$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa File: b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa (raw, json) Hash identifier: U4lz4RloLisoK4TPTE9GJi5ptPErHceGo/BFy7bpSZM= Subject key identifier: 9D:DF:9B:F4:64:DE:4D:AF:38:E7:AD:82:EB:A5:7D:9C:F5:B7:D0:E3 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 739C5E422F45C646B539F4BCCE78E3C0B196A814 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa Signing time: Wed 11 Feb 2026 00:20:12 +0000 ROA not before: Wed 11 Feb 2026 00:20:12 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.251.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:9c:5e:42:2f:45:c6:46:b5:39:f4:bc:ce:78:e3:c0:b1:96:a8:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:20:12 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=12baa4a025e9e7d96f066caff229d8b9a8e585863adaf94ece412dbb97836054, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b2:45:6e:8d:ad:d8:6d:ae:bc:63:d0:b8:eb: 47:02:36:43:3e:f0:2c:ce:9d:83:50:d9:4d:94:c2: fc:9d:0e:9e:34:c0:5d:33:19:0b:83:e9:86:6c:12: 4b:54:ed:a4:24:f4:e8:fd:4a:ed:5e:6b:ad:74:2a: bd:7a:5f:4d:60:11:3e:d6:45:18:9b:c1:a1:94:82: f4:ce:33:66:9a:bc:1b:7b:89:84:2d:56:f2:c4:ca: 62:2e:70:f0:11:5b:fd:25:99:e1:23:fb:38:fa:2b: 49:e0:53:48:9b:44:e5:cf:3d:e2:2d:26:13:ec:80: 37:50:0f:4a:12:96:a6:8f:a9:b7:ff:25:a0:e4:90: a0:bd:ba:6a:47:9d:0c:40:3c:e9:d1:10:b7:0d:3e: b4:b6:6d:49:db:d6:0f:73:27:be:e3:d7:b3:08:26: 7b:4c:ac:65:72:69:f5:32:04:0e:11:91:08:76:fc: 4e:30:cf:7d:b6:f0:58:0c:29:b0:b3:d3:f5:d9:8c: e8:02:d6:59:e3:80:30:a3:b5:d6:52:05:51:a2:2d: 65:55:30:f4:33:ed:0d:65:ff:d4:8d:2b:5a:f0:a7: ec:d6:67:7f:b0:bd:22:c0:9f:96:f7:79:44:92:fb: ff:9c:3d:56:d6:d4:d6:6b:da:4b:95:29:a7:b2:d3: 07:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:DF:9B:F4:64:DE:4D:AF:38:E7:AD:82:EB:A5:7D:9C:F5:B7:D0:E3 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.228.0/22 Signature Algorithm: sha256WithRSAEncryption 30:e1:4e:0e:d9:df:2f:31:af:91:78:ef:a5:57:53:26:11:ea: cb:04:b9:bc:a5:75:03:17:c1:0f:bb:0b:1e:af:7e:7c:30:bc: 2f:d2:76:af:65:b8:23:1b:86:84:1e:96:6e:27:84:f9:bd:36: cd:ad:cf:4c:29:21:51:9d:f9:f1:05:84:26:0a:ba:87:92:56: c4:6b:58:eb:11:4d:cf:ba:c5:0a:7d:8f:bc:37:0f:c0:88:3d: b7:bf:f0:26:0f:6c:da:51:b3:b7:f3:dc:43:29:e2:06:ab:0b: ae:25:f9:45:15:e8:46:22:7f:f1:97:65:cb:be:c1:00:bd:d7: 37:37:86:8d:49:2e:53:51:1f:77:f9:72:a7:dd:20:7c:f8:cc: 27:72:f5:6f:09:af:02:91:7e:00:93:02:c9:80:a0:15:d2:21: 6a:a8:5e:17:60:b2:7a:56:3e:3b:05:b3:39:d3:c0:4f:b1:23: 6f:2f:49:e0:88:ea:07:a7:19:9f:82:dd:d8:0a:12:04:2f:05: 99:4e:90:0b:14:1a:97:f2:7f:e9:fc:9f:e3:71:3c:35:77:15: 5d:ab:59:c7:13:56:1e:5a:b9:1d:9f:f2:ba:e9:e2:c7:b7:16: 79:53:5e:6e:72:86:4c:fd:c4:bf:da:e0:0e:cf:f7:04:a4:50: 61:fe:ff:43 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc5xeQi9Fxka1OfS8znjjwLGWqBQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAyMDEyWhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMmJhYTRhMDI1ZTllN2Q5NmYwNjZjYWZmMjI5ZDhiOWE4 ZTU4NTg2M2FkYWY5NGVjZTQxMmRiYjk3ODM2MDU0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwskVuja3Yba68Y9C460cCNkM+8CzOnYNQ2U2UwvydDp40 wF0zGQuD6YZsEktU7aQk9Oj9Su1ea610Kr16X01gET7WRRibwaGUgvTOM2aavBt7 iYQtVvLEymIucPARW/0lmeEj+zj6K0ngU0ibROXPPeItJhPsgDdQD0oSlqaPqbf/ JaDkkKC9umpHnQxAPOnRELcNPrS2bUnb1g9zJ77j17MIJntMrGVyafUyBA4RkQh2 /E4wz3228FgMKbCz0/XZjOgC1lnjgDCjtdZSBVGiLWVVMPQz7Q1l/9SNK1rwp+zW Z3+wvSLAn5b3eUSS+/+cPVbW1NZr2kuVKaey0wfPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnd+b9GTeTa84562C66V9nPW30OMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I2ZWU5M2Q4LWQ3YTctNDFhZC04ZGUxLTkwYTA1NWJjMTk3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX++QwDQYJKoZIhvcNAQELBQADggEBADDhTg7Z3y8xr5F476VXUyYR6ssE ubyldQMXwQ+7Cx6vfnwwvC/Sdq9luCMbhoQelm4nhPm9Ns2tz0wpIVGd+fEFhCYK uoeSVsRrWOsRTc+6xQp9j7w3D8CIPbe/8CYPbNpRs7fz3EMp4garC64l+UUV6EYi f/GXZcu+wQC91zc3ho1JLlNRH3f5cqfdIHz4zCdy9W8JrwKRfgCTAsmAoBXSIWqo XhdgsnpWPjsFsznTwE+xI28vSeCI6genGZ+C3dgKEgQvBZlOkAsUGpfyf+n8n+Nx PDV3FV2rWccTVh5auR2f8rrp4se3FnlTXm5yhkz9xL/a4A7P9wSkUGH+/0M= -----END CERTIFICATE-----Generated at Mon Mar 2 01:34:22 2026 by rpki-client