$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa File: 38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa (raw, json) Hash identifier: +ufLacuwffAqnYC3MBst6M3jXrmujSBTOV5HeRKZuBM= Subject key identifier: 64:7E:17:07:F1:0B:7D:CA:76:EE:82:FF:28:97:E9:22:8E:0F:66:7A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3ECF3B70C26918880439710723225C2DA3655E3D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa Signing time: Fri 15 May 2026 00:10:18 +0000 ROA not before: Fri 15 May 2026 00:10:18 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:cf:3b:70:c2:69:18:88:04:39:71:07:23:22:5c:2d:a3:65:5e:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 15 00:10:18 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=0169beb81a613d358e00f43305250fbfab4dcb0259a66be91245211431a35cc6, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:9b:b6:29:7d:a1:07:56:70:46:8c:d4:92:f5: 39:19:45:8b:53:e2:d4:f1:67:a0:ed:39:df:b4:f3: 26:64:e3:6e:58:72:e8:9f:c5:88:e5:78:e5:5c:0a: a9:a2:7c:7a:bf:21:6b:9e:93:99:37:14:88:fe:cd: 24:8e:90:25:91:6e:68:a5:d5:ed:d0:29:25:6c:50: aa:51:68:2d:6e:79:25:3d:2f:16:61:da:ea:d8:57: aa:a5:5e:cf:17:54:40:d7:f8:cf:06:41:b4:85:da: 9f:58:3b:28:2d:48:42:86:bc:1c:68:4e:e2:e0:c2: e0:e0:79:69:90:1d:b4:c0:bd:b3:74:b3:8b:f5:ac: ce:c8:53:3b:73:55:b9:9c:4d:0e:d0:ff:6f:2b:f9: 7f:3d:db:7b:8d:aa:6c:c3:b4:bd:16:64:f9:b5:dc: a4:43:75:44:c2:82:59:24:5d:40:09:22:e6:d1:a1: cd:97:41:9e:6b:2d:eb:02:a8:ab:f8:2c:6c:4b:39: 03:cf:85:1b:fb:9e:e0:2d:84:af:1b:9b:f0:18:37: 09:06:22:61:1b:be:b6:a0:07:42:2c:66:8f:02:b0: 51:5e:86:62:e1:ae:64:0c:42:29:6b:39:58:ab:2c: 55:01:76:e9:d7:40:d0:6e:3b:b4:7f:fa:62:44:33: bf:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7E:17:07:F1:0B:7D:CA:76:EE:82:FF:28:97:E9:22:8E:0F:66:7A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.240.0/23 Signature Algorithm: sha256WithRSAEncryption 55:f3:64:9a:b4:8f:1e:8b:43:34:7d:be:7b:98:04:ea:db:16: f2:78:e9:d6:f3:40:f8:94:f3:82:e7:67:eb:f6:62:59:bd:d2: d3:91:8b:18:cc:29:39:85:11:7b:d7:5b:5d:c6:fc:f8:1a:35: f4:69:4a:a3:58:b1:47:c0:89:2b:87:ca:47:29:d5:7c:39:95: de:85:f2:78:85:64:ee:d6:76:fe:4e:30:d3:bd:ac:64:a9:20: 1b:bc:ee:69:02:51:ea:a4:66:e8:f5:81:fa:fd:7f:b7:67:7e: 69:e8:ae:b0:69:90:26:dd:fa:f3:f6:44:f8:d3:62:9b:52:0e: 65:28:e7:c0:f3:73:6c:e6:51:06:5e:2c:fb:be:fa:b2:34:ed: 09:c3:ea:ec:68:88:16:0a:97:b0:2a:67:d7:01:9c:e7:f3:f6: b1:e5:7c:d8:f4:c1:15:8e:3b:a3:63:95:47:90:48:c3:ee:86: e1:c5:9d:0c:ce:22:4c:ac:3d:17:c6:d5:0b:2f:72:a2:e9:46: 9b:24:18:8c:14:f3:ef:6c:f7:ee:4b:a7:42:10:31:24:32:cd: a4:bb:a8:ff:8e:6f:23:3e:2d:45:4d:72:b5:53:c1:fe:4e:1f: 05:c1:95:1e:ad:08:88:2d:76:bd:eb:d8:db:85:b7:20:66:1c: eb:d9:55:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPs87cMJpGIgEOXEHIyJcLaNlXj0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTE1MDAxMDE4WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTY5YmViODFhNjEzZDM1OGUwMGY0MzMwNTI1MGZiZmFi NGRjYjAyNTlhNjZiZTkxMjQ1MjExNDMxYTM1Y2M2MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtm7YpfaEHVnBGjNSS9TkZRYtT4tTxZ6DtOd+08yZk425Y cuifxYjleOVcCqmifHq/IWuek5k3FIj+zSSOkCWRbmil1e3QKSVsUKpRaC1ueSU9 LxZh2urYV6qlXs8XVEDX+M8GQbSF2p9YOygtSEKGvBxoTuLgwuDgeWmQHbTAvbN0 s4v1rM7IUztzVbmcTQ7Q/28r+X8923uNqmzDtL0WZPm13KRDdUTCglkkXUAJIubR oc2XQZ5rLesCqKv4LGxLOQPPhRv7nuAthK8bm/AYNwkGImEbvragB0IsZo8CsFFe hmLhrmQMQilrOVirLFUBdunXQNBuO7R/+mJEM7/XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZH4XB/ELfcp27oL/KJfpIo4PZnowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzM4YjFkNmE1LThhNmUtNGVkMy1hMDU3LTkzOWZkNGYxN2Y1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+/AwDQYJKoZIhvcNAQELBQADggEBAFXzZJq0jx6LQzR9vnuYBOrbFvJ4 6dbzQPiU84LnZ+v2Ylm90tORixjMKTmFEXvXW13G/PgaNfRpSqNYsUfAiSuHykcp 1Xw5ld6F8niFZO7Wdv5OMNO9rGSpIBu87mkCUeqkZuj1gfr9f7dnfmnorrBpkCbd +vP2RPjTYptSDmUo58Dzc2zmUQZeLPu++rI07QnD6uxoiBYKl7AqZ9cBnOfz9rHl fNj0wRWOO6NjlUeQSMPuhuHFnQzOIkysPRfG1QsvcqLpRpskGIwU8+9s9+5Lp0IQ MSQyzaS7qP+ObyM+LUVNcrVTwf5OHwXBlR6tCIgtdr3r2NuFtyBmHOvZVY8= -----END CERTIFICATE-----Generated at Wed Jun 17 12:23:18 2026 by rpki-client