$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/69b7eb6d-9d7c-4a85-a7fc-9332085e1aab.roa File: 69b7eb6d-9d7c-4a85-a7fc-9332085e1aab.roa (raw, json) Hash identifier: lVv/G3JtY9KmgNN0KRB2TRmPIZfdjTLbTANF5VGupns= Subject key identifier: 76:9A:70:74:DF:04:D4:1F:08:5B:B4:25:E9:55:14:15:2C:F6:0C:FF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0B4E605F741F32BD798A8F5682E57BCAD187033E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/69b7eb6d-9d7c-4a85-a7fc-9332085e1aab.roa Signing time: Sat 28 Feb 2026 03:30:15 +0000 ROA not before: Sat 28 Feb 2026 03:30:15 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 52.119.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:4e:60:5f:74:1f:32:bd:79:8a:8f:56:82:e5:7b:ca:d1:87:03:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 28 03:30:15 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=b7d86c54642b297fb4b2ee5c541f63a7a2cb932423a8b020f9febc973448ba82, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:c8:ec:89:c0:2a:f8:cc:62:47:90:27:bc:45: 1e:ab:b7:49:88:cd:3a:80:1d:c6:36:13:c8:4e:ea: 48:6b:d2:9b:c9:e5:a1:2a:7f:1e:99:c8:f0:2c:d5: a4:12:bd:4d:b7:84:19:08:60:ab:af:d1:67:bd:29: 20:74:bd:cc:05:be:e2:c4:c4:27:3e:1d:f2:89:7b: d5:8e:81:08:69:a2:fb:f2:fe:98:21:0d:d6:5d:a8: 9b:ea:11:db:4a:6f:b8:4b:86:d7:c5:2e:d4:e9:1b: 24:2d:d0:98:52:1d:f5:12:14:d8:45:86:64:bb:2d: 54:b2:b7:5c:94:20:74:87:92:bd:92:2a:c8:75:97: d8:f9:eb:42:a8:49:8f:af:7a:2f:df:1c:4b:b2:15: fb:c5:7e:64:9c:06:d2:86:7d:93:34:03:65:ea:50: 81:6e:e0:fd:7c:92:ff:ba:7f:2a:33:9e:cd:b8:82: 17:d8:3e:35:19:fa:85:46:23:4f:7c:64:a2:d2:43: 90:0e:3b:5b:d5:8a:4d:6d:72:fc:86:14:c7:d1:2b: 89:51:94:8e:1f:41:7b:bf:a4:05:a7:d4:52:2e:17: 6a:26:f3:bd:5a:16:95:69:61:a1:d2:e4:56:fc:a8: 72:46:91:0b:9d:cf:33:9c:7b:aa:1f:cc:e1:48:11: 96:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:9A:70:74:DF:04:D4:1F:08:5B:B4:25:E9:55:14:15:2C:F6:0C:FF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/69b7eb6d-9d7c-4a85-a7fc-9332085e1aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.119.192.0/22 Signature Algorithm: sha256WithRSAEncryption b2:2d:e2:4e:c8:d7:ff:55:77:79:1d:4e:8e:26:e2:6e:b1:fd: 53:84:cf:98:5f:13:e5:a3:41:a9:ae:32:c6:b7:6b:ae:ed:a3: fa:bb:a3:d7:08:68:33:46:43:46:72:27:a9:3b:0b:d0:f3:90: 36:32:c2:71:2e:e2:71:79:e6:8c:ed:f3:5f:c2:53:38:66:37: c8:2d:55:80:62:a5:62:3e:4e:e0:83:f6:4f:16:12:dd:9e:61: fa:30:99:5a:8d:23:a9:09:47:19:18:0e:a9:19:c0:2d:d7:78: 6b:fa:29:71:29:62:26:b8:de:40:27:79:a7:b6:1f:7a:27:82: f4:31:75:a9:b3:a8:1f:5d:ed:3f:14:ca:be:b6:da:56:84:ec: 37:0d:d0:42:b0:d4:93:7a:46:0c:39:cf:a4:88:06:80:35:8e: d8:db:b4:a3:69:9e:60:7d:be:e3:80:4b:f0:6e:8a:ef:0a:43: 10:5f:dd:8b:fd:cd:b4:ac:2a:e2:ce:7b:0a:d5:5f:bf:c1:1a: a1:48:dc:5e:63:65:8b:8f:a8:f6:d2:14:3a:02:cb:65:8e:b3: 11:d4:41:37:c1:cd:85:f8:11:89:43:87:6c:ee:59:4e:af:f0: 55:1a:54:c9:83:3c:f7:3e:12:22:46:6f:70:52:a1:b0:0b:8c: 24:9f:f8:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC05gX3QfMr15io9WguV7ytGHAz4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI4MDMzMDE1WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiN2Q4NmM1NDY0MmIyOTdmYjRiMmVlNWM1NDFmNjNhN2Ey Y2I5MzI0MjNhOGIwMjBmOWZlYmM5NzM0NDhiYTgyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUyOyJwCr4zGJHkCe8RR6rt0mIzTqAHcY2E8hO6khr0pvJ 5aEqfx6ZyPAs1aQSvU23hBkIYKuv0We9KSB0vcwFvuLExCc+HfKJe9WOgQhpovvy /pghDdZdqJvqEdtKb7hLhtfFLtTpGyQt0JhSHfUSFNhFhmS7LVSyt1yUIHSHkr2S Ksh1l9j560KoSY+vei/fHEuyFfvFfmScBtKGfZM0A2XqUIFu4P18kv+6fyozns24 ghfYPjUZ+oVGI098ZKLSQ5AOO1vVik1tcvyGFMfRK4lRlI4fQXu/pAWn1FIuF2om 871aFpVpYaHS5Fb8qHJGkQudzzOce6ofzOFIEZaLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdppwdN8E1B8IW7Ql6VUUFSz2DP8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY5YjdlYjZkLTlkN2MtNGE4NS1hN2ZjLTkzMzIwODVlMWFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0d8AwDQYJKoZIhvcNAQELBQADggEBALIt4k7I1/9Vd3kdTo4m4m6x/VOE z5hfE+WjQamuMsa3a67to/q7o9cIaDNGQ0ZyJ6k7C9DzkDYywnEu4nF55ozt81/C UzhmN8gtVYBipWI+TuCD9k8WEt2eYfowmVqNI6kJRxkYDqkZwC3XeGv6KXEpYia4 3kAneae2H3ongvQxdamzqB9d7T8Uyr622laE7DcN0EKw1JN6Rgw5z6SIBoA1jtjb tKNpnmB9vuOAS/Buiu8KQxBf3Yv9zbSsKuLOewrVX7/BGqFI3F5jZYuPqPbSFDoC y2WOsxHUQTfBzYX4EYlDh2zuWU6v8FUaVMmDPPc+EiJGb3BSobALjCSf+Pw= -----END CERTIFICATE-----Generated at Sun Mar 1 21:43:00 2026 by rpki-client