$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa File: c9752aac-8490-485f-92b7-6a6ba02b76d5.roa (raw, json) Hash identifier: sbgnnpxNDvM37oFV4UqHxy5gPyZjQpSQFPZ83MbNktc= Subject key identifier: AA:0C:B0:33:07:09:50:72:82:1F:34:35:52:CC:34:53:AA:7A:BB:AF Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6D95206405D3B9C4AD5F98EEB94BED40981F7F4D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa Signing time: Wed 25 Feb 2026 00:00:06 +0000 ROA not before: Wed 25 Feb 2026 00:00:06 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 199.127.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:95:20:64:05:d3:b9:c4:ad:5f:98:ee:b9:4b:ed:40:98:1f:7f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 25 00:00:06 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=5489bda4d65248f66f3840379dfff6da110bcb1a8011561ea44755f18be54b53, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6d:76:7d:7b:c0:c2:a6:ac:c3:ce:11:eb:31: f1:a0:6a:76:e1:22:32:74:76:0b:3e:97:11:2e:d8: 1c:1a:07:93:20:66:7a:40:5c:ee:d7:8c:ef:db:63: ce:9b:31:9a:ec:49:ea:89:e6:ef:f5:be:6e:a9:0d: f4:5e:9b:0a:8b:a5:9d:84:a2:7d:01:65:2d:7f:79: 50:f7:9c:87:2c:10:93:ee:c8:ce:2b:62:1f:a7:af: 26:56:37:73:7c:39:55:40:1e:d8:39:da:dd:7d:8a: c5:e1:d9:04:ca:97:49:c9:a3:60:44:63:ca:0f:4f: 30:a9:80:e3:4c:42:ab:d4:12:b4:00:12:6e:b1:d4: 21:c7:82:69:ea:af:a6:99:c3:67:eb:24:d4:c7:52: 2d:b4:52:66:7f:6c:a6:9d:6a:e1:3f:bb:52:c8:01: 52:63:66:e4:b7:42:28:4e:c1:58:40:c6:4f:3a:c2: 77:b2:0c:bc:66:7a:36:49:0c:30:ec:f5:16:ae:86: d9:da:b7:96:a5:23:93:a8:c5:78:0e:32:08:0e:64: 45:ea:31:7e:a5:81:4c:3b:21:ee:08:f9:49:3c:9a: b5:0c:d7:8f:71:58:9b:1e:11:16:68:c3:3e:62:b3: 8c:ac:4a:68:bc:7d:f5:f1:9c:9e:30:0c:81:e0:f9: 44:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:0C:B0:33:07:09:50:72:82:1F:34:35:52:CC:34:53:AA:7A:BB:AF X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.127.232.0/22 Signature Algorithm: sha256WithRSAEncryption 77:14:66:8f:17:8b:b4:48:f5:e1:70:91:c6:8e:84:39:12:b7: 99:b8:9b:f5:15:d8:a3:a8:ea:99:3f:fe:d0:d9:5d:c6:dd:4e: 70:ec:a5:56:6d:a9:ec:b1:2a:6f:f8:aa:5b:87:fa:15:d7:fb: c0:3e:56:95:39:6e:93:9b:30:cc:37:5a:ce:49:c9:5e:d9:26: 29:be:1d:f3:1d:9a:33:f4:87:bf:cc:92:e2:fd:50:f5:6c:eb: dd:0e:27:38:de:b9:51:c7:5c:91:a5:1c:94:b1:01:18:07:c5: d8:f8:2b:7e:ef:6d:6f:19:9b:8d:fb:4d:ed:d5:7f:9a:b2:de: d3:2d:06:1d:94:6f:d4:74:ae:53:f0:92:f8:ce:6c:5d:d5:fc: dc:83:4a:ec:f6:1a:7e:61:ff:0b:94:40:c0:6c:40:d0:5f:31: 25:85:08:b0:2e:89:00:0f:af:a4:93:49:c0:bc:30:a3:18:c7: 18:80:91:93:3d:41:e0:d7:a8:98:5e:f2:93:ad:8f:95:67:92: f9:94:30:c6:63:67:fa:95:58:32:63:38:ea:6d:bc:e2:3d:30: 8a:a5:71:2f:1d:22:5c:04:8d:13:c7:85:9c:62:05:ad:23:9b: 92:86:8c:cd:92:c9:01:a0:0a:89:4b:c4:3b:31:87:f6:a5:18: e5:4c:33:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbZUgZAXTucStX5juuUvtQJgff00wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjI1MDAwMDA2WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDg5YmRhNGQ2NTI0OGY2NmYzODQwMzc5ZGZmZjZkYTEx MGJjYjFhODAxMTU2MWVhNDQ3NTVmMThiZTU0YjUzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxbXZ9e8DCpqzDzhHrMfGganbhIjJ0dgs+lxEu2BwaB5Mg ZnpAXO7XjO/bY86bMZrsSeqJ5u/1vm6pDfRemwqLpZ2Eon0BZS1/eVD3nIcsEJPu yM4rYh+nryZWN3N8OVVAHtg52t19isXh2QTKl0nJo2BEY8oPTzCpgONMQqvUErQA Em6x1CHHgmnqr6aZw2frJNTHUi20UmZ/bKadauE/u1LIAVJjZuS3QihOwVhAxk86 wneyDLxmejZJDDDs9Rauhtnat5alI5OoxXgOMggOZEXqMX6lgUw7Ie4I+Uk8mrUM 149xWJseERZowz5is4ysSmi8ffXxnJ4wDIHg+URvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqgywMwcJUHKCHzQ1Usw0U6p6u68wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2M5NzUyYWFjLTg0OTAtNDg1Zi05MmI3LTZhNmJhMDJiNzZkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALHf+gwDQYJKoZIhvcNAQELBQADggEBAHcUZo8Xi7RI9eFwkcaOhDkSt5m4 m/UV2KOo6pk//tDZXcbdTnDspVZtqeyxKm/4qluH+hXX+8A+VpU5bpObMMw3Ws5J yV7ZJim+HfMdmjP0h7/MkuL9UPVs690OJzjeuVHHXJGlHJSxARgHxdj4K37vbW8Z m437Te3Vf5qy3tMtBh2Ub9R0rlPwkvjObF3V/NyDSuz2Gn5h/wuUQMBsQNBfMSWF CLAuiQAPr6STScC8MKMYxxiAkZM9QeDXqJhe8pOtj5VnkvmUMMZjZ/qVWDJjOOpt vOI9MIqlcS8dIlwEjRPHhZxiBa0jm5KGjM2SyQGgColLxDsxh/alGOVMM9w= -----END CERTIFICATE-----Generated at Sun Mar 1 21:56:57 2026 by rpki-client