$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5cc85b6-fdc1-4a8f-b266-611d77cebf5a.roa File: b5cc85b6-fdc1-4a8f-b266-611d77cebf5a.roa (raw, json) Hash identifier: pZctSA+kB2i9VZP+qGHYBRWOAmho0jcSsXqZfNTb2nc= Subject key identifier: 50:62:57:E9:01:0A:83:69:78:03:1A:D8:C2:75:D4:C2:98:40:85:4E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 52735394148DAD905645B5B984A8C6AF069CDA24 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5cc85b6-fdc1-4a8f-b266-611d77cebf5a.roa Signing time: Wed 11 Feb 2026 00:30:53 +0000 ROA not before: Wed 11 Feb 2026 00:30:53 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.251.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:73:53:94:14:8d:ad:90:56:45:b5:b9:84:a8:c6:af:06:9c:da:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:30:53 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=3f00274b316b41cdfbaf53e68a9e3f4904ba2606244caa52a37eb2ad80d5f772, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:df:fa:15:81:07:0c:b3:d2:bc:3d:c5:16:49: 9b:08:41:93:64:a0:f8:52:98:ec:bc:72:da:a1:e6: 9a:34:cc:5e:1d:25:ea:3d:96:fd:ac:57:f5:dc:7e: b9:f1:29:4f:5a:98:ec:73:04:7e:b8:b1:95:7e:b6: 04:36:33:ce:90:d9:ba:68:39:79:82:5e:04:c1:04: 85:b8:74:86:46:69:98:b2:e5:f2:75:19:47:ae:63: 87:ca:3e:a5:9c:93:4a:b2:72:d7:fb:c6:23:2e:d6: 7c:ab:ae:a6:78:a0:98:17:0d:37:d5:4a:87:a9:5c: ec:6e:12:6d:1e:e6:f4:b8:61:ee:36:42:8f:b0:72: 3b:23:02:bf:f3:f2:6a:77:35:ad:84:1e:9c:9a:e5: 09:04:3b:52:82:42:39:64:81:26:f4:53:c1:ef:69: 14:38:9e:4d:e6:a9:62:53:6d:d7:97:62:f9:c9:01: cb:77:90:83:12:46:ef:5e:a8:25:46:cf:bc:f5:ba: 09:b3:78:8b:bf:89:c4:16:a5:4f:67:f2:24:a3:2b: 4a:d6:28:ef:49:86:ea:5b:83:b0:28:97:36:56:cd: 05:e8:c2:64:ee:1d:8d:31:de:68:ee:f8:d4:4a:12: 6d:54:b1:23:29:c8:ef:ed:e0:48:e9:bd:7f:6c:af: b9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:62:57:E9:01:0A:83:69:78:03:1A:D8:C2:75:D4:C2:98:40:85:4E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5cc85b6-fdc1-4a8f-b266-611d77cebf5a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.252.0/22 Signature Algorithm: sha256WithRSAEncryption 22:ae:a4:f7:9a:de:53:ed:b2:b7:65:85:88:f8:d9:63:f4:c0: c8:41:0b:fa:7f:62:7c:c3:d0:06:6c:a0:05:4b:63:3a:5f:cf: aa:5b:98:2d:7c:ac:75:76:d2:14:1f:ef:9a:4e:53:ac:50:af: 8a:03:75:fb:8f:6e:fa:57:df:70:a5:9e:65:85:94:3d:40:ef: 23:60:f0:9c:95:4e:3d:0a:5f:19:3f:7a:00:59:1c:7b:2c:82: 5c:88:17:c2:5e:8c:8d:8a:5e:a5:0d:8f:9d:2d:8e:e2:82:93: d1:ee:07:f3:5d:b1:1d:13:21:67:85:8f:a7:03:06:e8:00:d7: 9f:67:08:67:0e:04:a7:c8:02:5e:f6:8a:5e:4a:ee:fe:c3:51: a1:00:ad:e8:a4:77:d8:d7:7e:f2:1f:2b:cf:f4:c7:a2:29:25: 61:ba:0e:2d:df:f3:d6:3e:73:e5:ed:07:16:6b:46:c3:3e:bb: 8b:68:a9:b2:ea:c3:52:a1:11:3d:f1:71:30:01:1f:b8:fa:79: 97:e7:2c:47:df:2f:37:c4:f4:4d:46:01:18:12:ac:21:64:cc: 1e:af:8b:58:08:ec:6b:9c:3b:a0:46:d3:88:10:e0:ca:6f:e7: 36:1b:2d:c3:55:09:97:05:99:2d:ab:de:43:d7:84:af:17:c3: 93:d1:ca:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUnNTlBSNrZBWRbW5hKjGrwac2iQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAzMDUzWhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjAwMjc0YjMxNmI0MWNkZmJhZjUzZTY4YTllM2Y0OTA0 YmEyNjA2MjQ0Y2FhNTJhMzdlYjJhZDgwZDVmNzcyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw3/oVgQcMs9K8PcUWSZsIQZNkoPhSmOy8ctqh5po0zF4d Jeo9lv2sV/XcfrnxKU9amOxzBH64sZV+tgQ2M86Q2bpoOXmCXgTBBIW4dIZGaZiy 5fJ1GUeuY4fKPqWck0qyctf7xiMu1nyrrqZ4oJgXDTfVSoepXOxuEm0e5vS4Ye42 Qo+wcjsjAr/z8mp3Na2EHpya5QkEO1KCQjlkgSb0U8HvaRQ4nk3mqWJTbdeXYvnJ Act3kIMSRu9eqCVGz7z1ugmzeIu/icQWpU9n8iSjK0rWKO9Jhupbg7AolzZWzQXo wmTuHY0x3mju+NRKEm1UsSMpyO/t4EjpvX9sr7l9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUGJX6QEKg2l4AxrYwnXUwphAhU4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1Y2M4NWI2LWZkYzEtNGE4Zi1iMjY2LTYxMWQ3N2NlYmY1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX+/wwDQYJKoZIhvcNAQELBQADggEBACKupPea3lPtsrdlhYj42WP0wMhB C/p/YnzD0AZsoAVLYzpfz6pbmC18rHV20hQf75pOU6xQr4oDdfuPbvpX33ClnmWF lD1A7yNg8JyVTj0KXxk/egBZHHssglyIF8JejI2KXqUNj50tjuKCk9HuB/NdsR0T IWeFj6cDBugA159nCGcOBKfIAl72il5K7v7DUaEAreikd9jXfvIfK8/0x6IpJWG6 Di3f89Y+c+XtBxZrRsM+u4toqbLqw1KhET3xcTABH7j6eZfnLEffLzfE9E1GARgS rCFkzB6vi1gI7GucO6BG04gQ4Mpv5zYbLcNVCZcFmS2r3kPXhK8Xw5PRys8= -----END CERTIFICATE-----Generated at Sun Mar 1 21:48:14 2026 by rpki-client