$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5509b865-3941-4094-bf73-1b07caf81ab7.roa File: 5509b865-3941-4094-bf73-1b07caf81ab7.roa (raw, json) Hash identifier: MaWUKfxy+LWko5FAT3XyfTHdnfgDJfRwBjwWMHv/4Ns= Subject key identifier: 9A:9A:83:A7:50:5E:52:10:C6:0D:FF:1A:76:21:25:3E:52:AC:67:C9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3E124DD9A5B4264C04AAB7A7D56F562DD37934FA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5509b865-3941-4094-bf73-1b07caf81ab7.roa Signing time: Sat 28 Feb 2026 03:11:35 +0000 ROA not before: Sat 28 Feb 2026 03:11:35 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.66.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:12:4d:d9:a5:b4:26:4c:04:aa:b7:a7:d5:6f:56:2d:d3:79:34:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 28 03:11:35 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=5fd7d769c94749c8a8bd3b9df7b28e0557ff74753e3c741711dbc843635825ca, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:dd:55:6a:1c:58:76:66:fc:a1:1a:3b:0a:ff: 4b:7c:c3:b7:f6:a8:a9:c5:d4:66:48:6d:18:dd:fc: 29:96:82:58:34:91:61:1e:b6:98:cd:b7:d4:6a:4d: 1e:4a:b9:d5:99:fe:ef:f3:99:c7:bc:09:bd:91:87: 9e:aa:20:ea:ab:00:e1:ed:f8:04:30:6b:83:71:ba: e7:cc:7b:be:8b:a6:4f:f0:a3:2e:52:5d:4d:f4:82: 6e:2b:79:e3:e0:7f:f9:3e:1e:34:c7:f2:1e:05:6c: 1e:8f:71:3a:6d:c3:d3:c8:b5:b8:82:6c:6e:6f:2d: fe:1a:8e:b0:2b:54:a8:67:e2:41:db:f2:ce:0b:01: 74:d0:27:72:15:63:53:19:0e:ac:a9:4c:39:da:76: 32:e0:b4:78:aa:03:e8:ac:12:45:7a:44:86:40:2f: 83:1d:39:3b:a6:1e:e5:d4:bc:45:ec:08:31:1a:82: 8c:d0:63:a4:f5:26:2b:ac:01:0f:1d:e1:91:81:3d: 6b:03:e0:c0:c2:a8:b0:24:de:aa:31:95:a1:87:f8: 27:49:e6:d5:2e:f8:ca:9d:0a:95:6d:0c:97:7e:d5: 21:d7:5b:b2:ff:e5:09:10:2b:84:3d:20:51:ff:1b: 36:d3:db:31:69:75:fa:d9:58:46:57:5b:8e:93:a4: bc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:9A:83:A7:50:5E:52:10:C6:0D:FF:1A:76:21:25:3E:52:AC:67:C9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5509b865-3941-4094-bf73-1b07caf81ab7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.66.0.0/17 Signature Algorithm: sha256WithRSAEncryption a6:dc:db:a6:fa:23:7b:96:11:f5:e8:b9:d9:26:ab:a3:10:a5: 1e:8a:ac:47:3e:d2:58:e8:0c:09:a6:74:18:e2:2c:d1:b2:64: ea:ad:91:76:c1:e5:a5:9c:82:6c:7f:36:04:98:f1:11:00:92: 4f:85:fe:90:78:96:bf:c0:d4:ca:06:37:bd:b1:e9:fc:51:8e: 81:4d:90:e0:9a:c2:de:99:b5:0b:86:82:9f:9d:01:81:14:6f: 29:6b:0c:71:b9:04:30:71:16:06:a5:5d:cc:18:35:ad:e6:39: 27:e7:3f:c2:65:94:be:11:26:9f:ed:b1:f1:88:7b:6a:e6:8b: ca:08:55:0b:b6:ef:61:8a:59:8a:d7:91:18:12:2d:41:0f:a2: e0:f3:45:98:b2:b5:d5:04:ef:99:30:ed:d3:e4:92:87:ab:e3: 74:01:5d:a8:87:a5:94:58:01:20:d3:30:74:49:45:d3:a9:3d: 6b:d0:3c:b0:22:c6:22:e4:c1:ed:96:d5:0b:7d:21:4a:1c:83: 63:47:5c:d3:90:39:34:90:80:d7:19:0a:18:d9:10:a9:d2:83: ae:37:51:2a:c1:60:52:93:da:01:fe:ed:d4:1a:e2:20:6a:ba: e1:ef:93:01:75:05:d4:c7:d8:5b:ba:40:f6:f2:7a:06:64:26: bf:df:a2:26 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPhJN2aW0JkwEqren1W9WLdN5NPowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI4MDMxMTM1WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZmQ3ZDc2OWM5NDc0OWM4YThiZDNiOWRmN2IyOGUwNTU3 ZmY3NDc1M2UzYzc0MTcxMWRiYzg0MzYzNTgyNWNhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx3VVqHFh2ZvyhGjsK/0t8w7f2qKnF1GZIbRjd/CmWglg0 kWEetpjNt9RqTR5KudWZ/u/zmce8Cb2Rh56qIOqrAOHt+AQwa4NxuufMe76Lpk/w oy5SXU30gm4reePgf/k+HjTH8h4FbB6PcTptw9PItbiCbG5vLf4ajrArVKhn4kHb 8s4LAXTQJ3IVY1MZDqypTDnadjLgtHiqA+isEkV6RIZAL4MdOTumHuXUvEXsCDEa gozQY6T1JiusAQ8d4ZGBPWsD4MDCqLAk3qoxlaGH+CdJ5tUu+MqdCpVtDJd+1SHX W7L/5QkQK4Q9IFH/GzbT2zFpdfrZWEZXW46TpLzHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmpqDp1BeUhDGDf8adiElPlKsZ8kwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU1MDliODY1LTM5NDEtNDA5NC1iZjczLTFiMDdjYWY4MWFiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2QgAwDQYJKoZIhvcNAQELBQADggEBAKbc26b6I3uWEfXoudkmq6MQpR6K rEc+0ljoDAmmdBjiLNGyZOqtkXbB5aWcgmx/NgSY8REAkk+F/pB4lr/A1MoGN72x 6fxRjoFNkOCawt6ZtQuGgp+dAYEUbylrDHG5BDBxFgalXcwYNa3mOSfnP8JllL4R Jp/tsfGIe2rmi8oIVQu272GKWYrXkRgSLUEPouDzRZiytdUE75kw7dPkkoer43QB XaiHpZRYASDTMHRJRdOpPWvQPLAixiLkwe2W1Qt9IUocg2NHXNOQOTSQgNcZChjZ EKnSg643USrBYFKT2gH+7dQa4iBquuHvkwF1BdTH2Fu6QPbyegZkJr/foiY= -----END CERTIFICATE-----Generated at Mon Mar 2 01:32:20 2026 by rpki-client