$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa File: 5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa (raw, json) Hash identifier: 8O2D/SSrjkAQM8nDYd5lVLzAnEKwP7YCJHLFwbvxYhA= Subject key identifier: 4B:CF:4E:9D:E2:4C:05:4B:23:1C:A7:02:CC:B1:80:4E:1C:2E:DC:D9 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2665D0367F10EF702322E9C5702935C9C2D8F8D0 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa Signing time: Wed 11 Feb 2026 00:30:51 +0000 ROA not before: Wed 11 Feb 2026 00:30:51 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:65:d0:36:7f:10:ef:70:23:22:e9:c5:70:29:35:c9:c2:d8:f8:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:30:51 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=d9a7797c37b583db7fe7d60e67489b72d7f2386cbefc3cdde8dc91d237e73695, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4d:9f:09:56:e7:9c:a4:a6:87:50:37:f3:39: 96:74:f3:55:69:fb:5c:bd:f7:d3:46:48:b7:62:e0: df:ec:75:ec:0b:f7:fe:1e:78:c1:9f:cf:dd:49:1e: 2f:65:52:3a:a7:19:ce:cf:93:79:b7:58:d6:3b:bc: 68:6c:e6:96:81:c7:fb:3a:c8:55:04:f3:0f:6a:4f: 78:aa:03:76:54:53:a6:e8:37:a2:4a:78:d1:f5:93: 3b:38:4d:f2:fc:e4:61:7e:fa:e1:63:4a:5f:73:bf: 73:b4:2d:66:53:07:84:6e:63:6a:60:15:ab:42:a8: 64:00:3d:cc:bb:63:51:8c:1f:51:0f:12:ca:7c:d6: ec:05:66:62:d8:5a:0b:bb:90:73:d0:0f:dc:4c:b6: 3a:3e:9c:d9:a8:af:02:68:d9:ba:3b:38:5d:f9:08: a4:c6:60:c9:52:f8:cc:db:f9:e3:3d:9c:0c:3e:55: 6e:ea:3e:91:40:45:2b:98:e8:0d:49:d1:5e:fc:45: 81:d7:46:cb:bf:21:49:78:e4:90:a6:92:5b:57:c1: 18:87:12:30:2b:3f:7f:dd:be:b3:42:c6:46:96:43: a7:0c:ba:46:a0:78:cc:1a:2f:83:8a:aa:76:44:25: 4e:74:da:f1:8d:ff:32:1a:bf:3e:d3:1a:69:9f:53: 9d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:CF:4E:9D:E2:4C:05:4B:23:1C:A7:02:CC:B1:80:4E:1C:2E:DC:D9 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.214.0/24 Signature Algorithm: sha256WithRSAEncryption 19:d4:8f:65:bc:cd:9b:f8:6c:b0:c7:78:71:99:41:42:20:7a: c7:ed:80:26:f6:55:69:17:dd:ef:a1:19:e4:98:03:23:6f:38: 0f:56:67:52:bd:2b:b6:c9:27:f3:85:13:af:51:af:8a:8a:09: ee:91:ae:cf:fb:cb:1b:27:d3:a0:ba:16:1c:7b:97:e8:26:9d: 65:a7:25:bc:ff:6c:6a:06:e2:09:04:99:e2:e6:cd:b6:75:1f: ae:50:5e:e4:98:16:31:1f:2c:fb:f2:e4:d1:e7:80:b4:66:2c: d7:fc:23:fc:2f:a3:cc:c5:1b:ca:c7:e1:a1:80:4d:41:9d:a8: 67:74:87:68:ff:4e:6d:9d:51:63:79:6d:50:ff:e8:d3:e0:8c: 2f:9d:31:ae:31:3a:ec:f5:cd:0c:a7:2f:ab:5d:e3:f9:44:c1: 35:7a:f7:f0:81:fe:5d:54:68:a3:63:3a:81:1e:b6:63:0e:95: aa:25:26:08:1e:0e:d0:23:98:85:52:25:38:e5:07:8a:a8:a7: 23:b6:d9:f8:6e:97:49:09:71:ed:f8:7b:ce:d9:0e:5a:e8:97: 9b:77:70:c3:c4:a6:5a:38:c9:f2:f7:48:41:38:e9:d7:ea:b9: 9c:89:2e:74:26:16:78:66:05:0b:b5:b7:15:e9:fd:83:15:68: 0d:fe:1f:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJmXQNn8Q73AjIunFcCk1ycLY+NAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAzMDUxWhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWE3Nzk3YzM3YjU4M2RiN2ZlN2Q2MGU2NzQ4OWI3MmQ3 ZjIzODZjYmVmYzNjZGRlOGRjOTFkMjM3ZTczNjk1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbTZ8JVuecpKaHUDfzOZZ081Vp+1y999NGSLdi4N/sdewL 9/4eeMGfz91JHi9lUjqnGc7Pk3m3WNY7vGhs5paBx/s6yFUE8w9qT3iqA3ZUU6bo N6JKeNH1kzs4TfL85GF++uFjSl9zv3O0LWZTB4RuY2pgFatCqGQAPcy7Y1GMH1EP Esp81uwFZmLYWgu7kHPQD9xMtjo+nNmorwJo2bo7OF35CKTGYMlS+Mzb+eM9nAw+ VW7qPpFARSuY6A1J0V78RYHXRsu/IUl45JCmkltXwRiHEjArP3/dvrNCxkaWQ6cM ukageMwaL4OKqnZEJU502vGN/zIavz7TGmmfU51lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS89OneJMBUsjHKcCzLGAThwu3NkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVmZjRiNDRhLTQxYzktNGJjMC1iNzdlLTUyMGZkMWQ3OTI3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dYwDQYJKoZIhvcNAQELBQADggEBABnUj2W8zZv4bLDHeHGZQUIgesft gCb2VWkX3e+hGeSYAyNvOA9WZ1K9K7bJJ/OFE69Rr4qKCe6Rrs/7yxsn06C6Fhx7 l+gmnWWnJbz/bGoG4gkEmeLmzbZ1H65QXuSYFjEfLPvy5NHngLRmLNf8I/wvo8zF G8rH4aGATUGdqGd0h2j/Tm2dUWN5bVD/6NPgjC+dMa4xOuz1zQynL6td4/lEwTV6 9/CB/l1UaKNjOoEetmMOlaolJggeDtAjmIVSJTjlB4qopyO22fhul0kJce34e87Z Dlrol5t3cMPEplo4yfL3SEE46dfquZyJLnQmFnhmBQu1txXp/YMVaA3+H1I= -----END CERTIFICATE-----Generated at Sun Mar 1 23:39:45 2026 by rpki-client