$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/efff1c41-4813-4726-a794-2bd64d641531.roa File: efff1c41-4813-4726-a794-2bd64d641531.roa (raw, json) Hash identifier: OXnjPG4sYlJ3+y/I2FNaQj94RifYL5CL5VHTxxMNzns= Subject key identifier: F1:B2:C5:D5:2F:49:71:2B:6E:45:11:6D:52:4B:E5:9F:88:FD:36:0B Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1920C456CEA7FE979D2C47B7B786CAD6523EAD1C Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/efff1c41-4813-4726-a794-2bd64d641531.roa Signing time: Wed 11 Feb 2026 00:30:20 +0000 ROA not before: Wed 11 Feb 2026 00:30:20 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:20:c4:56:ce:a7:fe:97:9d:2c:47:b7:b7:86:ca:d6:52:3e:ad:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:30:20 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=eaf21aace88efbd03dc0dc89fb08a62bca10daa4239b11e744f376f980ad628d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e4:77:2e:22:12:f3:86:68:1d:57:d9:fb:84: bb:c7:73:48:69:93:b9:0f:a3:32:18:d1:37:6b:e2: e2:30:28:9a:02:b1:bf:0d:05:b1:e9:19:79:d3:4a: 10:f9:5a:11:2d:17:5c:ce:93:45:43:c7:4f:e0:81: 21:cd:73:8b:e4:3d:ba:b8:d3:eb:1f:74:5a:c6:c5: d5:fd:5e:d8:ca:17:a8:36:84:68:9c:17:19:81:99: 84:79:42:e8:9b:1b:c9:6d:d9:ba:f9:31:fd:62:01: 00:73:dd:9e:3f:69:b4:13:71:27:b9:02:e3:d3:e4: 17:e4:a9:d5:2a:ff:f1:c6:e4:42:77:2c:eb:05:44: db:6b:7f:ba:6c:e0:65:a8:c4:32:45:d2:34:77:35: 4e:a1:64:a5:c8:42:84:34:48:5a:c1:4b:c0:43:e7: 5e:4c:33:ad:23:79:fd:44:56:6d:2d:11:b0:d2:6b: 9a:75:eb:36:1f:b8:d2:3e:72:f7:01:b2:b3:36:96: 24:e2:68:1e:fa:a2:29:f2:a7:32:32:16:f8:fb:4a: dc:59:28:25:27:99:35:d2:f0:9b:70:02:e1:eb:c9: 65:4e:81:bc:07:80:f5:0d:12:b8:c1:1b:82:be:e2: ef:23:d0:1c:b3:b3:a4:d7:a8:30:17:e2:55:ad:d1: f4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:B2:C5:D5:2F:49:71:2B:6E:45:11:6D:52:4B:E5:9F:88:FD:36:0B X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/efff1c41-4813-4726-a794-2bd64d641531.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.235.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:53:ce:f9:66:78:fd:0b:f5:ef:22:39:36:d0:e7:f6:40:c1: 94:df:22:15:8f:42:66:e5:8e:d2:04:6c:3f:07:8c:15:d4:c6: 02:b2:41:00:38:b3:25:e6:04:06:e2:a4:ed:ed:f6:5a:f1:31: 74:56:70:14:2f:5f:79:d2:17:c3:6c:2d:c9:d0:3f:ac:4d:fc: af:df:86:1c:f7:d5:9a:6b:d3:58:a0:4f:d8:78:bb:c8:41:75: ad:32:99:3f:cc:d3:26:d4:b2:bd:53:6b:ad:33:db:29:d8:d6: 4d:46:38:fd:38:f5:dc:2c:c2:af:1b:86:1c:64:21:ea:e6:32: 08:3d:89:5e:2d:a8:95:5c:8d:dd:36:9d:f0:84:9f:83:80:eb: 5e:74:b0:79:ca:78:c9:be:7d:bf:79:d7:7f:d2:f0:a1:a6:68: 2a:57:86:b2:b5:66:30:79:04:1c:0c:9d:0f:d4:c4:ad:f0:d7: 9e:59:e6:3b:bf:94:55:50:9d:60:3c:68:5f:c1:d3:78:66:38: 77:77:b6:c5:f0:d5:d1:a1:29:48:49:22:4a:41:7d:29:60:3e: 24:8a:f9:47:dd:0c:01:46:68:29:d1:c9:97:5b:90:88:d7:47: cd:8d:fa:0d:6d:73:ae:25:ac:34:0a:cf:ce:78:de:63:b6:3b: 08:61:bd:5d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGSDEVs6n/pedLEe3t4bK1lI+rRwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAzMDIwWhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYWYyMWFhY2U4OGVmYmQwM2RjMGRjODlmYjA4YTYyYmNh MTBkYWE0MjM5YjExZTc0NGYzNzZmOTgwYWQ2MjhkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR5HcuIhLzhmgdV9n7hLvHc0hpk7kPozIY0Tdr4uIwKJoC sb8NBbHpGXnTShD5WhEtF1zOk0VDx0/ggSHNc4vkPbq40+sfdFrGxdX9XtjKF6g2 hGicFxmBmYR5QuibG8lt2br5Mf1iAQBz3Z4/abQTcSe5AuPT5BfkqdUq//HG5EJ3 LOsFRNtrf7ps4GWoxDJF0jR3NU6hZKXIQoQ0SFrBS8BD515MM60jef1EVm0tEbDS a5p16zYfuNI+cvcBsrM2liTiaB76oinypzIyFvj7StxZKCUnmTXS8JtwAuHryWVO gbwHgPUNErjBG4K+4u8j0Byzs6TXqDAX4lWt0fQLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8bLF1S9JcStuRRFtUkvln4j9NgswHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2VmZmYxYzQxLTQ4MTMtNDcyNi1hNzk0LTJiZDY0ZDY0MTUzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++swDQYJKoZIhvcNAQELBQADggEBAA9TzvlmeP0L9e8iOTbQ5/ZAwZTf IhWPQmbljtIEbD8HjBXUxgKyQQA4syXmBAbipO3t9lrxMXRWcBQvX3nSF8NsLcnQ P6xN/K/fhhz31Zpr01igT9h4u8hBda0ymT/M0ybUsr1Ta60z2ynY1k1GOP049dws wq8bhhxkIermMgg9iV4tqJVcjd02nfCEn4OA6150sHnKeMm+fb9513/S8KGmaCpX hrK1ZjB5BBwMnQ/UxK3w155Z5ju/lFVQnWA8aF/B03hmOHd3tsXw1dGhKUhJIkpB fSlgPiSK+UfdDAFGaCnRyZdbkIjXR82N+g1tc64lrDQKz8543mO2OwhhvV0= -----END CERTIFICATE-----Generated at Sun Mar 1 21:55:05 2026 by rpki-client