$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ced1d856-48cb-491b-a1ab-adf22d3bad75.roa File: ced1d856-48cb-491b-a1ab-adf22d3bad75.roa (raw, json) Hash identifier: BCS52YG3gr8CRhbQIQQkmYPT92tdbzSHqyDmcObn7bs= Subject key identifier: 13:65:F8:A4:A0:0C:17:00:E0:FC:FF:06:52:24:F6:04:BD:CE:AD:C3 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7D838BDA48F14EAE3C697340AF63E8927C006DFB Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ced1d856-48cb-491b-a1ab-adf22d3bad75.roa Signing time: Tue 24 Feb 2026 00:10:08 +0000 ROA not before: Tue 24 Feb 2026 00:10:08 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:83:8b:da:48:f1:4e:ae:3c:69:73:40:af:63:e8:92:7c:00:6d:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 24 00:10:08 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=973ff883302afbfc21547742d4441195493f5ff4da1ef68e5c9190c5b92a80f9, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:da:86:75:f2:0f:0e:93:90:f6:2f:d0:6a:cf: 36:b5:36:5a:77:5d:e1:ea:f8:df:ba:ce:1b:be:5a: 01:3a:4e:99:a9:6b:6a:44:07:24:ce:bc:6e:aa:ba: 8a:49:54:0d:2c:ec:d2:de:54:17:18:90:0e:9e:64: 8d:4f:e6:1b:d9:7b:f9:f5:38:27:13:82:02:eb:24: fb:97:4c:56:4c:0c:1b:7f:64:3c:1f:7e:94:85:bb: 24:ab:6e:63:e4:1b:23:da:2b:83:81:3f:de:aa:13: 0d:92:4d:02:5e:2c:fa:5e:fa:b6:e6:79:39:3e:74: f6:63:20:b7:2f:59:64:a6:49:59:78:13:ea:fa:f7: 9e:ac:af:dc:ea:b2:11:c3:97:69:18:fa:d6:53:8a: fa:fd:24:4d:21:87:b2:12:e4:c9:4b:f6:82:05:0a: bf:88:0b:18:b9:3a:8a:1e:88:82:55:24:82:c5:35: f5:75:9e:e4:13:46:d3:d5:47:25:f3:a8:a0:50:d5: 57:83:01:3b:2c:e3:55:52:e6:c7:84:7e:22:d6:f7: 7c:4d:7d:ff:7a:cb:1b:a1:56:e2:8e:8f:4f:99:53: e5:88:b2:0c:a2:b9:2f:df:1e:36:f6:c3:a1:59:c2: c6:ff:67:86:9b:1b:90:d7:26:f5:8f:be:f9:68:41: 1b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:65:F8:A4:A0:0C:17:00:E0:FC:FF:06:52:24:F6:04:BD:CE:AD:C3 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ced1d856-48cb-491b-a1ab-adf22d3bad75.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.176.0/20 Signature Algorithm: sha256WithRSAEncryption 22:a6:f2:c9:04:a0:72:cc:1c:75:af:b1:65:64:b6:60:bc:fe: e8:46:91:c6:f9:2c:01:08:30:17:75:34:7f:71:61:b2:e6:eb: a0:4d:4e:d3:4e:c2:73:57:54:6e:0f:d7:b3:6e:12:1c:76:ec: 24:e4:af:50:71:bd:f8:42:72:32:0f:3f:77:cc:c7:d9:84:cf: 38:1d:69:d9:83:09:6b:d6:49:e9:85:c8:24:f7:c7:7b:2f:a7: 2c:fb:a5:3c:0a:c8:ac:df:52:6b:d4:af:2f:3a:99:61:53:28: cb:3f:08:8e:97:bf:bd:2a:9e:9c:b1:ff:36:c3:31:d0:d8:c0: 78:49:04:1d:fa:a6:f9:a4:37:6f:ad:80:89:05:f7:18:bf:c2: cf:95:a6:8b:24:9a:4b:53:87:91:8c:94:d4:22:e2:5d:8d:8c: 70:83:49:c2:fd:12:70:83:36:0d:52:bc:36:53:d6:df:72:7c: b1:f9:c9:50:08:96:7d:5c:23:d5:84:3b:71:c0:0e:f0:67:2e: 8e:2d:65:fa:b1:a7:6a:ee:6d:1c:5b:4d:29:9d:ab:20:59:90: c0:b9:66:b1:eb:77:2f:66:96:9f:04:8d:67:15:46:1d:67:e9: c6:f2:b2:d9:82:55:b4:97:03:68:42:db:c3:98:1e:ac:2a:cc: 0c:86:e0:f6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfYOL2kjxTq48aXNAr2PoknwAbfswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjI0MDAxMDA4WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzNmZjg4MzMwMmFmYmZjMjE1NDc3NDJkNDQ0MTE5NTQ5 M2Y1ZmY0ZGExZWY2OGU1YzkxOTBjNWI5MmE4MGY5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG2oZ18g8Ok5D2L9Bqzza1Nlp3XeHq+N+6zhu+WgE6Tpmp a2pEByTOvG6quopJVA0s7NLeVBcYkA6eZI1P5hvZe/n1OCcTggLrJPuXTFZMDBt/ ZDwffpSFuySrbmPkGyPaK4OBP96qEw2STQJeLPpe+rbmeTk+dPZjILcvWWSmSVl4 E+r6956sr9zqshHDl2kY+tZTivr9JE0hh7IS5MlL9oIFCr+ICxi5OooeiIJVJILF NfV1nuQTRtPVRyXzqKBQ1VeDATss41VS5seEfiLW93xNff96yxuhVuKOj0+ZU+WI sgyiuS/fHjb2w6FZwsb/Z4abG5DXJvWPvvloQRs1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE2X4pKAMFwDg/P8GUiT2BL3OrcMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NlZDFkODU2LTQ4Y2ItNDkxYi1hMWFiLWFkZjIyZDNiYWQ3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARM37AwDQYJKoZIhvcNAQELBQADggEBACKm8skEoHLMHHWvsWVktmC8/uhG kcb5LAEIMBd1NH9xYbLm66BNTtNOwnNXVG4P17NuEhx27CTkr1BxvfhCcjIPP3fM x9mEzzgdadmDCWvWSemFyCT3x3svpyz7pTwKyKzfUmvUry86mWFTKMs/CI6Xv70q npyx/zbDMdDYwHhJBB36pvmkN2+tgIkF9xi/ws+VposkmktTh5GMlNQi4l2NjHCD ScL9EnCDNg1SvDZT1t9yfLH5yVAIln1cI9WEO3HADvBnLo4tZfqxp2rubRxbTSmd qyBZkMC5ZrHrdy9mlp8EjWcVRh1n6cbystmCVbSXA2hC28OYHqwqzAyG4PY= -----END CERTIFICATE-----Generated at Mon Mar 2 01:27:47 2026 by rpki-client