$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/474b8370-dc4f-4592-ac12-366b777c2660.roa File: 474b8370-dc4f-4592-ac12-366b777c2660.roa (raw, json) Hash identifier: q9wt0QEklZAQ+3wBehhIfNKfMyZrSp8DmRdUxJZwlq4= Subject key identifier: 94:A5:5F:84:A9:72:3B:21:3E:6E:A2:04:7E:69:CF:25:2A:79:19:72 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 2F753B321A504979A483BD41D2F4D696EF4AB897 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/474b8370-dc4f-4592-ac12-366b777c2660.roa Signing time: Sat 28 Feb 2026 00:30:15 +0000 ROA not before: Sat 28 Feb 2026 00:30:15 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:75:3b:32:1a:50:49:79:a4:83:bd:41:d2:f4:d6:96:ef:4a:b8:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Feb 28 00:30:15 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=2d7fbadeb83defe64200bae7dd13fb7068197db64df17481966db905b43340ee, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:db:0b:39:1b:6c:7f:74:b8:36:05:4a:78:9a: 73:61:4f:20:b6:45:45:4b:e5:02:c0:68:39:40:23: 05:62:65:ea:ea:30:8f:22:71:42:b1:52:16:a9:01: 2b:99:fb:c1:33:7c:fc:30:b9:fa:7c:dd:7f:e0:55: e6:e2:4e:f7:a8:ef:15:61:40:05:92:d5:f7:e8:6c: 8c:af:c8:06:6d:f0:a3:0d:7a:b4:df:cf:77:d8:74: 4e:69:56:cb:dd:2c:12:78:49:cd:46:06:dd:90:bd: 42:71:4e:3e:f7:f3:69:80:4b:65:06:0e:76:41:17: 0b:2c:8d:56:7b:ee:5f:de:0b:ca:62:95:40:c1:fc: 42:4e:dc:fa:41:2d:51:be:50:53:48:af:ad:8b:d8: 3e:b7:7a:2d:5f:20:85:d5:ee:67:84:b6:8d:e2:27: 49:3d:aa:58:2d:a4:21:b3:37:34:3c:83:63:98:02: d1:cf:22:e4:96:53:2f:24:24:33:e1:d7:53:ab:08: 52:64:a2:4f:88:81:18:20:8e:8a:e8:b9:74:6f:92: 89:4c:f1:82:be:2b:52:74:67:e4:ff:be:6c:c9:f8: a7:3d:8e:9a:d2:7a:8a:82:e6:7d:89:e2:5d:a3:ca: 39:51:df:62:75:a4:7e:2b:33:27:57:0e:ad:39:b4: c3:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A5:5F:84:A9:72:3B:21:3E:6E:A2:04:7E:69:CF:25:2A:79:19:72 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/474b8370-dc4f-4592-ac12-366b777c2660.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.1.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:96:1f:64:ed:8c:fd:9b:4a:b6:6b:bd:c5:89:06:45:eb:ea: 3f:02:0c:5a:22:b9:72:51:5a:11:03:c0:7b:63:8d:d6:ba:91: d1:f8:95:92:e3:44:ba:ed:70:c9:bb:7b:f0:44:8f:bc:57:b6: 15:b7:ca:5e:e5:fa:82:66:17:fe:11:cb:b0:b0:57:61:61:d9: 68:66:8d:2a:0b:1d:60:ed:27:f8:67:10:60:24:c4:58:e9:b1: 5a:f2:05:98:13:b5:8c:79:57:9c:b3:44:f0:5a:67:3d:b9:56: 4a:16:ae:cb:97:3a:3b:74:76:f7:3b:17:8d:61:0b:1e:8d:25: 68:d9:90:e2:c6:ec:43:10:e5:37:9d:90:b0:d8:8a:5c:fa:25: 04:8a:ac:cb:f1:70:e7:c4:30:0f:59:ba:fa:bd:7b:76:01:b2: 7c:f5:7f:f0:25:ec:f0:d9:7e:f1:dc:fc:f1:42:6c:59:8e:fb: 02:66:74:5a:f8:47:b5:69:94:55:c6:5d:01:b9:8a:ca:d8:01: 1c:9a:85:e9:30:f5:ec:f7:6a:af:c4:5c:55:27:f5:01:cd:88: a5:53:6d:92:81:a7:90:8b:ce:da:4f:dc:1f:a3:3b:9a:00:54: ee:85:7d:87:80:fc:e0:87:d1:19:a1:f6:32:df:3a:d4:db:58: 4b:ea:4c:80 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL3U7MhpQSXmkg71B0vTWlu9KuJcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjYwMjI4MDAzMDE1WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDdmYmFkZWI4M2RlZmU2NDIwMGJhZTdkZDEzZmI3MDY4 MTk3ZGI2NGRmMTc0ODE5NjZkYjkwNWI0MzM0MGVlMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC02ws5G2x/dLg2BUp4mnNhTyC2RUVL5QLAaDlAIwViZerq MI8icUKxUhapASuZ+8EzfPwwufp83X/gVebiTveo7xVhQAWS1ffobIyvyAZt8KMN erTfz3fYdE5pVsvdLBJ4Sc1GBt2QvUJxTj7382mAS2UGDnZBFwssjVZ77l/eC8pi lUDB/EJO3PpBLVG+UFNIr62L2D63ei1fIIXV7meEto3iJ0k9qlgtpCGzNzQ8g2OY AtHPIuSWUy8kJDPh11OrCFJkok+IgRggjorouXRvkolM8YK+K1J0Z+T/vmzJ+Kc9 jprSeoqC5n2J4l2jyjlR32J1pH4rMydXDq05tMMDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlKVfhKlyOyE+bqIEfmnPJSp5GXIwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzQ3NGI4MzcwLWRjNGYtNDU5Mi1hYzEyLTM2NmI3NzdjMjY2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAycAEwDQYJKoZIhvcNAQELBQADggEBAJqWH2TtjP2bSrZrvcWJBkXr6j8C DFoiuXJRWhEDwHtjjda6kdH4lZLjRLrtcMm7e/BEj7xXthW3yl7l+oJmF/4Ry7Cw V2Fh2WhmjSoLHWDtJ/hnEGAkxFjpsVryBZgTtYx5V5yzRPBaZz25VkoWrsuXOjt0 dvc7F41hCx6NJWjZkOLG7EMQ5TedkLDYilz6JQSKrMvxcOfEMA9Zuvq9e3YBsnz1 f/Al7PDZfvHc/PFCbFmO+wJmdFr4R7VplFXGXQG5isrYARyahekw9ez3aq/EXFUn 9QHNiKVTbZKBp5CLztpP3B+jO5oAVO6FfYeA/OCH0Rmh9jLfOtTbWEvqTIA= -----END CERTIFICATE-----Generated at Sun Mar 1 21:55:09 2026 by rpki-client