$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa File: bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa (raw, json) Hash identifier: XhRFNAEwLzZxeYDuv4jvuqQB5x67yBQlIWZgu6sJSdU= Subject key identifier: E1:F1:79:16:4D:5B:82:C5:CF:02:CB:FC:13:CA:1E:32:A4:17:10:6E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5E93F65965E2963F80DCEEA1B8101A12040888B3 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa Signing time: Wed 11 Feb 2026 00:20:12 +0000 ROA not before: Wed 11 Feb 2026 00:20:12 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:93:f6:59:65:e2:96:3f:80:dc:ee:a1:b8:10:1a:12:04:08:88:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:20:12 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=f94d70def5515066024ec75f4e3e45c83818a19087455dce72ba3fa5002529d7, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cb:b7:96:4a:3e:48:60:af:c2:d9:66:c5:ef: 4e:b7:f1:b4:0a:fc:1f:8b:35:7e:b3:ec:57:e2:a8: dd:9d:f7:a5:7a:56:ab:fd:86:b6:48:13:65:5d:f0: 08:48:fd:d9:7a:e5:51:27:a4:1b:fa:d4:43:46:97: 2f:63:ca:4c:b8:54:f3:9e:5f:c7:dd:a9:1c:a6:13: 10:4a:4e:61:58:39:22:93:b1:5d:73:b9:04:8e:cc: fd:2a:3c:02:c7:a9:fc:0c:19:16:b0:dd:ba:64:90: e7:75:6c:3e:1b:f4:2a:9d:2a:5e:9c:64:1e:41:1e: 2e:5a:4a:73:e1:ad:f0:ef:68:0b:36:c9:60:d0:6a: 11:ef:8c:89:53:fb:e5:bb:bb:1e:9c:e1:7f:71:d5: 76:6c:5b:60:c5:1f:c7:2a:83:f0:68:aa:fe:bf:c3: 9a:9f:28:60:40:ea:ee:45:89:45:c9:1b:d8:9f:9b: e5:08:f1:5a:8e:15:e8:64:11:2d:c4:85:e0:3f:f2: ce:a5:bb:d6:d9:f9:fb:4a:3f:cf:1c:ca:e1:21:ef: a9:34:81:9f:2c:1b:a2:57:88:c6:a9:2f:d9:b2:1c: ac:44:d5:fb:8c:7d:03:7e:73:20:d5:d7:ec:54:49: a1:7a:80:bd:31:34:57:4e:0d:9d:6e:50:66:06:7b: 7f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F1:79:16:4D:5B:82:C5:CF:02:CB:FC:13:CA:1E:32:A4:17:10:6E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 73:16:c2:eb:fa:b0:7e:9d:d6:a8:81:ed:63:61:d0:ee:16:3a: df:b4:5d:1c:1f:06:13:ab:fc:69:1c:32:ec:67:c9:a0:b7:15: 46:60:1a:3a:d8:6f:34:dd:52:52:28:07:30:9b:5a:21:6b:14: 0b:7b:bf:3d:f3:db:12:b3:7f:bd:ad:05:63:9d:d5:71:7a:fd: 16:2f:ef:4c:90:02:b0:27:c5:8e:71:64:55:f9:82:1c:a6:36: 06:20:a8:5a:ee:5e:ef:ca:19:fe:0a:0f:6b:34:6a:9f:0a:60: 64:85:c9:ad:0e:8e:0d:5f:82:57:6f:19:69:4e:70:af:33:61: d0:61:d7:49:cd:63:3d:e5:6f:f6:ce:ed:8e:8a:a6:2b:f3:e7: 0e:c4:f8:56:7e:41:7e:9a:1a:74:95:bf:5d:1f:88:79:96:3c: a8:f6:8f:8d:0a:85:f0:c2:59:d9:4d:82:f6:0a:64:2e:88:01: b5:3a:17:01:f0:a9:38:e9:5e:24:36:f5:02:a2:5d:06:8d:e1: 72:3a:7f:0d:5d:1f:7c:29:b5:5f:93:25:8b:13:d2:b8:b0:c5: 42:29:53:98:04:2a:27:9e:8c:42:45:a8:9d:1c:03:8c:39:e3: 17:b8:03:8d:55:db:ca:ef:4e:69:fe:17:37:f4:c1:3e:06:16: 3d:0c:5e:76 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXpP2WWXilj+A3O6huBAaEgQIiLMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAyMDEyWhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTRkNzBkZWY1NTE1MDY2MDI0ZWM3NWY0ZTNlNDVjODM4 MThhMTkwODc0NTVkY2U3MmJhM2ZhNTAwMjUyOWQ3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7y7eWSj5IYK/C2WbF70638bQK/B+LNX6z7FfiqN2d96V6 Vqv9hrZIE2Vd8AhI/dl65VEnpBv61ENGly9jyky4VPOeX8fdqRymExBKTmFYOSKT sV1zuQSOzP0qPALHqfwMGRaw3bpkkOd1bD4b9CqdKl6cZB5BHi5aSnPhrfDvaAs2 yWDQahHvjIlT++W7ux6c4X9x1XZsW2DFH8cqg/Boqv6/w5qfKGBA6u5FiUXJG9if m+UI8VqOFehkES3EheA/8s6lu9bZ+ftKP88cyuEh76k0gZ8sG6JXiMapL9myHKxE 1fuMfQN+cyDV1+xUSaF6gL0xNFdODZ1uUGYGe3/lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4fF5Fk1bgsXPAsv8E8oeMqQXEG4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2JmYTUxMGVkLWQ0MGItNDU1Mi1hNGQ4LTViYjRjMzBlNDgyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBAHMWwuv6sH6d1qiB7WNh0O4WOt+0 XRwfBhOr/GkcMuxnyaC3FUZgGjrYbzTdUlIoBzCbWiFrFAt7vz3z2xKzf72tBWOd 1XF6/RYv70yQArAnxY5xZFX5ghymNgYgqFruXu/KGf4KD2s0ap8KYGSFya0Ojg1f gldvGWlOcK8zYdBh10nNYz3lb/bO7Y6Kpivz5w7E+FZ+QX6aGnSVv10fiHmWPKj2 j40KhfDCWdlNgvYKZC6IAbU6FwHwqTjpXiQ29QKiXQaN4XI6fw1dH3wptV+TJYsT 0riwxUIpU5gEKieejEJFqJ0cA4w54xe4A41V28rvTmn+Fzf0wT4GFj0MXnY= -----END CERTIFICATE-----Generated at Mon Mar 2 01:26:12 2026 by rpki-client