$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9456b4-9220-4344-96a0-04b9d83c30f6.roa File: cc9456b4-9220-4344-96a0-04b9d83c30f6.roa (raw, json) Hash identifier: ma6nB27K1RMdhFejTCRNfD5tuQZ5xSdWE/JO4lx1z6Y= Subject key identifier: 76:EB:87:22:65:BD:E8:FD:78:5A:1D:C4:AB:92:A8:C0:C7:6E:B2:02 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5095A6BA15B03C61799C13A996CB86DECBAB7412 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9456b4-9220-4344-96a0-04b9d83c30f6.roa Signing time: Tue 24 Feb 2026 00:10:10 +0000 ROA not before: Tue 24 Feb 2026 00:10:10 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:95:a6:ba:15:b0:3c:61:79:9c:13:a9:96:cb:86:de:cb:ab:74:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 24 00:10:10 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=44bc1a3ad89a8bca09c7182675e1cbdcdda35e37a619ea1bd813e07de93cdc2d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cb:ce:f7:0d:8d:df:83:2c:4a:96:21:e3:2d: d5:24:49:b9:59:29:83:39:8a:03:c1:55:d0:c5:4d: a3:e7:40:bf:aa:9b:9c:b1:82:93:94:6c:ba:fa:62: 94:5b:a2:85:3e:9b:ee:ed:4a:77:31:22:e4:02:aa: 84:26:36:51:f4:a9:8b:57:a5:0d:ae:8d:e8:ee:7b: f2:90:cc:7f:b3:83:1e:54:75:9a:70:c6:32:8e:42: 39:a4:e7:b7:b8:a4:d8:88:a5:91:c5:7d:3b:97:2e: 1e:4e:c3:7d:5a:66:c0:bf:64:ef:2f:5a:89:39:f0: ab:21:2f:32:bc:35:6b:6c:d1:fb:b2:5c:0a:7a:6c: 6f:88:c9:c8:19:a8:6e:42:56:de:ee:64:5b:54:d3: 7f:6f:57:03:de:bb:31:fd:5d:ad:1b:be:ac:ab:03: ec:73:91:c4:de:4e:fd:72:8e:33:82:36:16:cb:51: 25:f4:39:26:26:69:2e:ff:6a:cf:c5:16:49:f8:2b: 16:87:da:3d:f5:d6:6c:c9:0a:2c:0b:2e:ac:7e:15: 10:69:09:35:5d:0b:26:c9:43:bb:b1:4d:a8:7d:2b: a4:8f:8c:b6:c8:97:25:28:6c:2a:0c:a7:bf:e3:2e: 15:6d:3e:a7:cd:38:44:82:c8:ed:d2:3c:e4:6b:b3: 34:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:EB:87:22:65:BD:E8:FD:78:5A:1D:C4:AB:92:A8:C0:C7:6E:B2:02 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9456b4-9220-4344-96a0-04b9d83c30f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.248.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:a5:32:3f:b7:bd:b1:97:53:4d:b0:c5:56:0c:93:e7:15:8b: 2d:70:8b:8d:48:d7:ed:e1:51:c3:32:61:78:2b:73:fa:39:7a: 36:84:18:bf:32:9a:91:4d:61:dd:58:5b:2e:60:28:e2:62:77: 34:e1:e4:1b:32:72:4b:f9:82:42:23:1d:1f:02:5c:a4:06:72: 21:b7:9c:af:97:81:d9:84:bb:15:29:84:f9:45:42:ae:36:5c: 74:fa:c0:80:36:f7:12:90:e1:2b:54:e4:c1:ff:f9:d8:96:5d: 24:f7:1e:ff:d4:ab:ff:35:24:e3:2c:b5:80:90:17:dc:f4:c3: 47:12:88:ac:14:30:a5:4e:ff:87:37:75:0d:32:e9:bf:68:c4: 16:e2:3e:39:57:ee:38:6d:46:f3:ca:9f:1c:65:d7:bd:33:df: e1:ab:5c:04:e7:c6:4b:42:85:03:36:7a:5d:f9:f9:9a:6d:39: 84:78:fe:a9:7e:9f:7b:83:6e:98:3f:7b:b3:30:b3:b3:c1:16: 12:ed:49:93:31:78:21:a4:f2:9e:a5:bd:ab:08:75:89:d7:72: a4:08:8c:f1:87:a5:e2:a0:a2:1a:1a:d0:65:40:74:0c:cb:3f: 73:29:a5:c2:0f:3e:df:8d:3c:73:74:84:7f:87:88:e1:be:9a: 26:5e:97:08 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUJWmuhWwPGF5nBOplsuG3surdBIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjI0MDAxMDEwWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGJjMWEzYWQ4OWE4YmNhMDljNzE4MjY3NWUxY2JkY2Rk YTM1ZTM3YTYxOWVhMWJkODEzZTA3ZGU5M2NkYzJkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/y873DY3fgyxKliHjLdUkSblZKYM5igPBVdDFTaPnQL+q m5yxgpOUbLr6YpRbooU+m+7tSncxIuQCqoQmNlH0qYtXpQ2ujejue/KQzH+zgx5U dZpwxjKOQjmk57e4pNiIpZHFfTuXLh5Ow31aZsC/ZO8vWok58KshLzK8NWts0fuy XAp6bG+IycgZqG5CVt7uZFtU039vVwPeuzH9Xa0bvqyrA+xzkcTeTv1yjjOCNhbL USX0OSYmaS7/as/FFkn4KxaH2j311mzJCiwLLqx+FRBpCTVdCybJQ7uxTah9K6SP jLbIlyUobCoMp7/jLhVtPqfNOESCyO3SPORrszRdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUduuHImW96P14Wh3Eq5KowMdusgIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NjOTQ1NmI0LTkyMjAtNDM0NC05NmEwLTA0YjlkODNjMzBmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+/gwDQYJKoZIhvcNAQELBQADggEBAI+lMj+3vbGXU02wxVYMk+cViy1w i41I1+3hUcMyYXgrc/o5ejaEGL8ympFNYd1YWy5gKOJidzTh5Bsyckv5gkIjHR8C XKQGciG3nK+XgdmEuxUphPlFQq42XHT6wIA29xKQ4StU5MH/+diWXST3Hv/Uq/81 JOMstYCQF9z0w0cSiKwUMKVO/4c3dQ0y6b9oxBbiPjlX7jhtRvPKnxxl170z3+Gr XATnxktChQM2el35+ZptOYR4/ql+n3uDbpg/e7Mws7PBFhLtSZMxeCGk8p6lvasI dYnXcqQIjPGHpeKgohoa0GVAdAzLP3MppcIPPt+NPHN0hH+HiOG+miZelwg= -----END CERTIFICATE-----Generated at Sun Mar 1 23:48:21 2026 by rpki-client