$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8504b97b-070b-4a27-bdb7-8e64f1610647.roa File: 8504b97b-070b-4a27-bdb7-8e64f1610647.roa (raw, json) Hash identifier: CsyI4UUK8vJYVGlDVCpGyr9RxDEJtuQxhN0cEntsdfU= Subject key identifier: 34:14:C9:2D:30:D3:DB:15:81:85:BC:55:E3:F5:73:8D:EA:57:78:7F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2338FA5A69B445464CF9D984E8882D27CB9B4078 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8504b97b-070b-4a27-bdb7-8e64f1610647.roa Signing time: Fri 20 Feb 2026 00:50:09 +0000 ROA not before: Fri 20 Feb 2026 00:50:09 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:38:fa:5a:69:b4:45:46:4c:f9:d9:84:e8:88:2d:27:cb:9b:40:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Feb 20 00:50:09 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=db0d2a194cd5bfefe3bcf6f36d4c52e060d93a0c501de2e2307427224b7ad11a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3c:a5:77:04:ea:91:14:a3:15:d8:b0:76:c7: 97:48:20:d4:dd:d5:b9:7d:2f:6c:4c:c3:e8:07:de: 4c:d8:c5:72:8b:7e:00:77:46:bc:10:58:32:92:cf: cc:77:ea:ef:6a:8f:01:23:93:7c:a5:df:6c:61:94: 0a:96:33:c3:90:2d:f4:60:b1:21:90:25:4b:05:46: 7d:b2:26:5c:96:ab:0d:db:bc:23:6e:47:25:cf:b0: 8e:e3:c2:20:78:bb:4b:b9:2d:72:64:0d:19:5a:65: 04:dc:93:fa:d0:40:92:a3:2d:aa:f8:2d:44:c2:a7: 7d:87:75:b2:8b:81:6d:95:65:a5:cc:13:e9:57:ea: 9b:dd:9e:8f:58:0d:2f:2b:98:1a:90:68:d8:cd:1f: da:e8:de:b8:53:51:a8:4d:bf:4c:a4:2f:5a:39:79: d8:8a:7a:08:ec:c4:c6:42:61:3b:95:56:65:59:ce: 92:07:33:a3:aa:82:f9:b2:8d:ab:43:71:ac:22:06: d7:67:5a:a1:14:09:5e:b4:10:a9:0a:16:01:f2:0a: 20:aa:ed:0a:f4:53:79:46:27:5b:e9:5e:b6:b4:99: d3:82:8e:b5:73:95:b6:5b:ea:be:74:40:4d:2d:4d: c2:45:b8:ff:59:4f:49:b4:28:5f:f2:0b:86:fb:3d: 2c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:14:C9:2D:30:D3:DB:15:81:85:BC:55:E3:F5:73:8D:EA:57:78:7F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8504b97b-070b-4a27-bdb7-8e64f1610647.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.253.0/24 Signature Algorithm: sha256WithRSAEncryption 13:0e:30:79:55:aa:5c:26:d2:92:4d:0b:cd:b8:75:4b:c1:9a: 66:2b:01:ac:98:97:1a:37:74:e9:8b:50:aa:bc:fe:3c:45:c4: 66:7b:c0:f1:fd:e3:e0:3f:46:2c:70:1d:86:d2:28:b2:96:f6: ca:4c:54:1b:90:0d:d1:32:a9:ca:1f:98:ec:b8:0d:07:58:a1: 65:00:72:33:27:00:27:66:df:70:54:fa:3e:f5:5d:0d:02:12: 6e:70:b6:d9:4e:9f:d3:7f:b5:bf:f1:b1:e2:a6:58:60:f1:8a: 4f:d7:c2:dd:0f:24:6f:fa:0e:21:0e:ce:12:1a:cd:0b:73:87: 04:ac:7d:6e:8c:15:bc:88:61:6f:fa:1e:56:20:a7:51:cc:5f: d9:15:63:03:9f:ee:4d:e7:b9:0c:3f:00:1b:ae:e2:2d:8f:ac: be:c4:ca:bf:42:5f:9f:85:c5:71:63:f1:31:21:94:e2:41:4b: d2:8d:a0:70:26:70:e3:70:0b:b2:0b:ff:7d:d3:ee:de:99:55: df:fe:f1:0e:45:cf:ea:bd:ca:35:a3:31:d3:a4:de:93:7d:4b: 8c:66:70:f6:34:78:ff:33:df:15:08:b7:54:89:17:9c:c8:0a: ed:e6:c8:5d:cb:50:b1:0f:0b:1a:2d:19:14:70:cd:cb:2a:05: c6:73:2e:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIzj6Wmm0RUZM+dmE6IgtJ8ubQHgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMjIwMDA1MDA5WhcNMjYwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjBkMmExOTRjZDViZmVmZTNiY2Y2ZjM2ZDRjNTJlMDYw ZDkzYTBjNTAxZGUyZTIzMDc0MjcyMjRiN2FkMTFhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyPKV3BOqRFKMV2LB2x5dIINTd1bl9L2xMw+gH3kzYxXKL fgB3RrwQWDKSz8x36u9qjwEjk3yl32xhlAqWM8OQLfRgsSGQJUsFRn2yJlyWqw3b vCNuRyXPsI7jwiB4u0u5LXJkDRlaZQTck/rQQJKjLar4LUTCp32HdbKLgW2VZaXM E+lX6pvdno9YDS8rmBqQaNjNH9ro3rhTUahNv0ykL1o5ediKegjsxMZCYTuVVmVZ zpIHM6OqgvmyjatDcawiBtdnWqEUCV60EKkKFgHyCiCq7Qr0U3lGJ1vpXra0mdOC jrVzlbZb6r50QE0tTcJFuP9ZT0m0KF/yC4b7PSxPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNBTJLTDT2xWBhbxV4/VzjepXeH8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg1MDRiOTdiLTA3MGItNGEyNy1iZGI3LThlNjRmMTYxMDY0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADN+/0wDQYJKoZIhvcNAQELBQADggEBABMOMHlVqlwm0pJNC824dUvBmmYr AayYlxo3dOmLUKq8/jxFxGZ7wPH94+A/RixwHYbSKLKW9spMVBuQDdEyqcofmOy4 DQdYoWUAcjMnACdm33BU+j71XQ0CEm5wttlOn9N/tb/xseKmWGDxik/Xwt0PJG/6 DiEOzhIazQtzhwSsfW6MFbyIYW/6HlYgp1HMX9kVYwOf7k3nuQw/ABuu4i2PrL7E yr9CX5+FxXFj8TEhlOJBS9KNoHAmcONwC7IL/33T7t6ZVd/+8Q5Fz+q9yjWjMdOk 3pN9S4xmcPY0eP8z3xUIt1SJF5zICu3myF3LULEPCxotGRRwzcsqBcZzLos= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:58 2026 by rpki-client