$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa File: d61aefde-15db-4326-8486-f4cd98992cbc.roa (raw, json) Hash identifier: 75M7Kik0JisE4HCAuaNI+/aqFI3NcirE4UKa8BbCvm0= Subject key identifier: 5D:E7:63:F2:91:B1:5F:AD:AE:23:7B:26:B2:A2:BE:32:99:A6:81:75 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3778D2878FE7157D97DB0295409C6B42F135EF54 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa Signing time: Wed 11 Feb 2026 00:30:50 +0000 ROA not before: Wed 11 Feb 2026 00:30:50 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:78:d2:87:8f:e7:15:7d:97:db:02:95:40:9c:6b:42:f1:35:ef:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:30:50 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=68b27a71784c6b8b795d8b23462527f04bbca5977829cbb888d42ec24c8e7168, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e8:d1:b4:f9:18:12:12:76:1e:81:2a:24:e0: 56:78:c4:0a:c2:18:a2:b1:a2:84:9d:35:40:30:05: b3:2b:17:77:08:73:75:5e:23:b7:40:bd:55:dd:d2: 06:a9:18:c0:90:ba:8c:71:72:3b:d5:15:2c:74:55: 6c:40:bd:85:f6:af:84:66:40:f6:7f:52:ed:20:37: 9d:56:41:b9:f9:ed:33:6c:55:fa:b1:0b:ac:b1:a2: c9:f7:31:38:6e:50:17:6f:55:60:b4:bd:78:28:10: 0c:d4:30:02:c8:ab:9c:db:99:73:75:a0:f4:ee:9c: 4d:16:83:6f:0a:b8:59:97:b4:18:b2:aa:81:2a:dd: 6c:ff:31:66:8f:69:47:29:27:b4:f2:e3:e8:e1:49: 0e:94:f0:2b:54:aa:97:76:3d:a1:86:6e:4d:82:4d: 0e:0e:46:e1:81:6f:ee:ba:ba:d9:36:71:1a:da:67: f4:55:6a:56:a7:64:a9:20:24:51:47:f0:7c:27:61: fe:50:08:6f:b2:55:83:03:a6:12:11:4e:ea:32:cd: a9:67:8a:99:d9:8a:ca:75:0f:8e:f2:fc:61:f3:42: 1e:fa:63:4c:fb:92:d2:01:09:70:26:f1:e6:b6:10: 06:74:d4:e5:7f:30:32:91:18:97:21:e5:46:1f:c2: 62:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E7:63:F2:91:B1:5F:AD:AE:23:7B:26:B2:A2:BE:32:99:A6:81:75 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.223.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:da:c6:ec:02:e2:27:f5:2f:b8:d9:45:80:e5:67:7b:dc:05: e9:4d:10:6e:7f:ba:77:5a:80:2d:71:b0:76:49:95:91:4d:ad: 03:4e:11:5a:bc:38:46:ac:94:63:42:9e:19:a8:df:6a:b1:6f: 34:7b:3b:e2:06:b8:70:95:24:52:f1:8d:8f:18:d5:ef:e9:e0: 1c:5e:b7:1e:06:d5:2a:6b:1e:1d:9f:92:36:5b:7d:e6:b8:60: 1c:e0:83:6f:18:cf:ab:af:81:43:79:5f:62:2a:51:87:53:4a: 1d:89:a2:de:01:0b:d7:6e:1f:88:5b:50:73:4d:55:03:93:18: b2:a0:eb:53:59:ef:79:be:b7:18:f2:03:ac:84:df:3b:1f:28: 40:05:13:21:4f:da:b5:26:81:f8:a1:a9:bc:6d:aa:69:08:f4: 38:d2:e1:64:83:ab:6c:5e:e9:9e:f8:38:88:64:24:e1:ce:72: c5:f7:94:fe:75:76:a2:cb:25:f7:76:8d:5f:ff:b7:82:0c:5e: 9d:bb:ab:f2:21:72:6a:60:30:f3:e4:6e:60:ee:da:51:1a:86: 0d:0f:91:0d:13:c0:92:2c:e2:df:c7:45:7b:87:0a:c7:c4:aa: d9:ab:01:c9:bf:4b:29:62:7d:dd:26:0b:b1:63:0b:e6:bf:66: 68:78:ea:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN3jSh4/nFX2X2wKVQJxrQvE171QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAzMDUwWhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OGIyN2E3MTc4NGM2YjhiNzk1ZDhiMjM0NjI1MjdmMDRi YmNhNTk3NzgyOWNiYjg4OGQ0MmVjMjRjOGU3MTY4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB6NG0+RgSEnYegSok4FZ4xArCGKKxooSdNUAwBbMrF3cI c3VeI7dAvVXd0gapGMCQuoxxcjvVFSx0VWxAvYX2r4RmQPZ/Uu0gN51WQbn57TNs VfqxC6yxosn3MThuUBdvVWC0vXgoEAzUMALIq5zbmXN1oPTunE0Wg28KuFmXtBiy qoEq3Wz/MWaPaUcpJ7Ty4+jhSQ6U8CtUqpd2PaGGbk2CTQ4ORuGBb+66utk2cRra Z/RValanZKkgJFFH8HwnYf5QCG+yVYMDphIRTuoyzalnipnZisp1D47y/GHzQh76 Y0z7ktIBCXAm8ea2EAZ01OV/MDKRGJch5UYfwmL9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXedj8pGxX62uI3smsqK+MpmmgXUwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Q2MWFlZmRlLTE1ZGItNDMyNi04NDg2LWY0Y2Q5ODk5MmNiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d8wDQYJKoZIhvcNAQELBQADggEBAGzaxuwC4if1L7jZRYDlZ3vcBelN EG5/undagC1xsHZJlZFNrQNOEVq8OEaslGNCnhmo32qxbzR7O+IGuHCVJFLxjY8Y 1e/p4Bxetx4G1SprHh2fkjZbfea4YBzgg28Yz6uvgUN5X2IqUYdTSh2Jot4BC9du H4hbUHNNVQOTGLKg61NZ73m+txjyA6yE3zsfKEAFEyFP2rUmgfihqbxtqmkI9DjS 4WSDq2xe6Z74OIhkJOHOcsX3lP51dqLLJfd2jV//t4IMXp27q/IhcmpgMPPkbmDu 2lEahg0PkQ0TwJIs4t/HRXuHCsfEqtmrAcm/Sylifd0mC7FjC+a/Zmh46rg= -----END CERTIFICATE-----Generated at Sun Mar 1 23:47:12 2026 by rpki-client