$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a1532cad-101c-42fe-83e3-e4a74867afd7.roa File: a1532cad-101c-42fe-83e3-e4a74867afd7.roa (raw, json) Hash identifier: sq2W6AUoX7MHQaOwsaed8DctLtcKCGRJP+7rSlg4rq0= Subject key identifier: 34:9C:97:D1:71:09:6E:9F:45:54:36:7D:4D:AD:98:67:70:1B:F5:45 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4D742F74F2A29C4F5F77196BB365AE5C907DC76A Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a1532cad-101c-42fe-83e3-e4a74867afd7.roa Signing time: Fri 15 May 2026 00:10:22 +0000 ROA not before: Fri 15 May 2026 00:10:22 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:74:2f:74:f2:a2:9c:4f:5f:77:19:6b:b3:65:ae:5c:90:7d:c7:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 15 00:10:22 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=690fb34a37e72eb30bdbcffa508746d704f48741429433135f2be082c46616ba, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:db:df:03:a2:38:10:92:0b:67:4a:5b:04:c4: 0e:a9:83:1a:02:ee:26:e4:a3:22:f3:b7:47:c0:73: f7:5d:0b:06:e3:65:d9:87:0f:13:dd:1c:ba:53:cf: 67:77:73:ae:98:88:21:c6:43:3f:f2:15:71:0c:f1: 94:13:6a:95:45:0a:97:fd:de:0e:86:6d:a9:b8:71: 63:f1:ec:4f:54:4c:1c:39:b4:6e:d4:a6:07:88:d0: 1a:0b:e1:9c:ad:10:8e:bb:14:e1:e7:a4:a0:ef:ed: 47:dd:8a:47:60:1f:29:0c:33:1c:96:8a:c5:cb:55: e4:13:e1:f7:5e:fb:46:fd:fd:41:7c:fb:36:44:90: 28:0a:de:21:ab:ae:3f:95:9d:d3:4e:2e:e4:6f:e5: b8:51:7d:19:95:87:a4:3e:73:48:53:10:f0:ee:68: 43:75:35:15:e8:56:8b:f8:a2:b4:21:ca:d9:07:6b: 00:f9:d7:79:89:2d:7d:82:28:76:49:7f:12:55:4b: 21:fc:b4:ee:0c:86:7e:48:9d:2b:88:62:0d:ce:e4: e8:82:a7:bf:ef:d9:78:e1:37:ee:9d:cd:11:06:af: c5:9f:7b:bc:51:b3:e1:e5:52:67:0e:89:26:8d:c2: d4:4d:0c:f7:ac:6f:db:fe:8c:f7:35:1e:c5:7a:8c: 6e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:9C:97:D1:71:09:6E:9F:45:54:36:7D:4D:AD:98:67:70:1B:F5:45 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a1532cad-101c-42fe-83e3-e4a74867afd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.224.0/19 Signature Algorithm: sha256WithRSAEncryption 2c:28:5d:37:a9:7b:7c:5f:a3:01:2d:40:43:4f:11:ff:6d:a5: b5:b9:6e:7d:69:d5:ea:47:c4:ff:9d:64:2e:2f:e9:0a:3b:5d: 68:b5:ac:b7:01:f5:6d:5b:08:16:a4:c8:66:9a:e6:c7:aa:c0: 19:67:07:e5:1b:b4:64:ce:8a:86:a0:be:37:75:26:d5:c3:0c: d6:65:0c:de:1d:c4:5a:65:b0:e4:7f:35:d1:8f:da:b1:fb:dc: a5:ba:80:83:53:3b:0f:82:45:c0:29:60:eb:d6:91:f0:68:f6: e4:40:b2:da:de:4f:c4:cf:b8:3d:8d:c8:27:d0:a0:58:51:bd: 29:39:2d:26:5b:c8:0c:fc:69:00:bf:7b:d5:92:3d:43:b0:34: 4d:e8:cd:ba:fb:9b:f6:ec:be:a5:b8:f4:ee:5c:55:aa:bf:22: 89:c2:a3:9a:31:16:36:44:02:4f:cc:67:5e:fd:ca:cf:40:d5: f3:05:fb:7d:2c:8f:ac:5b:b9:7f:3c:62:1f:4c:1a:90:56:bb: 5a:80:89:6f:26:09:f8:b9:b9:d0:a8:51:de:38:e3:e4:c4:a3: 88:ed:6a:7b:be:3a:8f:d9:a3:15:a0:b2:7f:af:51:5c:02:60: ae:90:e1:59:bb:cc:50:58:7e:40:c3:24:23:35:e9:4f:3e:1c: 01:83:33:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTXQvdPKinE9fdxlrs2WuXJB9x2owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTE1MDAxMDIyWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTBmYjM0YTM3ZTcyZWIzMGJkYmNmZmE1MDg3NDZkNzA0 ZjQ4NzQxNDI5NDMzMTM1ZjJiZTA4MmM0NjYxNmJhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR298DojgQkgtnSlsExA6pgxoC7ibkoyLzt0fAc/ddCwbj ZdmHDxPdHLpTz2d3c66YiCHGQz/yFXEM8ZQTapVFCpf93g6Gbam4cWPx7E9UTBw5 tG7UpgeI0BoL4ZytEI67FOHnpKDv7UfdikdgHykMMxyWisXLVeQT4fde+0b9/UF8 +zZEkCgK3iGrrj+VndNOLuRv5bhRfRmVh6Q+c0hTEPDuaEN1NRXoVov4orQhytkH awD513mJLX2CKHZJfxJVSyH8tO4Mhn5InSuIYg3O5OiCp7/v2XjhN+6dzREGr8Wf e7xRs+HlUmcOiSaNwtRNDPesb9v+jPc1HsV6jG6nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNJyX0XEJbp9FVDZ9Ta2YZ3Ab9UUwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2ExNTMyY2FkLTEwMWMtNDJmZS04M2UzLWU0YTc0ODY3YWZkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUX++AwDQYJKoZIhvcNAQELBQADggEBACwoXTepe3xfowEtQENPEf9tpbW5 bn1p1epHxP+dZC4v6Qo7XWi1rLcB9W1bCBakyGaa5seqwBlnB+UbtGTOioagvjd1 JtXDDNZlDN4dxFplsOR/NdGP2rH73KW6gINTOw+CRcApYOvWkfBo9uRAstreT8TP uD2NyCfQoFhRvSk5LSZbyAz8aQC/e9WSPUOwNE3ozbr7m/bsvqW49O5cVaq/IonC o5oxFjZEAk/MZ179ys9A1fMF+30sj6xbuX88Yh9MGpBWu1qAiW8mCfi5udCoUd44 4+TEo4jtanu+Oo/ZoxWgsn+vUVwCYK6Q4Vm7zFBYfkDDJCM16U8+HAGDM+I= -----END CERTIFICATE-----Generated at Wed Jun 17 08:36:02 2026 by rpki-client