$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa File: 58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa (raw, json) Hash identifier: QFy5f+7Mti7PAq+dIAI00bMRs3Nf8OqaieQ1yVKDg3o= Subject key identifier: 2A:CD:C9:70:9B:44:92:B9:3A:9F:8E:D8:F0:EE:03:6E:A5:DA:06:69 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4728A0E7B20302393C85F36E8BF01B6964DCCAF5 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa Signing time: Fri 15 May 2026 00:10:08 +0000 ROA not before: Fri 15 May 2026 00:10:08 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 16 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:28:a0:e7:b2:03:02:39:3c:85:f3:6e:8b:f0:1b:69:64:dc:ca:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 15 00:10:08 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=0964fa5dca09bcce74d5b486ac7948c4f58878a962bf8feae03b3d5b81d574c3, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e1:d4:79:24:d2:32:a6:03:f5:3f:69:16:3a: af:0e:8a:6b:50:ab:66:16:d7:96:e3:ed:bc:a3:5a: 82:eb:1c:40:9c:1c:84:ef:8a:b1:e6:6d:95:4a:03: 21:da:09:d7:7d:73:34:b9:f8:6d:5c:40:05:af:87: 03:a2:c2:4b:79:ad:50:01:b7:b1:ec:12:a8:00:b2: c5:98:47:01:01:45:67:66:fa:d8:b2:b5:ba:d6:af: ee:ea:d6:08:ab:a3:bc:4e:69:dd:55:7c:c0:87:e5: ca:8c:cd:e1:6b:6e:9a:8d:7f:c0:9d:d2:24:d3:5f: ac:42:08:8e:93:24:b0:b3:ed:7e:9e:54:aa:38:f4: 4e:c0:c9:dc:f1:4e:05:63:e9:da:12:4b:a3:0c:90: 2c:02:12:94:62:c8:05:92:13:f3:84:3b:b4:82:37: 1f:dd:72:06:1b:8b:13:28:b3:54:bf:2e:d5:dd:ad: fa:98:ce:d7:30:7a:4d:b3:21:e6:78:c6:5d:17:95: 15:8b:5d:84:86:99:06:23:91:02:62:48:c6:5c:69: 61:60:2e:85:cb:fe:2b:a4:65:1c:56:93:f6:26:9e: 85:86:4f:90:e6:29:3e:66:5e:23:e4:c6:2e:33:10: f3:19:2d:c4:64:90:5d:4a:f6:ce:45:17:e6:80:67: 8e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:CD:C9:70:9B:44:92:B9:3A:9F:8E:D8:F0:EE:03:6E:A5:DA:06:69 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.232.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:be:75:1c:57:bb:83:8c:32:37:e8:85:dd:46:bf:df:4b:e9: 0d:27:5b:c8:13:71:a4:36:e2:25:ae:ef:91:db:56:13:aa:7f: 36:1b:dd:0e:88:c0:bb:59:23:ee:9b:14:11:90:0a:e0:2b:4a: 9d:c3:1f:3e:f7:9b:e7:17:a7:2b:4c:6a:16:be:11:34:0a:1f: 14:f4:27:a2:22:7c:4b:9c:9e:f9:61:80:4e:a8:6a:5b:c8:9e: cb:2b:e4:2a:14:59:33:80:21:2a:ad:d6:d3:b5:ba:20:c3:80: 5b:68:00:ab:bb:ce:30:81:ba:4c:68:61:59:dd:2e:05:d2:b2: ab:cd:b6:c3:a4:1e:0f:e2:95:d3:f1:a5:90:96:7c:c2:0b:3b: d3:32:a6:8f:4a:18:d2:4a:9c:b7:35:45:90:61:fd:96:dd:6a: 3e:d6:ed:98:83:1c:3c:e6:5f:30:30:73:1f:00:71:d3:41:e5: e0:f4:68:f8:d2:33:ac:fd:37:29:51:32:cd:80:e8:00:6e:5c: 6f:f4:69:b6:5a:49:87:47:73:99:c4:a8:03:57:f8:36:95:43: 93:74:98:ec:26:a9:bd:38:71:a9:d0:0c:b1:10:ea:69:e4:49: 23:5c:ba:9b:18:93:55:5f:13:8c:6c:ca:36:c0:7d:42:19:aa: 7b:e5:c2:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURyig57IDAjk8hfNui/AbaWTcyvUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTE1MDAxMDA4WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTY0ZmE1ZGNhMDliY2NlNzRkNWI0ODZhYzc5NDhjNGY1 ODg3OGE5NjJiZjhmZWFlMDNiM2Q1YjgxZDU3NGMzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQ4dR5JNIypgP1P2kWOq8OimtQq2YW15bj7byjWoLrHECc HITvirHmbZVKAyHaCdd9czS5+G1cQAWvhwOiwkt5rVABt7HsEqgAssWYRwEBRWdm +tiytbrWr+7q1giro7xOad1VfMCH5cqMzeFrbpqNf8Cd0iTTX6xCCI6TJLCz7X6e VKo49E7AydzxTgVj6doSS6MMkCwCEpRiyAWSE/OEO7SCNx/dcgYbixMos1S/LtXd rfqYztcwek2zIeZ4xl0XlRWLXYSGmQYjkQJiSMZcaWFgLoXL/iukZRxWk/YmnoWG T5DmKT5mXiPkxi4zEPMZLcRkkF1K9s5FF+aAZ46lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKs3JcJtEkrk6n47Y8O4DbqXaBmkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU4ZjlmZmU1LTA5ZmQtNDBhYy04ZWE0LWZlMWY4ZDAxZDg3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFqegwDQYJKoZIhvcNAQELBQADggEBAC2+dRxXu4OMMjfohd1Gv99L6Q0n W8gTcaQ24iWu75HbVhOqfzYb3Q6IwLtZI+6bFBGQCuArSp3DHz73m+cXpytMaha+ ETQKHxT0J6IifEucnvlhgE6oalvInssr5CoUWTOAISqt1tO1uiDDgFtoAKu7zjCB ukxoYVndLgXSsqvNtsOkHg/ildPxpZCWfMILO9Mypo9KGNJKnLc1RZBh/Zbdaj7W 7ZiDHDzmXzAwcx8AcdNB5eD0aPjSM6z9NylRMs2A6ABuXG/0abZaSYdHc5nEqANX +DaVQ5N0mOwmqb04canQDLEQ6mnkSSNcupsYk1VfE4xsyjbAfUIZqnvlwrU= -----END CERTIFICATE-----Generated at Mon Jun 15 12:34:57 2026 by rpki-client