$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa File: df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa (raw, json) Hash identifier: naxN0bdofSXAY4Eix7lY4/Bbpc6634Nz1xMNhvKcHT4= Subject key identifier: 57:18:44:32:67:D2:D1:F3:BD:17:B9:42:6A:A5:3F:A9:24:A4:05:93 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4F06DB9C39CDA6825A12D462AA956F876DF14B0A Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa Signing time: Wed 11 Feb 2026 00:30:17 +0000 ROA not before: Wed 11 Feb 2026 00:30:17 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:06:db:9c:39:cd:a6:82:5a:12:d4:62:aa:95:6f:87:6d:f1:4b:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:30:17 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=c5279996b38f3496994a892950dcbb2662d1cab2aafe5e4fec734df0dea91f70, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8f:1e:58:17:76:07:78:4d:15:d8:33:cf:13: c7:e1:8d:23:0c:4a:9c:d8:87:53:c8:ea:cd:a0:eb: 41:e0:71:15:00:e8:09:26:88:d1:85:33:83:1c:55: 34:0c:3e:75:f3:62:be:bc:7a:e6:35:fb:54:7f:1d: 8f:1f:e5:a0:f3:f7:fb:8b:67:67:a7:28:df:0e:30: f9:e2:30:7e:86:e0:2c:b2:ee:a6:aa:2e:11:8f:70: 51:e8:4a:1d:39:18:50:45:72:1a:fd:10:59:7f:d1: 06:0e:57:9c:79:9c:50:63:0d:02:6c:92:bb:e9:1f: f1:23:5e:46:74:f2:c4:3f:29:2c:b9:78:91:71:07: 4a:76:aa:d4:5e:02:10:c8:06:c9:59:84:26:06:e6: 78:67:1f:bd:64:7b:b4:51:e1:83:74:ad:3a:ff:73: 64:35:7c:e3:b5:42:3e:09:97:c9:64:2f:22:db:9c: 5a:47:e9:f3:30:1a:8c:5b:60:2b:e3:91:52:1c:4f: 85:94:37:4b:f9:47:fc:46:5a:bd:7b:1e:84:26:f0: fa:20:ac:9b:ee:23:b6:a9:70:80:c5:b5:a4:62:be: 0a:24:94:ae:96:5e:47:ae:5c:99:79:87:88:67:8f: 72:8e:74:66:4d:62:49:1a:68:af:bd:0b:4b:90:d8: 53:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:18:44:32:67:D2:D1:F3:BD:17:B9:42:6A:A5:3F:A9:24:A4:05:93 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.232.0/24 Signature Algorithm: sha256WithRSAEncryption 61:07:b5:06:83:c5:c0:0e:a9:6f:6b:27:fe:67:cc:31:bd:8d: 11:76:db:25:dc:44:40:c2:20:f7:03:56:2e:ef:f5:f7:94:b5: 32:34:42:6a:62:7c:6c:9d:8a:d2:f0:2b:25:95:88:78:ba:47: e8:21:72:cf:9d:a4:4d:90:c4:80:da:6a:b7:45:d2:61:08:b5: 72:df:46:ca:2c:aa:7d:fa:97:74:8e:83:48:0e:c5:3b:22:4b: 36:82:9e:c0:ca:61:7a:f0:68:ec:98:ce:ba:e5:86:43:10:c0: 8e:bb:61:33:29:ae:8b:1c:e5:30:b2:39:57:e7:3a:0b:bb:98: 7b:dd:c8:26:71:69:ce:25:a2:04:eb:c2:de:b5:7e:fc:4e:9a: 15:aa:53:2d:9b:d1:ee:bf:80:9e:e3:ed:a8:50:bd:5b:0c:27: c9:e5:54:6e:e9:09:e4:22:02:98:db:61:fc:d3:2a:6b:50:e9: 90:6b:ee:9d:32:18:d0:db:be:ee:d7:40:1e:20:29:68:94:b6: 7b:3d:fa:1f:8b:62:26:98:0a:e0:ff:55:b8:79:d8:89:0f:69: 73:3f:36:f5:f8:5c:a9:ce:7f:91:b1:ec:fd:2e:04:73:ee:30: a3:70:e7:dc:f2:c5:59:cd:15:0e:d0:0e:49:09:ca:7a:5f:89: 3a:b3:ba:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTwbbnDnNpoJaEtRiqpVvh23xSwowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAzMDE3WhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTI3OTk5NmIzOGYzNDk2OTk0YTg5Mjk1MGRjYmIyNjYy ZDFjYWIyYWFmZTVlNGZlYzczNGRmMGRlYTkxZjcwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgjx5YF3YHeE0V2DPPE8fhjSMMSpzYh1PI6s2g60HgcRUA 6AkmiNGFM4McVTQMPnXzYr68euY1+1R/HY8f5aDz9/uLZ2enKN8OMPniMH6G4Cyy 7qaqLhGPcFHoSh05GFBFchr9EFl/0QYOV5x5nFBjDQJskrvpH/EjXkZ08sQ/KSy5 eJFxB0p2qtReAhDIBslZhCYG5nhnH71ke7RR4YN0rTr/c2Q1fOO1Qj4Jl8lkLyLb nFpH6fMwGoxbYCvjkVIcT4WUN0v5R/xGWr17HoQm8PogrJvuI7apcIDFtaRivgok lK6WXkeuXJl5h4hnj3KOdGZNYkkaaK+9C0uQ2FMjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVxhEMmfS0fO9F7lCaqU/qSSkBZMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2RmMTk3ZWNmLWJiOWEtNDJhZS1hMTlhLWE0MTY4ZmU2YTNhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++gwDQYJKoZIhvcNAQELBQADggEBAGEHtQaDxcAOqW9rJ/5nzDG9jRF2 2yXcREDCIPcDVi7v9feUtTI0QmpifGyditLwKyWViHi6R+ghcs+dpE2QxIDaardF 0mEItXLfRsosqn36l3SOg0gOxTsiSzaCnsDKYXrwaOyYzrrlhkMQwI67YTMprosc 5TCyOVfnOgu7mHvdyCZxac4logTrwt61fvxOmhWqUy2b0e6/gJ7j7ahQvVsMJ8nl VG7pCeQiApjbYfzTKmtQ6ZBr7p0yGNDbvu7XQB4gKWiUtns9+h+LYiaYCuD/Vbh5 2IkPaXM/NvX4XKnOf5Gx7P0uBHPuMKNw59zyxVnNFQ7QDkkJynpfiTqzuqM= -----END CERTIFICATE-----Generated at Sun Mar 1 21:49:25 2026 by rpki-client