$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/708a8cbd-6d44-4d2f-b6e9-45131391be6d.roa File: 708a8cbd-6d44-4d2f-b6e9-45131391be6d.roa (raw, json) Hash identifier: A13E6xhUFYbUrSGu2w/JfnQT2S+gHS6I58rs1vRkLao= Subject key identifier: D4:79:16:C3:A5:B8:1F:BD:DF:97:85:A9:E1:EA:78:3F:4F:96:62:AC Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 2F5B07743CAF80989C2831F1638163C7D64CD0EE Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/708a8cbd-6d44-4d2f-b6e9-45131391be6d.roa Signing time: Sat 28 Feb 2026 00:40:04 +0000 ROA not before: Sat 28 Feb 2026 00:40:04 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:5b:07:74:3c:af:80:98:9c:28:31:f1:63:81:63:c7:d6:4c:d0:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Feb 28 00:40:04 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=018997bcec23bf8f3c1844df5c861ef04c221eb2fb606d1c9ea622e9e5889853, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:43:3d:27:e8:08:27:05:b0:61:b0:1d:79:d3: 18:c8:4b:de:7f:13:ed:1c:3a:e3:17:c7:6a:93:d0: 38:d0:8e:f5:3f:52:ae:83:aa:b7:cb:a1:ee:11:1d: ca:f5:e7:20:c1:ac:22:f8:4e:fe:1f:6f:43:af:14: 99:35:38:b1:6c:93:82:ca:dd:3c:6b:ca:e4:06:a1: 01:5d:19:fa:28:23:55:24:79:3c:05:5e:ba:f4:f2: 2d:96:ea:d1:eb:fd:f3:76:69:ac:fe:a7:32:56:3b: 68:9f:43:1c:95:79:91:1b:b3:56:06:67:43:d4:70: a3:f9:ff:9d:bb:db:19:22:d8:ec:c3:7f:dd:55:de: 90:1a:47:f0:a0:15:53:eb:ec:65:79:43:48:fc:09: 2e:48:a3:05:61:c5:ad:09:fb:b0:2f:60:15:fa:52: 83:db:c8:06:3a:4d:81:c2:92:68:70:1b:aa:0d:4d: 35:29:27:2d:f2:ee:0b:31:8a:3d:68:6d:af:b6:16: c4:38:21:ff:b3:7c:c8:13:52:9c:91:92:86:ec:5e: 6a:d9:9a:1a:55:30:d1:cd:8f:51:c1:81:00:a6:0b: 84:2a:a8:d0:12:59:9e:95:f2:dc:28:31:c8:99:6a: c6:98:12:92:f7:03:a5:83:d0:e7:67:b5:27:a0:f1: a8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:79:16:C3:A5:B8:1F:BD:DF:97:85:A9:E1:EA:78:3F:4F:96:62:AC X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/708a8cbd-6d44-4d2f-b6e9-45131391be6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.80.0/21 Signature Algorithm: sha256WithRSAEncryption 00:4d:73:a2:3c:d5:1e:67:16:a8:85:eb:49:14:7b:ac:32:60: 36:24:13:19:8a:10:e3:ff:ac:c9:98:37:f3:ea:4f:ed:b1:fe: 01:fc:76:1b:cc:1d:58:f5:6c:cb:10:3a:bc:de:c8:a2:76:c1: f5:d7:44:86:3a:67:ea:8d:e2:a6:07:80:9a:f7:20:51:f4:8c: a2:65:cd:b2:b1:e2:5b:99:fc:d6:91:c0:73:55:1d:9b:39:39: 20:22:5b:1a:73:3c:9f:6d:2f:3e:f5:ce:d5:28:9e:3a:e0:eb: af:ac:74:e8:02:72:40:9f:25:dc:c3:d1:e6:53:7c:58:13:78: 31:60:b3:a5:01:2d:b8:9c:0b:4c:95:01:49:e2:69:3c:df:9a: 55:8b:dc:7c:35:aa:04:e8:cc:37:73:10:92:48:6a:b7:51:73: 81:93:36:8c:5c:8a:ec:0f:e5:c3:63:11:9b:bd:fb:ce:75:5d: 03:db:ca:47:b7:76:fe:de:59:8b:0f:3a:1f:7d:eb:fa:bc:59: 62:84:00:51:f1:55:6f:96:7b:27:55:89:56:8a:54:92:24:a2: cb:6e:fb:42:e9:3b:f9:f1:aa:fa:b8:6e:9f:ea:e9:7e:16:bf: b3:2c:f7:2a:fd:c5:12:da:3e:bd:21:8c:ca:c7:38:b3:c0:7c: 80:f8:b9:f1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL1sHdDyvgJicKDHxY4Fjx9ZM0O4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjYwMjI4MDA0MDA0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTg5OTdiY2VjMjNiZjhmM2MxODQ0ZGY1Yzg2MWVmMDRj MjIxZWIyZmI2MDZkMWM5ZWE2MjJlOWU1ODg5ODUzMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6Qz0n6AgnBbBhsB150xjIS95/E+0cOuMXx2qT0DjQjvU/ Uq6DqrfLoe4RHcr15yDBrCL4Tv4fb0OvFJk1OLFsk4LK3TxryuQGoQFdGfooI1Uk eTwFXrr08i2W6tHr/fN2aaz+pzJWO2ifQxyVeZEbs1YGZ0PUcKP5/5272xki2OzD f91V3pAaR/CgFVPr7GV5Q0j8CS5IowVhxa0J+7AvYBX6UoPbyAY6TYHCkmhwG6oN TTUpJy3y7gsxij1oba+2FsQ4If+zfMgTUpyRkobsXmrZmhpVMNHNj1HBgQCmC4Qq qNASWZ6V8twoMciZasaYEpL3A6WD0OdntSeg8ajVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1HkWw6W4H73fl4Wp4ep4P0+WYqwwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzcwOGE4Y2JkLTZkNDQtNGQyZi1iNmU5LTQ1MTMxMzkxYmU2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMycFAwDQYJKoZIhvcNAQELBQADggEBAABNc6I81R5nFqiF60kUe6wyYDYk ExmKEOP/rMmYN/PqT+2x/gH8dhvMHVj1bMsQOrzeyKJ2wfXXRIY6Z+qN4qYHgJr3 IFH0jKJlzbKx4luZ/NaRwHNVHZs5OSAiWxpzPJ9tLz71ztUonjrg66+sdOgCckCf JdzD0eZTfFgTeDFgs6UBLbicC0yVAUniaTzfmlWL3Hw1qgTozDdzEJJIardRc4GT NoxciuwP5cNjEZu9+851XQPbyke3dv7eWYsPOh996/q8WWKEAFHxVW+WeydViVaK VJIkostu+0LpO/nxqvq4bp/q6X4Wv7Ms9yr9xRLaPr0hjMrHOLPAfID4ufE= -----END CERTIFICATE-----Generated at Sun Mar 1 21:50:37 2026 by rpki-client