$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/069954cb-7c4a-46bb-836c-e1f811c56a8c.roa File: 069954cb-7c4a-46bb-836c-e1f811c56a8c.roa (raw, json) Hash identifier: qH3T/gD+GEbVs9NXZF2eh33kewibQcrvxq7cCzEDZPs= Subject key identifier: F2:0F:4E:79:53:82:C1:AC:8C:80:C0:A5:2C:A3:D4:CF:8A:7F:79:59 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7164E0BD5146635A9D885539215981C395BA908A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/069954cb-7c4a-46bb-836c-e1f811c56a8c.roa Signing time: Sun 22 Feb 2026 01:11:16 +0000 ROA not before: Sun 22 Feb 2026 01:11:16 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 144.220.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:64:e0:bd:51:46:63:5a:9d:88:55:39:21:59:81:c3:95:ba:90:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 22 01:11:16 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=728712e819f07d12a7ffa76bab1e49178f9aa1dd1c7efc3d013e2d4121e174a0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d2:f3:39:23:b9:92:15:09:eb:34:06:be:84: 8e:02:8a:82:e6:a6:bf:a6:ab:60:3a:89:3b:ee:a6: 5f:6c:54:d6:eb:bf:18:33:66:aa:c3:74:6c:7e:d9: 1a:11:27:9b:d7:13:d7:3a:40:d8:ca:14:aa:e0:88: 23:74:61:04:8c:99:ed:b2:1a:38:90:c2:d3:61:fb: c3:4b:fb:7e:05:30:41:6f:15:9e:38:13:fc:37:ef: 13:ee:0e:d6:05:74:50:f0:cf:88:0b:cc:05:83:df: e6:66:0e:a5:16:75:b7:56:f9:79:32:1e:d8:e8:e2: 9f:57:b4:9d:10:a9:e5:2c:1c:ea:9a:b5:11:8a:e1: 8e:a8:66:9a:bb:2c:3a:7f:ef:99:4d:85:89:e8:32: c7:d6:29:f2:a3:24:11:8c:97:a6:c2:0a:22:35:51: d7:cf:c7:78:ed:f8:c6:19:69:f9:9d:6c:38:f1:34: a0:d4:b0:b6:27:9b:4b:da:68:47:d9:4b:af:e5:2d: 27:10:71:18:b5:83:3e:2e:d8:02:33:c8:d3:d7:3d: ab:c5:ac:e2:9a:b8:d9:44:ce:4f:97:b2:91:a0:a6: ec:82:8d:b1:df:2c:fa:b5:c4:03:ce:44:d3:a1:9c: 88:09:f0:49:28:23:03:3f:7c:e0:c9:fc:b6:e1:11: a4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:0F:4E:79:53:82:C1:AC:8C:80:C0:A5:2C:A3:D4:CF:8A:7F:79:59 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/069954cb-7c4a-46bb-836c-e1f811c56a8c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.220.139.0/24 Signature Algorithm: sha256WithRSAEncryption 98:b4:71:bb:d5:16:fe:81:30:dd:b7:4c:3f:6a:69:2b:9b:15: 30:34:7a:49:4d:b6:63:ef:4a:d0:7e:20:91:42:ff:6e:86:c6: 99:66:c7:90:27:a1:b9:65:7a:6b:c7:29:5d:d7:c4:ff:99:c5: 2b:6f:8d:3d:ed:d6:b2:21:ea:73:84:48:50:89:1b:e3:c7:80: ae:9a:60:ce:1f:15:2f:b5:a4:f5:76:d2:f8:73:41:91:3b:ba: f7:ef:ab:87:cb:46:3b:a2:84:3e:f1:fa:8b:9f:68:e3:9b:bc: da:18:a8:35:63:3e:d0:4e:2b:65:e5:90:09:ed:0c:5a:dc:1b: fc:62:8a:53:f2:b5:8c:25:a9:28:cc:1c:ec:61:68:fe:75:62: 61:66:58:19:4b:83:da:ac:36:ee:69:0c:12:77:ea:da:7f:54: 60:4c:94:a4:3a:d5:5e:ca:0f:d3:f6:72:4f:60:77:aa:8d:aa: 37:86:d9:b0:ed:b9:cd:21:e1:d7:5d:33:7e:04:a1:97:be:da: 62:21:19:bf:6f:fb:85:31:e8:5b:62:87:51:d0:2d:05:76:99: 58:19:f1:1a:08:78:d4:24:44:41:c0:57:15:de:a8:82:4f:a0: 0e:0a:52:e3:f8:2f:f0:4e:a7:a3:a5:77:95:0b:9f:f9:06:e0: 1e:ae:64:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcWTgvVFGY1qdiFU5IVmBw5W6kIowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjIyMDExMTE2WhcNMjYwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3Mjg3MTJlODE5ZjA3ZDEyYTdmZmE3NmJhYjFlNDkxNzhm OWFhMWRkMWM3ZWZjM2QwMTNlMmQ0MTIxZTE3NGEwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDi0vM5I7mSFQnrNAa+hI4CioLmpr+mq2A6iTvupl9sVNbr vxgzZqrDdGx+2RoRJ5vXE9c6QNjKFKrgiCN0YQSMme2yGjiQwtNh+8NL+34FMEFv FZ44E/w37xPuDtYFdFDwz4gLzAWD3+ZmDqUWdbdW+XkyHtjo4p9XtJ0QqeUsHOqa tRGK4Y6oZpq7LDp/75lNhYnoMsfWKfKjJBGMl6bCCiI1UdfPx3jt+MYZafmdbDjx NKDUsLYnm0vaaEfZS6/lLScQcRi1gz4u2AIzyNPXPavFrOKauNlEzk+XspGgpuyC jbHfLPq1xAPORNOhnIgJ8EkoIwM/fODJ/LbhEaSxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8g9OeVOCwayMgMClLKPUz4p/eVkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA2OTk1NGNiLTdjNGEtNDZiYi04MzZjLWUxZjgxMWM1NmE4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACQ3IswDQYJKoZIhvcNAQELBQADggEBAJi0cbvVFv6BMN23TD9qaSubFTA0 eklNtmPvStB+IJFC/26Gxplmx5AnobllemvHKV3XxP+ZxStvjT3t1rIh6nOESFCJ G+PHgK6aYM4fFS+1pPV20vhzQZE7uvfvq4fLRjuihD7x+oufaOObvNoYqDVjPtBO K2XlkAntDFrcG/xiilPytYwlqSjMHOxhaP51YmFmWBlLg9qsNu5pDBJ36tp/VGBM lKQ61V7KD9P2ck9gd6qNqjeG2bDtuc0h4dddM34EoZe+2mIhGb9v+4Ux6Ftih1HQ LQV2mVgZ8RoIeNQkREHAVxXeqIJPoA4KUuP4L/BOp6Old5ULn/kG4B6uZEo= -----END CERTIFICATE-----Generated at Sun Mar 1 23:20:27 2026 by rpki-client