$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2f1243e4-dd56-43c1-90e0-aec73f1a9489.roa File: 2f1243e4-dd56-43c1-90e0-aec73f1a9489.roa (raw, json) Hash identifier: szR240ux0Ad568CUL6KP9Ql0H6mcDpWaHVHY2II6SrI= Subject key identifier: D7:84:C8:BE:C5:43:6D:85:3F:10:D0:55:91:5D:30:A1:A0:2F:6C:83 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 60DC32BD1198161C73CE64AA5D8CA772CA3C8108 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2f1243e4-dd56-43c1-90e0-aec73f1a9489.roa Signing time: Tue 10 Feb 2026 00:00:40 +0000 ROA not before: Tue 10 Feb 2026 00:00:40 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 206.55.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:dc:32:bd:11:98:16:1c:73:ce:64:aa:5d:8c:a7:72:ca:3c:81:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 10 00:00:40 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=7341af567252b6df4802d4cd2c6fba2251bb32c33fab5cb0fa8c4236465c3bdc, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:55:1e:f9:84:83:5d:1b:c8:9c:bd:1a:f2:ee: b2:86:cb:ca:e9:fc:e4:1c:ef:e9:8e:6d:84:1b:10: d7:32:4a:91:18:c6:4b:6b:df:7c:28:97:d5:98:46: 2f:a7:23:b4:9e:4b:be:c3:12:6d:e0:c2:ed:fc:17: 52:56:aa:54:32:be:be:71:05:96:06:5e:c3:5a:81: 8c:e6:e9:d3:9e:b5:d9:90:0f:6b:2c:8a:b5:b0:fb: 7a:92:3b:82:26:63:e6:8c:eb:b7:58:b5:a4:f3:d7: 66:71:6a:84:ce:b2:a8:90:57:6c:18:69:fe:1d:26: 83:ae:ce:9f:72:c0:20:96:39:3f:93:33:85:e5:ce: ba:a2:b7:cf:c8:26:62:6b:5e:48:8a:b6:1a:10:bb: 4b:0e:c2:82:03:23:b3:94:9b:45:1e:e5:7c:21:58: 67:59:da:fc:ab:1c:d2:f6:13:62:c0:d6:c1:20:f9: 48:14:41:91:f2:35:d0:24:3c:ba:24:9b:f4:8c:d5: 70:b3:f6:eb:7f:b8:cf:3a:50:3f:c4:c0:32:14:99: cf:ef:32:27:bf:88:7e:2a:8d:81:14:78:56:ff:fe: a1:72:a9:cf:99:2b:81:f0:6b:8c:65:b1:64:ba:af: 85:ad:17:37:22:56:f8:d2:98:a4:fc:0e:f7:a7:58: 61:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:84:C8:BE:C5:43:6D:85:3F:10:D0:55:91:5D:30:A1:A0:2F:6C:83 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2f1243e4-dd56-43c1-90e0-aec73f1a9489.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.55.128.0/19 Signature Algorithm: sha256WithRSAEncryption 1c:34:64:29:6e:e5:ff:92:a7:66:66:be:f7:7a:1e:e1:b3:75: c9:72:34:c5:bc:6e:fd:d3:cc:a5:24:42:75:b3:a0:98:42:b7: fc:a0:37:9d:ab:51:df:7b:37:fd:97:2c:c4:e6:0b:d8:3b:d7: 37:56:a1:c2:45:9e:77:27:bf:15:60:43:38:36:5c:8f:f1:09: d5:08:1e:92:f0:da:90:b5:8e:d1:48:f7:17:c4:5a:36:ec:39: 7d:61:25:a9:bd:e8:16:74:67:23:a9:75:5f:d5:70:a3:d5:a5: 4e:e1:e9:cb:97:d2:9f:5c:ac:f1:ad:10:63:ae:66:0e:a8:cd: da:1d:36:cd:fd:1d:98:5c:3b:44:0b:26:22:b8:96:c9:6b:f7: 50:c9:b1:33:cf:7a:0b:b2:ba:72:b5:35:eb:92:dd:a7:7d:68: 3e:93:af:85:b8:27:ac:e3:76:dd:64:4d:15:49:25:a3:e9:fa: c2:6c:29:ba:d0:7d:2e:67:02:ca:86:49:f3:40:f5:c7:7f:15: 48:4a:2e:38:d9:df:14:61:37:a4:83:7b:85:a9:1c:44:2d:ed: 2c:8d:65:f7:ad:3d:8a:d7:33:dc:ee:8b:18:7b:94:ad:37:37: d9:86:1b:ff:55:74:66:1e:3f:9a:cb:96:29:f6:9b:9e:6a:c7: a0:0b:f4:3e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYNwyvRGYFhxzzmSqXYyncso8gQgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjEwMDAwMDQwWhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzQxYWY1NjcyNTJiNmRmNDgwMmQ0Y2QyYzZmYmEyMjUx YmIzMmMzM2ZhYjVjYjBmYThjNDIzNjQ2NWMzYmRjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPVR75hINdG8icvRry7rKGy8rp/OQc7+mObYQbENcySpEY xktr33wol9WYRi+nI7SeS77DEm3gwu38F1JWqlQyvr5xBZYGXsNagYzm6dOetdmQ D2ssirWw+3qSO4ImY+aM67dYtaTz12ZxaoTOsqiQV2wYaf4dJoOuzp9ywCCWOT+T M4Xlzrqit8/IJmJrXkiKthoQu0sOwoIDI7OUm0Ue5XwhWGdZ2vyrHNL2E2LA1sEg +UgUQZHyNdAkPLokm/SM1XCz9ut/uM86UD/EwDIUmc/vMie/iH4qjYEUeFb//qFy qc+ZK4Hwa4xlsWS6r4WtFzciVvjSmKT8DvenWGHbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU14TIvsVDbYU/ENBVkV0woaAvbIMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzJmMTI0M2U0LWRkNTYtNDNjMS05MGUwLWFlYzczZjFhOTQ4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXON4AwDQYJKoZIhvcNAQELBQADggEBABw0ZClu5f+Sp2Zmvvd6HuGzdcly NMW8bv3TzKUkQnWzoJhCt/ygN52rUd97N/2XLMTmC9g71zdWocJFnncnvxVgQzg2 XI/xCdUIHpLw2pC1jtFI9xfEWjbsOX1hJam96BZ0ZyOpdV/VcKPVpU7h6cuX0p9c rPGtEGOuZg6ozdodNs39HZhcO0QLJiK4lslr91DJsTPPeguyunK1NeuS3ad9aD6T r4W4J6zjdt1kTRVJJaPp+sJsKbrQfS5nAsqGSfNA9cd/FUhKLjjZ3xRhN6SDe4Wp HEQt7SyNZfetPYrXM9zuixh7lK03N9mGG/9VdGYeP5rLlin2m55qx6AL9D4= -----END CERTIFICATE-----Generated at Mon Mar 2 09:54:54 2026 by rpki-client