$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa File: cb088b4a-420f-4b13-84d1-b160e021b919.roa (raw, json) Hash identifier: uWbxgbA/9/kjNIfsgf5L7nZMlm8OjS6i2Dao7Au8FYA= Subject key identifier: C0:A5:D6:82:6C:2E:3C:28:D9:7D:1F:D0:BF:0C:79:93:A2:CB:EB:40 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4A7BEEE2903EC5135245A6AF23072AE1087634D9 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa Signing time: Wed 11 Feb 2026 00:20:08 +0000 ROA not before: Wed 11 Feb 2026 00:20:08 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:7b:ee:e2:90:3e:c5:13:52:45:a6:af:23:07:2a:e1:08:76:34:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:20:08 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=25c1f86e10ca043282af40a3f918be0fe8e97fd379618a585802049f31cc0a44, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b8:ad:03:8c:af:aa:24:2a:2f:60:02:e8:e8: c7:68:84:f8:7b:68:c7:b2:95:33:4f:53:e4:12:98: ba:13:14:2f:ca:67:47:8b:a1:40:de:b9:e3:37:a2: 7c:61:fd:76:6b:92:74:be:4a:6f:90:a4:83:0e:69: f3:07:1c:90:0a:d0:8b:6e:60:9a:72:c2:1d:af:30: 3c:a0:60:ee:e9:54:71:97:34:34:95:5c:2f:51:7c: 37:3a:46:d5:ac:df:25:7a:cf:d7:d5:84:d4:6b:be: ae:e3:77:21:dc:26:48:f7:22:9e:0c:b0:34:31:37: b8:3b:f1:4c:ec:eb:c4:a0:39:93:f2:b6:f4:85:d8: 0f:16:59:4f:c6:a6:1c:00:13:47:2b:da:74:79:0c: 1b:0d:13:c0:1e:94:50:9c:89:29:49:61:da:09:87: ae:e3:1e:51:28:7a:12:e8:ec:7a:7d:82:59:97:63: 33:1a:b8:f8:00:46:b7:fd:b5:8d:2d:74:29:a9:ab: 8c:ae:11:ca:45:72:a8:10:62:13:3f:0f:5d:6c:18: ca:52:f3:05:a0:bf:30:31:cf:00:07:87:33:5f:4f: b9:95:87:f9:8f:21:4d:d7:53:d4:64:4e:7b:70:18: 62:c5:49:31:f0:53:06:42:da:40:04:15:ce:7b:0c: 67:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:A5:D6:82:6C:2E:3C:28:D9:7D:1F:D0:BF:0C:79:93:A2:CB:EB:40 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.227.0/24 Signature Algorithm: sha256WithRSAEncryption 73:96:ab:ac:6c:cf:99:c6:95:91:62:25:93:16:05:8f:fc:fb: b1:63:68:83:f8:70:6b:79:1c:19:8f:33:bc:b3:82:91:0d:a7: d8:66:0e:2a:46:95:ed:fc:75:fd:2a:d8:cc:89:eb:47:3a:81: 8f:96:ab:2e:71:a5:fb:87:dc:18:c7:99:ff:14:41:b9:e0:bb: 62:77:17:2b:be:07:64:43:0a:4e:0b:b5:59:1e:3c:31:8c:20: 45:33:e9:2f:83:c0:29:55:b1:a1:9f:94:bd:3e:ae:ef:22:36: f1:39:69:99:d2:85:97:1d:15:8b:29:46:80:65:e7:a1:2e:62: df:96:34:90:a9:15:b9:fe:f5:9f:a1:6e:c8:46:db:81:0d:32: 33:dd:db:97:aa:3f:a3:41:70:72:02:0a:fd:79:25:fb:bf:66: d2:ac:a7:80:57:1f:30:31:22:0a:6c:22:2f:c8:ad:c9:7e:88: 1b:57:37:dd:46:14:d1:de:70:ae:16:01:50:79:a4:25:dd:2a: 24:fb:f2:36:b6:7b:f6:47:82:3d:9a:9d:5f:d0:52:4c:3c:68: 8f:e1:f5:80:38:12:08:3b:e7:ac:cf:78:2d:87:f0:9a:93:3c: 2c:c1:4c:86:51:45:65:4a:67:40:da:cd:97:4a:d7:73:6b:f2: 34:69:4c:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSnvu4pA+xRNSRaavIwcq4Qh2NNkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAyMDA4WhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWMxZjg2ZTEwY2EwNDMyODJhZjQwYTNmOTE4YmUwZmU4 ZTk3ZmQzNzk2MThhNTg1ODAyMDQ5ZjMxY2MwYTQ0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDguK0DjK+qJCovYALo6MdohPh7aMeylTNPU+QSmLoTFC/K Z0eLoUDeueM3onxh/XZrknS+Sm+QpIMOafMHHJAK0ItuYJpywh2vMDygYO7pVHGX NDSVXC9RfDc6RtWs3yV6z9fVhNRrvq7jdyHcJkj3Ip4MsDQxN7g78Uzs68SgOZPy tvSF2A8WWU/GphwAE0cr2nR5DBsNE8AelFCciSlJYdoJh67jHlEoehLo7Hp9glmX YzMauPgARrf9tY0tdCmpq4yuEcpFcqgQYhM/D11sGMpS8wWgvzAxzwAHhzNfT7mV h/mPIU3XU9RkTntwGGLFSTHwUwZC2kAEFc57DGfXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwKXWgmwuPCjZfR/Qvwx5k6LL60AwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NiMDg4YjRhLTQyMGYtNGIxMy04NGQxLWIxNjBlMDIxYjkxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeMwDQYJKoZIhvcNAQELBQADggEBAHOWq6xsz5nGlZFiJZMWBY/8+7Fj aIP4cGt5HBmPM7yzgpENp9hmDipGle38df0q2MyJ60c6gY+Wqy5xpfuH3BjHmf8U Qbngu2J3Fyu+B2RDCk4LtVkePDGMIEUz6S+DwClVsaGflL0+ru8iNvE5aZnShZcd FYspRoBl56EuYt+WNJCpFbn+9Z+hbshG24ENMjPd25eqP6NBcHICCv15Jfu/ZtKs p4BXHzAxIgpsIi/Ircl+iBtXN91GFNHecK4WAVB5pCXdKiT78ja2e/ZHgj2anV/Q Ukw8aI/h9YA4Egg756zPeC2H8JqTPCzBTIZRRWVKZ0DazZdK13Nr8jRpTAk= -----END CERTIFICATE-----Generated at Sun Mar 1 23:41:10 2026 by rpki-client