$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2bca4de1-4bce-437f-8c8b-b4f93a68cd9f.roa File: 2bca4de1-4bce-437f-8c8b-b4f93a68cd9f.roa (raw, json) Hash identifier: cLi+7EFcFXWZ/atwTDxdKYogFE2Zq9x+zvaLpEFE+9Y= Subject key identifier: 9C:38:B3:FD:E9:96:47:E1:BA:94:76:E6:24:5E:44:E0:8A:D6:47:6B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 17E46E6793022C11497C846CD2ED25B92A100A42 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2bca4de1-4bce-437f-8c8b-b4f93a68cd9f.roa Signing time: Sun 01 Mar 2026 00:40:48 +0000 ROA not before: Sun 01 Mar 2026 00:40:48 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:e4:6e:67:93:02:2c:11:49:7c:84:6c:d2:ed:25:b9:2a:10:0a:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Mar 1 00:40:48 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=21220fa1be21b60bda9c78c329a9f0664824fba0fabb63a63a17f623364f6234, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:49:9e:56:00:3b:b0:cd:32:89:be:29:a2:02: 4d:5c:e3:06:a1:27:bd:ec:37:4b:f5:d5:6d:9a:47: 02:99:3f:99:3e:15:4b:e7:aa:4f:d9:e1:1d:59:2e: 64:ea:1f:1c:20:3e:be:4c:2a:0f:aa:9c:da:72:63: 57:02:92:83:d3:55:c1:f7:e2:91:fc:7f:2a:e4:ac: 0b:e7:fc:91:cd:4c:d0:37:43:df:72:90:8b:00:f8: df:b7:a3:3f:5b:d2:7c:b0:78:83:08:bd:8d:68:43: 3c:fd:a2:9d:77:0d:98:38:c8:a1:c4:4a:1f:72:0a: 4a:33:f7:0b:ca:fe:9b:d5:3b:e5:b5:a8:2e:68:9b: 2e:1b:3d:1c:82:46:f4:c7:3f:57:61:0b:92:ae:29: ff:23:b5:fd:65:d0:ad:b9:84:7e:d5:bf:be:e0:5a: 7c:d9:28:22:04:d7:0b:0e:c6:e5:bf:24:b3:8c:0b: ca:a4:0f:0b:9e:17:29:38:49:7f:48:80:cb:e7:96: 98:64:c3:27:8e:d1:de:26:84:61:3d:e6:82:e3:d1: 0a:4a:b6:97:ec:34:d6:69:34:c3:50:41:78:88:64: 75:29:f2:2a:28:00:86:0e:3c:39:97:6a:93:02:d4: 22:66:43:ee:e0:36:1e:91:76:11:95:8a:b1:77:8c: 09:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:38:B3:FD:E9:96:47:E1:BA:94:76:E6:24:5E:44:E0:8A:D6:47:6B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2bca4de1-4bce-437f-8c8b-b4f93a68cd9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.174.0/23 Signature Algorithm: sha256WithRSAEncryption ab:e6:5a:67:33:ae:79:45:93:5b:c5:75:41:66:3b:4b:26:8b: 2a:b0:96:c0:cf:5a:50:f2:1b:c4:ec:11:b8:8f:ee:e8:a7:38: 0e:f7:86:dc:ea:db:c6:d2:8c:26:83:92:86:1f:05:be:93:9c: 8f:b9:e0:a6:9a:71:14:e0:61:cf:fb:a4:89:86:bb:25:42:0c: aa:20:dc:40:86:02:10:63:90:f9:15:b7:6c:b9:5b:f9:ba:57: 52:79:29:3d:f8:5f:b1:6c:44:cd:ec:f9:e7:02:e9:d4:04:f2: dc:7b:23:f8:14:1b:82:d0:5f:34:dc:11:59:1d:82:9e:1d:29: 51:39:47:39:db:4f:65:12:25:42:3d:12:b7:82:7c:eb:89:42: 53:44:1b:08:9b:f5:54:d6:8f:b4:18:a9:de:91:ee:8b:0e:17: af:58:8c:af:7d:6a:33:90:84:14:5a:b1:19:89:67:5c:30:cc: 8d:71:9d:68:15:5e:29:f8:df:3c:0c:b5:c4:4d:0e:f1:1a:cd: 17:21:5b:01:e0:65:75:d5:ba:2c:b2:08:c8:d6:6e:6f:9d:26: 0d:67:44:7f:a2:49:c2:82:85:d4:4a:61:87:65:54:3a:39:b4: 6f:16:5a:4d:66:9c:83:03:9c:71:39:63:65:bc:c6:38:2e:a3: 44:61:3f:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF+RuZ5MCLBFJfIRs0u0luSoQCkIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMzAxMDA0MDQ4WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTIyMGZhMWJlMjFiNjBiZGE5Yzc4YzMyOWE5ZjA2NjQ4 MjRmYmEwZmFiYjYzYTYzYTE3ZjYyMzM2NGY2MjM0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOSZ5WADuwzTKJvimiAk1c4wahJ73sN0v11W2aRwKZP5k+ FUvnqk/Z4R1ZLmTqHxwgPr5MKg+qnNpyY1cCkoPTVcH34pH8fyrkrAvn/JHNTNA3 Q99ykIsA+N+3oz9b0nyweIMIvY1oQzz9op13DZg4yKHESh9yCkoz9wvK/pvVO+W1 qC5omy4bPRyCRvTHP1dhC5KuKf8jtf1l0K25hH7Vv77gWnzZKCIE1wsOxuW/JLOM C8qkDwueFyk4SX9IgMvnlphkwyeO0d4mhGE95oLj0QpKtpfsNNZpNMNQQXiIZHUp 8iooAIYOPDmXapMC1CJmQ+7gNh6RdhGVirF3jAlBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnDiz/emWR+G6lHbmJF5E4IrWR2swHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJiY2E0ZGUxLTRiY2UtNDM3Zi04YzhiLWI0ZjkzYTY4Y2Q5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHM9q4wDQYJKoZIhvcNAQELBQADggEBAKvmWmczrnlFk1vFdUFmO0smiyqw lsDPWlDyG8TsEbiP7uinOA73htzq28bSjCaDkoYfBb6TnI+54KaacRTgYc/7pImG uyVCDKog3ECGAhBjkPkVt2y5W/m6V1J5KT34X7FsRM3s+ecC6dQE8tx7I/gUG4LQ XzTcEVkdgp4dKVE5RznbT2USJUI9EreCfOuJQlNEGwib9VTWj7QYqd6R7osOF69Y jK99ajOQhBRasRmJZ1wwzI1xnWgVXin43zwMtcRNDvEazRchWwHgZXXVuiyyCMjW bm+dJg1nRH+iScKChdRKYYdlVDo5tG8WWk1mnIMDnHE5Y2W8xjguo0RhPyc= -----END CERTIFICATE-----Generated at Sun Mar 1 23:38:47 2026 by rpki-client