$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/24380034-e10c-4d59-ac88-4ced5057129c.roa File: 24380034-e10c-4d59-ac88-4ced5057129c.roa (raw, json) Hash identifier: T1trPFSOIIt4DF6uAFeaVcVkmT67jlkI+Yy4GLMm1Y8= Subject key identifier: E5:1F:73:49:92:98:90:28:F9:C6:A5:A6:00:B3:81:FD:05:1A:CA:0F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 35DDAC3617F3A7A14CF5662657BE00B6F9520E7C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/24380034-e10c-4d59-ac88-4ced5057129c.roa Signing time: Sat 28 Feb 2026 01:40:37 +0000 ROA not before: Sat 28 Feb 2026 01:40:37 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 15.248.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:dd:ac:36:17:f3:a7:a1:4c:f5:66:26:57:be:00:b6:f9:52:0e:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 28 01:40:37 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=87c7db14d34378c3ea3a3742e542102009b8b0ad453b9bc6c1ef41bb99af963e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ce:65:ae:71:bb:4b:05:e3:8f:db:60:ec:7d: b4:6d:6e:d1:84:19:7d:fd:95:b9:83:52:9d:3c:f8: 3e:65:62:21:90:6f:bc:80:d7:d6:52:e6:4c:ba:3e: 95:60:49:e0:2e:de:98:7a:bd:54:10:ef:1c:25:b1: 0e:3f:07:38:15:64:b6:df:82:a2:a7:53:49:22:20: ea:29:90:4c:b9:2a:28:42:e3:0f:12:c5:1c:d8:6b: dc:cd:a9:68:22:43:3c:64:29:1f:03:89:28:c7:dd: b7:ea:0e:21:77:15:ee:57:30:0d:bc:29:53:9d:64: 1b:b8:8a:6e:95:cd:72:63:91:11:08:83:23:3e:cf: 98:16:6c:bd:01:a3:82:04:ab:1b:97:eb:a4:52:ec: 89:6f:bc:3e:27:16:74:73:dd:91:92:06:2b:71:fb: f3:b6:4f:39:df:40:88:9f:00:27:0b:84:90:91:cc: b5:c7:e8:6e:38:a5:ff:a8:2a:76:32:7e:38:a3:a4: 08:ed:61:57:86:db:89:be:33:9b:00:28:a8:b1:5f: ab:09:c3:76:cf:10:cc:7e:f3:12:8d:0f:00:0e:46: 55:6c:4c:e9:ca:f5:15:ba:2c:c4:fe:d0:3c:d4:68: 43:ae:1e:9c:b5:f9:f3:7f:02:6a:bf:36:9e:25:4b: 7c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1F:73:49:92:98:90:28:F9:C6:A5:A6:00:B3:81:FD:05:1A:CA:0F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/24380034-e10c-4d59-ac88-4ced5057129c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.248.123.0/24 Signature Algorithm: sha256WithRSAEncryption 64:d1:8b:ec:4a:08:56:40:fe:24:6a:81:2c:b8:fa:82:b8:53: c8:d9:7a:f8:a0:ef:46:00:9f:b5:59:03:2a:7c:23:be:1a:50: bf:ae:4e:e8:1a:52:54:4d:7f:7a:2d:4d:0d:c0:48:21:3e:2c: a3:53:c8:12:83:78:88:c8:17:19:69:b2:b1:5e:65:e6:b9:29: 4a:77:17:73:01:8d:6b:7f:33:ad:07:89:4f:eb:67:05:cb:59: 34:ce:87:b4:87:bd:ed:cb:81:c1:ca:6b:61:93:eb:82:ba:9a: 5b:4e:cb:ac:ba:69:99:52:67:4b:50:19:35:4e:c9:11:fc:e3: 6c:d0:13:f4:e8:33:3c:a4:e9:0f:8b:4f:87:f5:88:b4:d8:24: 56:f5:47:e1:de:2b:2f:a0:d7:7c:88:2f:a3:5a:43:c3:f0:aa: f7:97:07:18:7f:38:20:39:2b:75:d6:95:1f:e6:98:93:f9:e8: 0e:7f:21:df:09:a5:3f:2e:e6:5e:b6:c6:eb:94:10:fa:db:00: d9:f6:c5:af:65:f5:32:a2:63:df:5a:a0:1c:83:7f:2c:d1:60: a8:3f:82:c6:73:cb:df:c7:36:fe:be:cd:7b:54:f9:86:e1:28: 49:6d:f7:e3:8a:39:d7:b3:aa:a9:d8:b7:69:c2:93:f0:47:9a: e3:6d:65:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNd2sNhfzp6FM9WYmV74AtvlSDnwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI4MDE0MDM3WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4N2M3ZGIxNGQzNDM3OGMzZWEzYTM3NDJlNTQyMTAyMDA5 YjhiMGFkNDUzYjliYzZjMWVmNDFiYjk5YWY5NjNlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJzmWucbtLBeOP22DsfbRtbtGEGX39lbmDUp08+D5lYiGQ b7yA19ZS5ky6PpVgSeAu3ph6vVQQ7xwlsQ4/BzgVZLbfgqKnU0kiIOopkEy5KihC 4w8SxRzYa9zNqWgiQzxkKR8DiSjH3bfqDiF3Fe5XMA28KVOdZBu4im6VzXJjkREI gyM+z5gWbL0Bo4IEqxuX66RS7IlvvD4nFnRz3ZGSBitx+/O2TznfQIifACcLhJCR zLXH6G44pf+oKnYyfjijpAjtYVeG24m+M5sAKKixX6sJw3bPEMx+8xKNDwAORlVs TOnK9RW6LMT+0DzUaEOuHpy1+fN/Amq/Np4lS3zVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5R9zSZKYkCj5xqWmALOB/QUayg8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI0MzgwMDM0LWUxMGMtNGQ1OS1hYzg4LTRjZWQ1MDU3MTI5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP+HswDQYJKoZIhvcNAQELBQADggEBAGTRi+xKCFZA/iRqgSy4+oK4U8jZ evig70YAn7VZAyp8I74aUL+uTugaUlRNf3otTQ3ASCE+LKNTyBKDeIjIFxlpsrFe Zea5KUp3F3MBjWt/M60HiU/rZwXLWTTOh7SHve3LgcHKa2GT64K6mltOy6y6aZlS Z0tQGTVOyRH842zQE/ToMzyk6Q+LT4f1iLTYJFb1R+HeKy+g13yIL6NaQ8PwqveX Bxh/OCA5K3XWlR/mmJP56A5/Id8JpT8u5l62xuuUEPrbANn2xa9l9TKiY99aoByD fyzRYKg/gsZzy9/HNv6+zXtU+YbhKElt9+OKOdezqqnYt2nCk/BHmuNtZb4= -----END CERTIFICATE-----Generated at Sun Mar 1 23:35:18 2026 by rpki-client