$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/27080014-4498-4888-909d-c1bed4c0abca.roa File: 27080014-4498-4888-909d-c1bed4c0abca.roa (raw, json) Hash identifier: kXH8WTHOUkFBWDfRHxiJhgU3dS+37u9wu57CXQY6sQU= Subject key identifier: 90:D2:0A:57:A2:98:97:58:2C:3A:A6:11:96:81:81:5E:A8:E7:59:89 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 148DA899C9FE7A54CE3E4BE779ACA01C958BCC55 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/27080014-4498-4888-909d-c1bed4c0abca.roa Signing time: Sat 28 Feb 2026 03:30:10 +0000 ROA not before: Sat 28 Feb 2026 03:30:10 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 18.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:8d:a8:99:c9:fe:7a:54:ce:3e:4b:e7:79:ac:a0:1c:95:8b:cc:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 28 03:30:10 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=13c12360eb94caf149081d274b766da93491940d50472baacd0ae5923a238560, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:91:81:f3:28:4b:0b:dd:48:63:b6:80:14:e6: db:7d:50:e3:9d:2f:62:71:b5:a9:ee:8e:0f:a9:ac: d0:cc:87:fa:02:ea:55:3b:f3:b8:d8:4d:fa:69:8b: e8:e4:1d:b9:04:1a:58:3d:28:bf:7c:12:1a:bf:f5: fd:50:86:de:3d:d7:88:32:66:c2:c0:4f:13:7d:a6: 95:84:ad:96:53:40:9e:fa:10:be:d3:87:7e:93:f9: 4a:05:28:b0:8b:05:04:47:7d:10:50:aa:4c:95:aa: 61:4a:50:f4:74:c9:42:f8:47:64:e8:0e:6e:e2:83: 77:48:91:5a:75:5a:f0:72:39:fd:02:a9:4b:90:0f: 27:aa:cc:e6:e7:50:71:fe:9a:e5:d6:cf:29:00:5d: e6:4a:8d:9d:65:2b:6e:05:fe:29:5f:be:c1:06:de: b4:5c:e8:41:38:69:2e:a7:0f:54:63:3f:45:87:f4: 6c:3a:5d:d1:4c:86:7a:c1:61:7b:06:76:f4:e0:4e: b5:e3:67:2b:64:dc:b7:01:dd:6c:e0:66:08:fb:da: 8d:ed:93:51:9f:a0:9d:e7:14:42:8a:62:0d:65:79: f2:f9:1a:a9:b4:4b:4c:fa:7d:c4:1b:d1:b9:61:20: ac:98:86:b5:13:f6:6f:26:20:28:dc:65:90:a3:07: d4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:D2:0A:57:A2:98:97:58:2C:3A:A6:11:96:81:81:5E:A8:E7:59:89 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/27080014-4498-4888-909d-c1bed4c0abca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption a9:c4:b8:ce:f7:55:ad:a8:4f:50:cc:b1:b7:69:d2:39:9f:6f: 8e:c0:5f:85:1b:35:ea:3d:34:fe:32:c8:bc:8d:db:67:ed:48: b8:d4:2a:77:ff:1c:74:01:a7:16:7a:ee:15:e7:77:8d:7f:12: 22:43:99:7e:fd:ab:11:fa:38:1d:b8:37:5e:70:a7:5d:0c:bf: d6:db:ba:72:f9:bd:2e:1a:57:c6:22:c6:28:a5:98:ef:e4:02: 76:56:41:97:ec:c0:6e:ee:6f:39:8e:89:17:23:c5:9d:87:15: 25:21:e3:82:9f:07:46:3d:cb:a3:ab:81:5a:f8:30:1b:05:80: 0b:d9:64:93:b8:a9:6d:1d:26:31:96:bd:13:29:f1:f3:a0:3a: 34:25:1b:4c:f7:d7:ff:23:d7:93:48:89:3a:e5:26:5a:40:e1: 5b:35:5b:68:9d:de:a5:8b:1b:95:8e:0a:61:4b:31:3d:6c:62: f8:eb:b6:c7:09:21:90:bd:f0:39:39:7f:58:2e:dc:e3:b6:3e: ea:1c:9b:c5:f7:a0:de:2a:9c:7b:ba:f2:e7:ae:9e:8e:aa:c5: d4:b0:11:02:6c:f7:e4:5f:b2:c3:de:7b:b1:19:e0:ed:42:30: 03:5c:63:e9:6a:a8:20:ee:74:3f:10:6f:59:57:ae:59:38:76: fc:1d:cf:49 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFI2omcn+elTOPkvneaygHJWLzFUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI4MDMzMDEwWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2MxMjM2MGViOTRjYWYxNDkwODFkMjc0Yjc2NmRhOTM0 OTE5NDBkNTA0NzJiYWFjZDBhZTU5MjNhMjM4NTYwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2kYHzKEsL3UhjtoAU5tt9UOOdL2Jxtanujg+prNDMh/oC 6lU787jYTfppi+jkHbkEGlg9KL98Ehq/9f1Qht4914gyZsLATxN9ppWErZZTQJ76 EL7Th36T+UoFKLCLBQRHfRBQqkyVqmFKUPR0yUL4R2ToDm7ig3dIkVp1WvByOf0C qUuQDyeqzObnUHH+muXWzykAXeZKjZ1lK24F/ilfvsEG3rRc6EE4aS6nD1RjP0WH 9Gw6XdFMhnrBYXsGdvTgTrXjZytk3LcB3WzgZgj72o3tk1GfoJ3nFEKKYg1lefL5 Gqm0S0z6fcQb0blhIKyYhrUT9m8mICjcZZCjB9QFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkNIKV6KYl1gsOqYRloGBXqjnWYkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI3MDgwMDE0LTQ0OTgtNDg4OC05MDlkLWMxYmVkNGMwYWJjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASKzANBgkqhkiG9w0BAQsFAAOCAQEAqcS4zvdVrahPUMyxt2nSOZ9vjsBf hRs16j00/jLIvI3bZ+1IuNQqd/8cdAGnFnruFed3jX8SIkOZfv2rEfo4Hbg3XnCn XQy/1tu6cvm9LhpXxiLGKKWY7+QCdlZBl+zAbu5vOY6JFyPFnYcVJSHjgp8HRj3L o6uBWvgwGwWAC9lkk7ipbR0mMZa9Eynx86A6NCUbTPfX/yPXk0iJOuUmWkDhWzVb aJ3epYsblY4KYUsxPWxi+Ou2xwkhkL3wOTl/WC7c47Y+6hybxfeg3iqce7ry566e jqrF1LARAmz35F+yw957sRng7UIwA1xj6WqoIO50PxBvWVeuWTh2/B3PSQ== -----END CERTIFICATE-----Generated at Sun Mar 1 23:38:30 2026 by rpki-client