$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af48a471-47ad-45b4-92ba-7dee5d4a4caa.roa File: af48a471-47ad-45b4-92ba-7dee5d4a4caa.roa (raw, json) Hash identifier: PHRSrOa/dqYpGOX7FLLwXVo9SAtVu93ECo+lM+Gu3bM= Subject key identifier: 54:43:9F:3E:C9:F3:CE:6C:36:5D:B3:02:CA:3F:B9:39:DA:5A:86:85 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 761155CD144D9984FFBD6282755471D6F5D29586 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af48a471-47ad-45b4-92ba-7dee5d4a4caa.roa Signing time: Sat 28 Feb 2026 04:01:12 +0000 ROA not before: Sat 28 Feb 2026 04:01:12 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:11:55:cd:14:4d:99:84:ff:bd:62:82:75:54:71:d6:f5:d2:95:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 28 04:01:12 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=ae1125ead187390764a383479eb3f5c6b6c399d608d95a85cf4c50be1cdeb511, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b7:ba:56:f9:82:de:d1:c4:d3:1c:0e:41:71: bf:7d:bc:f7:09:37:a4:31:c0:fa:87:d4:e0:ad:4f: f2:7e:b6:9b:6f:98:ef:fa:05:c7:a6:43:53:e1:e5: 0f:eb:aa:b8:2c:a6:19:da:1e:3a:3b:96:f4:0b:c4: 88:b7:a4:b7:1a:bc:0e:41:95:cc:fc:77:cc:11:ce: 23:5d:1e:c3:62:07:fa:e6:71:5c:9e:f9:ef:c1:c5: e8:ff:ec:5d:53:ab:7b:f5:0c:12:fb:7c:e5:18:05: 10:31:27:4f:ad:e1:98:6d:9e:74:b8:9b:7c:34:0e: a0:4b:36:40:0b:7a:1a:03:f5:6b:48:99:6d:81:88: b0:0c:73:00:b7:93:28:e6:26:4d:6e:35:b9:f9:8e: 5c:47:42:b7:de:09:de:eb:90:38:ce:4e:38:72:97: db:3b:3d:98:d5:d8:50:e7:ec:fd:88:5b:c4:9a:64: 6f:8c:cd:48:3f:a8:79:56:7d:f7:98:e7:eb:a8:2d: e1:b9:2f:b9:9d:76:56:24:ed:d7:af:c1:c9:79:0a: ad:61:81:71:d6:3f:d6:f4:63:04:35:4c:b7:a1:f5: df:ee:3d:59:54:75:8a:71:6e:11:03:4b:17:83:ce: f7:0c:33:6e:f1:46:09:5d:5f:6a:fa:d9:c9:24:c3: c3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:43:9F:3E:C9:F3:CE:6C:36:5D:B3:02:CA:3F:B9:39:DA:5A:86:85 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af48a471-47ad-45b4-92ba-7dee5d4a4caa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.192.0/22 Signature Algorithm: sha256WithRSAEncryption 64:dc:e9:2b:f7:a4:11:a3:3a:28:f4:e5:4d:71:d1:fd:c8:36: d4:f7:56:ed:81:5a:22:ca:04:81:ef:3e:c1:ce:14:b2:02:c2: 66:56:aa:e3:60:18:21:ff:27:45:29:16:23:65:5a:fc:16:45: 1a:32:6b:40:d2:2f:b4:70:24:22:5e:85:f8:98:cd:ca:be:d8: f9:1a:d6:af:a5:ca:3f:e2:b2:f1:7c:83:53:03:9d:d1:ad:d2: 14:09:b8:91:ef:cc:90:2e:b7:d0:9b:98:e8:a2:76:66:ef:5d: 38:12:70:d9:5d:22:0c:a3:4a:e7:40:87:81:68:ae:c5:c5:02: 09:95:42:97:fd:d2:d7:32:89:e6:e6:d8:01:c7:aa:c8:d5:5e: ef:f8:be:7f:16:d1:17:97:10:e9:db:22:be:a6:db:7f:f8:f8: d9:dd:e3:66:0b:72:88:84:89:37:62:de:6b:19:2b:57:a7:bb: a0:d3:c3:25:72:cd:bd:d0:cd:02:fc:2c:d9:00:b9:d0:36:d8: 4a:98:2e:6d:d5:34:ea:8c:4a:99:48:d8:1d:45:25:2b:d3:0c: ff:d7:cb:33:8a:24:7c:7d:f4:fc:6a:c1:9f:49:0d:a6:78:fe: 06:6b:cb:87:3c:2f:56:c2:1d:75:2a:a5:43:c5:1e:35:4d:40: fa:75:37:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdhFVzRRNmYT/vWKCdVRx1vXSlYYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwMjI4MDQwMTEyWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTExMjVlYWQxODczOTA3NjRhMzgzNDc5ZWIzZjVjNmI2 YzM5OWQ2MDhkOTVhODVjZjRjNTBiZTFjZGViNTExMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMt7pW+YLe0cTTHA5Bcb99vPcJN6QxwPqH1OCtT/J+tptv mO/6BcemQ1Ph5Q/rqrgsphnaHjo7lvQLxIi3pLcavA5Blcz8d8wRziNdHsNiB/rm cVye+e/Bxej/7F1Tq3v1DBL7fOUYBRAxJ0+t4ZhtnnS4m3w0DqBLNkALehoD9WtI mW2BiLAMcwC3kyjmJk1uNbn5jlxHQrfeCd7rkDjOTjhyl9s7PZjV2FDn7P2IW8Sa ZG+MzUg/qHlWffeY5+uoLeG5L7mddlYk7devwcl5Cq1hgXHWP9b0YwQ1TLeh9d/u PVlUdYpxbhEDSxeDzvcMM27xRgldX2r62ckkw8MZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVEOfPsnzzmw2XbMCyj+5OdpahoUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FmNDhhNDcxLTQ3YWQtNDViNC05MmJhLTdkZWU1ZDRhNGNhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIP3MAwDQYJKoZIhvcNAQELBQADggEBAGTc6Sv3pBGjOij05U1x0f3INtT3 Vu2BWiLKBIHvPsHOFLICwmZWquNgGCH/J0UpFiNlWvwWRRoya0DSL7RwJCJehfiY zcq+2Pka1q+lyj/isvF8g1MDndGt0hQJuJHvzJAut9CbmOiidmbvXTgScNldIgyj SudAh4ForsXFAgmVQpf90tcyiebm2AHHqsjVXu/4vn8W0ReXEOnbIr6m23/4+Nnd 42YLcoiEiTdi3msZK1enu6DTwyVyzb3QzQL8LNkAudA22EqYLm3VNOqMSplI2B1F JSvTDP/XyzOKJHx99PxqwZ9JDaZ4/gZry4c8L1bCHXUqpUPFHjVNQPp1N0Y= -----END CERTIFICATE-----Generated at Sun Mar 1 23:21:20 2026 by rpki-client