$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa File: f174f360-a3ca-4335-8414-4727cef110a8.roa (raw, json) Hash identifier: 8Vm6Fhiqe9Y6vfrdHPBh9K6jp/yWYp2aTGOuuq8F1Dw= Subject key identifier: CD:B7:8E:29:E1:0E:D7:43:78:3C:74:25:D7:D9:F6:6A:F2:30:3C:35 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 67ABF02E2405EB2881BF2E9BD45BEAAD2D4C88EE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa Signing time: Wed 11 Feb 2026 00:20:12 +0000 ROA not before: Wed 11 Feb 2026 00:20:12 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ab:f0:2e:24:05:eb:28:81:bf:2e:9b:d4:5b:ea:ad:2d:4c:88:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:20:12 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=cd54b4f0bc23e0e570b9e57797e87ba6b7de7c440de8d46aabec40c5dccf316d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:52:77:03:fa:2a:1a:93:4c:33:ab:41:be:40: ed:b1:e8:39:c4:94:db:57:78:df:9e:c3:4c:bd:38: 5b:67:71:2c:47:55:41:f6:e5:6d:c8:80:5d:e8:75: 56:ec:85:f5:b7:ae:c9:33:e7:3f:2e:17:f7:7a:22: 01:6d:62:16:14:71:ba:dc:56:bf:30:84:a7:e9:66: fa:9a:a0:46:08:e9:00:e6:e9:df:39:c0:59:80:6e: 17:c0:41:d8:3d:0c:5b:a5:64:7a:33:63:f0:dc:39: c4:9c:9d:94:78:0b:34:17:c1:b1:02:ae:a0:20:4a: 2b:63:ef:0c:b5:ac:8a:55:cc:e5:8e:97:50:29:15: 63:71:30:ad:4c:05:94:9f:19:07:a6:e5:df:00:e5: 0f:11:14:74:40:e3:8a:e5:8d:51:d8:85:3a:df:d6: f4:b2:ae:28:76:c5:df:76:0e:d3:ea:80:36:da:e1: fa:e6:91:8b:7f:a0:e5:e9:4e:c2:99:71:da:bb:27: ad:f1:67:9f:73:cf:d6:99:10:e2:19:6a:03:4b:4b: 2a:ef:3f:67:30:af:ad:b6:4e:69:99:fe:64:f7:46: 8a:09:ce:26:72:51:d8:7e:70:e6:7b:91:48:9d:9e: 89:3b:1d:36:60:0f:bd:19:66:f9:67:da:bd:b2:12: 05:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B7:8E:29:E1:0E:D7:43:78:3C:74:25:D7:D9:F6:6A:F2:30:3C:35 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 14:18:1e:53:40:60:9d:dd:c2:39:cf:30:fe:52:28:e1:95:d9: cb:a7:1b:ec:a7:9f:08:ce:b1:ae:7a:5c:98:ab:c8:a1:88:5e: 8f:a9:33:a5:a2:18:be:b7:a1:b0:33:e0:64:63:2d:17:a3:36: d1:af:b3:54:6f:d1:59:70:88:9e:19:95:35:c6:b9:fb:5a:7f: 44:19:95:fa:5c:67:66:27:d8:0c:f2:b6:54:07:52:5c:8d:38: 59:d5:1f:0a:f4:4b:16:6f:8c:e8:0f:24:ff:19:09:f7:c6:6d: f8:db:0a:b3:60:63:c4:f5:0d:cd:b0:bc:3a:c0:35:88:30:ac: 83:0e:68:48:07:0b:86:dc:6b:88:72:01:3f:1b:71:23:bc:88: 70:d1:b0:1c:bf:b2:32:c0:01:9d:6f:f1:f1:1c:49:7c:10:a4: 4f:08:cd:ea:3d:79:1a:f7:6f:13:f7:5b:2e:c3:d6:e1:f2:89: 7c:36:70:ce:87:b7:82:5e:fa:09:1e:ca:db:6b:29:07:bc:b4: 30:06:90:19:40:f1:75:37:8f:f2:f7:36:47:bc:6b:a0:24:e5: 03:7d:d9:43:36:87:31:ae:df:e8:d1:75:ae:26:75:bf:ac:32: 71:a9:0e:c7:75:71:f6:3f:42:be:f4:a8:e1:b5:db:84:a9:4b: a8:60:3d:10 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ6vwLiQF6yiBvy6b1FvqrS1MiO4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAyMDEyWhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDU0YjRmMGJjMjNlMGU1NzBiOWU1Nzc5N2U4N2JhNmI3 ZGU3YzQ0MGRlOGQ0NmFhYmVjNDBjNWRjY2YzMTZkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBUncD+ioak0wzq0G+QO2x6DnElNtXeN+ew0y9OFtncSxH VUH25W3IgF3odVbshfW3rskz5z8uF/d6IgFtYhYUcbrcVr8whKfpZvqaoEYI6QDm 6d85wFmAbhfAQdg9DFulZHozY/DcOcScnZR4CzQXwbECrqAgSitj7wy1rIpVzOWO l1ApFWNxMK1MBZSfGQem5d8A5Q8RFHRA44rljVHYhTrf1vSyrih2xd92DtPqgDba 4frmkYt/oOXpTsKZcdq7J63xZ59zz9aZEOIZagNLSyrvP2cwr622TmmZ/mT3RooJ ziZyUdh+cOZ7kUidnok7HTZgD70ZZvln2r2yEgVlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzbeOKeEO10N4PHQl19n2avIwPDUwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2YxNzRmMzYwLWEzY2EtNDMzNS04NDE0LTQ3MjdjZWYxMTBhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBABQYHlNAYJ3dwjnPMP5SKOGV2cun G+ynnwjOsa56XJiryKGIXo+pM6WiGL63obAz4GRjLRejNtGvs1Rv0VlwiJ4ZlTXG uftaf0QZlfpcZ2Yn2AzytlQHUlyNOFnVHwr0SxZvjOgPJP8ZCffGbfjbCrNgY8T1 Dc2wvDrANYgwrIMOaEgHC4bca4hyAT8bcSO8iHDRsBy/sjLAAZ1v8fEcSXwQpE8I zeo9eRr3bxP3Wy7D1uHyiXw2cM6Ht4Je+gkeyttrKQe8tDAGkBlA8XU3j/L3Nke8 a6Ak5QN92UM2hzGu3+jRda4mdb+sMnGpDsd1cfY/Qr70qOG124SpS6hgPRA= -----END CERTIFICATE-----Generated at Sun Mar 1 23:49:20 2026 by rpki-client