$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/46d30dad-d60c-48cf-b4f1-f5ce79e0e9ba.roa File: 46d30dad-d60c-48cf-b4f1-f5ce79e0e9ba.roa (raw, json) Hash identifier: sz2p+TNMewqWFzkSsC0DAox/iXN8CCeDMpnsgavJbfA= Subject key identifier: CE:02:45:C6:41:29:34:75:02:42:83:11:FC:8E:2E:0B:23:31:8D:11 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4B82C75AF437F13FB64D774DA01069A5554835D6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/46d30dad-d60c-48cf-b4f1-f5ce79e0e9ba.roa Signing time: Sat 28 Feb 2026 02:30:50 +0000 ROA not before: Sat 28 Feb 2026 02:30:50 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 13.245.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:82:c7:5a:f4:37:f1:3f:b6:4d:77:4d:a0:10:69:a5:55:48:35:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 28 02:30:50 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=4781db911e59f619cff00b47b1d68bda93ab007802d6c83841ffdf7089027216, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:fd:24:a0:32:36:57:fa:66:12:5f:3f:ab:c2: dc:f2:7b:f5:bf:4c:69:10:77:2e:96:1e:42:fe:ed: 92:f9:eb:8f:8e:ec:e2:6c:7d:cb:46:62:9c:54:95: 01:f2:72:06:4e:33:8f:21:97:0c:2d:12:6f:65:8c: 62:9a:9b:c2:ab:16:bb:c2:ad:a0:46:78:7a:22:81: be:38:00:48:88:ec:01:a9:a1:46:eb:6f:bf:1e:4f: b0:f1:d0:a3:02:26:6c:c5:a2:b3:3c:58:37:d3:da: d9:07:c5:a0:42:7d:83:fe:bb:2c:8f:32:91:a5:b4: ba:e1:9d:a7:2a:00:7c:49:8e:3d:4f:6e:fb:1e:14: 75:de:96:f4:a6:f7:39:9b:a9:7d:25:a6:27:35:f8: b1:99:94:5e:a4:53:a1:40:d6:b6:ed:7d:9c:f0:b9: e8:5c:03:8e:7c:b3:90:12:15:ae:76:c9:5e:17:0f: 7a:66:9c:76:39:59:74:92:77:ff:fb:c9:b1:84:9c: 9e:fb:0c:c2:3d:0b:74:cb:44:f7:5b:7c:13:db:28: dc:91:a1:ff:5d:5a:91:82:58:73:75:7e:30:55:fe: 78:01:4f:2e:88:e2:16:c8:db:e7:93:89:62:e0:3a: dd:27:4f:30:81:b9:6f:f2:16:35:b5:6a:4c:20:1e: a7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:02:45:C6:41:29:34:75:02:42:83:11:FC:8E:2E:0B:23:31:8D:11 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/46d30dad-d60c-48cf-b4f1-f5ce79e0e9ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.245.0.0/16 Signature Algorithm: sha256WithRSAEncryption 61:1d:13:96:b0:78:28:b6:bb:f0:97:b6:e9:13:99:ba:1c:83: 4a:6e:38:c7:76:3c:99:7a:9e:1b:7c:ad:3b:ad:1e:9d:79:ea: 44:c2:15:21:c9:5f:4f:78:88:f9:50:8e:f1:2e:94:2b:cd:73: 17:b5:2e:6a:10:c5:7e:5f:a4:9d:ed:6d:bc:1d:69:ff:e1:8d: 78:d6:14:7a:d1:2a:a2:33:69:a5:a0:dc:6e:43:b9:7a:87:24: 48:fb:c8:dc:b9:23:ac:fa:8d:20:f5:70:ed:66:34:10:0e:fd: 4d:3b:77:ea:a6:06:0f:f8:07:dd:8c:83:ef:01:ec:a3:51:c5: f0:cf:9b:6c:48:09:c9:d4:fb:dd:03:ac:70:bf:a0:91:4b:d8: 0c:bc:f7:31:88:06:21:36:a3:5a:b4:03:68:06:bf:98:b1:4a: 1e:42:7d:63:7e:63:9f:0d:5d:5f:ed:3f:67:13:d0:50:d2:ae: 5f:09:5d:40:77:51:36:d7:c5:58:89:d1:f3:da:be:fc:b2:14: b2:fb:8d:28:8c:b4:85:c8:a3:a2:33:66:02:df:f1:f2:de:f9: 6e:2e:9e:5a:0d:b9:d9:b0:5b:45:b2:99:1d:7f:e3:4d:8f:c7: 42:0f:80:00:03:3c:c6:ca:23:ef:c2:f5:13:ae:23:82:6b:42: e2:66:3c:d3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUS4LHWvQ38T+2TXdNoBBppVVINdYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI4MDIzMDUwWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzgxZGI5MTFlNTlmNjE5Y2ZmMDBiNDdiMWQ2OGJkYTkz YWIwMDc4MDJkNmM4Mzg0MWZmZGY3MDg5MDI3MjE2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDk/SSgMjZX+mYSXz+rwtzye/W/TGkQdy6WHkL+7ZL564+O 7OJsfctGYpxUlQHycgZOM48hlwwtEm9ljGKam8KrFrvCraBGeHoigb44AEiI7AGp oUbrb78eT7Dx0KMCJmzForM8WDfT2tkHxaBCfYP+uyyPMpGltLrhnacqAHxJjj1P bvseFHXelvSm9zmbqX0lpic1+LGZlF6kU6FA1rbtfZzwuehcA458s5ASFa52yV4X D3pmnHY5WXSSd//7ybGEnJ77DMI9C3TLRPdbfBPbKNyRof9dWpGCWHN1fjBV/ngB Ty6I4hbI2+eTiWLgOt0nTzCBuW/yFjW1akwgHqc9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzgJFxkEpNHUCQoMR/I4uCyMxjREwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ2ZDMwZGFkLWQ2MGMtNDhjZi1iNGYxLWY1Y2U3OWUwZTliYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAN9TANBgkqhkiG9w0BAQsFAAOCAQEAYR0TlrB4KLa78Je26ROZuhyDSm44 x3Y8mXqeG3ytO60enXnqRMIVIclfT3iI+VCO8S6UK81zF7UuahDFfl+kne1tvB1p /+GNeNYUetEqojNppaDcbkO5eockSPvI3LkjrPqNIPVw7WY0EA79TTt36qYGD/gH 3YyD7wHso1HF8M+bbEgJydT73QOscL+gkUvYDLz3MYgGITajWrQDaAa/mLFKHkJ9 Y35jnw1dX+0/ZxPQUNKuXwldQHdRNtfFWInR89q+/LIUsvuNKIy0hcijojNmAt/x 8t75bi6eWg252bBbRbKZHX/jTY/HQg+AAAM8xsoj78L1E64jgmtC4mY80w== -----END CERTIFICATE-----Generated at Sun Mar 1 23:35:06 2026 by rpki-client