$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/33cf66c1-05eb-4cc7-be76-1cd1cf9af273.roa File: 33cf66c1-05eb-4cc7-be76-1cd1cf9af273.roa (raw, json) Hash identifier: Gh2VWDTsw/7A5jIkpIq23fvS7gBHBbCDchTg81obBpc= Subject key identifier: 00:BC:12:2B:26:4D:D1:5F:F5:9C:1D:25:24:08:D4:FC:20:B6:F4:AF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1743CCA3FB68AFBD4D25732712666765A3678930 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/33cf66c1-05eb-4cc7-be76-1cd1cf9af273.roa Signing time: Mon 23 Feb 2026 00:40:42 +0000 ROA not before: Mon 23 Feb 2026 00:40:42 +0000 ROA not after: Sun 24 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.182.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:43:cc:a3:fb:68:af:bd:4d:25:73:27:12:66:67:65:a3:67:89:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 23 00:40:42 2026 GMT Not After : May 24 23:59:59 2026 GMT Subject: serialNumber=7f99005a57880313d84d26e7286bf4947185473533a99d16b12318da2e3c2876, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:aa:dd:2d:eb:35:13:ba:f5:80:bd:c2:5d:16: 6e:3f:7d:fa:87:4f:b8:3c:fc:93:58:f3:07:47:8a: 1a:c6:b9:b5:2b:ec:c6:41:48:bf:cc:73:fc:8f:0a: 08:94:1f:4b:c6:cf:66:07:a0:66:19:2d:77:51:49: 50:5a:63:d9:34:d8:b6:e2:cd:ef:d8:58:0d:90:bc: 11:3b:18:9a:03:66:47:bc:4e:d0:3c:08:8a:a2:f1: 30:8a:6f:cc:2d:e5:10:fa:48:95:0e:0c:74:07:99: bf:0d:f5:d2:fc:b3:aa:98:c7:5b:e0:85:ea:bc:16: a2:00:d3:46:a7:be:13:1f:1c:b9:6c:0e:e9:35:7a: a3:8c:c5:82:35:d7:6e:11:75:fc:14:09:a4:8e:84: 10:fd:17:07:62:db:b8:02:e6:13:1b:d9:79:6a:8b: e8:c9:50:7a:93:6a:d6:5f:29:37:ee:51:ce:ca:99: 1a:9a:f9:20:15:ae:65:44:8f:ad:87:a9:1d:da:b0: 7e:1a:30:e8:22:be:67:ff:aa:85:36:59:e0:e0:b5: 56:59:11:17:f2:56:ec:7e:c3:70:3d:28:55:41:33: 5d:3f:98:8a:59:65:3c:08:c5:a1:e1:01:1b:43:90: c4:08:c5:eb:a8:6d:40:3d:b5:7c:a5:10:c8:c9:a6: b5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:BC:12:2B:26:4D:D1:5F:F5:9C:1D:25:24:08:D4:FC:20:B6:F4:AF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/33cf66c1-05eb-4cc7-be76-1cd1cf9af273.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.182.120.0/22 Signature Algorithm: sha256WithRSAEncryption 87:54:92:c9:8c:f8:e8:0a:d2:91:2e:f4:80:16:13:b2:b5:fc: e1:31:dc:aa:dc:9c:35:7b:35:f2:a0:54:a6:9c:76:d3:fe:a2: 28:1e:2a:3a:20:37:13:b6:f0:4f:86:3c:2f:f6:f3:79:1a:90: 83:70:d1:7a:63:51:ef:80:1f:47:e4:18:33:c9:84:eb:09:25: 65:a7:63:86:1e:41:2d:a1:15:35:53:7f:41:4b:f4:79:db:a4: db:17:e2:3d:aa:04:b4:ef:d1:f2:d3:c9:78:b9:43:47:e7:a5: 9a:23:4f:39:73:92:95:6b:a8:7e:56:df:a5:96:63:d9:59:79: da:5d:84:3e:34:63:46:ce:ec:a9:a4:84:6d:e6:7a:27:69:97: 03:f9:ba:88:21:63:e6:ee:f0:4a:0b:6b:39:ba:92:2a:d0:e8: 44:eb:52:b0:05:fe:21:3d:8d:0b:28:3c:c5:47:b8:73:e7:7b: 26:30:cb:17:b9:3b:a6:83:73:41:25:4a:d5:14:24:01:a8:d1: 24:ca:87:f3:08:3e:a7:24:09:d8:b6:4a:bf:1c:b6:27:74:f4: 6e:81:f5:a1:4b:e0:40:68:ba:d9:fa:68:b6:41:f9:37:6a:6d: 11:3c:99:2a:69:fd:79:e4:a1:46:43:4e:b9:a0:74:5d:83:cc: 8a:69:84:ba -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF0PMo/tor71NJXMnEmZnZaNniTAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjIzMDA0MDQyWhcNMjYwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Zjk5MDA1YTU3ODgwMzEzZDg0ZDI2ZTcyODZiZjQ5NDcx ODU0NzM1MzNhOTlkMTZiMTIzMThkYTJlM2MyODc2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjqt0t6zUTuvWAvcJdFm4/ffqHT7g8/JNY8wdHihrGubUr 7MZBSL/Mc/yPCgiUH0vGz2YHoGYZLXdRSVBaY9k02Lbize/YWA2QvBE7GJoDZke8 TtA8CIqi8TCKb8wt5RD6SJUODHQHmb8N9dL8s6qYx1vgheq8FqIA00anvhMfHLls Duk1eqOMxYI1124RdfwUCaSOhBD9Fwdi27gC5hMb2Xlqi+jJUHqTatZfKTfuUc7K mRqa+SAVrmVEj62HqR3asH4aMOgivmf/qoU2WeDgtVZZERfyVux+w3A9KFVBM10/ mIpZZTwIxaHhARtDkMQIxeuobUA9tXylEMjJprWfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUALwSKyZN0V/1nB0lJAjU/CC29K8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzMzY2Y2NmMxLTA1ZWItNGNjNy1iZTc2LTFjZDFjZjlhZjI3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI2tngwDQYJKoZIhvcNAQELBQADggEBAIdUksmM+OgK0pEu9IAWE7K1/OEx 3KrcnDV7NfKgVKacdtP+oigeKjogNxO28E+GPC/283kakINw0XpjUe+AH0fkGDPJ hOsJJWWnY4YeQS2hFTVTf0FL9HnbpNsX4j2qBLTv0fLTyXi5Q0fnpZojTzlzkpVr qH5W36WWY9lZedpdhD40Y0bO7KmkhG3meidplwP5uoghY+bu8EoLazm6kirQ6ETr UrAF/iE9jQsoPMVHuHPneyYwyxe5O6aDc0ElStUUJAGo0STKh/MIPqckCdi2Sr8c tid09G6B9aFL4EBoutn6aLZB+TdqbRE8mSpp/XnkoUZDTrmgdF2DzIpphLo= -----END CERTIFICATE-----Generated at Sun Mar 1 21:42:15 2026 by rpki-client