80:91:14:12:0a:c4:ae:c0:b8: 5e:de:a7:d0:4b:e8:77:2c:3f:df:92:b5:56:be:43: c4:c4:0d:15:28:6b:69:50:d8:d9:8a:04:6e:2c:fa: 6f:a0:7a:bb:97:da:84:54:e3:33:c8:bb:d3:ab:ce: de:af:74:63:c1:d5:e3:c0:92:ad:7e:ff:c0:05:da: df:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3E:96:76:D4:C4:A0:39:CA:E2:8E:22:48:91:6A:AD:EA:90:B3:5A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.255.192.0/22 Signature Algorithm: sha256WithRSAEncryption 49:88:19:39:02:1a:50:e3:12:f6:51:6f:60:c0:bb:c2:23:09: df:8c:42:7f:53:23:b4:9d:d4:9b:fa:03:9c:7f:29:b0:40:d2: 21:c7:a1:ff:86:07:9c:23:b1:ca:51:52:bd:57:13:2b:f7:16: 58:97:d3:53:cb:4a:24:af:44:f0:51:79:77:e3:94:e5:11:f8: 38:e3:ae:60:29:07:27:44:b3:1e:9b:70:55:80:cf:8f:e8:84: 7d:6e:30:91:bf:08:54:8a:ce:99:28:61:c6:9f:b6:c8:49:2f: c5:c6:89:68:02:b5:cb:d6:77:54:d5:38:cf:23:ca:97:c2:84: a4:57:f0:da:95:dd:7e:62:0f:09:b9:72:8d:aa:af:9e:b4:27: cb:a3:72:ae:f0:99:ed:0c:8e:a8:01:e9:9e:d0:95:8b:83:1f: 5a:e5:b6:75:0f:8c:f9:b5:8d:a4:18:62:79:93:c1:3f:b7:7c: 09:c4:5c:9d:14:0c:5b:c1:10:72:8a:28:be:30:14:66:4f:ea: 36:d1:4e:6b:b0:a5:b3:cc:b7:c5:8b:3f:95:cd:b1:f5:99:de: 7f:9b:d6:45:a1:e4:a9:ec:73:73:45:2b:76:4d:91:a5:40:8f: 40:eb:51:e7:95:56:1f:b2:1a:c1:34:61:a9:fc:de:53:07:1b: 0c:80:8e:c2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQrScsvxXKY8tIgAJDu4mPhyrSKYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTE2MDAwMDMxWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjJiNTk3N2I4MGUzMzkzMWM2N2E3MzdhMWFjMDMyNzg3 OTk3YjMwZWNiYWRiNTYwZWI4OTg3ODNlMThhOGVmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCePrqi2GwkQb/MsA7UHzBbuSeVbcSP/O3PN495DtqCoAuZ dJxpiGu15+Pk4CyQaoQuk7Y7xmCBXHSeoU5Te4IG/N0Ruqqc0Tk7czjRxY5Ch585 0h8+/WzQbMkQT3sXmEcnEyUJ7fzqGkOF8xI1RwC7FaVggBOsXShyqEQJfEhEYAiY SNH4UmZt8augS2C1WK1fDE24ZrHtrYqtNdYAeqNw9mpIN7PdEVDs0SqQ1RkIMg0V D9RjY4lJsYCRFBIKxK7AuF7ep9BL6HcsP9+StVa+Q8TEDRUoa2lQ2NmKBG4s+m+g eruX2oRU4zPIu9Orzt6vdGPB1ePAkq1+/8AF2t/rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtT6WdtTEoDnK4o4iSJFqreqQs1owHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y5OTIzNmJlLTAzYTctNGY5MS1iZTMxLTUzNjY5ODljOWQ3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALH/8AwDQYJKoZIhvcNAQELBQADggEBAEmIGTkCGlDjEvZRb2DAu8IjCd+M Qn9TI7Sd1Jv6A5x/KbBA0iHHof+GB5wjscpRUr1XEyv3FliX01PLSiSvRPBReXfj lOUR+DjjrmApBydEsx6bcFWAz4/ohH1uMJG/CFSKzpkoYcaftshJL8XGiWgCtcvW d1TVOM8jypfChKRX8NqV3X5iDwm5co2qr560J8ujcq7wme0MjqgB6Z7QlYuDH1rl tnUPjPm1jaQYYnmTwT+3fAnEXJ0UDFvBEHKKKL4wFGZP6jbRTmuwpbPMt8WLP5XN sfWZ3n+b1kWh5Knsc3NFK3ZNkaVAj0DrUeeVVh+yGsE0Yan83lMHGwyAjsI= -----END CERTIFICATE-----Generated at Wed Jun 3 15:42:06 2026 by rpki-client