$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa File: 5569e911-3188-427d-83a0-0e8a45b335d3.roa (raw, json) Hash identifier: UQTiSCJutZWCrwxn0NeyTeIdu9T+yMAw2tVFSEzrFNQ= Subject key identifier: 8C:13:09:42:25:1B:76:90:28:E8:D7:6F:CE:91:5F:4E:87:E4:21:05 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5AC8651EF10E225D14E28952A28DE5716EF11E0D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa Signing time: Wed 11 Feb 2026 00:30:31 +0000 ROA not before: Wed 11 Feb 2026 00:30:31 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:c8:65:1e:f1:0e:22:5d:14:e2:89:52:a2:8d:e5:71:6e:f1:1e:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:30:31 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=e243095ec6959df61d1341c76bc8b55a54f11eeb21711fd2b189b2da08345a74, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:53:74:be:ca:44:95:26:13:f9:92:77:c7:99: 7e:dd:98:8d:b3:76:77:e8:c6:86:1e:96:c8:a0:ea: 98:14:67:da:f2:a6:eb:f7:c8:48:32:44:04:95:71: 39:1f:d8:f5:8f:06:30:08:c9:a8:b6:70:26:8c:fb: 38:73:f9:da:7f:ac:c7:15:f5:da:86:eb:78:01:3d: 6b:e3:fe:f0:72:84:90:ca:fd:73:76:4f:65:8c:57: 2a:c5:79:b1:b8:47:f6:89:72:b7:94:75:ad:5f:c2: 3f:59:2a:43:2b:d4:50:35:fe:ab:b0:58:b8:1d:69: d7:39:98:01:f0:d1:85:17:17:7e:f2:a9:57:b3:cf: 39:f0:3f:40:55:0a:91:3a:72:90:45:bb:a5:fc:37: 9c:26:07:35:c3:c1:01:8d:20:9d:8a:14:f5:27:06: 89:e5:7b:60:0a:fd:0f:a5:be:0b:ba:df:01:25:eb: ed:bf:a3:33:06:05:d8:7a:ad:cf:dc:9b:f7:c7:b7: 93:ed:fc:53:fc:c5:0b:e8:a2:25:90:0c:88:3c:a6: d2:c6:53:a8:33:53:22:d1:c2:b1:8f:d6:43:37:9f: 44:d7:e3:4e:e5:55:c7:cd:44:05:e0:2f:26:11:7b: b2:9d:47:f8:11:da:f4:9c:83:0d:6f:58:30:67:05: 99:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:13:09:42:25:1B:76:90:28:E8:D7:6F:CE:91:5F:4E:87:E4:21:05 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.183.0/24 Signature Algorithm: sha256WithRSAEncryption 33:9f:9e:8b:0b:74:34:3d:52:4a:38:8d:16:ab:da:d4:ee:96: 60:50:1a:59:f3:c4:b9:26:f2:0f:b0:33:fa:76:af:29:81:4e: 63:6c:15:7a:93:2d:4d:57:a7:69:e9:d4:0a:61:ae:18:e6:d7: 88:91:9d:d9:a8:bc:dd:a4:cd:06:12:d6:0e:a7:d4:86:33:6b: c8:1c:0a:95:33:7f:48:da:6f:9d:42:a5:88:22:8a:39:ab:e9: be:d3:32:02:d7:0d:0e:14:f2:38:b2:3a:e6:61:6e:d2:ce:02: a7:6a:4e:46:19:d3:7c:e8:d4:65:63:ad:56:cf:83:80:54:02: 0b:b7:87:c7:70:6a:ef:27:e7:38:4d:21:03:25:54:f7:28:90: b6:b9:06:58:80:0f:d1:91:16:bd:dc:dc:8d:7c:51:22:76:d7: 0a:08:3a:ad:e4:26:0e:76:17:0c:63:86:e8:56:8c:75:58:05: c1:2f:12:34:da:24:b7:1d:80:20:41:73:30:77:51:44:93:de: 00:34:eb:25:c0:b7:4b:8d:e0:64:55:c9:43:8c:0c:05:dd:e3: 7b:3d:e9:8c:77:f6:5d:5d:d6:5a:a3:ff:39:7a:fe:53:d4:f5: 67:e7:81:0d:2e:be:af:5f:cc:b0:4c:04:bb:01:54:91:e9:30: fc:fc:96:89 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWshlHvEOIl0U4olSoo3lcW7xHg0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAzMDMxWhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjQzMDk1ZWM2OTU5ZGY2MWQxMzQxYzc2YmM4YjU1YTU0 ZjExZWViMjE3MTFmZDJiMTg5YjJkYTA4MzQ1YTc0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9U3S+ykSVJhP5knfHmX7dmI2zdnfoxoYelsig6pgUZ9ry puv3yEgyRASVcTkf2PWPBjAIyai2cCaM+zhz+dp/rMcV9dqG63gBPWvj/vByhJDK /XN2T2WMVyrFebG4R/aJcreUda1fwj9ZKkMr1FA1/quwWLgdadc5mAHw0YUXF37y qVezzznwP0BVCpE6cpBFu6X8N5wmBzXDwQGNIJ2KFPUnBonle2AK/Q+lvgu63wEl 6+2/ozMGBdh6rc/cm/fHt5Pt/FP8xQvooiWQDIg8ptLGU6gzUyLRwrGP1kM3n0TX 407lVcfNRAXgLyYRe7KdR/gR2vScgw1vWDBnBZlpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjBMJQiUbdpAo6NdvzpFfTofkIQUwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU1NjllOTExLTMxODgtNDI3ZC04M2EwLTBlOGE0NWIzMzVkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37cwDQYJKoZIhvcNAQELBQADggEBADOfnosLdDQ9Uko4jRar2tTulmBQ GlnzxLkm8g+wM/p2rymBTmNsFXqTLU1Xp2np1Aphrhjm14iRndmovN2kzQYS1g6n 1IYza8gcCpUzf0jab51CpYgiijmr6b7TMgLXDQ4U8jiyOuZhbtLOAqdqTkYZ03zo 1GVjrVbPg4BUAgu3h8dwau8n5zhNIQMlVPcokLa5BliAD9GRFr3c3I18USJ21woI Oq3kJg52FwxjhuhWjHVYBcEvEjTaJLcdgCBBczB3UUST3gA06yXAt0uN4GRVyUOM DAXd43s96Yx39l1d1lqj/zl6/lPU9WfngQ0uvq9fzLBMBLsBVJHpMPz8lok= -----END CERTIFICATE-----Generated at Sun Mar 1 21:56:05 2026 by rpki-client