$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa File: e41ada77-fa4f-4da3-a532-14382438f575.roa (raw, json) Hash identifier: Lvu5wS7X+RhjJBfsBylxzx3ywPdZzVTKQ+YPjZpTHsk= Subject key identifier: C2:E4:07:54:51:70:BC:38:44:99:A9:34:FB:3D:FF:D1:74:C5:19:7E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 138958BDE6A7BB482B91E32F7162AB0D8608AE9C Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa Signing time: Wed 11 Feb 2026 00:30:21 +0000 ROA not before: Wed 11 Feb 2026 00:30:21 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 76.223.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:89:58:bd:e6:a7:bb:48:2b:91:e3:2f:71:62:ab:0d:86:08:ae:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:30:21 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=cc2837383ef541225ced8551a838f90737e3ffb28e26b520294ae88d124b3bea, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f9:82:85:6a:5f:b0:41:51:94:a7:28:ac:33: 3a:cf:09:9c:a3:74:04:35:39:0c:d0:cc:e8:b3:2b: 88:57:d0:08:e9:f3:bf:8f:0d:cf:82:39:1c:5d:fb: ef:1c:7c:0e:37:87:29:4e:05:2c:1c:cc:31:f0:1c: 9d:60:77:1b:5c:1f:89:79:26:c3:c3:b5:bf:cd:65: 4f:99:b3:e3:fd:f8:ae:87:2f:82:d5:c3:a4:db:e2: a5:9f:c3:56:ca:8a:2b:b2:e2:ab:5c:4b:cb:c1:e6: 37:88:20:c3:24:b6:0c:a3:ed:2b:5b:7c:ed:3f:cd: 25:13:09:16:a8:2e:b8:f9:d2:05:d3:11:27:8e:63: 1c:ac:95:40:bd:d8:d8:04:69:27:48:f3:ac:f3:99: fa:d8:80:55:30:2d:fa:e5:2c:eb:c2:c7:59:3c:d8: 14:24:0e:a5:87:c8:9b:9e:2d:53:27:cb:95:58:6e: e1:c5:b5:72:6c:ca:70:e7:84:b5:02:79:90:9f:42: 12:0a:a9:09:74:95:56:9e:37:2c:14:0a:4c:c0:3f: a1:6c:b2:73:d5:70:53:47:b6:89:19:c7:78:ae:7b: 0d:49:2c:5a:aa:7d:9f:0b:52:fa:4c:0d:a9:f0:70: 49:a6:85:83:2e:07:b5:c1:65:73:34:f9:64:39:3b: 26:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:E4:07:54:51:70:BC:38:44:99:A9:34:FB:3D:FF:D1:74:C5:19:7E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.191.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:68:b0:a2:b2:73:26:d0:cd:13:3f:a5:aa:81:63:b9:ab:00: 42:bf:62:6a:a6:d7:8c:14:89:e1:2b:fc:cf:85:c6:f0:48:29: dc:be:cc:2a:e9:e5:d9:57:d4:68:85:3f:c3:ad:d0:14:aa:84: be:55:c5:13:ba:45:de:c6:72:77:b5:be:e0:16:be:c4:6a:d4: b7:60:af:ed:38:09:b1:f3:08:62:09:6e:77:52:ff:18:9c:43: 59:d0:72:57:60:f4:a1:8b:29:95:a2:30:b8:f8:99:19:6b:4e: 3b:5f:c1:d2:93:dc:89:f3:88:ec:ab:49:2d:e9:c3:56:3c:f7: 2f:47:04:f8:f1:f5:3d:98:ed:e9:d4:8e:ef:7f:a8:8f:72:52: 0c:24:15:fc:10:b7:a0:4b:e1:2d:42:c2:f3:4e:f6:9c:ff:77: 4b:e8:44:82:8a:c8:54:fb:b5:76:3a:34:30:64:dd:4e:14:92: fd:a4:08:e1:94:d8:5f:02:f4:dd:a1:6b:67:70:d1:f3:6b:7c: 66:1c:2a:6b:a2:b1:62:81:10:73:71:f8:91:69:44:7b:26:c2: bd:a3:e3:aa:83:fd:a1:62:83:e0:b9:7c:7b:1a:b1:20:c7:00: 44:24:a0:36:f3:21:35:07:ac:7d:4a:ff:06:a5:9a:0e:b9:e6: 54:79:a2:7e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE4lYveanu0grkeMvcWKrDYYIrpwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAzMDIxWhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzI4MzczODNlZjU0MTIyNWNlZDg1NTFhODM4ZjkwNzM3 ZTNmZmIyOGUyNmI1MjAyOTRhZTg4ZDEyNGIzYmVhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDk+YKFal+wQVGUpyisMzrPCZyjdAQ1OQzQzOizK4hX0Ajp 87+PDc+CORxd++8cfA43hylOBSwczDHwHJ1gdxtcH4l5JsPDtb/NZU+Zs+P9+K6H L4LVw6Tb4qWfw1bKiiuy4qtcS8vB5jeIIMMktgyj7StbfO0/zSUTCRaoLrj50gXT ESeOYxyslUC92NgEaSdI86zzmfrYgFUwLfrlLOvCx1k82BQkDqWHyJueLVMny5VY buHFtXJsynDnhLUCeZCfQhIKqQl0lVaeNywUCkzAP6FssnPVcFNHtokZx3iuew1J LFqqfZ8LUvpMDanwcEmmhYMuB7XBZXM0+WQ5OyYNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwuQHVFFwvDhEmak0+z3/0XTFGX4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2U0MWFkYTc3LWZhNGYtNGRhMy1hNTMyLTE0MzgyNDM4ZjU3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM378wDQYJKoZIhvcNAQELBQADggEBAHtosKKycybQzRM/paqBY7mrAEK/ Ymqm14wUieEr/M+FxvBIKdy+zCrp5dlX1GiFP8Ot0BSqhL5VxRO6Rd7Gcne1vuAW vsRq1Ldgr+04CbHzCGIJbndS/xicQ1nQcldg9KGLKZWiMLj4mRlrTjtfwdKT3Inz iOyrSS3pw1Y89y9HBPjx9T2Y7enUju9/qI9yUgwkFfwQt6BL4S1CwvNO9pz/d0vo RIKKyFT7tXY6NDBk3U4Ukv2kCOGU2F8C9N2ha2dw0fNrfGYcKmuisWKBEHNx+JFp RHsmwr2j46qD/aFig+C5fHsasSDHAEQkoDbzITUHrH1K/walmg655lR5on4= -----END CERTIFICATE-----Generated at Mon Mar 2 01:31:58 2026 by rpki-client