$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00b172cf-bb6b-4ff9-a179-0b60cba4cd03.roa File: 00b172cf-bb6b-4ff9-a179-0b60cba4cd03.roa (raw, json) Hash identifier: 90FBy80FvdLzgQBSsgoDBcJFBM7lTeIhcik78k0Gpko= Subject key identifier: 60:A9:6B:B0:6E:26:7A:01:C5:80:98:5A:29:BA:4C:6C:FF:CA:6C:01 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 74AB0BDB33006E0AC12C7A31FF14466247A0A458 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00b172cf-bb6b-4ff9-a179-0b60cba4cd03.roa Signing time: Tue 24 Feb 2026 04:00:05 +0000 ROA not before: Tue 24 Feb 2026 04:00:05 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.249.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:ab:0b:db:33:00:6e:0a:c1:2c:7a:31:ff:14:46:62:47:a0:a4:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 24 04:00:05 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=130a40fda06d59fac274751b7d0fdd865c1de8083608e2dbf64379164e8a43c9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f8:d0:d7:00:46:ec:2e:08:8d:e3:08:f2:0a: e0:8c:90:d1:6a:4c:19:18:17:4d:f4:a7:a1:77:d7: d0:c0:34:d6:13:2e:00:67:ea:c3:97:b8:89:1b:92: 6c:ed:c9:67:a8:6f:65:cd:54:6e:90:26:4f:95:aa: 51:f3:54:e1:2b:14:c2:95:ea:ef:d9:53:ee:34:ef: 2c:37:5d:5f:36:a1:ec:a5:a9:81:76:2f:ea:1d:86: 7a:42:fc:7f:c5:35:a2:17:89:50:2d:2c:a6:45:71: 74:43:04:7d:fe:02:71:da:78:78:39:ab:69:1f:22: bb:24:e3:39:8a:44:9d:bd:4e:8e:e8:cb:46:b3:ef: 79:d5:be:39:bb:9d:f1:bb:2d:52:c2:2f:7b:94:d3: 7b:18:fd:56:e7:0a:f3:c3:56:19:e7:0b:4d:e5:4f: f3:ca:5c:e9:a1:df:12:7f:3b:47:55:bb:b4:8f:b5: ff:76:42:0d:75:46:70:49:a1:40:a7:6c:85:08:8b: 93:6b:94:3a:22:19:20:aa:63:f4:dc:79:1b:cf:e9: b8:f6:77:38:8b:ea:b1:05:93:c9:1b:2a:21:97:e8: b0:a0:70:e8:ef:56:b2:8e:91:20:50:64:e7:42:08: f7:64:30:06:c2:21:5c:c5:36:a9:33:50:fc:94:49: ee:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A9:6B:B0:6E:26:7A:01:C5:80:98:5A:29:BA:4C:6C:FF:CA:6C:01 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00b172cf-bb6b-4ff9-a179-0b60cba4cd03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.249.32.0/19 Signature Algorithm: sha256WithRSAEncryption 0c:93:dc:32:91:6d:9f:df:ee:ad:aa:b4:3d:3b:1c:ef:ac:02: 0f:1d:52:83:87:a3:7f:c2:57:16:15:e2:12:d2:f9:b8:a2:51: d5:97:38:e2:e2:01:28:67:b6:03:95:0b:f5:0c:5b:77:82:7c: 0d:f4:52:25:26:f6:e3:22:8a:32:f2:7d:ba:6e:ed:8a:85:5b: e3:0b:e0:06:71:53:a4:30:75:a3:a3:37:79:45:17:24:3b:14: 29:2d:95:02:6f:2f:51:a1:cd:c8:6a:1d:01:d0:a6:69:d0:39: e6:6c:ef:fc:fb:78:2c:e9:ef:8e:64:88:8d:2e:37:fd:89:16: b3:ea:bc:b8:eb:90:6b:ad:aa:d9:bd:78:e7:99:0b:18:07:f7: 67:75:07:ee:7d:b0:e4:bf:cf:77:1d:c1:fc:c1:30:94:0b:e7: de:dd:2f:56:9e:dd:42:f6:42:cb:89:7d:bb:d2:e5:5f:66:c5: b0:d4:75:a4:9a:3c:7e:33:63:2f:20:aa:b4:01:44:86:5c:ee: 9a:f9:d7:11:56:a2:c6:03:b3:c8:5b:af:1c:c0:b3:ef:ae:6c: 4c:21:af:35:b9:1a:0f:53:98:8f:41:2f:ef:e2:95:34:4d:50: 89:d5:08:de:ed:78:9e:e3:64:23:5b:ed:34:7f:a0:cf:ed:c5: 4a:23:b1:16 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdKsL2zMAbgrBLHox/xRGYkegpFgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI0MDQwMDA1WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzBhNDBmZGEwNmQ1OWZhYzI3NDc1MWI3ZDBmZGQ4NjVj MWRlODA4MzYwOGUyZGJmNjQzNzkxNjRlOGE0M2M5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC+NDXAEbsLgiN4wjyCuCMkNFqTBkYF030p6F319DANNYT LgBn6sOXuIkbkmztyWeob2XNVG6QJk+VqlHzVOErFMKV6u/ZU+407yw3XV82oeyl qYF2L+odhnpC/H/FNaIXiVAtLKZFcXRDBH3+AnHaeHg5q2kfIrsk4zmKRJ29To7o y0az73nVvjm7nfG7LVLCL3uU03sY/VbnCvPDVhnnC03lT/PKXOmh3xJ/O0dVu7SP tf92Qg11RnBJoUCnbIUIi5NrlDoiGSCqY/TceRvP6bj2dziL6rEFk8kbKiGX6LCg cOjvVrKOkSBQZOdCCPdkMAbCIVzFNqkzUPyUSe4HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYKlrsG4megHFgJhaKbpMbP/KbAEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAwYjE3MmNmLWJiNmItNGZmOS1hMTc5LTBiNjBjYmE0Y2QwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU2+SAwDQYJKoZIhvcNAQELBQADggEBAAyT3DKRbZ/f7q2qtD07HO+sAg8d UoOHo3/CVxYV4hLS+biiUdWXOOLiAShntgOVC/UMW3eCfA30UiUm9uMiijLyfbpu 7YqFW+ML4AZxU6QwdaOjN3lFFyQ7FCktlQJvL1GhzchqHQHQpmnQOeZs7/z7eCzp 745kiI0uN/2JFrPqvLjrkGutqtm9eOeZCxgH92d1B+59sOS/z3cdwfzBMJQL597d L1ae3UL2QsuJfbvS5V9mxbDUdaSaPH4zYy8gqrQBRIZc7pr51xFWosYDs8hbrxzA s++ubEwhrzW5Gg9TmI9BL+/ilTRNUInVCN7teJ7jZCNb7TR/oM/txUojsRY= -----END CERTIFICATE-----Generated at Sun Mar 1 21:42:51 2026 by rpki-client