$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa File: 58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa (raw, json) Hash identifier: hF275P8sEzWasGLutkFx1rY6IL9TomOS1EuWMnx8Gus= Subject key identifier: A8:0A:DA:73:ED:B0:40:E4:74:F5:57:23:45:B8:68:91:7C:11:38:61 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6BD3ED19CF28DB1B1726A1C3878C52E0C4295392 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa Signing time: Tue 24 Feb 2026 00:10:30 +0000 ROA not before: Tue 24 Feb 2026 00:10:30 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d3:ed:19:cf:28:db:1b:17:26:a1:c3:87:8c:52:e0:c4:29:53:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 24 00:10:30 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=d72226077c318fe3e98be6b35de4aacac6f0adaa76e20b2b658e492ef6f5c26d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6f:08:37:f9:50:66:2a:36:b9:b7:1d:40:56: 55:54:a0:d7:13:5f:a3:1a:50:5a:0a:4d:11:b2:be: 01:b2:94:5f:2f:b5:a4:76:b0:fd:90:e7:41:4d:4a: bf:9b:dc:44:08:1d:e9:47:36:e8:e0:a6:f7:8b:33: 13:f9:28:84:8a:24:2c:f4:26:2b:e4:1c:3f:a1:7b: 01:5b:a2:de:0f:fe:ac:42:51:6e:97:c2:83:91:64: 6e:76:69:da:a9:5a:58:03:88:f9:e2:99:c7:cd:81: 49:5e:42:83:d0:02:34:92:ce:19:2e:c2:fb:f2:0d: 27:49:14:ec:c9:40:d9:bd:8e:67:e9:24:76:4e:53: c9:7d:a9:d5:95:6d:a7:2e:0c:34:86:d7:57:08:50: 3f:e4:e5:c9:f6:fe:64:42:ec:5c:5f:61:34:2a:f7: dd:06:88:9d:93:03:89:45:b2:d1:31:cd:84:95:71: 1a:65:81:e0:bf:01:3c:44:0e:23:28:7e:95:9b:19: 28:c6:de:49:30:00:e2:a2:f9:20:36:be:39:72:4b: a9:11:55:83:f6:a8:4b:db:0d:19:34:f4:af:7f:f3: 5e:18:9a:40:1d:f5:aa:28:24:a2:56:c7:d2:f4:bd: cf:bc:99:35:08:3e:03:d4:c4:83:76:da:91:08:ad: df:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:0A:DA:73:ED:B0:40:E4:74:F5:57:23:45:B8:68:91:7C:11:38:61 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.232.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:c9:55:0a:72:f7:2a:1e:61:64:21:6b:0b:f2:de:7d:6b:7c: 6e:a4:b1:3f:e0:f7:33:62:42:50:7f:91:b5:56:ee:41:df:d6: ef:c1:16:c0:23:6b:b3:a7:b3:13:c9:69:e0:02:d0:8e:34:49: 3c:a0:68:c1:ae:72:64:d5:14:7d:ca:4a:dd:a0:1a:de:00:67: 4f:98:e1:b6:dc:e8:86:fe:c0:fc:07:52:96:be:c8:bc:11:96: d1:43:43:2e:6a:33:6a:e7:a0:28:38:07:30:04:93:e1:92:92: d8:d8:22:a4:de:c7:10:a2:11:36:b1:ea:d3:af:04:68:72:e5: 1d:6b:39:f4:a8:27:01:55:6c:7c:a3:6e:86:38:8b:64:c9:25: 2f:3c:95:a4:cf:d3:33:b1:6f:96:98:4a:f8:52:5e:90:84:b0: a4:7b:4c:50:6f:70:40:c7:52:8d:d2:bf:5d:5a:f3:88:38:df: c5:65:2a:4f:e0:07:84:d6:2a:fc:ca:0b:6e:6a:63:d7:b1:b7: 87:78:c2:9e:3b:f2:bd:91:86:32:f4:8a:c8:ff:2a:02:d4:14: 63:5a:c0:d7:81:b1:06:86:42:cd:05:98:2f:cc:88:9b:ca:ad: 7b:01:a3:6a:dc:63:7e:3e:3b:55:21:9d:83:62:14:8f:33:89: 0d:ff:80:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa9PtGc8o2xsXJqHDh4xS4MQpU5IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjI0MDAxMDMwWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzIyMjYwNzdjMzE4ZmUzZTk4YmU2YjM1ZGU0YWFjYWM2 ZjBhZGFhNzZlMjBiMmI2NThlNDkyZWY2ZjVjMjZkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUbwg3+VBmKja5tx1AVlVUoNcTX6MaUFoKTRGyvgGylF8v taR2sP2Q50FNSr+b3EQIHelHNujgpveLMxP5KISKJCz0JivkHD+hewFbot4P/qxC UW6XwoORZG52adqpWlgDiPnimcfNgUleQoPQAjSSzhkuwvvyDSdJFOzJQNm9jmfp JHZOU8l9qdWVbacuDDSG11cIUD/k5cn2/mRC7FxfYTQq990GiJ2TA4lFstExzYSV cRplgeC/ATxEDiMofpWbGSjG3kkwAOKi+SA2vjlyS6kRVYP2qEvbDRk09K9/814Y mkAd9aooJKJWx9L0vc+8mTUIPgPUxIN22pEIrd/DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqArac+2wQOR09VcjRbhokXwROGEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU4ZjlmZmU1LTA5ZmQtNDBhYy04ZWE0LWZlMWY4ZDAxZDg3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFqegwDQYJKoZIhvcNAQELBQADggEBAGzJVQpy9yoeYWQhawvy3n1rfG6k sT/g9zNiQlB/kbVW7kHf1u/BFsAja7OnsxPJaeAC0I40STygaMGucmTVFH3KSt2g Gt4AZ0+Y4bbc6Ib+wPwHUpa+yLwRltFDQy5qM2rnoCg4BzAEk+GSktjYIqTexxCi ETax6tOvBGhy5R1rOfSoJwFVbHyjboY4i2TJJS88laTP0zOxb5aYSvhSXpCEsKR7 TFBvcEDHUo3Sv11a84g438VlKk/gB4TWKvzKC25qY9ext4d4wp478r2RhjL0isj/ KgLUFGNawNeBsQaGQs0FmC/MiJvKrXsBo2rcY34+O1UhnYNiFI8ziQ3/gNI= -----END CERTIFICATE-----Generated at Sun Mar 1 23:37:16 2026 by rpki-client