$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa File: 8a554833-7334-4e02-8426-138572f3d41a.roa (raw, json) Hash identifier: npGMt4JOrZkZiaxvD8L1Rp+c2PrfHr3gn/c/DadUCYw= Subject key identifier: 65:08:B0:F9:4A:65:47:09:B4:9D:FA:2F:CB:5F:26:A5:AB:60:2F:E9 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 21C09B6B4D402670B93372C580A7AEF0153C8B30 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa Signing time: Wed 11 Feb 2026 00:30:16 +0000 ROA not before: Wed 11 Feb 2026 00:30:16 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 22 Feb 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c0:9b:6b:4d:40:26:70:b9:33:72:c5:80:a7:ae:f0:15:3c:8b:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 11 00:30:16 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=30dab17531b14eb51b3a58972661c7efa0e090984ca7f4e836e224d7c07f283f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5d:0a:ae:55:fe:8d:c8:25:93:63:8a:cc:8b: a9:f4:f7:a8:d2:1d:58:82:78:71:3b:d9:31:17:d3: 07:7c:f9:11:cd:0b:db:49:f4:6a:2b:db:28:9c:bc: d1:d0:2e:92:7e:dd:e1:03:07:b1:e8:26:be:1f:b9: 0c:45:1f:2d:3e:af:74:5c:96:f3:bc:65:bb:f9:2d: 2c:c2:fe:5d:f8:e9:96:04:ee:26:6e:76:8b:58:06: 63:e0:72:4e:12:a4:a9:1a:e8:c1:dc:47:11:3d:08: 1a:6e:06:88:40:9b:fe:f7:cb:a5:20:97:cf:9e:f6: 32:c0:ba:b9:11:2c:eb:61:e3:a8:32:94:d4:31:0d: 4c:f5:df:89:57:3e:74:0e:25:65:dc:c4:f2:75:fe: 98:24:68:b3:87:7e:28:4e:99:29:d7:f5:17:5b:a6: 5c:e6:eb:3b:7e:41:c1:ad:b7:f0:6b:b0:3a:24:5b: 1b:23:05:fa:5e:0f:ae:54:01:e4:d3:0b:5b:c0:a4: 10:8c:01:92:32:d3:62:24:f4:61:63:0c:19:e7:73: 0a:33:3f:7d:5f:2d:71:40:ba:37:c1:1a:e3:be:d5: 14:a2:17:c2:9c:68:b0:1d:8f:09:b3:27:6f:52:b3: 90:64:17:bd:29:d6:b4:3a:22:8b:07:6c:d6:8c:29: 95:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:08:B0:F9:4A:65:47:09:B4:9D:FA:2F:CB:5F:26:A5:AB:60:2F:E9 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.217.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:97:90:44:6c:5f:45:e5:fc:98:66:98:23:2d:99:3a:b3:3c: 11:fa:64:10:6f:82:61:36:07:71:8e:cf:3c:9f:04:e6:81:05: 50:a7:67:06:78:a3:ff:52:d0:a0:72:4b:4a:90:93:b3:0f:b8: eb:1b:09:80:85:00:df:ff:bb:bd:6f:e4:2f:6c:a6:bd:7c:e1: 17:c9:cb:1a:1d:4c:3c:4a:b0:34:6a:21:54:78:85:5a:2a:3d: 86:97:48:8e:ec:ba:24:3d:85:a1:8a:c5:ea:a0:2a:bf:9e:b4: df:46:fa:80:58:6e:9e:f6:80:44:56:b6:b6:4e:fb:b2:93:26: 00:40:d1:5b:07:f7:19:14:de:71:f1:08:21:42:37:0a:61:71: c8:5e:9a:36:5f:7a:b8:f3:de:20:10:51:2a:ba:3a:24:3a:17: 4f:c2:c8:f8:a0:22:59:d3:ee:a0:a6:b2:e5:13:12:fa:25:96: 92:74:81:ef:06:76:2e:11:a4:64:bd:0f:d0:5f:0f:f5:63:ec: 3b:98:d4:97:07:f6:40:39:aa:09:c9:16:b5:ae:5b:3e:2b:b4: 88:b9:6c:4a:32:b7:06:55:7e:c8:a4:4d:2d:a1:d6:76:77:43: 19:92:7e:34:45:05:f2:b8:b0:ed:da:d4:f9:7c:a1:3a:4c:65: 7d:46:30:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIcCba01AJnC5M3LFgKeu8BU8izAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjExMDAzMDE2WhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGRhYjE3NTMxYjE0ZWI1MWIzYTU4OTcyNjYxYzdlZmEw ZTA5MDk4NGNhN2Y0ZTgzNmUyMjRkN2MwN2YyODNmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFXQquVf6NyCWTY4rMi6n096jSHViCeHE72TEX0wd8+RHN C9tJ9Gor2yicvNHQLpJ+3eEDB7HoJr4fuQxFHy0+r3RclvO8Zbv5LSzC/l346ZYE 7iZudotYBmPgck4SpKka6MHcRxE9CBpuBohAm/73y6Ugl8+e9jLAurkRLOth46gy lNQxDUz134lXPnQOJWXcxPJ1/pgkaLOHfihOmSnX9Rdbplzm6zt+QcGtt/BrsDok WxsjBfpeD65UAeTTC1vApBCMAZIy02Ik9GFjDBnncwozP31fLXFAujfBGuO+1RSi F8KcaLAdjwmzJ29Ss5BkF70p1rQ6IosHbNaMKZV5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZQiw+UplRwm0nfovy18mpatgL+kwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzhhNTU0ODMzLTczMzQtNGUwMi04NDI2LTEzODU3MmYzZDQxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dkwDQYJKoZIhvcNAQELBQADggEBAGyXkERsX0Xl/JhmmCMtmTqzPBH6 ZBBvgmE2B3GOzzyfBOaBBVCnZwZ4o/9S0KByS0qQk7MPuOsbCYCFAN//u71v5C9s pr184RfJyxodTDxKsDRqIVR4hVoqPYaXSI7suiQ9haGKxeqgKr+etN9G+oBYbp72 gERWtrZO+7KTJgBA0VsH9xkU3nHxCCFCNwphcchemjZferjz3iAQUSq6OiQ6F0/C yPigIlnT7qCmsuUTEvollpJ0ge8Gdi4RpGS9D9BfD/Vj7DuY1JcH9kA5qgnJFrWu Wz4rtIi5bEoytwZVfsikTS2h1nZ3QxmSfjRFBfK4sO3a1Pl8oTpMZX1GMEY= -----END CERTIFICATE-----Generated at Sat Feb 21 04:52:03 2026 by rpki-client