$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5e86b23d-fed3-4663-bfb7-4a378de50020.roa File: 5e86b23d-fed3-4663-bfb7-4a378de50020.roa (raw, json) Hash identifier: ah1Lzriio4g6qQF+ncE6a2ZUnTDZGMfgNRKVaDONI0g= Subject key identifier: 87:6E:37:4B:38:88:C6:03:3F:41:D1:AA:D1:C6:80:43:D5:49:14:90 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3C7B2D79808562CBB37B86AB2880B41B3A826464 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5e86b23d-fed3-4663-bfb7-4a378de50020.roa Signing time: Sun 01 Mar 2026 00:50:09 +0000 ROA not before: Sun 01 Mar 2026 00:50:09 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.182.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:7b:2d:79:80:85:62:cb:b3:7b:86:ab:28:80:b4:1b:3a:82:64:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Mar 1 00:50:09 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=ed5e94bad3746fb49dc83ac220e13eec4b9826f23e519be539238795dcf866e3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8c:b7:07:9e:1a:3e:50:80:ab:94:ce:e4:f7: ac:1e:3a:4a:f9:c6:bd:c6:25:4e:67:af:af:e7:22: a4:43:87:45:ac:e6:99:ec:ef:cf:e2:54:36:e7:e5: 02:70:ad:87:62:e7:03:cc:2f:9a:fa:08:95:16:d9: c6:6e:15:64:70:b7:ee:18:be:4e:6c:b6:54:bf:03: 63:8d:e1:27:8b:51:ff:13:39:ef:df:5a:c5:ca:13: 22:d7:05:ff:71:a8:11:65:7f:98:57:71:d8:54:75: c6:df:b5:0b:d6:11:35:2a:b0:d2:03:92:dd:53:96: d0:b6:02:3a:9e:10:9e:6d:55:91:14:29:53:49:e5: 94:ab:9d:3e:a4:6e:6f:a4:48:89:92:63:ac:60:4a: b8:99:da:40:c7:36:34:af:6a:10:5c:eb:45:18:58: 96:10:c0:4e:87:19:a8:2f:52:51:c1:2f:5e:23:42: 59:f1:29:3f:4d:4c:c7:f6:12:1f:9c:7c:07:ff:3c: 20:55:66:9c:21:e2:d8:af:32:72:d3:3d:49:e7:f9: a2:20:ef:8c:79:89:79:fb:f8:17:20:23:63:7f:66: 5f:6a:55:16:4e:a2:9d:07:41:4e:72:8a:f6:8d:0c: 8a:e9:1d:7e:56:f8:9d:84:58:9f:94:ed:bf:c5:e8: e1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:6E:37:4B:38:88:C6:03:3F:41:D1:AA:D1:C6:80:43:D5:49:14:90 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5e86b23d-fed3-4663-bfb7-4a378de50020.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.182.232.0/21 Signature Algorithm: sha256WithRSAEncryption 9e:1b:48:0c:55:4e:9b:b8:8f:bd:98:b6:11:69:ac:9b:be:53: d5:ce:11:fb:77:63:34:e8:04:df:13:2b:3f:91:ca:65:50:74: a0:71:a8:d7:b4:e3:ab:b1:12:e2:b7:c1:56:fd:fb:e8:12:c3: 5b:0d:ea:bb:47:35:35:fa:e2:c5:7e:41:50:e1:d5:34:73:00: 04:bb:4d:a7:71:10:38:38:e2:6b:1f:06:2a:d2:f0:ad:02:57: 53:d6:7c:8d:78:c9:ec:4f:37:ef:d1:d6:75:08:5a:cc:0c:c6: 32:0a:31:1e:6b:73:7a:fe:69:1d:63:7a:e3:3f:91:7b:c1:bc: a3:3f:1d:4b:55:e2:c5:c2:20:e0:a7:e6:99:d7:19:4e:02:b7: 2c:a0:69:e2:0f:35:83:7e:b7:1b:34:3e:b3:c6:b5:43:4d:2b: df:f3:20:4d:f1:65:ec:87:f4:ff:99:fa:d1:91:66:2c:78:f1: f1:0c:7a:b1:f7:e7:02:cd:a0:37:ab:55:ff:27:f8:65:04:96: ee:ba:2c:da:87:78:3e:be:c2:81:b9:2f:b0:2d:10:fd:4e:29: 94:cc:44:c2:d2:62:e3:a9:70:0d:3b:cf:ba:ea:4b:99:ac:e0: 36:5d:ac:a4:17:be:b9:79:15:9d:2a:bf:75:37:2b:d6:b8:58: 59:15:33:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPHsteYCFYsuze4arKIC0GzqCZGQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMzAxMDA1MDA5WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDVlOTRiYWQzNzQ2ZmI0OWRjODNhYzIyMGUxM2VlYzRi OTgyNmYyM2U1MTliZTUzOTIzODc5NWRjZjg2NmUzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrjLcHnho+UICrlM7k96weOkr5xr3GJU5nr6/nIqRDh0Ws 5pns78/iVDbn5QJwrYdi5wPML5r6CJUW2cZuFWRwt+4Yvk5stlS/A2ON4SeLUf8T Oe/fWsXKEyLXBf9xqBFlf5hXcdhUdcbftQvWETUqsNIDkt1TltC2AjqeEJ5tVZEU KVNJ5ZSrnT6kbm+kSImSY6xgSriZ2kDHNjSvahBc60UYWJYQwE6HGagvUlHBL14j QlnxKT9NTMf2Eh+cfAf/PCBVZpwh4tivMnLTPUnn+aIg74x5iXn7+BcgI2N/Zl9q VRZOop0HQU5yivaNDIrpHX5W+J2EWJ+U7b/F6OE1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUh243SziIxgM/QdGq0caAQ9VJFJAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVlODZiMjNkLWZlZDMtNDY2My1iZmI3LTRhMzc4ZGU1MDAyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM2tugwDQYJKoZIhvcNAQELBQADggEBAJ4bSAxVTpu4j72YthFprJu+U9XO Eft3YzToBN8TKz+RymVQdKBxqNe046uxEuK3wVb9++gSw1sN6rtHNTX64sV+QVDh 1TRzAAS7TadxEDg44msfBirS8K0CV1PWfI14yexPN+/R1nUIWswMxjIKMR5rc3r+ aR1jeuM/kXvBvKM/HUtV4sXCIOCn5pnXGU4CtyygaeIPNYN+txs0PrPGtUNNK9/z IE3xZeyH9P+Z+tGRZix48fEMerH35wLNoDerVf8n+GUElu66LNqHeD6+woG5L7At EP1OKZTMRMLSYuOpcA07z7rqS5ms4DZdrKQXvrl5FZ0qv3U3K9a4WFkVM7g= -----END CERTIFICATE-----Generated at Mon Mar 2 02:48:50 2026 by rpki-client