$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/33276cb0-fd16-405f-bdae-0bcc070e07f8.roa File: 33276cb0-fd16-405f-bdae-0bcc070e07f8.roa (raw, json) Hash identifier: kaiEtveNeQkWUAV/JfC8vqc4ednU7kxPjIrFUOHGFJk= Subject key identifier: 51:9E:27:AE:98:0C:51:52:BB:74:E5:7F:C9:75:30:46:07:48:3F:65 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5DA98E093E8A896C0F8B0E2948099E46438E6F58 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/33276cb0-fd16-405f-bdae-0bcc070e07f8.roa Signing time: Sun 01 Mar 2026 00:40:49 +0000 ROA not before: Sun 01 Mar 2026 00:40:49 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:a9:8e:09:3e:8a:89:6c:0f:8b:0e:29:48:09:9e:46:43:8e:6f:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Mar 1 00:40:49 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=e842d764c3d01768ce66278220078784aace2853454be1ca88f308acf02f1717, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ea:58:09:13:27:3f:81:53:ef:13:5b:ad:b7: eb:59:28:03:a8:26:e9:06:90:3b:f3:cd:7b:19:d3: 6d:36:b2:5f:2c:02:33:f8:ea:88:eb:8f:1c:04:9b: d9:67:92:ec:86:a4:14:86:14:57:e6:b1:4c:69:dc: 95:cd:a4:11:38:ee:b8:63:1b:9f:95:7d:96:cd:21: b7:48:74:0d:2b:97:19:bc:f0:88:74:29:01:75:fa: 0e:32:66:80:f6:96:e6:fc:7b:7b:a4:52:9f:bc:39: 2c:a7:7e:61:b7:26:c2:12:65:b7:22:38:ea:1c:01: ec:44:fb:95:76:fe:14:9d:51:4a:a9:3c:02:b0:40: 86:71:17:e4:24:e7:e5:2e:57:25:a5:58:e3:26:c5: fc:da:b6:71:a4:8e:66:75:47:92:24:fa:77:79:fd: fd:f7:63:3c:33:4d:b0:b0:bf:34:ce:e5:bd:85:70: bf:17:77:68:0e:b5:ed:f4:0d:64:d4:43:ff:f6:45: 4a:38:5b:83:e8:2c:90:94:75:c1:e2:19:f8:1f:01: 7b:02:b2:eb:a4:95:a5:d4:a8:40:39:a3:d9:ea:43: 94:eb:38:ff:0c:84:3f:9e:ba:93:ad:ef:2b:1f:4b: da:1d:fe:cc:ea:1f:c4:c8:4e:9c:fd:1e:06:88:f2: c5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:9E:27:AE:98:0C:51:52:BB:74:E5:7F:C9:75:30:46:07:48:3F:65 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/33276cb0-fd16-405f-bdae-0bcc070e07f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.164.0/22 Signature Algorithm: sha256WithRSAEncryption a3:78:c5:bd:b8:b1:f4:a1:99:d0:c8:1d:46:3a:a6:3e:72:42: c1:50:f8:5f:a2:60:5a:79:1a:55:fc:51:a5:85:9f:3b:e2:e9: 18:ca:56:be:c2:e2:20:b8:8f:dd:a7:a4:72:9f:40:2b:3c:1f: 5e:59:26:6c:d3:8d:68:3a:7e:28:18:31:72:30:b1:18:42:c8: 77:1d:23:a5:ce:c7:6d:af:10:d2:5e:1b:e1:a4:45:60:b5:e5: 7d:1c:63:f7:73:f1:e3:89:1c:d8:71:54:78:c3:17:8f:60:84: 27:df:b1:ec:a1:58:a8:56:30:0f:b1:94:eb:98:4a:79:6d:b2: 01:1a:f9:b9:02:9d:01:c4:39:6d:44:5a:de:15:b6:1b:51:a9: 19:d1:bb:11:88:3d:24:f6:93:4c:8c:3a:03:c1:55:db:4c:5a: 8b:91:81:1e:2f:83:62:b8:0b:e3:51:fd:9e:01:df:6d:e2:88: d4:a2:ec:e7:61:3d:8a:b7:2e:73:0f:23:34:33:92:09:de:da: 53:3e:3d:aa:90:98:69:bc:e8:ed:d5:01:7a:83:0c:b5:ad:fc: 3c:2f:69:a7:13:6c:ac:23:ff:a5:50:46:44:67:42:3c:d3:e5: e3:17:0f:dc:c3:ad:fa:13:97:2f:9e:b6:1b:73:50:c5:ff:e0: 8a:28:2c:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXamOCT6KiWwPiw4pSAmeRkOOb1gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMzAxMDA0MDQ5WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlODQyZDc2NGMzZDAxNzY4Y2U2NjI3ODIyMDA3ODc4NGFh Y2UyODUzNDU0YmUxY2E4OGYzMDhhY2YwMmYxNzE3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB6lgJEyc/gVPvE1utt+tZKAOoJukGkDvzzXsZ0202sl8s AjP46ojrjxwEm9lnkuyGpBSGFFfmsUxp3JXNpBE47rhjG5+VfZbNIbdIdA0rlxm8 8Ih0KQF1+g4yZoD2lub8e3ukUp+8OSynfmG3JsISZbciOOocAexE+5V2/hSdUUqp PAKwQIZxF+Qk5+UuVyWlWOMmxfzatnGkjmZ1R5Ik+nd5/f33YzwzTbCwvzTO5b2F cL8Xd2gOte30DWTUQ//2RUo4W4PoLJCUdcHiGfgfAXsCsuuklaXUqEA5o9nqQ5Tr OP8MhD+eupOt7ysfS9od/szqH8TITpz9HgaI8sXrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUZ4nrpgMUVK7dOV/yXUwRgdIP2UwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzMzMjc2Y2IwLWZkMTYtNDA1Zi1iZGFlLTBiY2MwNzBlMDdmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALM9qQwDQYJKoZIhvcNAQELBQADggEBAKN4xb24sfShmdDIHUY6pj5yQsFQ +F+iYFp5GlX8UaWFnzvi6RjKVr7C4iC4j92npHKfQCs8H15ZJmzTjWg6figYMXIw sRhCyHcdI6XOx22vENJeG+GkRWC15X0cY/dz8eOJHNhxVHjDF49ghCffseyhWKhW MA+xlOuYSnltsgEa+bkCnQHEOW1EWt4VthtRqRnRuxGIPST2k0yMOgPBVdtMWouR gR4vg2K4C+NR/Z4B323iiNSi7OdhPYq3LnMPIzQzkgne2lM+PaqQmGm86O3VAXqD DLWt/DwvaacTbKwj/6VQRkRnQjzT5eMXD9zDrfoTly+ethtzUMX/4IooLM8= -----END CERTIFICATE-----Generated at Sun Mar 1 22:07:30 2026 by rpki-client