$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4eaa625e-7733-49f2-88a9-501666934f69.roa File: 4eaa625e-7733-49f2-88a9-501666934f69.roa (raw, json) Hash identifier: KZJ869q1RjOZPLiCYWUekIUZ6Cu7P01B0CQ+ljTG4wY= Subject key identifier: 5F:BA:1F:24:91:00:AD:23:B2:93:6D:EE:40:24:67:C8:DE:24:1F:F8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 20026799843C49F2E481AE632CBDEFF146D2AA68 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4eaa625e-7733-49f2-88a9-501666934f69.roa Signing time: Mon 23 Feb 2026 02:01:03 +0000 ROA not before: Mon 23 Feb 2026 02:01:03 +0000 ROA not after: Sun 24 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 15.158.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:02:67:99:84:3c:49:f2:e4:81:ae:63:2c:bd:ef:f1:46:d2:aa:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 23 02:01:03 2026 GMT Not After : May 24 23:59:59 2026 GMT Subject: serialNumber=92ec40ffe78e647fa3c0baa91a21d98600ea7bccc34938f762550c87ae4c9f9d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:17:78:35:aa:60:2d:cf:eb:af:0b:f6:7b:28: a5:d0:2d:59:9a:d3:50:5b:9c:05:bb:f5:b8:0b:58: ad:7f:1b:6b:09:ec:7d:fe:2b:ae:e4:30:f2:21:5b: 6d:d5:24:7a:6f:bd:4f:02:09:5c:39:26:05:ce:bb: 10:7b:c7:3d:10:e2:7c:1e:aa:8c:3f:01:08:55:97: d5:c6:72:27:cf:de:9c:25:8d:e7:ee:99:16:33:6f: 78:ef:60:31:1a:f7:10:7c:db:12:d5:0f:19:af:b0: de:0b:01:3a:8e:cd:f5:4a:51:9f:8c:51:5f:68:52: 09:5c:f6:88:ae:83:b1:b3:15:7f:4c:ae:e4:ee:94: 23:18:9a:59:0b:03:96:2e:81:e1:24:77:bb:28:84: 94:53:ad:40:62:91:14:11:b6:d4:bc:87:f1:53:65: 85:4c:ca:24:de:0a:66:fb:a8:76:66:37:d1:e8:12: 63:f1:0f:2d:18:dc:65:5e:64:63:35:5e:e5:4d:20: d4:e0:57:a4:27:1f:71:7f:1c:35:79:01:b3:7b:75: 31:fb:15:33:ed:b5:ff:b2:03:71:5a:a7:a8:9a:e6: 4d:4d:69:35:fd:d0:e9:d2:69:23:99:5b:4a:bd:83: 9c:3e:7a:04:42:de:df:de:32:e4:19:7b:af:1b:11: f3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:BA:1F:24:91:00:AD:23:B2:93:6D:EE:40:24:67:C8:DE:24:1F:F8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4eaa625e-7733-49f2-88a9-501666934f69.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.158.66.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:c8:e9:8a:7c:57:31:71:78:90:b8:34:0c:3c:88:b8:53:6a: 6b:b4:24:d3:09:ad:5f:11:85:55:1e:6d:fc:3a:6b:cb:2e:cd: 5b:11:09:b9:f1:5f:8a:4e:84:29:9a:e3:07:9e:f1:4e:33:17: e9:d2:19:8e:b5:a8:b9:90:49:5c:87:0f:0f:95:71:13:56:ef: 20:ee:48:a1:8f:70:42:97:6f:fe:e3:98:a2:57:90:32:85:89: ad:9e:e9:ce:3a:34:43:bd:d6:d1:a3:6e:6e:60:99:3b:ce:d7: a3:c8:58:d8:e3:0b:39:3c:5b:5d:05:8f:22:11:58:69:84:8b: c9:96:b3:02:85:f4:4d:ab:7f:aa:d1:54:7a:04:fd:47:c9:ee: f0:f8:f4:53:82:2e:4d:ee:b0:59:3d:33:3a:4d:c0:9b:ce:da: db:7b:cd:5d:40:2a:36:10:5b:a1:60:6f:f2:c2:b3:85:fc:78: 91:86:be:89:c5:c3:18:a7:94:83:95:3e:16:df:ea:f2:9e:67: aa:3a:2a:ae:84:fc:38:c9:31:18:0d:d9:9b:3b:b1:98:f0:03: 64:27:8e:19:09:24:4f:4b:62:fb:94:ba:d3:12:e3:5d:f0:2f: 06:1b:b3:6c:59:84:55:64:6d:1b:9c:74:8c:a7:fe:89:a8:f9: cc:0b:e0:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIAJnmYQ8SfLkga5jLL3v8UbSqmgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjIzMDIwMTAzWhcNMjYwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MmVjNDBmZmU3OGU2NDdmYTNjMGJhYTkxYTIxZDk4NjAw ZWE3YmNjYzM0OTM4Zjc2MjU1MGM4N2FlNGM5ZjlkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD4F3g1qmAtz+uvC/Z7KKXQLVma01BbnAW79bgLWK1/G2sJ 7H3+K67kMPIhW23VJHpvvU8CCVw5JgXOuxB7xz0Q4nweqow/AQhVl9XGcifP3pwl jefumRYzb3jvYDEa9xB82xLVDxmvsN4LATqOzfVKUZ+MUV9oUglc9oiug7GzFX9M ruTulCMYmlkLA5YugeEkd7sohJRTrUBikRQRttS8h/FTZYVMyiTeCmb7qHZmN9Ho EmPxDy0Y3GVeZGM1XuVNINTgV6QnH3F/HDV5AbN7dTH7FTPttf+yA3Fap6ia5k1N aTX90OnSaSOZW0q9g5w+egRC3t/eMuQZe68bEfMNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUX7ofJJEArSOyk23uQCRnyN4kH/gwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRlYWE2MjVlLTc3MzMtNDlmMi04OGE5LTUwMTY2NjkzNGY2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPnkIwDQYJKoZIhvcNAQELBQADggEBAF/I6Yp8VzFxeJC4NAw8iLhTamu0 JNMJrV8RhVUebfw6a8suzVsRCbnxX4pOhCma4wee8U4zF+nSGY61qLmQSVyHDw+V cRNW7yDuSKGPcEKXb/7jmKJXkDKFia2e6c46NEO91tGjbm5gmTvO16PIWNjjCzk8 W10FjyIRWGmEi8mWswKF9E2rf6rRVHoE/UfJ7vD49FOCLk3usFk9MzpNwJvO2tt7 zV1AKjYQW6Fgb/LCs4X8eJGGvonFwxinlIOVPhbf6vKeZ6o6Kq6E/DjJMRgN2Zs7 sZjwA2QnjhkJJE9LYvuUutMS413wLwYbs2xZhFVkbRucdIyn/omo+cwL4LI= -----END CERTIFICATE-----Generated at Sun Mar 1 21:45:17 2026 by rpki-client