$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/76a36ab9-ada7-4025-9224-bcf99f3e1a8c.roa File: 76a36ab9-ada7-4025-9224-bcf99f3e1a8c.roa (raw, json) Hash identifier: reD7ejvdf6c9EJe7AzDGlT9hwiVCbN0CBn0jmCyjNvI= Subject key identifier: 60:23:E4:EA:63:A8:67:49:CF:8D:C9:EF:E8:80:71:C7:FE:02:CD:43 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4D78FE41DD7CBEBB376D0F29126FEC14FE42727E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/76a36ab9-ada7-4025-9224-bcf99f3e1a8c.roa Signing time: Sat 28 Feb 2026 02:50:11 +0000 ROA not before: Sat 28 Feb 2026 02:50:11 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 152.137.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:78:fe:41:dd:7c:be:bb:37:6d:0f:29:12:6f:ec:14:fe:42:72:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 28 02:50:11 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=1942c31e145c990fe7154d52ddfe247c7ad9f5495799cab447e89a9c17f7a535, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3f:7d:75:2f:b0:54:85:b3:d4:99:54:7c:d7: 96:ec:fd:3d:a1:f2:ad:f4:b2:c8:66:27:c0:f3:eb: 68:a3:f4:74:4b:d2:c9:fe:32:0e:ad:92:aa:ff:45: 7a:3f:14:26:30:8d:27:70:3a:fc:b8:5d:9a:3a:28: f1:c3:b2:45:88:06:c7:13:89:22:b2:9b:b9:aa:eb: ca:44:25:31:91:6e:df:56:28:84:69:d2:4f:6c:d0: 2e:fe:4c:0e:6d:92:ef:25:63:a0:9d:b1:4d:86:4f: e4:2b:12:01:0f:cc:04:bc:d0:08:f0:e7:34:d3:33: ea:64:5b:48:33:1e:b2:30:28:1e:eb:55:1a:d2:94: b3:d7:0b:aa:88:4c:52:0b:47:16:18:07:e1:7c:a8: 84:d2:0a:b5:d7:0a:ad:9f:95:1f:13:db:f1:87:6d: 19:54:e5:ab:2b:35:12:bc:57:eb:c1:ee:04:19:88: 8e:e5:55:a0:dd:cf:04:27:a2:08:60:77:2c:6c:82: 12:1d:f7:07:99:fd:0b:39:85:68:f9:69:76:a4:45: bd:a9:c9:1a:ad:54:f0:85:22:1d:9f:7e:a1:78:ea: 47:97:6e:4e:64:b5:5d:36:a2:47:53:f2:17:4f:70: 46:9a:c3:f3:c1:a3:9e:90:9f:a2:74:07:af:34:67: b8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:23:E4:EA:63:A8:67:49:CF:8D:C9:EF:E8:80:71:C7:FE:02:CD:43 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/76a36ab9-ada7-4025-9224-bcf99f3e1a8c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.137.0.0/16 Signature Algorithm: sha256WithRSAEncryption a0:25:07:21:95:6f:32:fc:e8:24:21:38:50:3c:30:3f:89:cc: 72:0e:8b:d0:61:1b:ad:b5:1a:49:6b:dd:40:97:70:79:26:ff: 90:b2:9c:67:2b:6a:2c:99:6e:95:62:c4:54:d4:c2:82:e1:85: ca:97:f0:d0:62:29:75:61:d0:b1:22:22:4a:e5:73:0c:ea:a7: 1f:c0:b2:8f:73:98:39:99:4f:95:8d:51:45:24:ae:70:af:d1: 41:03:60:02:15:1c:9c:13:5f:09:b6:06:e8:25:ab:04:4e:7e: cd:09:6f:02:5b:84:dd:96:a7:54:86:90:6e:7c:4d:49:4a:0b: 3f:11:a4:1d:2a:68:c3:f2:46:88:7e:99:cb:52:33:24:f6:fe: 32:63:08:86:34:8c:6c:8e:78:89:72:55:a4:7b:81:ed:f1:c7: 13:b8:4e:cb:6d:0a:30:47:f1:0d:0b:89:76:68:18:24:25:c4: 81:62:8a:03:f9:26:e9:ca:42:c4:c6:ee:8c:cb:f6:eb:20:2b: 37:2a:06:d8:fb:74:b9:74:47:54:45:b2:db:1a:66:16:ab:21: 36:30:10:08:dc:14:95:f6:f3:4d:25:a7:39:48:60:3a:e1:72: 73:3e:86:83:7d:5b:86:e2:3b:c0:62:1b:4c:f4:9d:e1:f5:ac: ef:35:2c:a7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTXj+Qd18vrs3bQ8pEm/sFP5Ccn4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI4MDI1MDExWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOTQyYzMxZTE0NWM5OTBmZTcxNTRkNTJkZGZlMjQ3Yzdh ZDlmNTQ5NTc5OWNhYjQ0N2U4OWE5YzE3ZjdhNTM1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHP311L7BUhbPUmVR815bs/T2h8q30sshmJ8Dz62ij9HRL 0sn+Mg6tkqr/RXo/FCYwjSdwOvy4XZo6KPHDskWIBscTiSKym7mq68pEJTGRbt9W KIRp0k9s0C7+TA5tku8lY6CdsU2GT+QrEgEPzAS80Ajw5zTTM+pkW0gzHrIwKB7r VRrSlLPXC6qITFILRxYYB+F8qITSCrXXCq2flR8T2/GHbRlU5asrNRK8V+vB7gQZ iI7lVaDdzwQnoghgdyxsghId9weZ/Qs5hWj5aXakRb2pyRqtVPCFIh2ffqF46keX bk5ktV02okdT8hdPcEaaw/PBo56Qn6J0B680Z7i5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYCPk6mOoZ0nPjcnv6IBxx/4CzUMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc2YTM2YWI5LWFkYTctNDAyNS05MjI0LWJjZjk5ZjNlMWE4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCYiTANBgkqhkiG9w0BAQsFAAOCAQEAoCUHIZVvMvzoJCE4UDwwP4nMcg6L 0GEbrbUaSWvdQJdweSb/kLKcZytqLJlulWLEVNTCguGFypfw0GIpdWHQsSIiSuVz DOqnH8Cyj3OYOZlPlY1RRSSucK/RQQNgAhUcnBNfCbYG6CWrBE5+zQlvAluE3Zan VIaQbnxNSUoLPxGkHSpow/JGiH6Zy1IzJPb+MmMIhjSMbI54iXJVpHuB7fHHE7hO y20KMEfxDQuJdmgYJCXEgWKKA/km6cpCxMbujMv26yArNyoG2Pt0uXRHVEWy2xpm FqshNjAQCNwUlfbzTSWnOUhgOuFycz6Gg31bhuI7wGIbTPSd4fWs7zUspw== -----END CERTIFICATE-----Generated at Sun Mar 1 23:35:07 2026 by rpki-client