$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/30f2ed42-fbcb-4e1d-bc2a-368829912bae.roa File: 30f2ed42-fbcb-4e1d-bc2a-368829912bae.roa (raw, json) Hash identifier: lNYfkXYpUAEmERF1CHVhzCv9uNCQP7uPdzA6RaIlYm0= Subject key identifier: 7A:E5:ED:BA:EC:00:DE:FB:29:54:42:30:44:CB:F2:5B:E8:E4:50:42 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 15132A31B049DF2B363B537E4195DBF6AB7AA5E7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/30f2ed42-fbcb-4e1d-bc2a-368829912bae.roa Signing time: Sat 28 Feb 2026 00:50:10 +0000 ROA not before: Sat 28 Feb 2026 00:50:10 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 3.170.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:13:2a:31:b0:49:df:2b:36:3b:53:7e:41:95:db:f6:ab:7a:a5:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 28 00:50:10 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=1a0ac03227b69a5f0992af88cf0d2e09d3af4da8a9f6e17a9be9d1f482e362c1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:78:9c:07:7e:1d:09:ce:a0:b6:79:93:c7:e3: d0:00:e5:ac:85:66:4a:47:ab:88:3a:c6:1b:85:4c: 20:5a:7e:9d:34:37:0c:2b:f6:d8:3e:a6:7f:3e:a3: 7d:c6:c3:e5:c6:00:cc:71:55:79:65:6f:4f:bf:6e: 97:23:f7:51:ee:ae:5d:a3:e4:db:95:37:75:f9:dc: 4b:59:ad:66:ca:5b:c3:94:4f:c2:26:75:d9:fd:39: 4c:95:7e:60:d5:64:1e:9b:d2:df:93:ca:90:44:b8: ca:0b:8e:13:f6:5b:72:83:44:ec:94:35:05:fb:c1: 1a:de:24:21:31:13:80:5b:53:1e:94:80:7d:e1:5c: fe:01:1c:2f:2a:4a:82:c7:4f:74:d0:c0:26:69:5e: 0b:e0:91:1d:cb:cc:54:03:ed:a3:29:49:2e:7c:f2: 45:e6:a2:fd:6c:8d:10:12:61:2a:31:37:45:4a:b5: 6d:96:94:f1:b3:d8:31:24:78:f7:5a:09:be:be:3f: a9:ac:6a:61:d9:36:d6:e1:58:d3:63:38:a7:7b:b7: 26:c2:49:99:24:04:f6:c6:33:70:21:7d:22:16:67: cf:ac:40:ee:a3:8c:3f:26:9b:1a:0e:1b:31:d5:8c: 9a:fb:3a:22:10:d9:15:5d:cc:ac:7b:22:3d:3d:cb: 07:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:E5:ED:BA:EC:00:DE:FB:29:54:42:30:44:CB:F2:5B:E8:E4:50:42 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/30f2ed42-fbcb-4e1d-bc2a-368829912bae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.170.0.0/17 Signature Algorithm: sha256WithRSAEncryption b0:10:b6:21:11:b3:87:f4:b3:cf:d9:1c:a4:cb:5e:26:60:93: 4e:f8:24:47:ed:a6:16:ef:41:85:bd:d2:90:e8:c0:c0:e0:ff: a2:a2:b4:e1:0e:3c:49:8f:a5:7c:1a:0d:c9:b0:94:3c:12:8c: ac:6e:e4:5e:f1:44:56:90:06:e2:2b:2f:bb:d1:16:e7:ac:68: 06:7c:6d:93:76:53:f2:0a:c6:dc:27:08:03:ca:53:cc:5d:50: 6d:60:a8:8c:bb:5c:b1:ca:3f:99:28:19:ca:35:83:15:af:10: 32:f9:0e:05:0c:93:2e:3f:69:7b:3b:aa:63:ac:84:6e:fa:b5: 86:1c:de:3d:9d:38:b2:55:ed:4e:49:ff:77:80:04:fd:6e:1e: 32:68:d4:9b:9d:52:4a:b0:19:8d:dd:73:18:00:28:8d:2d:87: f8:75:86:b8:26:03:8d:92:be:a9:b5:5b:5f:42:3d:d3:c3:ff: f4:88:08:f5:e2:07:5b:6b:d6:82:49:15:5e:14:91:a2:60:bf: 8a:39:3a:b5:80:6d:b6:e4:39:f7:70:a9:40:5d:98:b0:c3:fc: c5:dc:6a:8f:67:4e:f8:b4:3e:52:c6:51:ca:51:01:a3:6e:dc: 48:98:02:ef:4d:d2:fe:72:59:89:09:7b:f2:ae:d0:bc:0f:c4: c6:b4:15:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFRMqMbBJ3ys2O1N+QZXb9qt6pecwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI4MDA1MDEwWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTBhYzAzMjI3YjY5YTVmMDk5MmFmODhjZjBkMmUwOWQz YWY0ZGE4YTlmNmUxN2E5YmU5ZDFmNDgyZTM2MmMxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMeJwHfh0JzqC2eZPH49AA5ayFZkpHq4g6xhuFTCBafp00 Nwwr9tg+pn8+o33Gw+XGAMxxVXllb0+/bpcj91Hurl2j5NuVN3X53EtZrWbKW8OU T8Imddn9OUyVfmDVZB6b0t+TypBEuMoLjhP2W3KDROyUNQX7wRreJCExE4BbUx6U gH3hXP4BHC8qSoLHT3TQwCZpXgvgkR3LzFQD7aMpSS588kXmov1sjRASYSoxN0VK tW2WlPGz2DEkePdaCb6+P6msamHZNtbhWNNjOKd7tybCSZkkBPbGM3AhfSIWZ8+s QO6jjD8mmxoOGzHVjJr7OiIQ2RVdzKx7Ij09ywfpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeuXtuuwA3vspVEIwRMvyW+jkUEIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzMwZjJlZDQyLWZiY2ItNGUxZC1iYzJhLTM2ODgyOTkxMmJhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcDqgAwDQYJKoZIhvcNAQELBQADggEBALAQtiERs4f0s8/ZHKTLXiZgk074 JEftphbvQYW90pDowMDg/6KitOEOPEmPpXwaDcmwlDwSjKxu5F7xRFaQBuIrL7vR FuesaAZ8bZN2U/IKxtwnCAPKU8xdUG1gqIy7XLHKP5koGco1gxWvEDL5DgUMky4/ aXs7qmOshG76tYYc3j2dOLJV7U5J/3eABP1uHjJo1JudUkqwGY3dcxgAKI0th/h1 hrgmA42Svqm1W19CPdPD//SICPXiB1tr1oJJFV4UkaJgv4o5OrWAbbbkOfdwqUBd mLDD/MXcao9nTvi0PlLGUcpRAaNu3EiYAu9N0v5yWYkJe/Ku0LwPxMa0FXI= -----END CERTIFICATE-----Generated at Mon Mar 2 02:49:19 2026 by rpki-client