$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ced1d856-48cb-491b-a1ab-adf22d3bad75.roa File: ced1d856-48cb-491b-a1ab-adf22d3bad75.roa (raw, json) Hash identifier: BvG1XzgKuytDuHMmHj4KeRrUJsLzgADIS99f4RqtiO0= Subject key identifier: 64:44:EA:0C:A1:AE:38:F2:42:1F:E3:21:C2:8D:A5:67:D2:10:7B:2F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 352DC617218968E4C28F0952EBE572937D7BDB33 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ced1d856-48cb-491b-a1ab-adf22d3bad75.roa Signing time: Fri 15 May 2026 00:10:22 +0000 ROA not before: Fri 15 May 2026 00:10:22 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:2d:c6:17:21:89:68:e4:c2:8f:09:52:eb:e5:72:93:7d:7b:db:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 15 00:10:22 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=89a0cbbe344af5dff8231eb06eddf1c88b9326b843ffe04c4383157482b0964e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a3:d5:47:73:4f:af:2b:b1:c7:8c:8a:04:69: 4a:40:93:3a:0f:ec:bc:a0:05:e0:f8:0a:53:20:41: 30:10:06:f5:45:94:f9:24:4e:1a:e5:92:07:37:c9: 19:55:30:53:c3:61:d5:d7:e6:fa:74:ed:19:31:f2: 48:7a:07:1f:cd:c7:1e:23:a9:3a:87:94:22:f7:95: 30:e9:b1:78:c2:2b:0a:f6:f3:49:66:6e:71:b1:44: ec:10:87:d7:c6:16:6d:df:de:d5:cd:5e:d2:cd:5f: b2:9a:7c:3c:f2:a0:64:69:8b:99:75:b6:cd:69:3d: 0d:ce:ba:83:fd:9c:54:b0:5e:bc:c0:05:cf:87:03: 7e:f8:f3:c6:49:a4:2f:4e:ce:77:a8:f2:d4:bc:0a: 8d:3f:cd:a4:32:c9:7e:e7:5c:d0:6e:ca:97:25:f4: da:94:28:a0:36:48:63:f7:d8:e1:c6:35:7b:45:46: 1c:89:5b:c0:09:d0:11:68:a6:f3:59:ae:d4:b7:1a: 90:b7:7e:b8:76:ec:f5:fa:1a:6f:96:a2:cf:8b:83: 57:3e:cd:9e:86:cf:83:56:4e:1d:fb:6d:c3:f7:c4: c2:1b:e2:3f:19:a8:e7:69:4d:ae:17:e8:22:df:5f: a2:33:3a:34:c3:04:6d:48:51:55:ac:4f:3f:14:ed: 4a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:44:EA:0C:A1:AE:38:F2:42:1F:E3:21:C2:8D:A5:67:D2:10:7B:2F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ced1d856-48cb-491b-a1ab-adf22d3bad75.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.176.0/20 Signature Algorithm: sha256WithRSAEncryption 54:79:af:34:f8:f6:ed:7a:5e:f8:74:77:69:99:27:d4:6a:35: a5:a5:87:bf:87:51:b3:5e:81:7b:82:bc:0a:b2:82:05:cf:ce: 2a:2a:20:1b:23:4a:39:66:7b:69:93:3d:d9:a4:c7:69:f6:8f: 1d:54:12:d8:ec:e5:d5:2c:cd:b5:57:18:43:e8:f2:00:ed:d6: 39:e0:7e:93:50:f8:74:c3:26:0c:5f:df:e9:08:b4:08:12:de: b3:ad:6e:fa:4c:76:30:00:bd:67:df:20:13:9c:49:5c:6a:4b: f3:34:ab:a6:9c:2f:0b:cd:1f:46:b1:3a:fb:ad:97:d2:82:f9: eb:aa:9e:bd:f9:53:a4:71:bc:0b:94:79:18:64:7e:e8:be:10: 72:cb:ef:fd:1b:41:40:a8:f7:b1:49:1e:bb:14:12:7f:24:25: a8:89:db:e5:8d:4b:19:1d:32:76:2f:63:51:f6:98:13:42:1b: b0:41:9b:a1:16:bb:03:5b:86:4a:f4:08:01:a1:c1:e0:95:33: d5:25:a8:19:88:14:27:af:6e:87:8f:d2:7d:56:52:51:5e:6d: c9:68:91:41:8b:73:44:b2:4e:f4:24:8f:b5:64:4a:12:09:27: df:f1:1a:b8:31:3c:f3:e0:4d:33:86:e4:f6:be:80:44:47:48: de:c8:b2:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNS3GFyGJaOTCjwlS6+Vyk3172zMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTE1MDAxMDIyWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWEwY2JiZTM0NGFmNWRmZjgyMzFlYjA2ZWRkZjFjODhi OTMyNmI4NDNmZmUwNGM0MzgzMTU3NDgyYjA5NjRlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZo9VHc0+vK7HHjIoEaUpAkzoP7LygBeD4ClMgQTAQBvVF lPkkThrlkgc3yRlVMFPDYdXX5vp07Rkx8kh6Bx/Nxx4jqTqHlCL3lTDpsXjCKwr2 80lmbnGxROwQh9fGFm3f3tXNXtLNX7KafDzyoGRpi5l1ts1pPQ3OuoP9nFSwXrzA Bc+HA37488ZJpC9Ozneo8tS8Co0/zaQyyX7nXNBuypcl9NqUKKA2SGP32OHGNXtF RhyJW8AJ0BFopvNZrtS3GpC3frh27PX6Gm+Wos+Lg1c+zZ6Gz4NWTh37bcP3xMIb 4j8ZqOdpTa4X6CLfX6IzOjTDBG1IUVWsTz8U7UpTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZETqDKGuOPJCH+Mhwo2lZ9IQey8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NlZDFkODU2LTQ4Y2ItNDkxYi1hMWFiLWFkZjIyZDNiYWQ3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARM37AwDQYJKoZIhvcNAQELBQADggEBAFR5rzT49u16Xvh0d2mZJ9RqNaWl h7+HUbNegXuCvAqyggXPzioqIBsjSjlme2mTPdmkx2n2jx1UEtjs5dUszbVXGEPo 8gDt1jngfpNQ+HTDJgxf3+kItAgS3rOtbvpMdjAAvWffIBOcSVxqS/M0q6acLwvN H0axOvutl9KC+euqnr35U6RxvAuUeRhkfui+EHLL7/0bQUCo97FJHrsUEn8kJaiJ 2+WNSxkdMnYvY1H2mBNCG7BBm6EWuwNbhkr0CAGhweCVM9UlqBmIFCevboeP0n1W UlFebclokUGLc0SyTvQkj7VkShIJJ9/xGrgxPPPgTTOG5Pa+gERHSN7IsiQ= -----END CERTIFICATE-----Generated at Wed Jun 17 08:35:47 2026 by rpki-client