$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d5bcdba4-b39f-49d7-81da-145442d6f180.roa File: d5bcdba4-b39f-49d7-81da-145442d6f180.roa (raw, json) Hash identifier: CxelSadyTWcANeqBbiSZmD2vsV3RFxu793/Jbien0DI= Subject key identifier: 74:1E:79:68:49:68:19:9D:67:9A:BC:AA:43:F8:1B:CD:12:E3:6A:64 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3F541A05D19FA77A658B19422BF1533B4818E685 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d5bcdba4-b39f-49d7-81da-145442d6f180.roa Signing time: Wed 11 Feb 2026 00:30:48 +0000 ROA not before: Wed 11 Feb 2026 00:30:48 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:54:1a:05:d1:9f:a7:7a:65:8b:19:42:2b:f1:53:3b:48:18:e6:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:30:48 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=2c7f9a926e37b7bf25f47cb7ec884e19f980343726c3f7a56e153a5dbea25ea4, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ba:bb:ed:57:8c:e5:30:08:9e:cc:7a:86:fb: 53:65:94:fb:8e:fa:f7:77:d9:00:43:6b:39:a4:27: 05:7f:a6:ed:ce:bc:e6:c8:50:8c:b2:02:80:27:e5: d2:36:14:63:05:2c:2b:b8:18:7e:01:f6:c2:cb:0d: 24:ca:6e:49:c4:a8:08:9f:58:ae:42:45:9f:4d:a2: b2:9e:6e:b8:34:94:a5:fa:2b:61:ec:39:e9:24:a0: 00:97:ea:01:1c:f8:da:2b:35:2c:b6:8d:90:f3:28: 1c:78:fc:1a:48:a1:6d:75:0d:d4:49:b8:85:9f:f1: 77:0b:dc:e9:14:95:b7:fb:07:a6:55:6a:9c:39:c2: c2:cf:52:a7:c4:80:d2:cb:db:1f:44:f9:95:5a:3e: 0c:da:b3:09:3c:40:e0:8b:f7:74:8b:a7:65:41:22: 02:75:c8:5f:b8:ac:71:a9:1f:49:e4:10:ee:58:f3: 03:9f:e6:5b:19:96:3a:ae:67:5d:d6:f2:18:a4:4e: 15:a2:c2:67:60:37:77:51:b8:0a:ac:42:97:d4:b5: 53:ad:7a:b0:ac:25:fa:0b:d5:21:2a:2a:fd:38:c3: 35:6d:a6:bf:e3:69:df:a8:4d:28:29:4b:7c:ad:d2: 5d:a8:44:b4:8c:e3:40:45:96:97:d2:5c:16:61:e0: 9f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:1E:79:68:49:68:19:9D:67:9A:BC:AA:43:F8:1B:CD:12:E3:6A:64 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d5bcdba4-b39f-49d7-81da-145442d6f180.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.177.0/24 Signature Algorithm: sha256WithRSAEncryption 43:2d:bb:1e:80:a0:97:0f:41:a8:ef:ef:c0:7f:a6:01:ac:cb: 24:b7:d7:3b:ba:0d:3e:11:7b:b3:20:c6:90:ab:8b:1d:68:f1: 1e:4a:2d:0e:03:35:cc:cc:8b:1d:41:9d:78:77:2b:68:5f:42: f1:71:f1:62:6e:da:3b:ce:6d:c7:d9:be:15:55:78:e2:26:24: 46:59:5b:40:de:71:f6:b5:cc:f2:bf:df:7e:96:3a:aa:70:7f: d7:54:89:da:b3:99:f9:88:44:13:e2:e6:4a:90:04:ad:72:4b: 59:f5:6b:df:38:1b:34:7e:39:69:cb:07:57:e9:dc:d2:75:96: af:93:28:da:9c:9c:b4:bb:be:90:7b:9c:89:c3:43:3c:6c:c0: 38:c8:b0:cb:ad:27:c7:8d:16:6a:22:49:23:31:bc:09:84:4d: ed:67:24:77:81:87:b1:31:20:bb:99:0e:31:3b:02:28:6d:19: 79:f8:3f:c9:30:71:5d:1d:14:e6:d4:48:66:64:d6:3d:46:b6: 35:76:e1:a1:71:b3:7c:dd:b8:85:cf:d2:0e:3a:17:e2:0b:73: 66:83:bf:90:7b:20:b9:ac:f3:5d:22:85:1d:f0:1d:b8:d3:d7: 7c:24:de:c1:d1:a8:24:c2:54:5d:d2:59:05:43:60:b5:08:d9: 30:63:d1:13 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP1QaBdGfp3plixlCK/FTO0gY5oUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAzMDQ4WhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzdmOWE5MjZlMzdiN2JmMjVmNDdjYjdlYzg4NGUxOWY5 ODAzNDM3MjZjM2Y3YTU2ZTE1M2E1ZGJlYTI1ZWE0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgurvtV4zlMAiezHqG+1NllPuO+vd32QBDazmkJwV/pu3O vObIUIyyAoAn5dI2FGMFLCu4GH4B9sLLDSTKbknEqAifWK5CRZ9NorKebrg0lKX6 K2HsOekkoACX6gEc+NorNSy2jZDzKBx4/BpIoW11DdRJuIWf8XcL3OkUlbf7B6ZV apw5wsLPUqfEgNLL2x9E+ZVaPgzaswk8QOCL93SLp2VBIgJ1yF+4rHGpH0nkEO5Y 8wOf5lsZljquZ13W8hikThWiwmdgN3dRuAqsQpfUtVOterCsJfoL1SEqKv04wzVt pr/jad+oTSgpS3yt0l2oRLSM40BFlpfSXBZh4J8LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdB55aEloGZ1nmryqQ/gbzRLjamQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Q1YmNkYmE0LWIzOWYtNDlkNy04MWRhLTE0NTQ0MmQ2ZjE4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37EwDQYJKoZIhvcNAQELBQADggEBAEMtux6AoJcPQajv78B/pgGsyyS3 1zu6DT4Re7MgxpCrix1o8R5KLQ4DNczMix1BnXh3K2hfQvFx8WJu2jvObcfZvhVV eOImJEZZW0Decfa1zPK/336WOqpwf9dUidqzmfmIRBPi5kqQBK1yS1n1a984GzR+ OWnLB1fp3NJ1lq+TKNqcnLS7vpB7nInDQzxswDjIsMutJ8eNFmoiSSMxvAmETe1n JHeBh7ExILuZDjE7AihtGXn4P8kwcV0dFObUSGZk1j1GtjV24aFxs3zduIXP0g46 F+ILc2aDv5B7ILms810ihR3wHbjT13wk3sHRqCTCVF3SWQVDYLUI2TBj0RM= -----END CERTIFICATE-----Generated at Mon Mar 2 11:33:58 2026 by rpki-client