$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa File: 5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa (raw, json) Hash identifier: 5vfHXKPgaebNLBj8z+X9/sSmKVK2Lvsp3SHDTsmkEsE= Subject key identifier: 85:D8:3F:30:03:9F:9D:42:62:B0:9F:39:2B:55:F6:13:20:BF:8E:CD Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 460FB4FD66AE3C31E06FE863D6CFFF3209787043 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa Signing time: Wed 11 Feb 2026 00:30:18 +0000 ROA not before: Wed 11 Feb 2026 00:30:18 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:0f:b4:fd:66:ae:3c:31:e0:6f:e8:63:d6:cf:ff:32:09:78:70:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:30:18 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=5e44e26aac9169875d75240f45eb32dee1ba209b50c819d488d3d4c33e710445, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d4:dd:5f:fb:0b:47:7b:d0:8d:2f:a1:19:d8: 52:b6:3c:96:e8:ec:f6:de:1a:bc:45:d2:2f:02:ab: 70:55:09:08:8c:1b:5a:4f:f5:a6:ae:0f:60:c5:77: 75:e2:22:de:f7:15:57:42:94:79:31:93:82:01:ea: fd:ba:c2:63:64:d0:dd:2b:e1:9b:39:18:d2:be:08: 81:b7:65:7b:41:08:2d:9a:b1:fd:91:ab:75:8d:2d: 57:98:5d:2b:9e:40:1b:f1:80:09:18:53:15:9c:cd: 09:a4:ca:3d:ac:70:c0:11:7c:17:62:e9:06:0b:70: 9b:3a:ed:cb:1a:90:2d:2c:b8:da:8e:28:5e:c0:c1: 6a:0f:ac:85:1b:6a:e8:6c:f6:0d:c4:4e:d3:6d:0c: c3:01:11:22:e5:64:71:88:bb:17:aa:78:4d:da:b1: 4c:70:e9:d4:c3:c4:cc:df:6d:d6:c3:7d:37:d0:1b: 86:e4:68:b8:4a:7c:43:5c:f4:5f:ce:9d:e2:89:42: 06:b4:62:5f:30:aa:4b:3a:fc:fa:55:11:f4:d5:02: ef:bd:94:44:7d:e7:77:a8:b2:06:d7:29:6e:54:ac: f8:4b:8b:c8:14:9a:a6:35:85:b6:20:1e:34:c5:fd: 45:c8:55:32:bc:dd:7d:82:77:ad:15:2e:70:05:31: 17:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D8:3F:30:03:9F:9D:42:62:B0:9F:39:2B:55:F6:13:20:BF:8E:CD X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.233.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:1d:19:45:ec:89:b4:3f:e2:a3:03:15:93:4d:e2:92:43:be: 81:62:6a:8a:6c:77:5e:bc:a1:e2:22:e7:50:ac:3e:e8:fe:71: 10:52:30:b2:50:57:e7:fb:c9:78:03:00:7d:1f:83:5e:db:3c: c7:ca:8c:a8:fa:94:ba:a0:91:84:49:2c:12:f4:6e:96:00:c1: 31:48:20:9a:c2:53:bd:41:33:72:58:6f:f1:21:21:0d:a8:59: 2d:0e:cd:41:c5:40:15:0e:1c:90:57:d5:3e:59:3a:a9:b7:87: 74:5b:88:9b:ae:a6:e2:62:97:ca:d4:6c:32:f6:69:cd:da:2d: 1f:fb:b7:1f:46:f9:2c:ef:61:7e:b5:7c:b7:3b:9f:bd:23:75: 4a:eb:bd:8c:27:0a:72:60:ab:5b:2a:35:f2:0b:d2:5e:3c:2e: b0:01:1a:e9:d9:8e:ab:37:4c:a4:e6:f1:9c:f0:d2:8c:a3:a9: e8:94:b9:01:39:8f:ea:10:17:60:fc:3c:08:1f:11:4e:78:2d: a0:6d:93:95:52:3d:8d:8a:45:ea:5f:b2:2a:3d:9b:39:e5:64: a1:18:86:4b:e0:79:af:73:b0:80:76:48:b1:d0:17:40:59:26: 7d:48:27:f8:9d:6e:91:3e:c8:bd:9b:f4:35:85:6c:32:a7:06: b9:80:38:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURg+0/WauPDHgb+hj1s//Mgl4cEMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAzMDE4WhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTQ0ZTI2YWFjOTE2OTg3NWQ3NTI0MGY0NWViMzJkZWUx YmEyMDliNTBjODE5ZDQ4OGQzZDRjMzNlNzEwNDQ1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC1N1f+wtHe9CNL6EZ2FK2PJbo7PbeGrxF0i8Cq3BVCQiM G1pP9aauD2DFd3XiIt73FVdClHkxk4IB6v26wmNk0N0r4Zs5GNK+CIG3ZXtBCC2a sf2Rq3WNLVeYXSueQBvxgAkYUxWczQmkyj2scMARfBdi6QYLcJs67csakC0suNqO KF7AwWoPrIUbauhs9g3ETtNtDMMBESLlZHGIuxeqeE3asUxw6dTDxMzfbdbDfTfQ G4bkaLhKfENc9F/OneKJQga0Yl8wqks6/PpVEfTVAu+9lER953eosgbXKW5UrPhL i8gUmqY1hbYgHjTF/UXIVTK83X2Cd60VLnAFMRfJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhdg/MAOfnUJisJ85K1X2EyC/js0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkMzRmNzk3LTZkMTYtNDk4YS1iNjZkLThjN2QwZmNhYzc3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++kwDQYJKoZIhvcNAQELBQADggEBAF4dGUXsibQ/4qMDFZNN4pJDvoFi aopsd168oeIi51CsPuj+cRBSMLJQV+f7yXgDAH0fg17bPMfKjKj6lLqgkYRJLBL0 bpYAwTFIIJrCU71BM3JYb/EhIQ2oWS0OzUHFQBUOHJBX1T5ZOqm3h3RbiJuupuJi l8rUbDL2ac3aLR/7tx9G+SzvYX61fLc7n70jdUrrvYwnCnJgq1sqNfIL0l48LrAB GunZjqs3TKTm8Zzw0oyjqeiUuQE5j+oQF2D8PAgfEU54LaBtk5VSPY2KRepfsio9 mznlZKEYhkvgea9zsIB2SLHQF0BZJn1IJ/idbpE+yL2b9DWFbDKnBrmAOMA= -----END CERTIFICATE-----Generated at Mon Mar 2 09:54:51 2026 by rpki-client