$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa File: 38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa (raw, json) Hash identifier: gqpm1Ult0+Mrueg4m9MnPCjyUTVQ3G3DQHFlOxAlptc= Subject key identifier: 56:14:86:2D:35:07:CE:42:6D:73:47:4F:B0:49:71:DD:67:C4:93:64 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4AB1567DDAD5C38386A898EC00177E385202F6EC Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa Signing time: Tue 24 Feb 2026 00:10:04 +0000 ROA not before: Tue 24 Feb 2026 00:10:04 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b1:56:7d:da:d5:c3:83:86:a8:98:ec:00:17:7e:38:52:02:f6:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 24 00:10:04 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=5d4273656fb6ac7b02b4a08f2a6033b1c4c6f3d9344a375d8b5524baf64eca55, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a3:5a:2d:2f:82:48:8b:cd:e1:0f:f4:c5:71: cb:34:ba:83:02:b2:b0:1a:0b:59:47:92:28:e9:c5: 22:b5:b2:df:30:a9:52:64:53:24:84:e3:3e:df:b7: b8:b8:e1:43:ae:b6:93:ff:f9:6f:51:fd:90:5b:45: 9a:3b:34:eb:39:a8:6a:ac:2f:23:06:a0:46:79:60: be:d0:1f:97:f5:19:67:c5:02:9c:c8:ff:09:fd:9b: 58:dd:06:e6:dd:3b:51:60:ae:97:30:73:47:5f:18: 99:4f:47:3e:7f:e0:9b:e9:6d:a8:a2:c5:f9:2e:f6: fd:7e:4f:ca:1d:88:f0:d6:d5:36:0b:0c:53:c7:11: 0c:24:64:1c:09:2e:cf:be:d0:8f:b8:64:67:2f:59: e9:b6:cc:97:f4:7e:8f:ca:44:27:75:21:e2:ae:0b: 4f:34:f3:36:85:ce:b9:5d:a3:8b:4e:2e:7d:d5:f6: 4b:bc:44:5f:7a:f2:86:ab:e8:f7:21:da:0d:aa:9c: a0:66:db:46:9d:40:25:e5:be:21:30:4b:82:86:b8: 86:5c:31:28:b4:01:39:38:44:d1:63:a6:70:fd:8f: 93:c4:6c:f0:8d:14:77:57:6c:55:e6:29:46:75:df: be:ae:48:8a:fb:d8:47:c9:d3:f1:26:36:ab:3d:ad: 88:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:14:86:2D:35:07:CE:42:6D:73:47:4F:B0:49:71:DD:67:C4:93:64 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.240.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:d5:d1:27:e6:a3:b5:d1:19:6e:5c:4c:43:53:15:1c:98:dd: 64:42:f6:b0:e9:fc:97:49:62:98:63:7c:31:51:01:53:54:1e: 05:20:3d:1c:c5:95:26:b4:89:75:12:d5:0c:0a:c1:b9:0c:95: 70:0e:9d:8b:e2:95:53:f8:11:ec:79:fc:83:8c:c3:46:5c:ac: 0d:72:20:c8:68:fc:70:c1:ac:4a:34:34:9c:fe:e8:1f:3e:50: 65:b3:70:d4:db:d3:0e:4c:00:36:fb:ec:98:02:a3:a3:88:a3: 79:aa:bc:db:97:7a:91:a1:e1:14:4b:f8:55:93:8c:bc:4d:13: d9:2e:a8:78:90:34:91:1b:76:f3:4a:ba:d6:1e:ff:25:af:37: 1c:12:85:f1:fe:55:eb:f6:62:d1:8d:2e:19:cc:80:99:f9:cf: e6:f7:6e:83:b2:41:98:26:55:0c:a3:f1:ac:cd:08:d8:07:9b: e1:01:07:35:04:c4:10:42:dc:57:f1:a9:bc:b6:ca:bd:36:44: 47:ed:43:ba:22:28:60:66:3a:16:cc:f3:fa:24:0d:6c:1e:07: 08:6b:74:b4:44:a6:a7:76:7e:94:31:a9:47:95:86:d9:5c:91: e6:16:70:5a:7d:59:24:ef:5f:47:a1:78:a1:15:81:a1:f7:6c: 38:02:0b:26 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSrFWfdrVw4OGqJjsABd+OFIC9uwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjI0MDAxMDA0WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDQyNzM2NTZmYjZhYzdiMDJiNGEwOGYyYTYwMzNiMWM0 YzZmM2Q5MzQ0YTM3NWQ4YjU1MjRiYWY2NGVjYTU1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIo1otL4JIi83hD/TFccs0uoMCsrAaC1lHkijpxSK1st8w qVJkUySE4z7ft7i44UOutpP/+W9R/ZBbRZo7NOs5qGqsLyMGoEZ5YL7QH5f1GWfF ApzI/wn9m1jdBubdO1Fgrpcwc0dfGJlPRz5/4Jvpbaiixfku9v1+T8odiPDW1TYL DFPHEQwkZBwJLs++0I+4ZGcvWem2zJf0fo/KRCd1IeKuC0808zaFzrldo4tOLn3V 9ku8RF968oar6Pch2g2qnKBm20adQCXlviEwS4KGuIZcMSi0ATk4RNFjpnD9j5PE bPCNFHdXbFXmKUZ1376uSIr72EfJ0/EmNqs9rYiTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVhSGLTUHzkJtc0dPsElx3WfEk2QwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzM4YjFkNmE1LThhNmUtNGVkMy1hMDU3LTkzOWZkNGYxN2Y1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+/AwDQYJKoZIhvcNAQELBQADggEBAG/V0Sfmo7XRGW5cTENTFRyY3WRC 9rDp/JdJYphjfDFRAVNUHgUgPRzFlSa0iXUS1QwKwbkMlXAOnYvilVP4Eex5/IOM w0ZcrA1yIMho/HDBrEo0NJz+6B8+UGWzcNTb0w5MADb77JgCo6OIo3mqvNuXepGh 4RRL+FWTjLxNE9kuqHiQNJEbdvNKutYe/yWvNxwShfH+Vev2YtGNLhnMgJn5z+b3 boOyQZgmVQyj8azNCNgHm+EBBzUExBBC3Ffxqby2yr02REftQ7oiKGBmOhbM8/ok DWweBwhrdLREpqd2fpQxqUeVhtlckeYWcFp9WSTvX0eheKEVgaH3bDgCCyY= -----END CERTIFICATE-----Generated at Sun Mar 1 23:39:12 2026 by rpki-client