$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a1532cad-101c-42fe-83e3-e4a74867afd7.roa File: a1532cad-101c-42fe-83e3-e4a74867afd7.roa (raw, json) Hash identifier: AsYwsfrUE6g58Ld7wiX1aXHtP7yOcRGIkR3doLXsTPg= Subject key identifier: C4:25:32:6C:61:B8:BD:41:E7:56:80:4F:92:B5:79:67:BD:01:1B:82 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2CBA0F37E323D77CECCC7E38C6ADDEECDEFAB3A7 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a1532cad-101c-42fe-83e3-e4a74867afd7.roa Signing time: Tue 24 Feb 2026 00:10:08 +0000 ROA not before: Tue 24 Feb 2026 00:10:08 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:ba:0f:37:e3:23:d7:7c:ec:cc:7e:38:c6:ad:de:ec:de:fa:b3:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 24 00:10:08 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=64b1a0b48e2ce6e77b74db0bac25be47a6cd8c28c4f8cdadde200b16653ffaaf, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:92:ae:fb:99:fa:eb:67:1d:28:2f:06:62:c9: 7d:f5:b0:26:01:65:85:1d:95:23:5a:5f:3e:e7:c1: 2d:7f:6d:4f:80:dc:35:ef:5f:b6:b0:53:e9:c6:48: 2a:40:5e:0d:15:96:72:1a:85:32:c5:e1:ea:37:c9: d0:6c:83:98:9e:bd:77:94:79:90:33:76:5b:03:c0: 38:f0:d7:4c:5f:cd:3f:e2:61:8a:e6:93:03:21:33: a0:ef:c9:0f:1a:3f:e2:ae:8c:3f:88:0c:40:6d:52: 61:eb:ed:ed:9f:31:ba:b4:61:5c:b2:a1:59:6d:de: 0b:50:21:ea:f3:d7:9b:5b:81:2f:41:c2:24:51:ab: 3c:83:e2:ca:54:c0:b5:a6:9b:92:67:39:74:11:7e: 0b:c9:b6:2e:b3:51:a5:29:b9:0f:8a:ad:9e:9c:b3: 10:27:0b:75:28:f5:b9:6b:39:c2:3d:e7:16:91:16: 10:35:1b:20:4c:1f:cc:79:0a:70:17:0d:c0:5a:06: 62:52:d3:2d:a3:53:e2:1f:41:9b:c1:eb:50:a0:68: a9:cb:f5:de:07:5d:21:7c:eb:32:3c:71:e7:21:45: d1:dc:f4:dc:f6:94:64:c2:0f:0a:9c:1e:1e:dd:a2: 3a:ea:9c:e4:cd:4c:a1:9e:3a:1e:6a:ea:9b:01:4d: c2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:25:32:6C:61:B8:BD:41:E7:56:80:4F:92:B5:79:67:BD:01:1B:82 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a1532cad-101c-42fe-83e3-e4a74867afd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.224.0/19 Signature Algorithm: sha256WithRSAEncryption 0f:a0:c7:69:ba:df:6e:cd:17:75:9d:02:72:ee:f1:b3:10:a4: 09:57:82:02:97:bb:8f:77:a3:7a:35:60:a7:2d:db:e9:db:d1: cf:15:91:9b:53:7a:e2:9f:b8:da:23:a7:6b:04:ee:11:71:49: 3e:58:41:d3:45:0a:47:70:d8:cb:3f:94:df:71:ed:13:de:4f: c2:e3:18:14:91:90:77:a3:45:ab:93:48:b0:9b:cf:3f:54:11: 7d:0c:54:3f:59:e7:5b:30:17:4f:f6:24:07:03:7e:8f:07:94: e0:b1:d9:be:2e:a4:72:9e:ca:ac:33:c4:43:cf:b9:96:11:4e: bd:fb:8d:aa:21:2c:a3:62:58:b0:90:97:89:83:9e:c4:5c:58: e7:5d:4c:10:89:27:9e:9c:ae:3e:dc:39:29:b4:bc:0d:45:39: 96:4d:3f:1c:e7:24:06:2a:c5:5d:fa:c9:25:f0:f3:98:75:e7: 3c:3d:f4:33:c3:45:1e:e3:b5:d3:58:81:2c:38:59:1c:2a:83: cd:48:70:ac:29:23:5f:15:5f:9e:39:8c:30:06:8e:3f:5f:62: 11:0f:ff:18:11:75:2c:fd:27:96:36:8c:65:5f:ec:45:75:4f: 87:f0:39:b8:2f:ed:3b:24:24:e1:55:eb:33:94:15:61:77:d0: e7:43:8d:35 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULLoPN+Mj13zszH44xq3e7N76s6cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjI0MDAxMDA4WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGIxYTBiNDhlMmNlNmU3N2I3NGRiMGJhYzI1YmU0N2E2 Y2Q4YzI4YzRmOGNkYWRkZTIwMGIxNjY1M2ZmYWFmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAkq77mfrrZx0oLwZiyX31sCYBZYUdlSNaXz7nwS1/bU+A 3DXvX7awU+nGSCpAXg0VlnIahTLF4eo3ydBsg5ievXeUeZAzdlsDwDjw10xfzT/i YYrmkwMhM6DvyQ8aP+KujD+IDEBtUmHr7e2fMbq0YVyyoVlt3gtQIerz15tbgS9B wiRRqzyD4spUwLWmm5JnOXQRfgvJti6zUaUpuQ+KrZ6csxAnC3Uo9blrOcI95xaR FhA1GyBMH8x5CnAXDcBaBmJS0y2jU+IfQZvB61CgaKnL9d4HXSF86zI8cechRdHc 9Nz2lGTCDwqcHh7dojrqnOTNTKGeOh5q6psBTcI3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxCUybGG4vUHnVoBPkrV5Z70BG4IwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2ExNTMyY2FkLTEwMWMtNDJmZS04M2UzLWU0YTc0ODY3YWZkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUX++AwDQYJKoZIhvcNAQELBQADggEBAA+gx2m6327NF3WdAnLu8bMQpAlX ggKXu493o3o1YKct2+nb0c8VkZtTeuKfuNojp2sE7hFxST5YQdNFCkdw2Ms/lN9x 7RPeT8LjGBSRkHejRauTSLCbzz9UEX0MVD9Z51swF0/2JAcDfo8HlOCx2b4upHKe yqwzxEPPuZYRTr37jaohLKNiWLCQl4mDnsRcWOddTBCJJ56crj7cOSm0vA1FOZZN PxznJAYqxV36ySXw85h15zw99DPDRR7jtdNYgSw4WRwqg81IcKwpI18VX545jDAG jj9fYhEP/xgRdSz9J5Y2jGVf7EV1T4fwObgv7TskJOFV6zOUFWF30OdDjTU= -----END CERTIFICATE-----Generated at Sun Mar 1 21:52:37 2026 by rpki-client