$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3455edb0-5870-49ae-aead-be18a7eaffdc.roa File: 3455edb0-5870-49ae-aead-be18a7eaffdc.roa (raw, json) Hash identifier: 9peeiYSa7Qib5MEAdSz3yWWz77Y9RnoBqUnjhmbfVAU= Subject key identifier: 5C:1F:F8:95:C2:B9:6E:C5:72:6D:A0:1D:C8:D0:4E:E0:E4:2C:26:4F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1A5C3A2E3D044908BC1035A92217EC984D0B3CB2 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3455edb0-5870-49ae-aead-be18a7eaffdc.roa Signing time: Sun 01 Mar 2026 00:40:46 +0000 ROA not before: Sun 01 Mar 2026 00:40:46 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:5c:3a:2e:3d:04:49:08:bc:10:35:a9:22:17:ec:98:4d:0b:3c:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Mar 1 00:40:46 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=2801a10a141b061f3696727a58c5a91356f78e9e42560b27719ef026f5489e45, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:53:a3:ad:9a:a0:86:fc:68:a3:41:7d:97:32: 74:dc:c6:f5:bf:14:92:e2:79:94:9b:5f:b9:9e:99: 3e:9e:8d:bc:04:a7:a4:fb:58:ba:b9:1f:4e:58:c0: 5e:d5:ab:5c:29:d1:eb:85:36:a3:46:39:eb:bd:cd: 82:c9:99:4f:59:ec:b8:d6:d3:38:f4:ae:b7:6e:18: 08:1e:4e:be:19:bb:49:c3:b0:3a:95:92:f8:c4:07: a7:ae:da:fc:8b:e9:60:e5:22:1a:1a:59:55:ee:6e: e1:42:4d:a4:17:1b:20:b5:8d:36:cc:ef:b7:95:0d: 2e:81:49:54:4a:7d:9c:3f:37:83:db:55:ac:5f:67: 99:da:d8:4a:ce:d7:c0:dd:25:97:89:0c:17:11:ec: 6e:60:d3:9d:51:b9:dd:69:fa:a8:f8:4a:9e:c7:55: 16:a2:7c:aa:1d:6e:50:c3:f9:ed:83:92:2a:d7:d0: 49:5c:d6:29:f7:51:18:ef:5c:74:53:76:7c:de:77: 78:51:59:7a:7d:ef:79:05:a2:82:c6:0b:87:74:63: 64:1e:cb:2f:86:64:16:d1:db:57:3c:7b:24:38:49: b2:13:96:7c:f4:77:10:c7:ed:76:ac:af:f0:af:5f: 91:61:e0:15:73:de:e3:88:7d:39:72:ad:ea:fc:2b: c0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:1F:F8:95:C2:B9:6E:C5:72:6D:A0:1D:C8:D0:4E:E0:E4:2C:26:4F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3455edb0-5870-49ae-aead-be18a7eaffdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.186.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:d6:3b:b6:91:32:ee:3e:a0:64:bb:5d:ac:57:ad:c2:5c:4f: 51:f3:8b:21:d1:c3:7c:25:09:9f:db:ea:91:bd:75:1b:26:ff: 56:b7:b3:a4:b3:f9:92:ba:bd:1c:06:d9:f4:d7:ba:7b:7a:6d: 2d:c8:0f:95:73:e3:79:a6:00:90:68:dc:95:ba:d8:2e:9b:23: 8d:2b:af:37:61:e2:cb:96:e6:a5:61:b3:13:7f:d1:41:08:87: 7b:fb:6b:45:6c:4a:69:90:83:25:f0:aa:ae:88:bf:49:59:94: 77:28:dd:c0:86:f8:4b:32:25:36:2f:69:6d:28:0a:30:55:55: 69:91:28:80:c9:22:03:8f:36:04:e6:5e:5b:ae:f3:da:fb:8f: b7:bf:06:40:3d:81:65:d4:f2:97:4b:3d:14:9d:d3:12:63:5a: 17:1b:04:4e:bb:a7:df:f0:57:f5:a3:7b:7a:c6:fa:ba:d0:6c: b5:47:cf:40:34:02:4f:4d:b0:ee:aa:6d:9a:65:93:72:d1:5e: 3c:ef:75:69:23:f3:af:e8:a5:ef:33:cb:de:ef:24:eb:87:3f: 59:3c:69:ec:51:69:68:fa:d0:ae:dc:94:05:97:cc:2e:61:f3: 44:35:73:c5:f9:f7:5a:b7:86:85:be:40:85:d5:3e:3d:8e:98: b3:50:db:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGlw6Lj0ESQi8EDWpIhfsmE0LPLIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMzAxMDA0MDQ2WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyODAxYTEwYTE0MWIwNjFmMzY5NjcyN2E1OGM1YTkxMzU2 Zjc4ZTllNDI1NjBiMjc3MTllZjAyNmY1NDg5ZTQ1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCU6OtmqCG/GijQX2XMnTcxvW/FJLieZSbX7memT6ejbwE p6T7WLq5H05YwF7Vq1wp0euFNqNGOeu9zYLJmU9Z7LjW0zj0rrduGAgeTr4Zu0nD sDqVkvjEB6eu2vyL6WDlIhoaWVXubuFCTaQXGyC1jTbM77eVDS6BSVRKfZw/N4Pb VaxfZ5na2ErO18DdJZeJDBcR7G5g051Rud1p+qj4Sp7HVRaifKodblDD+e2DkirX 0Elc1in3URjvXHRTdnzed3hRWXp973kFooLGC4d0Y2Qeyy+GZBbR21c8eyQ4SbIT lnz0dxDH7Xasr/CvX5Fh4BVz3uOIfTlyrer8K8BzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXB/4lcK5bsVybaAdyNBO4OQsJk8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM0NTVlZGIwLTU4NzAtNDlhZS1hZWFkLWJlMThhN2VhZmZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHM9rowDQYJKoZIhvcNAQELBQADggEBAC3WO7aRMu4+oGS7XaxXrcJcT1Hz iyHRw3wlCZ/b6pG9dRsm/1a3s6Sz+ZK6vRwG2fTXunt6bS3ID5Vz43mmAJBo3JW6 2C6bI40rrzdh4suW5qVhsxN/0UEIh3v7a0VsSmmQgyXwqq6Iv0lZlHco3cCG+Esy JTYvaW0oCjBVVWmRKIDJIgOPNgTmXluu89r7j7e/BkA9gWXU8pdLPRSd0xJjWhcb BE67p9/wV/Wje3rG+rrQbLVHz0A0Ak9NsO6qbZplk3LRXjzvdWkj86/ope8zy97v JOuHP1k8aexRaWj60K7clAWXzC5h80Q1c8X591q3hoW+QIXVPj2OmLNQ2xQ= -----END CERTIFICATE-----Generated at Mon Mar 2 02:47:41 2026 by rpki-client