$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32c53391-9c3f-4b16-925f-978e804a33ba.roa File: 32c53391-9c3f-4b16-925f-978e804a33ba.roa (raw, json) Hash identifier: xT2It2rIJE1+4nuy0WVcJuLdDYoWu7eXHXa1X1dWIv8= Subject key identifier: 45:E4:C7:B6:3E:F8:AB:F2:14:B2:32:67:98:4A:2E:4A:F0:32:D2:EA Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6E7A284DF2670581B2A6662EFCB4A7F4D3A2128C Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32c53391-9c3f-4b16-925f-978e804a33ba.roa Signing time: Mon 04 May 2026 00:00:03 +0000 ROA not before: Mon 04 May 2026 00:00:03 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 24.110.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:7a:28:4d:f2:67:05:81:b2:a6:66:2e:fc:b4:a7:f4:d3:a2:12:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 4 00:00:03 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=bdb69e0d45c78c8bc4584caf05bb31ed4d1c42597d59147b331127bfb21bbc9d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:48:23:1f:c4:fe:de:ae:8b:f6:21:31:4b:86: df:4d:4f:e8:a7:cb:3a:a3:59:21:00:2a:e2:6b:62: d8:f6:9e:90:7a:03:9b:2a:ac:d4:00:de:d4:6e:a8: 89:a0:f8:a4:8b:cc:e7:66:6e:c0:cb:ee:5c:4a:1b: b8:b1:86:01:9d:0a:f2:c8:c8:af:50:41:a8:04:f2: e9:a8:84:31:70:74:05:ab:75:66:da:54:46:86:c1: 78:39:63:e4:70:a2:63:dc:f4:67:1d:07:79:cc:20: 74:ab:2b:a6:e4:f1:06:1f:70:93:0b:a0:fb:60:e1: 6e:cc:ec:07:19:e4:4f:0e:50:74:a6:07:80:d0:02: 70:28:3b:59:dc:47:cd:f1:25:07:22:51:0a:9a:c6: a1:2d:63:43:47:5f:37:06:54:43:ee:6f:c1:10:e0: 95:66:53:66:76:7a:9f:71:07:89:c0:e5:aa:5a:cc: aa:0e:e9:a9:0a:cb:f0:58:8b:41:d7:a4:9e:cd:c9: 9b:ca:5f:f6:b3:f2:c1:38:c4:4e:c1:ed:f0:b8:71: fc:6d:d7:7e:37:31:ee:3d:37:06:84:a1:4c:e5:11: 6b:1c:eb:2a:67:0d:9d:5f:40:52:46:c9:c6:d2:d2: b4:b0:12:92:23:23:1d:90:5a:10:d2:3a:da:e9:6d: 06:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:E4:C7:B6:3E:F8:AB:F2:14:B2:32:67:98:4A:2E:4A:F0:32:D2:EA X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32c53391-9c3f-4b16-925f-978e804a33ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.64.0/18 Signature Algorithm: sha256WithRSAEncryption 93:84:6b:16:1b:3b:c4:a6:88:d7:be:b2:c9:78:bb:d1:f5:22: 32:3d:57:a9:32:ff:f8:e6:ae:9d:4d:be:de:25:3f:9c:b3:5d: 13:a5:4f:f0:c9:cc:8d:54:e9:05:4d:40:3f:3a:72:89:f3:ba: 5c:3b:45:22:02:c3:40:e0:0b:03:18:35:03:be:d5:17:10:c1: 07:13:f2:97:76:32:05:1b:fc:1a:52:24:6f:e9:e7:68:ad:fb: eb:ad:5d:e9:86:52:db:88:72:98:45:5b:66:15:80:0a:fd:ac: db:8d:cc:30:ba:4c:7b:76:90:83:2f:c7:01:e0:61:31:9f:23: 39:5f:38:70:06:55:9a:0c:a3:fc:27:8f:be:65:02:f7:3e:56: ba:62:b6:dd:8e:64:a1:b2:0c:d4:1c:2f:10:14:1a:87:2f:2b: b2:a3:4b:32:0e:14:d7:4e:87:e1:80:99:6f:50:34:74:45:4f: cb:2c:18:1e:ab:e3:b1:93:8f:91:d0:c5:d8:67:40:a6:61:97: bc:1e:31:b6:43:75:09:30:a5:e0:49:05:32:93:56:f7:2a:8b: b2:c1:0f:07:ec:51:79:fa:ab:d7:3f:ae:ac:bd:93:ea:dd:49: 17:1e:f2:29:7f:96:44:a5:75:7e:d8:81:ff:e2:3f:4c:b0:fa: 11:75:f9:79 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbnooTfJnBYGypmYu/LSn9NOiEowwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTA0MDAwMDAzWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZGI2OWUwZDQ1Yzc4YzhiYzQ1ODRjYWYwNWJiMzFlZDRk MWM0MjU5N2Q1OTE0N2IzMzExMjdiZmIyMWJiYzlkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqSCMfxP7erov2ITFLht9NT+inyzqjWSEAKuJrYtj2npB6 A5sqrNQA3tRuqImg+KSLzOdmbsDL7lxKG7ixhgGdCvLIyK9QQagE8umohDFwdAWr dWbaVEaGwXg5Y+RwomPc9GcdB3nMIHSrK6bk8QYfcJMLoPtg4W7M7AcZ5E8OUHSm B4DQAnAoO1ncR83xJQciUQqaxqEtY0NHXzcGVEPub8EQ4JVmU2Z2ep9xB4nA5apa zKoO6akKy/BYi0HXpJ7NyZvKX/az8sE4xE7B7fC4cfxt1343Me49NwaEoUzlEWsc 6ypnDZ1fQFJGycbS0rSwEpIjIx2QWhDSOtrpbQapAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUReTHtj74q/IUsjJnmEouSvAy0uowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzMyYzUzMzkxLTljM2YtNGIxNi05MjVmLTk3OGU4MDRhMzNiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYYbkAwDQYJKoZIhvcNAQELBQADggEBAJOEaxYbO8SmiNe+ssl4u9H1IjI9 V6ky//jmrp1Nvt4lP5yzXROlT/DJzI1U6QVNQD86conzulw7RSICw0DgCwMYNQO+ 1RcQwQcT8pd2MgUb/BpSJG/p52it++utXemGUtuIcphFW2YVgAr9rNuNzDC6THt2 kIMvxwHgYTGfIzlfOHAGVZoMo/wnj75lAvc+Vrpitt2OZKGyDNQcLxAUGocvK7Kj SzIOFNdOh+GAmW9QNHRFT8ssGB6r47GTj5HQxdhnQKZhl7weMbZDdQkwpeBJBTKT Vvcqi7LBDwfsUXn6q9c/rqy9k+rdSRce8il/lkSldX7Ygf/iP0yw+hF1+Xk= -----END CERTIFICATE-----Generated at Tue May 12 23:52:22 2026 by rpki-client