$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: unZYbqSxCfndmWTckdNh+agyX0aZdvVDMU5us84jZIo= Subject key identifier: 76:86:31:65:5E:80:D5:68:82:02:6F:7C:6C:0A:44:88:4C:A8:08:7A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4750C4A2943F87FA1BDABAC7FDA7FB45157DB627 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Tue 10 Feb 2026 00:00:38 +0000 ROA not before: Tue 10 Feb 2026 00:00:38 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:50:c4:a2:94:3f:87:fa:1b:da:ba:c7:fd:a7:fb:45:15:7d:b6:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 10 00:00:38 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=a652560d097d5a974a9444ec8c3013d6bf8dff87bbbf4ef8ff3266e3b9f74021, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:50:97:03:24:8e:25:1e:ce:da:c1:bf:96:0c: e6:e1:9f:d8:9b:f2:9e:4f:4d:96:d6:34:64:b1:78: e2:71:60:0f:46:c2:75:31:7b:5d:cd:40:fb:3a:d4: 34:e5:18:8a:8c:58:27:a6:ed:a4:d4:ef:18:bb:14: 3c:1c:c4:7d:fb:21:43:6d:b8:70:b6:05:b9:1a:bb: be:ca:2e:5d:b6:33:b8:61:75:3b:7e:06:83:64:0d: cc:b5:41:12:45:5d:19:45:6e:1a:39:57:71:38:20: ce:c3:13:d9:92:2a:08:8e:74:86:ee:53:52:33:e4: ad:0a:64:46:5e:ce:41:15:89:f9:88:fd:1a:1b:e4: f0:0b:16:cb:89:ea:22:9c:c9:7e:bb:72:51:e9:29: 8c:40:18:dc:04:6f:3f:f6:0e:e1:e2:02:20:ee:7e: 47:e6:07:d7:84:3f:a6:3b:12:68:a9:eb:0f:db:74: b3:c7:f2:d7:05:a4:cc:ce:50:d8:ae:01:94:3a:93: 52:92:52:2a:db:20:96:d8:f0:cc:88:9a:5d:17:37: f6:8c:58:29:c3:d9:97:4c:64:fe:54:28:05:80:8a: db:b9:0f:72:ba:2d:4e:8d:39:78:f5:bf:1b:3c:5c: d3:ec:64:77:93:21:1c:a1:4a:02:b0:2c:56:5e:43: cb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:86:31:65:5E:80:D5:68:82:02:6F:7C:6C:0A:44:88:4C:A8:08:7A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 05:03:22:14:3c:f3:dc:51:e3:88:27:ea:21:57:80:86:d7:62: 4c:4d:5f:2e:ad:2b:5f:de:3a:26:c5:80:a5:b7:c7:5e:46:59: ad:b6:d2:0b:0a:5b:82:23:0c:c5:66:f8:4d:37:7c:64:3a:d2: 14:58:ad:b4:8b:a4:32:7b:40:4c:e1:a7:29:2b:95:eb:0d:16: da:15:39:30:28:1c:65:25:ed:1d:96:85:c3:76:72:52:57:9f: 3f:4c:c5:9c:9a:e4:9a:8c:18:0f:75:a7:47:b9:98:c7:56:46: b7:3c:fb:2a:59:99:d6:f3:d2:0a:fd:18:43:7f:d5:17:b2:ed: 0f:7b:59:44:d4:f6:af:3f:da:25:33:be:29:4c:ce:06:64:f2: ad:c7:41:bd:54:33:c1:e6:af:3d:6d:28:ac:a1:2e:50:1d:7f: ff:70:7c:07:9b:06:2b:51:7c:88:6c:c8:f8:63:57:0f:e6:c8: e5:66:64:b7:73:ab:c6:f2:99:33:fa:4f:26:73:e3:39:60:56: ad:92:1f:d5:03:73:36:aa:36:aa:f9:1e:14:92:d7:32:9f:0b: 7e:1e:46:ed:79:ba:c0:b9:b4:30:76:02:0f:4b:bf:f4:36:36: 91:6f:73:36:fa:e2:07:3f:fb:4c:b6:4e:25:5e:a7:0c:3d:1b: 94:e9:e2:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR1DEopQ/h/ob2rrH/af7RRV9ticwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjEwMDAwMDM4WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjUyNTYwZDA5N2Q1YTk3NGE5NDQ0ZWM4YzMwMTNkNmJm OGRmZjg3YmJiZjRlZjhmZjMyNjZlM2I5Zjc0MDIxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrUJcDJI4lHs7awb+WDObhn9ib8p5PTZbWNGSxeOJxYA9G wnUxe13NQPs61DTlGIqMWCem7aTU7xi7FDwcxH37IUNtuHC2Bbkau77KLl22M7hh dTt+BoNkDcy1QRJFXRlFbho5V3E4IM7DE9mSKgiOdIbuU1Iz5K0KZEZezkEVifmI /Rob5PALFsuJ6iKcyX67clHpKYxAGNwEbz/2DuHiAiDufkfmB9eEP6Y7Emip6w/b dLPH8tcFpMzOUNiuAZQ6k1KSUirbIJbY8MyIml0XN/aMWCnD2ZdMZP5UKAWAitu5 D3K6LU6NOXj1vxs8XNPsZHeTIRyhSgKwLFZeQ8v7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdoYxZV6A1WiCAm98bApEiEyoCHowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAAUDIhQ889xR44gn6iFXgIbXYkxN Xy6tK1/eOibFgKW3x15GWa220gsKW4IjDMVm+E03fGQ60hRYrbSLpDJ7QEzhpykr lesNFtoVOTAoHGUl7R2WhcN2clJXnz9MxZya5JqMGA91p0e5mMdWRrc8+ypZmdbz 0gr9GEN/1Rey7Q97WUTU9q8/2iUzvilMzgZk8q3HQb1UM8Hmrz1tKKyhLlAdf/9w fAebBitRfIhsyPhjVw/myOVmZLdzq8bymTP6TyZz4zlgVq2SH9UDczaqNqr5HhSS 1zKfC34eRu15usC5tDB2Ag9Lv/Q2NpFvczb64gc/+0y2TiVepww9G5Tp4iA= -----END CERTIFICATE-----Generated at Sun Mar 1 23:40:50 2026 by rpki-client