$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3071de4a-9676-4f21-87c4-d3c4653444d8.roa File: 3071de4a-9676-4f21-87c4-d3c4653444d8.roa (raw, json) Hash identifier: UaVt90NUN/2D4n/mgqiVZUe/ISJBVBD3057mW6rwgqg= Subject key identifier: C9:9A:12:89:3C:85:FF:49:FC:5C:8A:54:A3:E0:C5:92:BA:54:05:13 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 32419AFD9A3716394EDF02E974A9EB8ADDA8DA83 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3071de4a-9676-4f21-87c4-d3c4653444d8.roa Signing time: Fri 20 Feb 2026 00:40:53 +0000 ROA not before: Fri 20 Feb 2026 00:40:53 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:41:9a:fd:9a:37:16:39:4e:df:02:e9:74:a9:eb:8a:dd:a8:da:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 20 00:40:53 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=414d8d4d41a592e601f38fcabbe9621b3280e561dcbc7f2e975a417b6222ccfc, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4a:9c:96:5a:eb:5c:a0:ae:0b:9a:46:72:ec: 31:4e:3f:4d:ca:94:df:0e:07:a3:b4:29:1e:48:4b: b1:9c:8b:05:d1:24:c9:f7:4f:f7:e7:ec:0a:99:d4: 2c:d3:83:3d:26:dd:38:14:34:f4:e9:80:99:53:1e: 02:e9:1e:18:e3:b1:4a:51:a0:df:d7:59:b8:93:3e: 4d:f9:c6:71:97:90:5c:7b:de:75:ad:80:55:74:22: 34:61:6f:51:5f:2c:62:b2:7a:47:2c:ba:c2:95:98: 2e:08:5b:88:26:61:2d:94:00:92:fb:ac:31:f1:4c: 36:f8:b0:8b:bb:66:69:ea:92:43:0e:11:32:7f:eb: 0a:5d:37:e2:57:6c:0a:69:a8:df:27:be:99:8d:b8: 72:8a:61:72:3f:c5:e1:a7:4d:92:be:a5:7e:26:39: 35:f3:ef:a9:5b:30:9c:48:c4:56:e8:0e:a7:f3:64: f3:9b:6f:47:98:82:bd:82:8b:48:1f:a3:0e:16:ca: 8f:dc:d0:d6:0e:f5:60:a6:e0:96:2b:75:c4:37:c9: a6:96:e1:db:ef:b7:3e:d5:2e:3c:45:02:6a:1c:c8: 66:ef:96:26:b6:d1:f5:53:77:46:55:8a:c1:82:1d: 22:12:ae:fe:ca:d9:55:fe:bd:e1:f3:3d:c1:19:43: 4c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:9A:12:89:3C:85:FF:49:FC:5C:8A:54:A3:E0:C5:92:BA:54:05:13 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3071de4a-9676-4f21-87c4-d3c4653444d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.250.0/23 Signature Algorithm: sha256WithRSAEncryption 19:8f:70:79:4d:a8:b1:b0:22:2d:c6:03:f6:1e:91:57:9e:cb: dc:66:df:23:b6:84:05:4a:ef:1f:c9:e1:be:fe:df:a4:4c:af: 3b:e1:fd:7b:4c:ff:27:8e:da:01:db:86:6d:e0:ad:ba:33:f5: 9f:28:89:d2:e8:11:ff:43:d5:30:81:44:07:d2:33:80:91:dc: e2:1a:0f:72:98:57:27:d1:c4:36:97:2d:ff:f2:e7:31:4e:9f: 4b:69:6e:d1:5f:54:87:d9:82:3f:81:96:55:1a:78:c9:46:ec: d3:eb:77:82:36:65:14:bd:22:d2:c1:26:45:fa:2c:a0:0f:42: c3:32:c3:5e:d0:45:cc:4a:9f:d1:b7:35:d7:7c:c9:64:9a:aa: 97:20:6d:27:2a:85:9a:f2:5c:4b:af:f1:37:9d:c2:fc:2f:9b: ea:47:2b:9b:cf:c9:fc:e5:c7:1e:4c:a4:4f:1e:09:cd:55:01: 3c:8f:e4:a6:0d:df:d4:b0:59:bd:f6:59:55:21:93:4b:3b:a6: 4a:d2:a1:4f:7f:e5:38:b3:18:e2:0d:b7:5f:26:74:50:2e:c3: 19:e6:ce:11:b0:cf:66:71:cd:07:56:bc:d1:c4:1e:37:38:65: 80:37:8f:f8:4d:25:25:b3:b6:a9:78:9d:93:5f:fc:69:b3:05: 29:21:6f:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMkGa/Zo3FjlO3wLpdKnrit2o2oMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjIwMDA0MDUzWhcNMjYwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTRkOGQ0ZDQxYTU5MmU2MDFmMzhmY2FiYmU5NjIxYjMy ODBlNTYxZGNiYzdmMmU5NzVhNDE3YjYyMjJjY2ZjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+SpyWWutcoK4LmkZy7DFOP03KlN8OB6O0KR5IS7GciwXR JMn3T/fn7AqZ1CzTgz0m3TgUNPTpgJlTHgLpHhjjsUpRoN/XWbiTPk35xnGXkFx7 3nWtgFV0IjRhb1FfLGKyekcsusKVmC4IW4gmYS2UAJL7rDHxTDb4sIu7ZmnqkkMO ETJ/6wpdN+JXbAppqN8nvpmNuHKKYXI/xeGnTZK+pX4mOTXz76lbMJxIxFboDqfz ZPObb0eYgr2Ci0gfow4Wyo/c0NYO9WCm4JYrdcQ3yaaW4dvvtz7VLjxFAmocyGbv lia20fVTd0ZVisGCHSISrv7K2VX+veHzPcEZQ0wBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyZoSiTyF/0n8XIpUo+DFkrpUBRMwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzMwNzFkZTRhLTk2NzYtNGYyMS04N2M0LWQzYzQ2NTM0NDRkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHN+/owDQYJKoZIhvcNAQELBQADggEBABmPcHlNqLGwIi3GA/YekVeey9xm 3yO2hAVK7x/J4b7+36RMrzvh/XtM/yeO2gHbhm3grboz9Z8oidLoEf9D1TCBRAfS M4CR3OIaD3KYVyfRxDaXLf/y5zFOn0tpbtFfVIfZgj+BllUaeMlG7NPrd4I2ZRS9 ItLBJkX6LKAPQsMyw17QRcxKn9G3Ndd8yWSaqpcgbScqhZryXEuv8Tedwvwvm+pH K5vPyfzlxx5MpE8eCc1VATyP5KYN39SwWb32WVUhk0s7pkrSoU9/5TizGOINt18m dFAuwxnmzhGwz2ZxzQdWvNHEHjc4ZYA3j/hNJSWztql4nZNf/GmzBSkhb7c= -----END CERTIFICATE-----Generated at Mon Mar 2 03:41:30 2026 by rpki-client