$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0a429e3-e7ff-4211-b53b-efbdce5fb3a8.roa File: a0a429e3-e7ff-4211-b53b-efbdce5fb3a8.roa (raw, json) Hash identifier: YdqVajf23IGT1V3b2RboQWcifK8FrFncV4HfstlbQJw= Subject key identifier: 42:31:59:91:20:6E:71:9B:BF:26:FC:DB:5C:CB:D1:80:85:64:53:5E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 71291A96316408060DCBD59ED08747173CC0F23A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0a429e3-e7ff-4211-b53b-efbdce5fb3a8.roa Signing time: Tue 24 Feb 2026 03:10:08 +0000 ROA not before: Tue 24 Feb 2026 03:10:08 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.203.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:29:1a:96:31:64:08:06:0d:cb:d5:9e:d0:87:47:17:3c:c0:f2:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 24 03:10:08 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=394edece2dae624055358dbe389f5a950e5046f8761456a2dabb5946447b3a2c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:f5:ed:5c:b4:5c:3b:f1:16:ec:f6:3c:61:65: 99:e2:ed:c0:6a:d2:33:10:26:fc:7b:60:bb:aa:3e: e6:90:bb:f7:a7:fc:a1:ae:72:cc:84:18:18:3f:1e: 94:bc:69:de:9a:db:8f:33:f8:bf:95:2d:ac:ab:c1: d9:a1:e8:1d:44:3b:33:11:67:be:b5:ec:e6:56:cf: b1:cb:26:d6:0a:b7:82:da:6c:b9:51:6e:eb:20:c2: 14:e3:43:2d:66:1f:1e:ef:bb:7f:49:4a:1d:19:84: 56:d5:f2:e1:36:8a:9c:2c:46:b2:a9:47:5c:db:a2: f7:aa:3e:91:a3:c3:a8:7c:8a:f1:14:a4:74:2d:26: 05:76:ff:48:92:ab:30:28:63:4a:29:7b:97:0f:b5: c2:c3:64:ce:f9:17:5c:0f:cd:e3:68:f5:3a:29:5f: d4:e2:20:ae:b3:d1:39:05:be:a1:ff:fb:88:14:22: 08:b1:99:70:86:f8:20:dc:e3:65:52:5e:9a:e2:75: 4b:a6:b2:b6:f1:78:7a:26:44:a2:20:f1:ba:a3:30: 7d:04:d0:05:cb:6d:76:1e:d0:fc:14:2a:ec:e9:b1: 46:45:a6:0a:a6:25:73:f2:d8:a4:37:ae:16:e2:8e: 34:23:4b:de:5c:18:ac:63:88:d8:d3:3a:17:81:de: 04:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:31:59:91:20:6E:71:9B:BF:26:FC:DB:5C:CB:D1:80:85:64:53:5E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0a429e3-e7ff-4211-b53b-efbdce5fb3a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.203.248.0/21 Signature Algorithm: sha256WithRSAEncryption 37:71:2e:7d:25:a5:6b:1b:a3:7e:c3:40:3f:d2:17:d5:ae:05: 7c:bb:78:f0:de:8d:1a:d2:2a:69:15:2e:09:72:c5:39:16:ec: e7:c8:35:2f:ca:28:e4:a4:7d:99:d9:85:e9:f7:40:a1:02:1b: a6:75:6c:9c:20:e9:fc:d8:b7:b6:fd:7f:be:4d:69:67:2e:72: d6:92:e2:4a:f5:86:2b:3a:5d:10:c8:eb:f9:79:e2:c9:92:e4: 16:0d:02:c5:d1:e3:5f:e8:9f:6a:44:47:6b:6f:59:56:5b:3b: 54:f7:52:6c:f0:d7:cd:c8:d7:12:19:f9:34:bc:d9:4e:a5:29: d2:4b:d6:d0:5b:26:4c:33:4e:db:88:5e:5a:a5:e7:9c:c1:c6: 38:40:2c:58:3b:5e:b2:de:18:64:43:37:1b:9d:d4:01:e2:35: b1:3c:b0:55:d3:d8:29:3d:24:2a:d0:0f:79:12:85:98:8a:3c: 5a:c3:1b:2c:39:f3:c2:35:77:d4:f5:61:69:79:e7:1a:47:1c: 79:01:13:3c:f3:b5:71:ba:58:8f:92:61:77:15:eb:ae:30:03: 94:7e:34:40:9b:65:62:0e:fc:00:a9:53:2d:b9:87:2d:65:1a: 95:b4:a8:89:97:c3:25:15:8e:3e:c8:bc:8a:b3:86:8e:10:5d: 91:ea:b1:ce -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcSkaljFkCAYNy9We0IdHFzzA8jowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI0MDMxMDA4WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTRlZGVjZTJkYWU2MjQwNTUzNThkYmUzODlmNWE5NTBl NTA0NmY4NzYxNDU2YTJkYWJiNTk0NjQ0N2IzYTJjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCO9e1ctFw78Rbs9jxhZZni7cBq0jMQJvx7YLuqPuaQu/en /KGucsyEGBg/HpS8ad6a248z+L+VLayrwdmh6B1EOzMRZ7617OZWz7HLJtYKt4La bLlRbusgwhTjQy1mHx7vu39JSh0ZhFbV8uE2ipwsRrKpR1zboveqPpGjw6h8ivEU pHQtJgV2/0iSqzAoY0ope5cPtcLDZM75F1wPzeNo9TopX9TiIK6z0TkFvqH/+4gU IgixmXCG+CDc42VSXpridUumsrbxeHomRKIg8bqjMH0E0AXLbXYe0PwUKuzpsUZF pgqmJXPy2KQ3rhbijjQjS95cGKxjiNjTOheB3gRDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQjFZkSBucZu/JvzbXMvRgIVkU14wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2EwYTQyOWUzLWU3ZmYtNDIxMS1iNTNiLWVmYmRjZTVmYjNhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM2y/gwDQYJKoZIhvcNAQELBQADggEBADdxLn0lpWsbo37DQD/SF9WuBXy7 ePDejRrSKmkVLglyxTkW7OfINS/KKOSkfZnZhen3QKECG6Z1bJwg6fzYt7b9f75N aWcuctaS4kr1his6XRDI6/l54smS5BYNAsXR41/on2pER2tvWVZbO1T3Umzw183I 1xIZ+TS82U6lKdJL1tBbJkwzTtuIXlql55zBxjhALFg7XrLeGGRDNxud1AHiNbE8 sFXT2Ck9JCrQD3kShZiKPFrDGyw588I1d9T1YWl55xpHHHkBEzzztXG6WI+SYXcV 664wA5R+NECbZWIO/ACpUy25hy1lGpW0qImXwyUVjj7IvIqzho4QXZHqsc4= -----END CERTIFICATE-----Generated at Sun Mar 1 21:41:01 2026 by rpki-client