$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa File: 87a321d9-94a4-41d4-9de7-5617146603fa.roa (raw, json) Hash identifier: +CSZMP1EZdMv4f8Y51W8kyIZVghcLAqaX/kn+DviVww= Subject key identifier: C3:B9:12:01:27:B7:39:64:1A:BA:47:E1:DA:4A:94:4D:18:64:47:CD Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 1899A539824CBF08ACC44CCC0908EA81ECA58156 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa Signing time: Sat 28 Feb 2026 00:40:05 +0000 ROA not before: Sat 28 Feb 2026 00:40:05 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:99:a5:39:82:4c:bf:08:ac:c4:4c:cc:09:08:ea:81:ec:a5:81:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Feb 28 00:40:05 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=7f9f71b45a08a99be3589ec270f13f256b1aa0af4de2d60f01f2bfa51abdceb4, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:56:43:6c:e0:3a:6b:a7:bb:70:56:e5:39:0c: 78:a8:fb:d4:1c:27:40:cc:fd:9f:2c:3f:0c:b2:a6: 93:1b:a8:5b:1c:b6:19:49:e4:e1:ae:57:b0:d9:50: 5a:1a:a0:9e:8a:cd:b3:31:b1:89:a8:c4:30:cc:52: d3:dc:af:a9:15:f5:1f:a4:22:79:e5:c0:30:34:a1: 1f:09:b7:c1:17:e4:01:14:98:3f:39:d6:0d:a9:79: 48:b2:9a:af:99:a6:6f:32:1c:69:0d:fb:0d:63:b7: 0e:72:18:62:1f:4d:68:ad:dd:ca:92:c8:c7:f4:3e: 45:f5:4e:a3:36:46:af:14:d3:3b:6d:26:29:8b:fe: 38:89:d0:b7:a9:7b:f7:54:ef:a4:c1:8e:59:6f:ca: ee:99:cf:ed:4c:d7:6e:66:b1:64:e1:b2:57:6d:cd: e4:a5:d8:69:4a:23:f1:a6:fc:94:ca:75:ed:2a:91: 82:cf:e4:9a:f0:db:2f:6b:16:a9:3f:be:8d:b6:97: 0d:be:b0:c3:4b:49:45:d6:49:eb:2d:03:7d:20:1f: a3:b7:f0:7d:57:1a:3e:98:b3:20:98:00:89:43:00: fd:c3:ef:af:b4:84:9e:a7:33:82:b6:2b:18:2b:05: 7f:98:7b:8e:aa:17:4f:3a:67:1e:dd:88:5b:4d:6c: c7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:B9:12:01:27:B7:39:64:1A:BA:47:E1:DA:4A:94:4D:18:64:47:CD X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.0.0/17 Signature Algorithm: sha256WithRSAEncryption 57:07:96:ef:02:eb:49:1f:07:84:b1:26:2e:38:5d:44:56:fb: 67:4e:75:8b:50:01:fd:b5:be:58:5d:ef:ec:a9:ae:7a:05:90: bb:3e:cc:0e:e5:35:21:88:28:07:d7:b1:50:6a:96:e2:75:50: 29:22:97:68:0a:cc:bc:f4:85:2f:f0:b7:1b:df:b0:85:7d:88: 64:17:f7:26:39:f6:12:c2:f0:11:99:8a:0e:e4:a3:bc:78:d2: 59:3f:8d:ba:da:cb:c6:84:ed:80:fb:8a:e5:8a:86:2d:16:61: d7:16:c4:73:a3:44:e3:77:42:8c:c5:26:d6:5d:5a:d2:84:cb: 4e:42:ab:4b:4c:12:8d:40:65:b7:c4:28:c1:1d:a7:fc:e6:57: 1e:32:0c:47:aa:da:f1:d1:8a:ab:51:af:4a:a8:7f:35:c6:8a: 5a:35:c1:be:78:2f:a9:6b:e4:bf:0d:80:29:d4:12:9b:89:e2: 0b:33:69:97:84:c6:5a:31:cd:e2:e8:13:9a:e0:a0:7f:e6:48: 09:29:67:7f:35:2f:09:11:41:a5:3e:6c:13:8d:16:ad:d1:72: e7:96:62:4a:e1:0e:9d:c5:18:3c:9f:d2:8b:4d:e4:fa:40:11: b2:c1:25:37:a6:18:e8:cf:21:76:25:2b:d3:73:5d:b2:9b:81: a2:3e:c1:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGJmlOYJMvwisxEzMCQjqgeylgVYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjYwMjI4MDA0MDA1WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjlmNzFiNDVhMDhhOTliZTM1ODllYzI3MGYxM2YyNTZi MWFhMGFmNGRlMmQ2MGYwMWYyYmZhNTFhYmRjZWI0MS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDVkNs4Dprp7twVuU5DHio+9QcJ0DM/Z8sPwyyppMbqFsc thlJ5OGuV7DZUFoaoJ6KzbMxsYmoxDDMUtPcr6kV9R+kInnlwDA0oR8Jt8EX5AEU mD851g2peUiymq+Zpm8yHGkN+w1jtw5yGGIfTWit3cqSyMf0PkX1TqM2Rq8U0ztt JimL/jiJ0Lepe/dU76TBjllvyu6Zz+1M125msWThsldtzeSl2GlKI/Gm/JTKde0q kYLP5Jrw2y9rFqk/vo22lw2+sMNLSUXWSestA30gH6O38H1XGj6YsyCYAIlDAP3D 76+0hJ6nM4K2KxgrBX+Ye46qF086Zx7diFtNbMcBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUw7kSASe3OWQaukfh2kqUTRhkR80wHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5Lzg3YTMyMWQ5LTk0YTQtNDFkNC05ZGU3LTU2MTcxNDY2MDNmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcycAAwDQYJKoZIhvcNAQELBQADggEBAFcHlu8C60kfB4SxJi44XURW+2dO dYtQAf21vlhd7+yprnoFkLs+zA7lNSGIKAfXsVBqluJ1UCkil2gKzLz0hS/wtxvf sIV9iGQX9yY59hLC8BGZig7ko7x40lk/jbray8aE7YD7iuWKhi0WYdcWxHOjRON3 QozFJtZdWtKEy05Cq0tMEo1AZbfEKMEdp/zmVx4yDEeq2vHRiqtRr0qofzXGilo1 wb54L6lr5L8NgCnUEpuJ4gszaZeExloxzeLoE5rgoH/mSAkpZ381LwkRQaU+bBON Fq3RcueWYkrhDp3FGDyf0otN5PpAEbLBJTemGOjPIXYlK9NzXbKbgaI+wck= -----END CERTIFICATE-----Generated at Sun Mar 1 21:49:20 2026 by rpki-client