$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/c13ef5fa-467a-4ccd-b4f6-ae4cf71ee957.roa File: c13ef5fa-467a-4ccd-b4f6-ae4cf71ee957.roa (raw, json) Hash identifier: CON6si+QshABnTNvOAp1Lgm1iDyvxbOGfKaXPWovSKc= Subject key identifier: E7:B2:5E:26:E1:71:BF:B4:E0:EC:C3:1D:8D:D2:D9:91:FB:83:E6:58 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 5ACBF55CC381D0BDDF450E31FE42E7252E9DCCF8 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/c13ef5fa-467a-4ccd-b4f6-ae4cf71ee957.roa Signing time: Wed 25 Feb 2026 00:00:39 +0000 ROA not before: Wed 25 Feb 2026 00:00:39 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:cb:f5:5c:c3:81:d0:bd:df:45:0e:31:fe:42:e7:25:2e:9d:cc:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Feb 25 00:00:39 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=b4577f4d49076b99dbcc41ea8642d13b07b036ef6c1e2fb5d4f3d2949e1fd411, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2e:a9:a3:ae:4d:f9:16:ea:0c:63:d1:88:0a: ec:60:68:2f:74:5f:ad:81:48:48:e9:be:5b:65:08: 44:8e:b0:2b:a9:e0:73:b1:4b:68:13:a7:8e:ca:92: 22:ff:3e:45:a3:0d:01:9c:ac:99:f9:c9:2e:4b:9b: 44:36:39:c6:e2:d0:ff:45:19:8b:e8:89:25:5b:a0: 51:80:05:10:11:ba:3c:cf:bc:ef:62:f6:6f:5a:d6: 38:31:38:b7:9e:26:d1:44:62:cd:37:5b:7d:0d:11: 86:66:67:f9:18:ae:4c:e9:48:b0:f9:af:49:66:34: b8:4a:c9:9c:f7:22:39:ba:93:33:e4:85:a5:29:2d: 28:32:92:66:32:3d:a9:6d:23:95:67:d5:81:23:b5: 97:95:c4:be:07:f3:3d:e5:1b:58:c2:2d:12:d0:99: 8d:74:85:65:a0:2e:26:00:d5:49:90:5f:ff:2d:61: 77:b6:d6:3d:ce:df:33:0c:67:ac:ee:9b:b0:23:ff: 3a:47:fa:2f:61:63:5e:4b:43:22:ec:59:d9:e7:77: 74:b8:78:b0:f1:1d:19:d7:64:c1:39:e3:f4:8f:1b: 03:48:63:e1:b9:4e:10:fd:4c:32:45:d1:87:ca:35: cf:2d:d5:3e:08:01:89:4e:40:ba:48:2b:f3:14:92: 8d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B2:5E:26:E1:71:BF:B4:E0:EC:C3:1D:8D:D2:D9:91:FB:83:E6:58 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/c13ef5fa-467a-4ccd-b4f6-ae4cf71ee957.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.192.0/18 Signature Algorithm: sha256WithRSAEncryption 93:db:f8:71:ad:8d:fa:67:7f:8f:f7:97:77:87:de:e0:81:03: cb:6f:69:2d:60:32:96:d4:82:45:07:c3:3a:ec:5d:2d:96:ec: 28:90:c6:1a:00:72:e0:39:f0:16:34:1f:7b:c9:a8:03:9a:1c: 17:8f:52:51:08:2f:c5:39:64:97:06:5d:1f:65:90:73:bb:22: c0:77:cf:a2:5b:4f:43:1f:5c:68:b5:2f:c8:94:c3:2d:44:06: 82:0d:04:b8:8b:21:a9:62:d6:e1:23:66:92:98:b3:9f:19:ff: 32:65:d8:36:d9:38:eb:3f:5c:51:0c:e9:8b:9d:5d:2f:36:06: 79:dc:37:0c:1b:f2:b0:f3:dd:96:0c:e0:97:ae:00:c0:ad:2c: 8f:67:35:15:21:e1:29:b5:6e:20:47:31:69:fe:73:3a:c8:1b: a8:17:a5:4c:e7:87:90:34:3c:03:8d:37:13:39:a1:71:01:f6: 45:2e:31:2c:e8:4a:e5:c4:30:a3:78:99:0f:d3:c9:2b:b3:60: a5:ed:3b:0e:2a:22:f7:3d:82:e2:05:1f:e9:de:fe:0d:28:89: 63:41:9e:c1:79:1b:bb:5e:87:00:2f:f9:63:ba:3c:21:83:5b: 5f:7a:ea:de:57:a4:b3:cb:01:cd:80:95:6c:9e:71:63:d4:d1: 15:e3:bf:18 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWsv1XMOB0L3fRQ4x/kLnJS6dzPgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjYwMjI1MDAwMDM5WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDU3N2Y0ZDQ5MDc2Yjk5ZGJjYzQxZWE4NjQyZDEzYjA3 YjAzNmVmNmMxZTJmYjVkNGYzZDI5NDllMWZkNDExMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYLqmjrk35FuoMY9GICuxgaC90X62BSEjpvltlCESOsCup 4HOxS2gTp47KkiL/PkWjDQGcrJn5yS5Lm0Q2Ocbi0P9FGYvoiSVboFGABRARujzP vO9i9m9a1jgxOLeeJtFEYs03W30NEYZmZ/kYrkzpSLD5r0lmNLhKyZz3Ijm6kzPk haUpLSgykmYyPaltI5Vn1YEjtZeVxL4H8z3lG1jCLRLQmY10hWWgLiYA1UmQX/8t YXe21j3O3zMMZ6zum7Aj/zpH+i9hY15LQyLsWdnnd3S4eLDxHRnXZME54/SPGwNI Y+G5ThD9TDJF0YfKNc8t1T4IAYlOQLpIK/MUko1HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU57JeJuFxv7Tg7MMdjdLZkfuD5lgwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2MxM2VmNWZhLTQ2N2EtNGNjZC1iNGY2LWFlNGNmNzFlZTk1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAa4qcAwDQYJKoZIhvcNAQELBQADggEBAJPb+HGtjfpnf4/3l3eH3uCBA8tv aS1gMpbUgkUHwzrsXS2W7CiQxhoAcuA58BY0H3vJqAOaHBePUlEIL8U5ZJcGXR9l kHO7IsB3z6JbT0MfXGi1L8iUwy1EBoINBLiLIali1uEjZpKYs58Z/zJl2DbZOOs/ XFEM6YudXS82BnncNwwb8rDz3ZYM4JeuAMCtLI9nNRUh4Sm1biBHMWn+czrIG6gX pUznh5A0PAONNxM5oXEB9kUuMSzoSuXEMKN4mQ/TySuzYKXtOw4qIvc9guIFH+ne /g0oiWNBnsF5G7tehwAv+WO6PCGDW1966t5XpLPLAc2AlWyecWPU0RXjvxg= -----END CERTIFICATE-----Generated at Sun Mar 1 21:46:32 2026 by rpki-client