$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa File: b5e0d86e-0f74-41d8-a413-497ad79e414d.roa (raw, json) Hash identifier: xR7jW6virvDO08Yx4qpZbPmNj+IvORNI+tebIKH1CLY= Subject key identifier: DD:70:BC:D3:AC:ED:8D:1D:78:D7:C5:07:F4:E4:DD:71:18:4B:D8:25 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 33C43542FA9D6058E5962E1B251433E3215F7081 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa Signing time: Tue 10 Feb 2026 00:00:39 +0000 ROA not before: Tue 10 Feb 2026 00:00:39 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:c4:35:42:fa:9d:60:58:e5:96:2e:1b:25:14:33:e3:21:5f:70:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 10 00:00:39 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=00cd1a2c4c364e21a468d7dd62f496bf78ffbadd0d03fa58b4f9a9de2d407a4f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4d:9a:f8:1b:61:bf:7c:af:cf:1f:79:81:ec: 25:ee:1e:52:4d:7f:e6:6d:73:b5:a7:eb:a1:80:7a: b3:0a:d3:db:12:13:a0:e6:ee:97:79:28:5b:0e:f4: 4c:3b:c4:f2:99:0c:8a:0b:7d:88:2c:75:ec:d3:28: 63:16:35:79:95:13:04:d5:86:3a:af:0c:af:51:ab: ab:ef:7c:cd:61:87:47:70:d1:3e:c7:9f:9d:55:07: 44:68:da:ba:84:2a:dd:c6:7b:c3:30:e9:53:ab:b3: 89:f0:eb:47:3b:8f:54:00:7c:c4:af:d2:53:c8:dc: 13:a5:a1:cb:87:c8:d0:b8:34:5a:2d:c9:33:08:46: 5f:f3:0b:e9:01:0a:34:e2:90:db:23:75:66:31:a5: 23:12:24:02:c2:18:ce:91:c1:d7:a0:3f:0c:df:6e: d8:d7:7b:9a:6b:e5:ee:27:9d:e5:53:8b:b6:10:c4: fd:41:fe:a8:aa:42:42:07:33:13:63:d1:46:13:41: 82:a2:d8:ef:97:97:0d:40:eb:a6:d8:4d:86:e0:3e: 3b:9a:fa:98:27:89:15:6b:4e:34:44:b2:1e:87:05: 44:e2:f9:ba:3d:bb:38:29:e0:46:01:ce:d0:07:62: c4:37:d3:d9:80:27:7a:33:d2:69:01:df:47:c5:47: 3f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:70:BC:D3:AC:ED:8D:1D:78:D7:C5:07:F4:E4:DD:71:18:4B:D8:25 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.160.0/19 Signature Algorithm: sha256WithRSAEncryption 13:d6:b0:c0:36:69:57:8a:80:7c:ea:bd:1b:01:15:a2:98:dc: cb:30:57:9f:b4:e3:6e:fb:0d:fc:22:ba:30:07:67:41:d6:02: eb:1a:29:94:76:7a:7f:bf:58:dd:01:d7:ec:ae:c2:92:fa:3f: 6e:3f:83:3c:61:2f:d4:8e:a3:8f:77:2f:98:9b:b2:78:5a:79: 80:34:79:bc:90:5c:d1:09:74:00:90:1a:57:cb:f1:f1:79:b2: 73:df:d7:cc:23:ae:0d:63:6e:68:0b:8d:76:c8:6a:36:a5:ba: 62:20:46:a7:57:97:2e:1f:4a:89:94:50:49:d4:71:36:ce:7f: bd:1f:60:f2:ba:d2:a8:1f:e0:fb:c9:24:60:9e:1e:05:ae:c3: 84:fb:4d:3c:ae:42:5f:00:2f:55:ff:59:12:f6:36:5b:9a:ac: a6:95:a1:30:4d:e8:21:a6:89:4c:d5:22:80:7d:cf:f2:e8:b2: a5:e0:e7:50:53:e4:c2:07:7e:5e:fa:89:fc:be:ce:2d:64:c0: 95:98:eb:44:ae:14:a8:d3:4b:e6:8d:72:b1:5a:52:27:b9:7c: fb:0b:97:70:0f:d5:25:6d:c2:d1:58:69:7b:ff:27:93:2f:4a: 9a:99:b3:9c:aa:c0:ce:56:b6:5e:6b:a6:4c:bc:50:c0:1b:4a: 7d:89:66:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM8Q1QvqdYFjlli4bJRQz4yFfcIEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjEwMDAwMDM5WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGNkMWEyYzRjMzY0ZTIxYTQ2OGQ3ZGQ2MmY0OTZiZjc4 ZmZiYWRkMGQwM2ZhNThiNGY5YTlkZTJkNDA3YTRmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+TZr4G2G/fK/PH3mB7CXuHlJNf+Ztc7Wn66GAerMK09sS E6Dm7pd5KFsO9Ew7xPKZDIoLfYgsdezTKGMWNXmVEwTVhjqvDK9Rq6vvfM1hh0dw 0T7Hn51VB0Ro2rqEKt3Ge8Mw6VOrs4nw60c7j1QAfMSv0lPI3BOlocuHyNC4NFot yTMIRl/zC+kBCjTikNsjdWYxpSMSJALCGM6RwdegPwzfbtjXe5pr5e4nneVTi7YQ xP1B/qiqQkIHMxNj0UYTQYKi2O+Xlw1A66bYTYbgPjua+pgniRVrTjREsh6HBUTi +bo9uzgp4EYBztAHYsQ309mAJ3oz0mkB30fFRz8zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3XC806ztjR1418UH9OTdcRhL2CUwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1ZTBkODZlLTBmNzQtNDFkOC1hNDEzLTQ5N2FkNzllNDE0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXY3aAwDQYJKoZIhvcNAQELBQADggEBABPWsMA2aVeKgHzqvRsBFaKY3Msw V5+04277DfwiujAHZ0HWAusaKZR2en+/WN0B1+yuwpL6P24/gzxhL9SOo493L5ib snhaeYA0ebyQXNEJdACQGlfL8fF5snPf18wjrg1jbmgLjXbIajalumIgRqdXly4f SomUUEnUcTbOf70fYPK60qgf4PvJJGCeHgWuw4T7TTyuQl8AL1X/WRL2NluarKaV oTBN6CGmiUzVIoB9z/LosqXg51BT5MIHfl76ify+zi1kwJWY60SuFKjTS+aNcrFa Uie5fPsLl3AP1SVtwtFYaXv/J5MvSpqZs5yqwM5Wtl5rpky8UMAbSn2JZnE= -----END CERTIFICATE-----Generated at Sun Mar 1 23:36:25 2026 by rpki-client