$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9a78423a-9c56-47a1-9157-947db4eabda9.roa File: 9a78423a-9c56-47a1-9157-947db4eabda9.roa (raw, json) Hash identifier: vuJkmMQKeW9N0fAsKKsFONzQ+iPDOhWF8efq/iEGhuo= Subject key identifier: F6:91:AC:B1:CE:B1:5E:23:19:86:E3:1A:D2:85:51:33:93:31:D1:B4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3C2BFAA924E332DBB0C8BF848109B5DD41457F64 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9a78423a-9c56-47a1-9157-947db4eabda9.roa Signing time: Mon 23 Feb 2026 01:11:07 +0000 ROA not before: Mon 23 Feb 2026 01:11:07 +0000 ROA not after: Sun 24 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 54.157.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:2b:fa:a9:24:e3:32:db:b0:c8:bf:84:81:09:b5:dd:41:45:7f:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 23 01:11:07 2026 GMT Not After : May 24 23:59:59 2026 GMT Subject: serialNumber=932608bbde2deacc06e0c9604b632cacc0f1be28b637f790848c65db48743881, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6a:2a:00:66:a9:af:b5:d4:26:b0:08:22:04: 19:4d:26:d4:7d:c2:00:a5:e4:3d:ab:dd:c4:4f:22: 88:8d:4f:e8:a2:2f:33:a3:b6:37:15:0a:bc:2e:12: 73:32:0b:d7:27:f2:65:6b:99:f7:e2:ab:c9:98:98: 18:00:73:61:a9:67:fe:00:ec:67:24:6b:1b:6e:b2: 84:89:3f:69:d0:96:ee:36:7e:ec:64:4d:c6:db:ed: 5a:ea:16:80:32:24:1f:5d:70:db:93:3c:2c:2c:46: a8:7b:5d:2a:3e:6f:b3:71:ba:aa:04:9f:73:b1:94: 3f:8d:58:8e:e8:13:13:d6:62:f4:e9:0e:0d:73:0a: 95:f8:9f:3e:6d:2a:6d:bc:43:9d:96:aa:dc:a4:a5: e8:6b:9f:c2:9c:4c:10:98:bf:f6:34:d4:48:a2:64: 60:0e:cb:60:ae:7c:da:c2:45:92:7b:70:d3:2a:55: 25:99:cf:9a:81:78:f9:b9:15:d0:91:cf:fb:36:2a: 7a:0c:3b:2f:95:ba:9e:c2:9e:23:ce:8d:c4:ca:44: 99:95:0f:3a:52:34:e7:bf:55:0e:5f:2e:81:0b:65: 7c:cf:56:b8:09:33:19:c0:7d:fe:36:9a:ac:10:c6: ac:22:16:50:e5:57:54:fd:a2:8c:2b:c6:3b:09:2a: c1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:91:AC:B1:CE:B1:5E:23:19:86:E3:1A:D2:85:51:33:93:31:D1:B4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9a78423a-9c56-47a1-9157-947db4eabda9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.157.72.0/21 Signature Algorithm: sha256WithRSAEncryption 7e:e3:26:59:4d:1e:07:2f:f8:5f:47:f6:3c:7c:37:0c:6b:63: a6:4a:b3:87:d4:26:3d:ae:6e:6b:ca:02:5f:ce:b7:ae:2a:2e: 4d:14:af:eb:57:76:02:77:b0:9f:40:0c:57:9f:b1:57:47:3f: e1:03:f7:27:a2:0d:c7:14:0d:af:e0:02:b3:7c:67:46:b1:fa: ae:57:be:4a:b1:6f:3e:ae:9e:82:53:a5:d5:56:63:62:25:b2: b6:2e:7f:bc:a0:56:3b:63:54:7b:bc:02:52:86:cd:17:fb:53: c8:8b:f4:a0:4b:ba:78:81:45:70:0e:b6:bb:e5:2d:ec:02:c4: e4:f9:e7:02:d0:35:4e:9d:4a:18:e8:76:2c:7c:bd:8e:85:81: 77:48:dd:40:0c:c0:07:af:94:7b:c5:3d:8a:3e:4b:b3:5a:49: f4:25:30:1f:b4:35:57:81:f1:f0:3e:ad:ad:25:f0:fa:9a:0b: f8:59:34:34:67:d0:1f:66:fc:07:03:c7:38:46:3e:38:64:02: 29:80:7f:ca:2e:e3:63:1f:d0:4a:61:8d:a6:d8:42:5f:b4:fe: e2:d6:91:c4:11:61:e4:64:83:e6:d2:9c:1a:11:8f:1b:6f:f3: 39:04:19:db:d7:c4:a7:82:9d:88:bd:38:a6:1f:04:9c:ec:ec: de:7d:7e:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPCv6qSTjMtuwyL+EgQm13UFFf2QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjIzMDExMTA3WhcNMjYwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzI2MDhiYmRlMmRlYWNjMDZlMGM5NjA0YjYzMmNhY2Mw ZjFiZTI4YjYzN2Y3OTA4NDhjNjVkYjQ4NzQzODgxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9aioAZqmvtdQmsAgiBBlNJtR9wgCl5D2r3cRPIoiNT+ii LzOjtjcVCrwuEnMyC9cn8mVrmffiq8mYmBgAc2GpZ/4A7GckaxtusoSJP2nQlu42 fuxkTcbb7VrqFoAyJB9dcNuTPCwsRqh7XSo+b7NxuqoEn3OxlD+NWI7oExPWYvTp Dg1zCpX4nz5tKm28Q52Wqtykpehrn8KcTBCYv/Y01EiiZGAOy2CufNrCRZJ7cNMq VSWZz5qBePm5FdCRz/s2KnoMOy+Vup7CniPOjcTKRJmVDzpSNOe/VQ5fLoELZXzP VrgJMxnAff42mqwQxqwiFlDlV1T9oowrxjsJKsFfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9pGssc6xXiMZhuMa0oVRM5Mx0bQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzlhNzg0MjNhLTljNTYtNDdhMS05MTU3LTk0N2RiNGVhYmRhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM2nUgwDQYJKoZIhvcNAQELBQADggEBAH7jJllNHgcv+F9H9jx8NwxrY6ZK s4fUJj2ubmvKAl/Ot64qLk0Ur+tXdgJ3sJ9ADFefsVdHP+ED9yeiDccUDa/gArN8 Z0ax+q5Xvkqxbz6unoJTpdVWY2IlsrYuf7ygVjtjVHu8AlKGzRf7U8iL9KBLuniB RXAOtrvlLewCxOT55wLQNU6dShjodix8vY6FgXdI3UAMwAevlHvFPYo+S7NaSfQl MB+0NVeB8fA+ra0l8PqaC/hZNDRn0B9m/AcDxzhGPjhkAimAf8ou42Mf0EphjabY Ql+0/uLWkcQRYeRkg+bSnBoRjxtv8zkEGdvXxKeCnYi9OKYfBJzs7N59fio= -----END CERTIFICATE-----Generated at Sun Mar 1 21:45:23 2026 by rpki-client