$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3b1cedc8-8c30-4e76-9b1d-ac7b2e541a7e.roa File: 3b1cedc8-8c30-4e76-9b1d-ac7b2e541a7e.roa (raw, json) Hash identifier: h4dScOzQuq09w/FFIO2yw797q5S9PDbquiTZDGXRWI4= Subject key identifier: AC:3F:E6:BA:F0:61:D1:69:39:85:59:38:80:C5:BE:75:E8:2B:FF:B7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 74FFAEB0E5FD23B6E2F7579B54CCF5E7F3C39AD6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3b1cedc8-8c30-4e76-9b1d-ac7b2e541a7e.roa Signing time: Tue 24 Feb 2026 03:31:16 +0000 ROA not before: Tue 24 Feb 2026 03:31:16 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.243.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:ff:ae:b0:e5:fd:23:b6:e2:f7:57:9b:54:cc:f5:e7:f3:c3:9a:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 24 03:31:16 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=ee744445f48c7b058b956fa30acc76796a8750103c270d33ae7c580f98e64446, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:82:f1:bf:6e:8a:a0:d4:7f:2a:c4:e5:45:c7: b8:ac:7b:bd:36:ba:fd:de:60:14:c6:cb:fc:c8:67: 14:2c:fd:b1:09:67:11:ff:da:1e:b7:0c:a6:5b:26: 84:9a:a7:b7:dd:3b:f2:4a:df:a3:dd:3a:ea:33:84: 3c:37:86:99:c3:f5:84:ec:1e:92:a7:25:c0:0d:4e: 42:49:77:b6:58:3c:1c:8a:4a:91:7c:65:fc:5c:68: 81:c7:f0:43:ac:ea:05:50:14:12:4f:d7:04:be:10: a3:ad:1c:9a:de:5b:68:9f:34:03:bf:69:f7:37:20: 54:ef:82:7d:04:e9:db:08:b3:09:c0:56:ea:8d:0b: d5:35:e6:5e:8a:94:d1:50:96:6d:85:10:ce:d4:39: e8:d7:05:c6:52:9f:90:74:28:70:1f:8b:a1:7b:1e: 57:5d:dd:8b:a3:02:b1:79:88:52:05:ff:e5:f2:65: c4:57:fa:86:c9:78:97:24:ce:b8:23:a0:f8:9b:5c: 9e:c0:d1:c0:66:2e:29:b4:56:05:9f:d4:f7:f6:1d: f4:83:5c:5f:1f:ff:59:23:1b:2d:d6:28:62:e9:07: a1:d8:b8:e4:a9:2e:bb:3f:26:db:37:51:25:bc:00: c9:ea:fe:65:77:4b:a8:d8:fd:e4:53:85:85:c9:ef: 96:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3F:E6:BA:F0:61:D1:69:39:85:59:38:80:C5:BE:75:E8:2B:FF:B7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3b1cedc8-8c30-4e76-9b1d-ac7b2e541a7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.243.24.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:78:7d:0f:bb:d9:5d:e8:a4:2f:b3:73:ff:91:a6:a7:3f:70: 18:ab:12:69:e4:cf:a9:b3:12:05:96:d9:b3:9a:4f:3d:39:5f: 8d:9d:a3:fb:42:c8:77:8c:e0:53:6f:f2:8f:d1:3a:3c:c6:39: 24:05:2b:a1:41:d6:00:a0:ba:19:75:4f:5d:4b:89:fd:3a:2a: a8:b5:dc:a4:2f:67:75:83:c3:da:74:41:cf:b3:8a:3e:67:dc: e2:76:cd:0c:af:4c:9e:09:ba:cd:69:50:4a:1a:23:03:a6:ff: af:a0:fd:80:62:ed:e7:4a:4f:fe:fc:c9:40:cf:17:ac:d1:ba: 1b:f1:04:67:75:20:b6:67:53:f1:d9:9d:55:7f:df:ec:0a:d4: 75:f3:92:42:3e:40:97:74:bc:2f:3d:23:54:09:54:05:5d:31: 80:7a:d2:65:e8:c7:db:15:f7:dd:5e:3b:80:2b:07:ba:5b:9f: f8:3f:12:48:23:66:f1:05:33:a1:6f:c5:d6:6f:9c:96:4e:f8: 37:d1:73:45:84:c2:68:90:bd:0c:93:2f:e7:67:1c:1b:03:7d: d6:76:ec:e9:6d:52:c2:6c:6b:f3:15:9f:ef:b7:5f:d5:0e:a2: ec:59:07:95:39:4f:a0:87:01:d4:f5:58:73:3b:52:54:64:22: a6:88:60:28 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdP+usOX9I7bi91ebVMz15/PDmtYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI0MDMzMTE2WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTc0NDQ0NWY0OGM3YjA1OGI5NTZmYTMwYWNjNzY3OTZh ODc1MDEwM2MyNzBkMzNhZTdjNTgwZjk4ZTY0NDQ2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCegvG/boqg1H8qxOVFx7ise702uv3eYBTGy/zIZxQs/bEJ ZxH/2h63DKZbJoSap7fdO/JK36PdOuozhDw3hpnD9YTsHpKnJcANTkJJd7ZYPByK SpF8ZfxcaIHH8EOs6gVQFBJP1wS+EKOtHJreW2ifNAO/afc3IFTvgn0E6dsIswnA VuqNC9U15l6KlNFQlm2FEM7UOejXBcZSn5B0KHAfi6F7Hldd3YujArF5iFIF/+Xy ZcRX+obJeJckzrgjoPibXJ7A0cBmLim0VgWf1Pf2HfSDXF8f/1kjGy3WKGLpB6HY uOSpLrs/Jts3USW8AMnq/mV3S6jY/eRThYXJ75ZTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrD/muvBh0Wk5hVk4gMW+degr/7cwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNiMWNlZGM4LThjMzAtNGU3Ni05YjFkLWFjN2IyZTU0MWE3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI28xgwDQYJKoZIhvcNAQELBQADggEBAH94fQ+72V3opC+zc/+Rpqc/cBir Emnkz6mzEgWW2bOaTz05X42do/tCyHeM4FNv8o/ROjzGOSQFK6FB1gCguhl1T11L if06Kqi13KQvZ3WDw9p0Qc+zij5n3OJ2zQyvTJ4Jus1pUEoaIwOm/6+g/YBi7edK T/78yUDPF6zRuhvxBGd1ILZnU/HZnVV/3+wK1HXzkkI+QJd0vC89I1QJVAVdMYB6 0mXox9sV991eO4ArB7pbn/g/EkgjZvEFM6FvxdZvnJZO+DfRc0WEwmiQvQyTL+dn HBsDfdZ27OltUsJsa/MVn++3X9UOouxZB5U5T6CHAdT1WHM7UlRkIqaIYCg= -----END CERTIFICATE-----Generated at Sun Mar 1 21:40:55 2026 by rpki-client