$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa File: f99236be-03a7-4f91-be31-5366989c9d7b.roa (raw, json) Hash identifier: Uw4guKP+XSjmhw+hAbPbY+zajGEsm23dYGBGoP74LYM= Subject key identifier: 92:55:17:79:35:DC:DF:A3:A3:F0:89:73:11:D0:01:14:85:33:89:F7 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 026E455B4CCB3E9EAE0E0F806E03E2FC79D66E63 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa Signing time: Wed 25 Feb 2026 00:00:06 +0000 ROA not before: Wed 25 Feb 2026 00:00:06 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 199.255.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:6e:45:5b:4c:cb:3e:9e:ae:0e:0f:80:6e:03:e2:fc:79:d6:6e:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 25 00:00:06 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=aafde3e02216d72fb06371fa5ad0869432713f09530357ad2c1948acdd983922, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1a:cd:94:71:d4:b4:5a:8e:22:df:4c:80:71: d9:a0:4d:8d:9a:70:d7:83:df:a5:c5:9f:8f:39:16: d5:1f:23:6f:04:4c:b3:0e:e8:2e:46:bf:38:43:f7: 1b:bd:40:c8:2f:82:bc:03:34:15:ba:39:34:91:df: c7:32:b1:e1:d9:27:fe:09:0e:1b:94:44:18:de:e8: 0d:73:df:de:8e:e1:5e:75:0e:d4:f8:11:d8:11:b1: ad:2a:63:a5:a9:7b:86:5b:05:c4:98:ac:98:f4:8e: f5:c1:64:79:29:c8:51:5c:c4:4e:66:c1:b8:e5:13: 71:40:f2:17:43:0b:0d:f3:ca:d4:c0:31:59:78:3f: 4e:0b:f9:81:73:f3:bc:b9:4d:38:20:b0:d1:14:9f: 83:d7:c8:38:28:95:b4:c7:c4:41:b8:60:f5:21:4e: 9e:d5:4c:52:39:07:b8:68:5a:f9:bc:7c:5d:28:5a: 45:56:ef:14:2f:f2:c1:ef:26:e4:98:8d:aa:ea:e5: 9d:14:a8:61:a8:03:a7:09:33:f7:f0:ca:c0:f9:8c: 6d:90:c9:52:93:7a:ff:b8:57:c0:90:fd:63:2c:69: da:39:ac:2b:12:8e:e8:50:01:cb:81:d1:00:90:d8: 81:2e:1d:2e:d4:9d:2d:3b:d4:1a:17:d4:87:60:3a: d8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:55:17:79:35:DC:DF:A3:A3:F0:89:73:11:D0:01:14:85:33:89:F7 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.255.192.0/22 Signature Algorithm: sha256WithRSAEncryption 78:70:f6:c3:7f:37:3d:3d:e0:5a:31:12:5e:ea:bd:a6:09:1a: 61:3e:eb:55:21:46:17:8f:9f:fa:14:f3:47:45:79:3c:ec:a4: d0:5e:ba:44:79:64:e8:a4:34:e7:cc:e5:54:c2:9a:17:f4:73: 58:2a:75:15:b0:b7:a8:a4:60:25:46:4a:b0:c1:50:a2:7d:c6: 97:ec:23:9b:bd:71:07:a1:8c:b3:39:a4:c6:ca:66:29:9c:1a: 7d:27:22:f2:25:fc:e2:57:f7:4b:dd:e7:36:95:3a:d4:4d:c1: 09:f8:ca:97:95:5d:99:88:4d:d9:82:62:ba:2d:2a:66:bf:d6: 57:97:72:55:81:c9:63:68:ff:95:a3:33:69:8f:97:cd:18:1a: 30:fe:65:30:6b:c2:97:22:34:f7:48:cf:3a:51:72:c4:a0:c6: 0d:a9:33:ab:82:f9:a6:b3:cf:a7:e8:9c:de:0d:69:5c:42:33: a7:28:07:09:6b:5a:cf:0c:61:58:20:90:c9:0a:30:3f:74:10: 24:51:ff:8a:38:35:59:a9:32:93:72:9a:3d:3f:80:34:78:10: 1a:22:56:8b:6f:c6:98:15:97:91:e1:67:74:28:43:89:ba:c2: 39:44:23:1f:3f:74:f2:7f:3c:1e:03:fb:86:c3:61:6c:c3:96: 0f:2c:92:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAm5FW0zLPp6uDg+AbgPi/HnWbmMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjI1MDAwMDA2WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWZkZTNlMDIyMTZkNzJmYjA2MzcxZmE1YWQwODY5NDMy NzEzZjA5NTMwMzU3YWQyYzE5NDhhY2RkOTgzOTIyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDGs2UcdS0Wo4i30yAcdmgTY2acNeD36XFn485FtUfI28E TLMO6C5GvzhD9xu9QMgvgrwDNBW6OTSR38cyseHZJ/4JDhuURBje6A1z396O4V51 DtT4EdgRsa0qY6Wpe4ZbBcSYrJj0jvXBZHkpyFFcxE5mwbjlE3FA8hdDCw3zytTA MVl4P04L+YFz87y5TTggsNEUn4PXyDgolbTHxEG4YPUhTp7VTFI5B7hoWvm8fF0o WkVW7xQv8sHvJuSYjarq5Z0UqGGoA6cJM/fwysD5jG2QyVKTev+4V8CQ/WMsado5 rCsSjuhQAcuB0QCQ2IEuHS7UnS071BoX1IdgOtjfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUklUXeTXc36Oj8IlzEdABFIUzifcwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y5OTIzNmJlLTAzYTctNGY5MS1iZTMxLTUzNjY5ODljOWQ3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALH/8AwDQYJKoZIhvcNAQELBQADggEBAHhw9sN/Nz094FoxEl7qvaYJGmE+ 61UhRhePn/oU80dFeTzspNBeukR5ZOikNOfM5VTCmhf0c1gqdRWwt6ikYCVGSrDB UKJ9xpfsI5u9cQehjLM5pMbKZimcGn0nIvIl/OJX90vd5zaVOtRNwQn4ypeVXZmI TdmCYrotKma/1leXclWByWNo/5WjM2mPl80YGjD+ZTBrwpciNPdIzzpRcsSgxg2p M6uC+aazz6fonN4NaVxCM6coBwlrWs8MYVggkMkKMD90ECRR/4o4NVmpMpNymj0/ gDR4EBoiVotvxpgVl5HhZ3QoQ4m6wjlEIx8/dPJ/PB4D+4bDYWzDlg8sklg= -----END CERTIFICATE-----Generated at Sun Mar 1 23:47:08 2026 by rpki-client