$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa File: 8a554833-7334-4e02-8426-138572f3d41a.roa (raw, json) Hash identifier: 85H2jI8BPeiritA6IUYhfQo8XhMOsB74NZXe9JFAVCw= Subject key identifier: 08:F2:88:03:D9:71:BC:9A:4C:01:16:C8:E2:90:8B:4B:89:BA:E1:C7 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 110597342201570AEE31FC36920207E369182F47 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa Signing time: Sat 02 May 2026 00:30:27 +0000 ROA not before: Sat 02 May 2026 00:30:27 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:05:97:34:22:01:57:0a:ee:31:fc:36:92:02:07:e3:69:18:2f:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 2 00:30:27 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=fd41479a0866fbcd9bef848c9ecaf27056823bb47d4799ff29d988c6108a3d7b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:42:fe:10:e4:9b:13:0a:2a:c9:de:8d:ae:85: 7c:da:32:7a:8b:3a:ee:4a:41:74:61:27:b8:fe:70: 49:7e:a6:71:d2:33:82:0b:6f:ef:aa:4e:b7:09:bf: b8:b7:3f:6e:b2:36:73:c9:8a:28:a8:c8:07:ed:70: 31:63:ec:7f:43:2b:a7:b5:63:4d:5b:cb:1f:39:0a: 43:21:72:31:93:2f:8e:3d:d8:bf:1d:96:f5:74:e1: e1:1b:c1:a7:99:f6:73:06:ec:eb:9a:60:f5:fd:27: ec:fb:a5:a4:f2:72:ad:09:8c:0a:68:ed:29:b3:b3: d0:1b:17:20:fc:87:fa:eb:00:04:0f:1e:85:e6:81: 29:b7:83:08:3b:cd:75:2a:75:73:59:fa:26:75:4d: a0:1d:8b:8d:9e:22:ce:3a:05:91:84:ad:87:f2:2c: d7:ef:36:83:43:be:49:d1:d7:f7:22:ad:df:ca:de: 8a:48:fc:f8:a9:3f:5f:f2:b8:5c:6b:91:7b:5b:8c: fe:7c:93:56:aa:d0:3c:69:98:9c:7c:01:0c:99:a1: 4b:87:d0:dd:f0:6f:af:c6:bc:1c:b5:04:93:32:c5: 1b:2d:c6:a4:c7:56:06:b5:50:ea:48:16:78:5b:c5: 81:ee:38:6f:2d:3e:ce:c8:cc:de:c4:22:8e:1c:6f: 26:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F2:88:03:D9:71:BC:9A:4C:01:16:C8:E2:90:8B:4B:89:BA:E1:C7 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.217.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:71:61:6a:5d:3d:70:ba:27:94:f3:e1:4e:28:a5:14:07:c1: 61:78:55:5b:0e:60:d4:8b:98:05:fe:66:52:6d:ad:f9:60:a3: 21:41:c4:86:bf:29:71:cd:3e:a3:47:12:0f:b7:09:36:78:fc: 1c:d9:e6:7c:c9:ef:d6:04:0e:92:a1:5e:46:55:cb:2b:35:86: f3:90:1d:b2:2a:1d:5b:52:69:b2:12:4c:b6:d3:ec:76:31:57: b3:2f:f1:e6:b0:5d:aa:f6:0e:f5:5f:da:72:60:c6:b3:14:a3: 96:77:9b:cb:6d:92:7d:12:55:06:8e:ca:ae:98:51:4c:1e:48: 0b:50:f7:51:ee:a9:ae:36:b3:30:eb:8a:50:b1:b4:ab:f2:1a: 0f:fa:b3:6e:fe:c4:1d:07:b0:38:11:8a:6d:5c:26:7c:63:d3: c6:c7:d5:21:8d:1e:21:16:75:50:eb:10:9f:bd:69:b8:ba:4c: 22:46:00:fc:08:74:9a:25:12:10:8d:f7:cd:bc:57:f7:89:6a: 3d:6f:f6:d3:15:7e:6a:25:e9:a3:06:bd:23:8b:aa:bb:a3:d7: ce:68:2d:61:e3:83:75:2b:10:60:6a:6b:cd:e6:b8:96:9d:e9: 95:85:e8:14:89:cf:8c:65:c1:f8:fa:3b:5a:27:58:cf:a7:34: ac:d4:7c:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEQWXNCIBVwruMfw2kgIH42kYL0cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAyMDAzMDI3WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDQxNDc5YTA4NjZmYmNkOWJlZjg0OGM5ZWNhZjI3MDU2 ODIzYmI0N2Q0Nzk5ZmYyOWQ5ODhjNjEwOGEzZDdiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2Qv4Q5JsTCirJ3o2uhXzaMnqLOu5KQXRhJ7j+cEl+pnHS M4ILb++qTrcJv7i3P26yNnPJiiioyAftcDFj7H9DK6e1Y01byx85CkMhcjGTL449 2L8dlvV04eEbwaeZ9nMG7OuaYPX9J+z7paTycq0JjApo7Smzs9AbFyD8h/rrAAQP HoXmgSm3gwg7zXUqdXNZ+iZ1TaAdi42eIs46BZGErYfyLNfvNoNDvknR1/cird/K 3opI/PipP1/yuFxrkXtbjP58k1aq0DxpmJx8AQyZoUuH0N3wb6/GvBy1BJMyxRst xqTHVga1UOpIFnhbxYHuOG8tPs7IzN7EIo4cbyYdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCPKIA9lxvJpMARbI4pCLS4m64ccwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzhhNTU0ODMzLTczMzQtNGUwMi04NDI2LTEzODU3MmYzZDQxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dkwDQYJKoZIhvcNAQELBQADggEBAE5xYWpdPXC6J5Tz4U4opRQHwWF4 VVsOYNSLmAX+ZlJtrflgoyFBxIa/KXHNPqNHEg+3CTZ4/BzZ5nzJ79YEDpKhXkZV yys1hvOQHbIqHVtSabISTLbT7HYxV7Mv8eawXar2DvVf2nJgxrMUo5Z3m8ttkn0S VQaOyq6YUUweSAtQ91Huqa42szDrilCxtKvyGg/6s27+xB0HsDgRim1cJnxj08bH 1SGNHiEWdVDrEJ+9abi6TCJGAPwIdJolEhCN9828V/eJaj1v9tMVfmol6aMGvSOL qruj185oLWHjg3UrEGBqa83muJad6ZWF6BSJz4xlwfj6O1onWM+nNKzUfLE= -----END CERTIFICATE-----Generated at Wed May 13 00:09:48 2026 by rpki-client