$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa File: 2788fd0d-0141-46b1-b160-e9916a5caddd.roa (raw, json) Hash identifier: hlxq1VDMoCVY6lMjnYq99Ok5MTuCdHmWphuVZXZ+V6I= Subject key identifier: E5:91:7A:64:D9:F2:11:50:4C:1E:9F:BC:E5:D6:A5:5A:AF:64:EC:EE Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 4F737158E421CF3F2D409CF6CC42E332E645EB74 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa Signing time: Sat 28 Feb 2026 00:40:04 +0000 ROA not before: Sat 28 Feb 2026 00:40:04 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:73:71:58:e4:21:cf:3f:2d:40:9c:f6:cc:42:e3:32:e6:45:eb:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Feb 28 00:40:04 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=58d19b678df5680534bed5d74ce44f802485059c8fc068c0a06cacf1191cd283, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:e6:7c:e8:f9:3e:93:5c:9c:30:06:6a:78:ea: a8:c9:50:08:f5:66:d5:9c:32:76:09:67:6e:78:2a: 78:a2:24:3d:4e:08:4f:cc:d8:88:bb:b5:1e:8f:3d: 50:12:87:7c:c4:ca:02:d3:20:81:b5:f4:7e:6e:f3: 8d:0f:33:f8:2a:f0:a8:6c:e4:3b:e2:0b:d9:c7:46: 30:1c:b3:9f:44:5d:5b:06:97:86:6e:f6:e8:e2:f8: 8c:02:26:d5:f7:2a:7b:16:f9:1e:70:b9:06:30:4f: 37:5d:95:11:d0:e1:2d:36:06:c1:3d:31:43:2a:72: 91:18:f5:1b:07:c2:48:7e:a4:a8:3d:10:8d:eb:06: 8b:53:94:5c:b3:a7:f9:43:f7:c1:90:41:95:a7:1b: 0f:5d:d4:ce:ea:b9:a9:25:78:67:78:25:6b:39:8e: a5:34:d4:be:06:f4:03:72:f3:73:cb:72:6d:7b:a4: ac:45:d2:7e:ab:da:46:c0:93:87:da:a3:5a:6a:ef: b8:f9:c6:5c:0e:d4:15:f9:2a:c6:53:96:65:26:07: 09:fc:8a:9b:97:a5:79:f9:36:68:36:d8:d5:c2:89: 15:3c:8a:b0:73:64:5a:45:39:37:43:7e:fc:65:aa: a3:14:2c:2c:fb:f1:d4:0c:c3:d7:68:80:71:b5:9a: 17:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:91:7A:64:D9:F2:11:50:4C:1E:9F:BC:E5:D6:A5:5A:AF:64:EC:EE X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.0.0/24 Signature Algorithm: sha256WithRSAEncryption 53:37:fd:86:a9:ea:63:af:56:58:ef:99:eb:31:e8:2f:7b:09: 0a:71:97:bd:9f:f9:29:c2:19:79:4b:68:e0:88:35:ff:88:3e: fc:6d:ef:3b:40:9e:70:29:66:80:eb:01:c6:86:e2:bd:22:4a: 6e:f1:8f:8d:10:85:26:56:c3:31:87:c3:61:32:dc:39:e3:b7: bd:7c:b7:6c:b0:3a:78:2b:ae:61:1f:50:b1:ae:f3:ad:1f:36: 1a:8e:30:a9:8a:92:c0:de:92:1a:62:e0:0b:57:e6:0c:2b:75: 63:75:12:bd:1c:44:54:fb:2f:4f:34:8d:8a:e3:3a:af:f5:e7: fc:77:29:2f:94:43:66:1d:ce:29:50:e0:2e:b5:aa:85:01:64: 4e:2a:4a:a9:6e:56:53:38:d3:b5:95:30:b0:9c:24:9c:22:50: 0a:07:80:d1:09:6f:c2:01:c9:64:80:51:19:d9:37:0f:6e:31: 16:1f:6e:e5:4e:71:d6:8c:b9:34:5c:7a:81:d2:87:64:a8:98: 09:b7:51:78:8d:a0:36:06:58:61:cb:0c:94:1a:5a:b2:57:9b: bf:33:12:c6:44:eb:c1:92:6c:f3:7e:13:5b:7b:89:16:a2:1c: 0a:be:ea:3a:45:57:4a:ed:a9:34:3d:d1:d5:62:a9:c3:15:c6: db:60:1a:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT3NxWOQhzz8tQJz2zELjMuZF63QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjYwMjI4MDA0MDA0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGQxOWI2NzhkZjU2ODA1MzRiZWQ1ZDc0Y2U0NGY4MDI0 ODUwNTljOGZjMDY4YzBhMDZjYWNmMTE5MWNkMjgzMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCE5nzo+T6TXJwwBmp46qjJUAj1ZtWcMnYJZ254KniiJD1O CE/M2Ii7tR6PPVASh3zEygLTIIG19H5u840PM/gq8Khs5DviC9nHRjAcs59EXVsG l4Zu9uji+IwCJtX3KnsW+R5wuQYwTzddlRHQ4S02BsE9MUMqcpEY9RsHwkh+pKg9 EI3rBotTlFyzp/lD98GQQZWnGw9d1M7quakleGd4JWs5jqU01L4G9ANy83PLcm17 pKxF0n6r2kbAk4fao1pq77j5xlwO1BX5KsZTlmUmBwn8ipuXpXn5Nmg22NXCiRU8 irBzZFpFOTdDfvxlqqMULCz78dQMw9dogHG1mhcnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5ZF6ZNnyEVBMHp+85dalWq9k7O4wHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzI3ODhmZDBkLTAxNDEtNDZiMS1iMTYwLWU5OTE2YTVjYWRkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAycAAwDQYJKoZIhvcNAQELBQADggEBAFM3/Yap6mOvVljvmesx6C97CQpx l72f+SnCGXlLaOCINf+IPvxt7ztAnnApZoDrAcaG4r0iSm7xj40QhSZWwzGHw2Ey 3Dnjt718t2ywOngrrmEfULGu860fNhqOMKmKksDekhpi4AtX5gwrdWN1Er0cRFT7 L080jYrjOq/15/x3KS+UQ2YdzilQ4C61qoUBZE4qSqluVlM407WVMLCcJJwiUAoH gNEJb8IByWSAURnZNw9uMRYfbuVOcdaMuTRceoHSh2SomAm3UXiNoDYGWGHLDJQa WrJXm78zEsZE68GSbPN+E1t7iRaiHAq+6jpFV0rtqTQ90dViqcMVxttgGgM= -----END CERTIFICATE-----Generated at Mon Mar 2 01:24:24 2026 by rpki-client