$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3f672c72-4d5f-408a-8326-7e62adbed891.roa File: 3f672c72-4d5f-408a-8326-7e62adbed891.roa (raw, json) Hash identifier: 35f26IecJgidGm02I3no9QKAwNh4YVmEFprlELhz71A= Subject key identifier: 55:A0:68:C3:6B:87:8A:91:6F:2E:02:BD:D8:43:26:D7:A8:62:1F:97 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 11B89FEEA3FB397AA1EDAFFA6A95CF074887E22B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3f672c72-4d5f-408a-8326-7e62adbed891.roa Signing time: Wed 11 Feb 2026 00:20:09 +0000 ROA not before: Wed 11 Feb 2026 00:20:09 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:b8:9f:ee:a3:fb:39:7a:a1:ed:af:fa:6a:95:cf:07:48:87:e2:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:20:09 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=a52191076aa72cd7e2d7c1792629ed292eea67cf277c9fea1202d79b0a24fab1, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b3:b4:f3:af:43:ee:b8:9d:07:b8:86:dd:c2: 15:fc:fb:a5:c2:1a:16:16:2b:ee:35:4e:3a:91:4f: e6:be:81:0b:2c:71:b4:96:c6:0c:42:58:27:1c:d8: c8:62:36:17:12:0d:61:30:fd:a1:e0:a1:21:f9:81: 7b:da:f3:47:d2:f8:11:e6:fd:05:26:e9:73:bc:ad: 12:07:37:c8:ac:65:83:5d:9d:73:c6:bd:a4:d8:1a: 33:8d:ac:e6:51:67:5f:f3:a8:d0:c3:ae:c6:ce:d0: bf:2b:23:30:0e:23:ab:12:00:9a:8e:3b:d2:75:41: c1:7c:10:fa:f7:dc:e7:27:73:71:7e:b9:f4:86:b2: 8f:28:2e:dd:d6:0f:bd:0e:4f:ce:34:a8:59:da:03: df:2d:19:d5:56:3d:e4:ea:50:01:71:9b:e7:78:ff: 2e:59:11:d4:c3:39:fe:01:f0:6b:76:c4:c8:c1:55: 56:6b:5f:65:e1:9e:4b:50:49:79:21:c5:5b:b9:20: f7:41:4a:e4:ce:95:0b:66:58:c9:b9:ac:06:b8:d4: 01:b2:03:e2:b2:71:00:a2:47:42:07:1f:e0:97:61: 82:cb:dc:1e:1b:6e:1d:42:0f:cb:d1:86:da:01:dd: 44:fb:8f:9d:42:53:f6:46:ed:ec:5f:01:9e:f0:38: 95:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:A0:68:C3:6B:87:8A:91:6F:2E:02:BD:D8:43:26:D7:A8:62:1F:97 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3f672c72-4d5f-408a-8326-7e62adbed891.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.221.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:32:48:ad:6a:1a:36:5e:8e:3e:55:fa:45:ee:ce:8d:92:d3: 33:14:6e:7e:7d:9f:ff:d7:44:e9:c2:87:a7:d1:1b:46:59:00: 07:2e:f8:8e:14:5a:fe:5d:31:84:8c:5e:cf:d3:68:92:bf:98: 0c:be:47:2f:66:96:61:57:af:c6:6a:7f:4b:ee:8d:41:3b:94: 3e:1c:80:5c:1f:f4:b4:55:45:d7:99:cc:ba:1a:24:35:dd:d7: a1:9d:a1:74:be:fb:31:b3:c2:60:ac:e0:0a:99:84:0e:f2:e2: a3:56:a7:87:cf:d2:40:6f:35:98:e6:bb:d5:35:95:96:47:6b: a0:c9:c7:e5:34:e3:30:7a:1b:38:b1:0e:ea:58:c3:c8:36:35: a9:b1:01:22:9a:c1:d9:88:db:93:c5:e4:e7:66:7f:cb:3c:b9: 91:7e:63:7c:d5:f9:c7:75:e8:c4:ea:ab:92:97:b8:e7:2a:d3: ff:8f:99:7f:7b:c1:87:08:b1:6b:40:40:a4:25:e3:73:1e:2c: ef:fd:cb:e5:7a:8a:98:7a:c6:62:64:49:ec:ae:76:7c:02:6e: 5a:d6:ac:05:41:f8:94:a9:04:9f:9c:d5:fc:f2:f2:a7:0e:73: a1:ea:c0:f2:46:e7:29:00:f2:b5:bb:bc:31:85:44:10:62:7d: c5:a3:d1:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEbif7qP7OXqh7a/6apXPB0iH4iswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAyMDA5WhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTIxOTEwNzZhYTcyY2Q3ZTJkN2MxNzkyNjI5ZWQyOTJl ZWE2N2NmMjc3YzlmZWExMjAyZDc5YjBhMjRmYWIxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKs7Tzr0PuuJ0HuIbdwhX8+6XCGhYWK+41TjqRT+a+gQss cbSWxgxCWCcc2MhiNhcSDWEw/aHgoSH5gXva80fS+BHm/QUm6XO8rRIHN8isZYNd nXPGvaTYGjONrOZRZ1/zqNDDrsbO0L8rIzAOI6sSAJqOO9J1QcF8EPr33Ocnc3F+ ufSGso8oLt3WD70OT840qFnaA98tGdVWPeTqUAFxm+d4/y5ZEdTDOf4B8Gt2xMjB VVZrX2XhnktQSXkhxVu5IPdBSuTOlQtmWMm5rAa41AGyA+KycQCiR0IHH+CXYYLL 3B4bbh1CD8vRhtoB3UT7j51CU/ZG7exfAZ7wOJXtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVaBow2uHipFvLgK92EMm16hiH5cwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNmNjcyYzcyLTRkNWYtNDA4YS04MzI2LTdlNjJhZGJlZDg5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d0wDQYJKoZIhvcNAQELBQADggEBAEoySK1qGjZejj5V+kXuzo2S0zMU bn59n//XROnCh6fRG0ZZAAcu+I4UWv5dMYSMXs/TaJK/mAy+Ry9mlmFXr8Zqf0vu jUE7lD4cgFwf9LRVRdeZzLoaJDXd16GdoXS++zGzwmCs4AqZhA7y4qNWp4fP0kBv NZjmu9U1lZZHa6DJx+U04zB6GzixDupYw8g2NamxASKawdmI25PF5Odmf8s8uZF+ Y3zV+cd16MTqq5KXuOcq0/+PmX97wYcIsWtAQKQl43MeLO/9y+V6iph6xmJkSeyu dnwCblrWrAVB+JSpBJ+c1fzy8qcOc6HqwPJG5ykA8rW7vDGFRBBifcWj0cM= -----END CERTIFICATE-----Generated at Sun Mar 1 23:47:22 2026 by rpki-client