$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa File: 498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa (raw, json) Hash identifier: 4lPin8hSYvHyvJIPA2OaH0spWHzPgqZ2BQeGOiP5RA8= Subject key identifier: 58:66:53:A6:75:42:E5:B1:06:15:9C:AD:23:1C:6A:F8:1E:94:8D:92 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 47DD1E76F553D41135EE097EC990EE656392C2EA Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa Signing time: Sat 02 May 2026 00:30:26 +0000 ROA not before: Sat 02 May 2026 00:30:26 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:dd:1e:76:f5:53:d4:11:35:ee:09:7e:c9:90:ee:65:63:92:c2:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:30:26 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=0ccf52443a6415ffea0ae7804f6acb68b989fbe6c8f7d2145d062f9dbfcf6320, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:70:04:76:73:04:2d:14:d8:aa:f7:9a:5d:99: f7:bb:ab:bf:b9:d8:1c:1f:64:26:9c:1b:8d:04:01: b8:cb:cb:bf:3b:22:e8:10:6d:46:e8:25:b7:67:94: 1f:0a:30:28:f2:8d:96:99:d5:d8:a3:95:9a:48:c0: 40:87:39:66:85:31:47:f3:1a:f0:fc:fe:68:0b:95: c6:c8:d4:4d:77:15:a7:ab:7c:a5:63:db:01:30:c1: 3f:41:0a:79:ea:9b:ea:5c:b7:c3:4c:22:1a:51:5e: f6:19:62:57:15:38:4a:d7:a6:c1:4f:fa:e2:58:49: e9:e2:61:8f:ff:57:46:5f:b9:73:db:68:b1:e6:b0: 7e:18:2c:43:52:fc:5d:93:11:a1:ea:0d:f2:e7:60: 59:a3:75:5f:95:c0:90:03:9c:17:8c:53:4d:75:ea: 6d:f7:c4:8b:be:02:76:fa:e7:6c:ae:47:cf:64:af: 17:76:95:1b:ab:86:f5:fd:aa:a4:64:5e:b3:2e:af: 91:2c:a9:ba:65:da:68:bf:d5:99:fe:b1:2f:39:96: 34:71:d3:41:54:15:0a:be:14:6a:97:01:2f:4f:ea: 9d:ba:90:88:df:61:3a:b9:0e:93:65:ba:78:23:1d: ef:9e:59:85:a9:ed:60:f6:6a:79:65:94:2d:c0:49: 54:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:66:53:A6:75:42:E5:B1:06:15:9C:AD:23:1C:6A:F8:1E:94:8D:92 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.186.0/24 Signature Algorithm: sha256WithRSAEncryption 72:19:7c:3a:a2:97:76:ba:8c:c9:10:16:5f:f9:1f:a1:45:a1: 5c:1b:25:c0:35:50:53:f1:ae:8d:5f:96:49:78:ae:34:b4:26: 35:e2:d1:f3:d4:40:7b:b9:8c:a6:ca:b8:59:1c:1c:16:af:9c: c5:57:52:ab:32:77:f8:3a:ef:89:15:81:0c:ea:d2:a4:ca:45: 58:90:a9:c1:53:b2:0b:ff:ba:52:c1:5f:69:9a:5a:f5:70:6f: fc:e7:47:83:4a:6c:b2:fe:02:25:23:cb:f8:f1:81:0c:b7:a4: 9f:ba:51:c3:36:7a:4d:cb:8c:c1:57:cf:ca:4d:86:09:5c:d3: 4b:4f:44:99:ee:4a:e7:fd:3a:0a:ef:7a:4e:46:2b:d7:13:90: 79:5c:60:f8:49:d7:f3:ed:03:37:27:64:87:97:34:90:e9:ce: 7d:ab:4c:45:6a:c9:ab:c2:b7:2d:79:75:43:a7:b2:32:73:27: 40:01:9d:53:79:9e:36:f5:ba:8a:9e:7a:a1:a2:ae:a8:4d:7d: 3d:e1:95:18:af:ae:6e:ec:a4:4e:24:5a:dd:b9:16:84:4e:e3: f4:32:db:09:90:a6:d8:f7:98:47:e3:85:ea:65:2e:6d:2c:b9: 35:73:22:bb:86:cf:c5:b0:92:80:da:10:38:20:7b:68:63:b8: 12:db:87:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR90edvVT1BE17gl+yZDuZWOSwuowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAzMDI2WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2NmNTI0NDNhNjQxNWZmZWEwYWU3ODA0ZjZhY2I2OGI5 ODlmYmU2YzhmN2QyMTQ1ZDA2MmY5ZGJmY2Y2MzIwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmcAR2cwQtFNiq95pdmfe7q7+52BwfZCacG40EAbjLy787 IugQbUboJbdnlB8KMCjyjZaZ1dijlZpIwECHOWaFMUfzGvD8/mgLlcbI1E13Faer fKVj2wEwwT9BCnnqm+pct8NMIhpRXvYZYlcVOErXpsFP+uJYSeniYY//V0ZfuXPb aLHmsH4YLENS/F2TEaHqDfLnYFmjdV+VwJADnBeMU0116m33xIu+Anb652yuR89k rxd2lRurhvX9qqRkXrMur5Esqbpl2mi/1Zn+sS85ljRx00FUFQq+FGqXAS9P6p26 kIjfYTq5DpNlungjHe+eWYWp7WD2anlllC3ASVSHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWGZTpnVC5bEGFZytIxxq+B6UjZIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzQ5OGYzMzRlLTRkYzgtNDExOC1iMWExLTRjOWExNWQxNGI5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37owDQYJKoZIhvcNAQELBQADggEBAHIZfDqil3a6jMkQFl/5H6FFoVwb JcA1UFPxro1flkl4rjS0JjXi0fPUQHu5jKbKuFkcHBavnMVXUqsyd/g674kVgQzq 0qTKRViQqcFTsgv/ulLBX2maWvVwb/znR4NKbLL+AiUjy/jxgQy3pJ+6UcM2ek3L jMFXz8pNhglc00tPRJnuSuf9Ogrvek5GK9cTkHlcYPhJ1/PtAzcnZIeXNJDpzn2r TEVqyavCty15dUOnsjJzJ0ABnVN5njb1uoqeeqGirqhNfT3hlRivrm7spE4kWt25 FoRO4/Qy2wmQptj3mEfjheplLm0suTVzIruGz8WwkoDaEDgge2hjuBLbh6E= -----END CERTIFICATE-----Generated at Tue May 12 23:30:45 2026 by rpki-client