$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f8105ec-e63e-4795-81e2-b3b017a838d3.roa File: 5f8105ec-e63e-4795-81e2-b3b017a838d3.roa (raw, json) Hash identifier: jgvDrFnH5QUfyrOcpnhIq4PswoqyPLAh2GpEIL9sGh4= Subject key identifier: 70:E5:B1:D6:D2:39:33:53:7B:89:BD:68:E1:92:72:B8:2B:02:7F:23 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2C4E278055CAEBB97CA200A71754923589603712 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f8105ec-e63e-4795-81e2-b3b017a838d3.roa Signing time: Wed 18 Feb 2026 00:40:59 +0000 ROA not before: Wed 18 Feb 2026 00:40:59 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 52.36.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:4e:27:80:55:ca:eb:b9:7c:a2:00:a7:17:54:92:35:89:60:37:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 18 00:40:59 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=7f20a9bdd0c3ab815bb04c995c1bc6ba46b02ee7e2893cd1d2f427a28d1fce52, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f4:7d:56:b9:49:e5:d5:e6:b9:8d:77:ad:1d: e1:6b:5b:9d:79:fd:56:e4:d9:cb:3a:5c:9e:ec:20: e0:fe:49:48:6a:70:d9:af:5e:d9:ae:2a:14:91:15: a2:2c:9c:bb:06:ca:89:d2:88:0d:dd:bc:49:38:40: 97:60:c9:10:23:26:d6:d9:72:ec:20:40:2a:23:ca: 4b:b7:c3:f4:4b:25:79:80:0c:65:17:8d:73:b1:e9: 76:bc:71:94:2b:63:e6:14:86:1d:cb:09:f7:79:17: e0:d4:d0:de:7b:a6:48:1c:5d:fb:a2:f7:dc:b7:f9: 09:b3:fd:34:2c:95:33:72:3c:bf:b3:52:aa:17:ac: 50:96:34:d6:23:36:0f:23:eb:6e:71:3c:2c:73:a2: df:b7:b7:46:46:40:26:0c:85:97:ae:5b:0e:12:64: 8d:1f:9c:45:ab:75:37:0b:32:7a:9f:97:40:75:24: b3:07:3d:88:19:79:c1:7f:af:28:84:8e:7d:31:7c: dd:d4:f3:8f:58:9a:08:7f:af:4d:f8:ba:a2:41:8f: d2:8f:c3:58:1f:47:61:07:e4:24:ec:0b:3a:08:67: 17:66:f1:0b:b1:6c:24:f0:19:13:63:6b:0c:b2:35: 52:51:48:b2:0b:95:d3:18:c7:6c:8f:f3:59:54:ef: 19:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E5:B1:D6:D2:39:33:53:7B:89:BD:68:E1:92:72:B8:2B:02:7F:23 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f8105ec-e63e-4795-81e2-b3b017a838d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.36.0.0/14 Signature Algorithm: sha256WithRSAEncryption 5d:36:cf:ce:c5:ed:56:24:f7:1b:fb:2d:9d:2c:d2:77:e2:dd: f5:17:f7:b6:6a:fd:3b:b3:9d:fd:90:79:5e:39:39:7b:e5:0f: 4e:8f:e4:e0:49:06:29:90:d2:f3:81:cc:50:3d:84:5e:5e:6b: 4b:16:f8:ef:cd:c1:65:b4:84:78:d7:a2:25:de:60:94:22:61: f2:04:79:17:83:1a:33:7c:26:41:50:76:5d:3c:0c:d1:9d:12: 45:30:cd:30:49:e1:a8:d5:92:b4:9c:23:ea:0e:d4:85:f1:74: 66:26:e3:2d:f2:30:7e:e6:72:82:67:f3:2d:34:c1:15:1a:00: 5d:86:0d:5c:02:e5:0d:28:10:d5:42:3b:49:10:2e:7b:c7:61: 85:91:a2:cd:5a:4d:e6:9d:eb:78:5a:59:c0:45:df:a3:33:70: 3d:31:57:4e:ef:80:7e:ec:ba:cc:c2:8f:3c:52:5d:ae:c9:8c: 43:ce:43:5c:9e:65:fd:c9:24:79:82:79:8e:1f:e6:c4:7a:e8: f2:20:82:60:1c:23:3b:b4:67:7f:c3:b3:2d:90:df:7d:c8:7b: 17:e2:45:3d:d0:75:6b:80:cc:29:b0:d2:c0:50:e3:a0:d6:b9: e8:32:88:0e:45:a3:93:99:1b:88:4b:06:22:35:b1:37:18:14: a3:48:2c:2a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULE4ngFXK67l8ogCnF1SSNYlgNxIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjE4MDA0MDU5WhcNMjYwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjIwYTliZGQwYzNhYjgxNWJiMDRjOTk1YzFiYzZiYTQ2 YjAyZWU3ZTI4OTNjZDFkMmY0MjdhMjhkMWZjZTUyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA9H1WuUnl1ea5jXetHeFrW515/Vbk2cs6XJ7sIOD+SUhq cNmvXtmuKhSRFaIsnLsGyonSiA3dvEk4QJdgyRAjJtbZcuwgQCojyku3w/RLJXmA DGUXjXOx6Xa8cZQrY+YUhh3LCfd5F+DU0N57pkgcXfui99y3+Qmz/TQslTNyPL+z UqoXrFCWNNYjNg8j625xPCxzot+3t0ZGQCYMhZeuWw4SZI0fnEWrdTcLMnqfl0B1 JLMHPYgZecF/ryiEjn0xfN3U849Ymgh/r034uqJBj9KPw1gfR2EH5CTsCzoIZxdm 8QuxbCTwGRNjawyyNVJRSLILldMYx2yP81lU7xm5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcOWx1tI5M1N7ib1o4ZJyuCsCfyMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVmODEwNWVjLWU2M2UtNDc5NS04MWUyLWIzYjAxN2E4MzhkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwI0JDANBgkqhkiG9w0BAQsFAAOCAQEAXTbPzsXtViT3G/stnSzSd+Ld9Rf3 tmr9O7Od/ZB5Xjk5e+UPTo/k4EkGKZDS84HMUD2EXl5rSxb4783BZbSEeNeiJd5g lCJh8gR5F4MaM3wmQVB2XTwM0Z0SRTDNMEnhqNWStJwj6g7UhfF0ZibjLfIwfuZy gmfzLTTBFRoAXYYNXALlDSgQ1UI7SRAue8dhhZGizVpN5p3reFpZwEXfozNwPTFX Tu+Afuy6zMKPPFJdrsmMQ85DXJ5l/ckkeYJ5jh/mxHro8iCCYBwjO7Rnf8OzLZDf fch7F+JFPdB1a4DMKbDSwFDjoNa56DKIDkWjk5kbiEsGIjWxNxgUo0gsKg== -----END CERTIFICATE-----Generated at Mon Mar 2 01:01:11 2026 by rpki-client