$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/034981bd-2c15-4502-ad47-62f568d2e909.roa File: 034981bd-2c15-4502-ad47-62f568d2e909.roa (raw, json) Hash identifier: cv0xPa/Uz0pLCOAzlCFThKZ+Txj8zmYAN5wbTXMeevE= Subject key identifier: E6:87:4D:6F:A8:D7:F1:CA:D1:95:F4:B2:94:BC:AE:E1:1C:90:F0:24 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4435CFCEAF6AF6DE262489F5702BD1CF96899522 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/034981bd-2c15-4502-ad47-62f568d2e909.roa Signing time: Tue 14 Apr 2026 12:51:39 +0000 ROA not before: Tue 14 Apr 2026 12:51:39 +0000 ROA not after: Mon 13 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:35:cf:ce:af:6a:f6:de:26:24:89:f5:70:2b:d1:cf:96:89:95:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 14 12:51:39 2026 GMT Not After : Jul 13 23:59:59 2026 GMT Subject: serialNumber=166fb1ac59cdc8510d9d9258de42a48307a0b3d12e46f20e9e17bf5459641cd3, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c1:82:f7:e1:cd:1e:6b:c8:d0:e9:2c:5a:c0: 98:13:3c:22:0e:00:39:40:6a:58:2b:19:d1:e8:ac: ac:f0:1f:56:43:ad:09:18:33:94:55:a4:10:ff:30: 06:26:b2:be:d8:45:56:81:d8:95:e1:cf:8b:22:9e: 32:32:e8:82:bb:30:ea:5d:b1:f1:08:67:7d:b3:f4: 3b:c4:0f:74:18:76:38:66:84:28:21:38:17:fd:8f: 68:9a:b9:cc:9d:11:e3:b2:22:cd:1d:5a:ea:7b:c5: f3:64:73:17:1a:dd:eb:ce:d1:9b:af:83:ce:ce:d8: 02:d5:c9:fe:67:e7:9e:41:68:02:51:67:dd:1f:6b: 1d:9b:a9:11:55:b3:60:cc:f8:8e:8e:a3:29:9a:3b: f3:a2:34:c6:ed:b2:d9:62:11:23:85:50:c9:d4:a5: 5f:e4:a7:89:d2:f8:be:56:4e:78:58:63:05:84:7d: 2f:28:1c:14:58:15:a1:54:3d:b9:b7:27:82:8a:fe: e0:a7:d3:2f:01:39:bf:6f:c9:58:6e:66:a0:4e:01: 19:db:7b:34:9c:46:a0:ca:5b:30:c9:96:c4:9c:28: 3a:9b:53:ca:fa:68:5d:e0:d5:bc:8d:ff:f5:3c:14: a1:5f:ed:c3:dd:9d:55:c7:1d:da:1b:fd:ad:1c:3e: 9c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:87:4D:6F:A8:D7:F1:CA:D1:95:F4:B2:94:BC:AE:E1:1C:90:F0:24 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/034981bd-2c15-4502-ad47-62f568d2e909.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.188.0/24 Signature Algorithm: sha256WithRSAEncryption 50:fc:a2:22:cc:78:60:68:b1:ee:c0:d5:77:74:21:dc:ab:20: 54:85:60:eb:4c:21:41:4d:27:5f:16:db:86:02:e8:13:be:0c: 92:77:bb:44:45:f3:f4:32:75:e4:e1:c1:e2:e9:b1:1f:1d:77: 80:2e:14:3a:d2:71:c9:3c:37:59:c4:c2:67:23:cc:3a:10:e6: 13:1f:40:3f:06:81:e7:7e:85:d7:b2:d1:da:12:6a:25:a6:d0: 07:08:89:40:60:7b:d8:5b:04:b6:a3:d7:76:09:a5:93:c0:28: 3a:6b:d2:5c:30:d5:bc:5c:d6:7a:25:34:67:a9:e0:f6:f8:be: 3f:df:f4:2e:4e:dc:bf:f1:ec:0b:5c:b1:db:2b:14:a6:45:2a: c6:85:86:51:32:1a:f6:0c:45:8b:19:3e:7d:d6:cf:4d:fc:c5: d4:89:62:8a:1e:73:64:a2:1c:9f:1d:e3:d8:0f:36:b9:e3:f9: f7:d5:ba:50:39:ac:57:eb:2c:1c:de:71:75:91:59:e9:82:94: 3a:23:e1:f6:6d:a4:dd:49:ea:bd:58:df:64:0f:de:1f:1d:97: 2d:e5:48:ac:03:62:41:f7:7f:5b:de:01:fe:67:21:23:66:0a: f9:57:cf:bc:3e:e4:0d:74:bf:f9:aa:35:4e:f5:4b:2d:b1:a5: fa:be:25:af -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURDXPzq9q9t4mJIn1cCvRz5aJlSIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNDE0MTI1MTM5WhcNMjYwNzEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjZmYjFhYzU5Y2RjODUxMGQ5ZDkyNThkZTQyYTQ4MzA3 YTBiM2QxMmU0NmYyMGU5ZTE3YmY1NDU5NjQxY2QzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+wYL34c0ea8jQ6SxawJgTPCIOADlAalgrGdHorKzwH1ZD rQkYM5RVpBD/MAYmsr7YRVaB2JXhz4sinjIy6IK7MOpdsfEIZ32z9DvED3QYdjhm hCghOBf9j2iaucydEeOyIs0dWup7xfNkcxca3evO0Zuvg87O2ALVyf5n555BaAJR Z90fax2bqRFVs2DM+I6OoymaO/OiNMbtstliESOFUMnUpV/kp4nS+L5WTnhYYwWE fS8oHBRYFaFUPbm3J4KK/uCn0y8BOb9vyVhuZqBOARnbezScRqDKWzDJlsScKDqb U8r6aF3g1byN//U8FKFf7cPdnVXHHdob/a0cPpyRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5odNb6jX8crRlfSylLyu4RyQ8CQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzAzNDk4MWJkLTJjMTUtNDUwMi1hZDQ3LTYyZjU2OGQyZTkwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADY3bwwDQYJKoZIhvcNAQELBQADggEBAFD8oiLMeGBose7A1Xd0IdyrIFSF YOtMIUFNJ18W24YC6BO+DJJ3u0RF8/QydeThweLpsR8dd4AuFDrScck8N1nEwmcj zDoQ5hMfQD8Gged+hdey0doSaiWm0AcIiUBge9hbBLaj13YJpZPAKDpr0lww1bxc 1nolNGep4Pb4vj/f9C5O3L/x7AtcsdsrFKZFKsaFhlEyGvYMRYsZPn3Wz038xdSJ Yooec2SiHJ8d49gPNrnj+ffVulA5rFfrLBzecXWRWemClDoj4fZtpN1J6r1Y32QP 3h8dly3lSKwDYkH3f1veAf5nISNmCvlXz7w+5A10v/mqNU71Sy2xpfq+Ja8= -----END CERTIFICATE-----Generated at Fri Apr 17 05:53:20 2026 by rpki-client