$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa File: 8621c38c-da14-4436-8fad-6252da797f1a.roa (raw, json) Hash identifier: Dqpyxci8ayHxW5rnWWglNrQKiKLLkS6WbfrGZbbHyug= Subject key identifier: B0:84:7E:81:AB:8A:20:75:C5:D7:0F:55:2C:11:90:FD:7B:91:5D:B3 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4C8034E51C2A53BC8E9EEF30B0288D9C9D37424D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa Signing time: Wed 11 Feb 2026 00:30:50 +0000 ROA not before: Wed 11 Feb 2026 00:30:50 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:80:34:e5:1c:2a:53:bc:8e:9e:ef:30:b0:28:8d:9c:9d:37:42:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:30:50 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=425cd3c0cb5dbf453cfa879aadf8952fd0bfa1e0dfaeed836e8e2b996a189b7b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:90:05:b8:ca:de:74:15:f0:27:e2:65:21:cb: 28:9e:0a:07:ac:bc:ce:45:7f:dc:15:af:14:41:e0: 14:0b:3e:97:4b:54:d4:a0:46:7f:6d:62:5f:ba:bd: 6e:97:29:29:96:6b:b8:4a:5d:1b:52:1e:e6:4f:5d: 95:2c:ed:90:95:99:85:3f:a4:2b:b3:5b:a8:6a:e1: 60:3f:eb:10:2d:0b:2f:e5:4e:c7:73:67:af:0e:3e: 35:d5:93:7b:1a:31:a8:45:45:9a:ed:92:5d:0d:8c: ce:f7:e4:91:36:1b:50:25:23:51:1d:3c:09:2d:16: 08:ac:59:00:2f:a2:e3:51:c0:80:8d:c7:38:eb:43: 5a:cd:b6:55:0f:43:15:78:b5:14:11:3c:5b:65:f8: 4d:ec:c7:05:5c:24:f1:d5:95:d0:86:58:be:ff:fc: 6b:ab:f5:be:f0:25:2a:10:c5:34:5e:84:e2:2f:d9: b4:51:6f:ec:3c:9f:38:38:59:95:03:7d:5d:18:5b: 85:e5:da:e7:48:e1:53:22:9a:3e:27:08:99:8e:21: 9b:75:65:00:fb:3d:9b:33:16:3a:59:9a:26:c8:4b: 16:47:7b:2b:38:85:55:1a:f8:9b:55:5b:30:00:4d: a6:e8:db:57:e3:23:d3:87:4b:4a:ab:50:d5:a6:28: 8c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:84:7E:81:AB:8A:20:75:C5:D7:0F:55:2C:11:90:FD:7B:91:5D:B3 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.222.0/24 Signature Algorithm: sha256WithRSAEncryption 47:3b:bb:ed:60:e9:07:fe:f4:18:29:aa:d1:90:7d:63:00:09: 95:4a:1e:63:5a:95:ae:58:4c:1c:70:26:ce:17:12:fe:fd:33: 48:9b:35:e2:97:2a:b9:18:3b:02:1a:b2:aa:d5:d7:b2:67:6f: 9f:14:9f:0d:03:c3:13:74:e2:e6:c5:fa:c6:5f:5c:4a:a6:11: 6d:4c:1e:06:96:96:18:51:18:da:fe:8d:31:e8:73:0d:75:40: 5b:ea:60:3b:7a:c4:38:1d:55:96:2b:aa:0b:48:c4:25:54:e6: 2a:33:01:41:36:46:c3:8a:79:cd:0f:a4:09:fe:72:38:70:2b: 9a:dc:6a:74:3b:ff:a3:c3:3d:55:8b:ed:02:b2:d4:8e:48:61: e7:5c:c7:ac:4e:e9:0e:b6:c4:14:2b:94:a1:c5:df:c8:69:48: 67:6c:b4:a5:0c:08:72:f8:73:ef:b2:5c:10:90:b1:10:f1:89: c4:2d:24:1a:04:d7:3d:8f:4c:84:75:93:a2:df:b9:dd:00:f1: 9d:1a:98:2f:6f:d5:4e:54:e9:91:38:64:33:59:fe:e1:86:e2: f9:89:b3:fb:39:fd:09:bb:dd:9e:90:ea:0d:06:af:72:7b:fb: 06:84:9f:93:67:e2:14:72:9d:79:f9:6f:92:f2:0a:54:29:83: c3:a8:5d:35 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTIA05RwqU7yOnu8wsCiNnJ03Qk0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAzMDUwWhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjVjZDNjMGNiNWRiZjQ1M2NmYTg3OWFhZGY4OTUyZmQw YmZhMWUwZGZhZWVkODM2ZThlMmI5OTZhMTg5YjdiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSkAW4yt50FfAn4mUhyyieCgesvM5Ff9wVrxRB4BQLPpdL VNSgRn9tYl+6vW6XKSmWa7hKXRtSHuZPXZUs7ZCVmYU/pCuzW6hq4WA/6xAtCy/l TsdzZ68OPjXVk3saMahFRZrtkl0NjM735JE2G1AlI1EdPAktFgisWQAvouNRwICN xzjrQ1rNtlUPQxV4tRQRPFtl+E3sxwVcJPHVldCGWL7//Gur9b7wJSoQxTRehOIv 2bRRb+w8nzg4WZUDfV0YW4Xl2udI4VMimj4nCJmOIZt1ZQD7PZszFjpZmibISxZH eys4hVUa+JtVWzAATabo21fjI9OHS0qrUNWmKIxPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsIR+gauKIHXF1w9VLBGQ/XuRXbMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg2MjFjMzhjLWRhMTQtNDQzNi04ZmFkLTYyNTJkYTc5N2YxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d4wDQYJKoZIhvcNAQELBQADggEBAEc7u+1g6Qf+9BgpqtGQfWMACZVK HmNala5YTBxwJs4XEv79M0ibNeKXKrkYOwIasqrV17Jnb58Unw0DwxN04ubF+sZf XEqmEW1MHgaWlhhRGNr+jTHocw11QFvqYDt6xDgdVZYrqgtIxCVU5iozAUE2RsOK ec0PpAn+cjhwK5rcanQ7/6PDPVWL7QKy1I5IYedcx6xO6Q62xBQrlKHF38hpSGds tKUMCHL4c++yXBCQsRDxicQtJBoE1z2PTIR1k6Lfud0A8Z0amC9v1U5U6ZE4ZDNZ /uGG4vmJs/s5/Qm73Z6Q6g0Gr3J7+waEn5Nn4hRynXn5b5LyClQpg8OoXTU= -----END CERTIFICATE-----Generated at Sun Mar 1 22:03:26 2026 by rpki-client